CVE-2018-25032 vulnerability in zlib #6
Assignees
Comments
|
Thanks @yyoshiho. I'm already aware of the update to zlib. My change is in the works |
|
👋🏻 Hi Paul, checking on how it's coming? looks like we're going to have to update all the Perls with this one? |
|
Hey Todd - my fix more or less ready to go, but there is still quite a lot of noise upstream (@ https://github.com/madler/zlib) about the latest version of zlib breaking things. Going to wait for the dust to settle. and yes, this means an update to all versions of Perl in the known universe! |
13 tasks
|
@toddr Compress-Raw-Zlib 2.103 uploaded here and to CPAN with the fix for this issue. Note that the downstream IO-Compress-* modules that use this module have also been updated. Please shout if you find any issues. |
pmqs
changed the title
13 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
From the fix of CVE-2018-25032 for deflate.c , this file is in Compress-Raw-Zlib and still old code (not fixed).
madler/zlib@5c44459
The text was updated successfully, but these errors were encountered: