[ Home | Liste | F.A.Q. | Risorse | Cerca... ]


[ Data: precedente | successivo | indice ] [ Argomento: precedente | successivo | indice ]


Archivio: openbsd@sikurezza.org
Soggetto: 015: RELIABILITY FIX: March 13, 2002
Mittente: Ed3f
Data: 14 Mar 2002 19:26:08 -0000
015: RELIABILITY FIX: March 13, 2002
Under some circumstances the zlib compression library can free dynamically
allocated memory twice. This is not a security issue on OpenBSD since the
BSD free(3) function detects this. There is also a kernel zlib component
that may be used by pppd and IPSec. The feasibility of attacking the kernel
this way is currently unknown.
A source code patch exists which remedies the problem.
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/015_zlib.patch


E' possibile anche aggiornare tramite CVS con tag=OPENBSD_3_0


Ed3f




________________________________________________________
http://www.sikurezza.org - Italian Security Mailing List




[ Home | Liste | F.A.Q. | Risorse | Cerca... ]

www.sikurezza.org - Italian Security Mailing List
(c) 1999-2005