CVE-2002-0059

Name of the Vulnerable Software and Affected Versions dump-static-0.4b19 versions 0.4b19 mirrordir (affected versions not specified) amaya (affected versions not specified) zlib-1.1.3 versions 1.1.3 and earlier zlib-devel-1.1.3 versions 1.1.3 and earlier kernel-2.2.19 versions 2.2.19 kernel-jensen-2.2.19 versions 2.2.19 kernel-pcmcia-cs-2.2.19 versions 2.2.19 kernel-smp-2.2.19 versions 2.2.19 kernel-doc-2.2.19 versions 2.2.19 kernel-enterprise-2.2.19 versions 2.2.19 kernel-utils-2.2.19 versions 2.2.19 rsync-2.4.6 versions 2.4.6 kernel-ibcs-2.2.19 versions 2.2.19 kernel-BOOT-2.2.19 versions 2.2.19 dump-0.4b19 versions 0.4b19 rmt-0.4b19 versions 0.4b19 kernel-source-2.2.19 versions 2.2.19 kernel-headers-2.2.19 versions 2.2.19

Description The decompression algorithm in zlib 1.1.3 and earlier causes inflateEnd to release certain memory more than once, which may allow local and remote attackers to execute arbitrary code via a block of malformed compression data. Multiple vulnerabilities in various packages of Red Hat Linux and Debian GNU/Linux may lead to disruption of confidentiality, integrity, and availability of protected information. Exploitation of these vulnerabilities can be done remotely.

Recommendations For dump-static-0.4b19 version 0.4b19, update to a version later than 0.4b19. For mirrordir, update to a version that is not vulnerable. For amaya, update to a version that is not vulnerable. For zlib-1.1.3 versions 1.1.3 and earlier, update to a version later than 1.1.3. For zlib-devel-1.1.3 versions 1.1.3 and earlier, update to a version later than 1.1.3. For kernel-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-jensen-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-pcmcia-cs-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-smp-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-doc-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-enterprise-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-utils-2.2.19 version 2.2.19, update to a version later than 2.2.19. For rsync-2.4.6 version 2.4.6, update to a version later than 2.4.6. For kernel-ibcs-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-BOOT-2.2.19 version 2.2.19, update to a version later than 2.2.19. For dump-0.4b19 version 0.4b19, update to a version later than 0.4b19. For rmt-0.4b19 version 0.4b19, update to a version later than 0.4b19. For kernel-source-2.2.19 version 2.2.19, update to a version later than 2.2.19. For kernel-headers-2.2.19 version 2.2.19, update to a version later than 2.2.19. At the moment, there is no information about a newer version that contains a fix for this vulnerability.