From owner-freebsd-security Mon Mar 11 17:27: 4 2002 Delivered-To: freebsd-security@freebsd.org Received: from vmunix.dk (vmunix.dk [80.197.228.10]) by hub.freebsd.org (Postfix) with ESMTP id ABF3637B416 for ; Mon, 11 Mar 2002 17:26:59 -0800 (PST) Received: (from sst@localhost) by vmunix.dk (8.11.6/8.11.6) id g2C1Qpm27712; Tue, 12 Mar 2002 02:26:51 +0100 (CET) (envelope-from sst) Date: Tue, 12 Mar 2002 02:26:51 +0100 From: Sune Stjerneby To: "Thomas T. Veldhouse" Cc: freebsd-security@FreeBSD.ORG Subject: Re: zlib overflow problem? Message-ID: <20020312022651.A14838@fnyx.vmunix.dk> References: <00d601c1c941$56be3dd0$3028680a@tgt.com> <20020311131442.D77202@rain.macguire.net> <00e101c1c942$b6bfeb60$3028680a@tgt.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <00e101c1c942$b6bfeb60$3028680a@tgt.com>; from veldy@veldy.net on Mon, Mar 11, 2002 at 03:21:30PM -0600 X-waste-of: diskspace X-lemon: curry? Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Mon, Mar 11, 2002 at 03:21:30PM -0600, Thomas T. Veldhouse wrote: > Where did you see that information. I can not verify your statement. > > Here is the RedHat posting. They don't even mention any changes or updates > to glibc. The zlib bug is an issue on Linux-systems due to the brokeness of glibc malloc. There aren't any changes or updates to glibc because this specific issue was resolved within zlib; fixing the double free(), which causes a warning on most systems but trouble on glibc-systems. -- Sune Stjerneby - Part of an RFC 1876-compliant network. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message