Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:2621
HistoryMar 12, 2002 - 12:00 a.m.

security problem fixed in zlib 1.1.4

2002-03-1200:00:00
vulners.com
27
JSON

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Zlib Advisory 2002-03-11
zlib Compression Library Corrupts malloc Data Structures via Double Free

Original release date: March 11, 2002
Last revised: March 11, 2002
Source: This advisory is based on a CERT advisory written
by Jeffrey P. Lanza. See original on http://www.cert.org

Systems Affected

 * Any software that is linked against zlib 1.1.3 or earlier
 * Any data compression library derived from zlib 1.1.3 or earlier

Overview

There is a vulnerability in the zlib shared library that may introduce
vulnerabilities into any program that includes zlib. This
vulnerability has been assigned a CVE candidate name of CAN-2002-0059
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0059

I. Description

There is a vulnerability in the decompression algorithm used by the
popular zlib compression library. If an attacker is able to pass a
specially-crafted block of invalid compressed data to a program that
includes zlib, the program's attempt to decompress the crafted data
can cause the zlib routines to corrupt the internal data structures
maintained by malloc.

The vulnerability results from a programming error that causes
segments of dynamically allocated memory to be released more than once
(aka. "double-freed"). Specifically, when inftrees.c:huft_build()
encounters the crafted data, it returns an unexpected Z_MEM_ERROR to
inftrees.c:inflate_trees_dynamic(). When a subsequent call is made to
infblock.c:inflate_blocks(), the inflate_blocks function tries to free
an internal data structure a second time.

Because this vulnerability interferes with the proper allocation and
de-allocation of dynamic memory, it may be possible for an attacker to
influence the operation of programs that include zlib. In most
circumstances, this influence will be limited to denial of service or
information leakage, but it is theoretically possible for an attacker
to insert arbitrary code into a running program. This code would be
executed with the permissions of the vulnerable program.

II. Impact

This vulnerability may introduce vulnerabilities into any program that
includes the affected library. Depending upon how and where the zlib
routines are called from the given program, the resulting
vulnerability may have one or more of the following impacts: denial of
service, information leakage, or execution of arbitrary code.

III. Solution

Upgrade your version of zlib

The maintainers of zlib have released version 1.1.4 to address this
vulnerability. Any software that is linked against or derived from an
earlier version of zlib should be upgraded immediately. The latest
version of zlib is available at http://www.zlib.org

The md5 sums of the source archives are:
abc405d0bdd3ee22782d7aa20e440f08 zlib-1.1.4.tar.gz
ea16358be41384870acbdc372f9db152 zlib-1.1.4.tar.bz2

IV. Acknowledgments

Thanks to Owen Taylor and other people at Redhat Inc. for the
reporting and research of this vulnerability.

This document is available from
http://www.gzip.org/zlib/advisory-2002-03-11.txt

The public PGP key of zlib author Jean-loup Gailly is available from
http://www.gzip.org/zlib/jloup.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8jRnX2aJ9JQGWcacRAiBcAJ9LiYJm/Nk4EbnD6qBJUsHUmgrk/QCdG5br
M8WeqzcAwikwlEFSPHpt790=
=0/cN
-----END PGP SIGNATURE-----

Related

openvas 2
debian 1
nessus 4
cve 1
cert 1
freebsd_advisory 1
securityvulns 2
slackware 1
cisco 1
ibm 6
openvas
openvas
Debian Security Advisory DSA 122-1 (zlib, various)
2008-01-17 00:00:00
Debian Security Advisory DSA 122-1 (zlib, various)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 122-1] New zlib & other packages fix buffer overflow
2002-03-11 00:00:00
nessus
nessus
Debian DSA-122-1 : zlib - malloc error (double free)
2004-09-29 00:00:00
Mandrake Linux Security Advisory : zlib-pkgs (MDKSA-2002:023-1)
2004-07-31 00:00:00
Mandrake Linux Security Advisory : zlib (MDKSA-2002:022)
2004-07-31 00:00:00
cve
cve
CVE-2002-0059
2002-03-15 05:00:00
cert
cert
Double Free Bug in zlib Compression Library Corrupts malloc's Internal Data Structures
2002-03-11 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-02:18.zlib
2002-03-18 00:00:00
securityvulns
securityvulns
Advisory CA-2002-07 Double Free Bug in zlib Compression Library
2002-03-13 00:00:00
CERT Advisory CA-2003-02 Double-Free Bug in CVS Server
2003-01-23 00:00:00
slackware
slackware
rsync update fixes security problems
2002-03-11 15:25:45
cisco
cisco
Vulnerability in the zlib Compression Library
2002-04-03 16:00:00
ibm
ibm
Security Bulletin: IBM® Db2® is affected by multiple vulnerabilities in the open source zlib library.
2023-12-20 20:15:04
Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server.
2024-03-25 09:18:44
Security Bulletin: Multiple security vulnerabilities have been identified in DB2 JDBC driver shipped with IBM Tivoli Business Service Manager
2024-01-24 18:45:08
JSON
Related for SECURITYVULNS:DOC:2621
openvas2debian1nessus4cve1cert1freebsd_advisory1securityvulns2slackware1cisco1ibm6