|
Family: Debian Local Security Checks --> Category: infos
[DSA1026] DSA-1026-1 sash Vulnerability Scan
Vulnerability Scan Summary DSA-1026-1 sash
Detailed Explanation for this Vulnerability Test
Markus Oberhumer discovered a flaw in the way zlib, a library used for
file compression and decompression, handles invalid input. This flaw can
cause programs which use zlib to crash when opening an invalid file.
A further error in the way zlib handles the inflation of certain
compressed files can cause a program which uses zlib to crash when opening
an invalid file.
sash, the stand-alone shell, links statically against zlib, and was
thus affected by these problems.
The old stable distribution (woody) isn't affected by these problems.
For the stable distribution (sarge) these problems have been fixed in
version 3.7-5sarge1.
For the unstable distribution (sid) these problems have been fixed in
version 3.7-6.
We recommend that you upgrade your sash package.
Solution : http://www.debian.org/security/2006/dsa-1026
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|