On Thu, 13 Mar 2003, Thomas Biege wrote:
______________________________________________________________________________
SuSE Security Announcement
Package: tcpdump <snip> 2) Pending vulnerabilities in SuSE Distributions and Workarounds:
- zlib zlib's function gzprintf() is prone to a buffer overflow if its arguments expand to more then Z_PRINTF_BUFSIZE bytes. A fixed version of zlib will be shipped with future SuSE Linux versions.
Ok, so for those of us with a current distribution of SuSE, what is the recommended procedure to deal with this bug? Do you have a CERT or upstream reference to the fix? Regards, Robb -- - Robb Romans (512) 838-0419 Linux Commando T/L 678-0419 IBM Linux Technology Center KD5SQF Ask me about the W5IBM Amateur Radio Club