Paketname
perl-Compress-Raw-Zlib
Datum
2009-07-19
Advisory ID
MDVSA-2009:157
Betroffene Versionen
2009.0 x86_64 , 2009.1 i586 , 2009.0 i586 , 2008.1 i586 , 2008.1 x86_64 , 2009.1 x86_64

Problembeschreibung

A vulnerability has been found and corrected in perl-Compress-Raw-Zlib:

Off-by-one error in the inflate function in Zlib.xs in
Compress::Raw::Zlib Perl module before 2.017, as used in AMaViS,
SpamAssassin, and possibly other products, allows context-dependent
attackers to cause a denial of service (hang or crash) via a crafted
zlib compressed stream that triggers a heap-based buffer overflow,
as exploited in the wild by Trojan.Downloader-71014 in June 2009
(CVE-2009-1391).

This update provides fixes for this vulnerability.

Aktualisierte Pakete

2009.0 x86_64

 d5430d9ce8fefd3119995688a698e0fd  2009.0/x86_64/perl-Compress-Raw-Zlib-2.015-1.1mdv2009.0.x86_64.rpm 
 4c685d20a473c7a03102199bf5a312ea  2009.0/SRPMS/perl-Compress-Raw-Zlib-2.015-1.1mdv2009.0.src.rpm

2009.1 i586

 a2f1d44f210f3205ae2da200c8143a61  2009.1/i586/perl-Compress-Raw-Zlib-2.015-2.1mdv2009.1.i586.rpm 
 46da1ca46fe6207fecdfded8084992f1  2009.1/SRPMS/perl-Compress-Raw-Zlib-2.015-2.1mdv2009.1.src.rpm

2009.0 i586

 eb2dcbd9ec2cc7c68ad6827632e0d56c  2009.0/i586/perl-Compress-Raw-Zlib-2.015-1.1mdv2009.0.i586.rpm 
 4c685d20a473c7a03102199bf5a312ea  2009.0/SRPMS/perl-Compress-Raw-Zlib-2.015-1.1mdv2009.0.src.rpm

2008.1 i586

 720caf9ee97c5ebb97788cda22430474  2008.1/i586/perl-Compress-Raw-Zlib-2.008-2.1mdv2008.1.i586.rpm 
 7f40a9c58953b5113e367bce0b50feae  2008.1/SRPMS/perl-Compress-Raw-Zlib-2.008-2.1mdv2008.1.src.rpm

2008.1 x86_64

 08566d7972592448896119e2d6be14d4  2008.1/x86_64/perl-Compress-Raw-Zlib-2.008-2.1mdv2008.1.x86_64.rpm 
 7f40a9c58953b5113e367bce0b50feae  2008.1/SRPMS/perl-Compress-Raw-Zlib-2.008-2.1mdv2008.1.src.rpm

2009.1 x86_64

 132aa7ff9b5f4493a8f9e0c7606e8e2a  2009.1/x86_64/perl-Compress-Raw-Zlib-2.015-2.1mdv2009.1.x86_64.rpm 
 46da1ca46fe6207fecdfded8084992f1  2009.1/SRPMS/perl-Compress-Raw-Zlib-2.015-2.1mdv2009.1.src.rpm

Referenzen