SUSE-SA:2005:043: zlib

high Nessus Plugin ID 19333

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2005:043 (zlib).

The previous zlib update for CVE-2005-2096 fixed a flaw in zlib that could allow a carefully crafted compressed stream to crash an application. While the original patch corrected the reported overflow, Markus Oberhumer discovered additional ways a stream could trigger an overflow. This update fixes those problems as well.

This issue is tracked by the Mitre CVE ID CVE-2005-1849.

Since only zlib 1.2.x is affected, older SUSE products are not affected by this problem.

Solution

http://www.suse.de/security/advisories/2005_43_zlib.html

Plugin Details

Severity: High

ID: 19333

File Name: suse_SA_2005_043.nasl

Version: 1.9

Agent: unix

Family: SuSE Local Security Checks

Published: 7/31/2005

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Nessus Agent, Nessus

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list

Detections

Analytics