zlib "gzprintf()" function vulnerable to buffer overflow

2003-05-23T00:00:00
ID VU:142121
Type cert
Reporter CERT
Modified 2008-06-06T00:00:00

Description

Overview

A buffer overflow exists in one of the functions included with the zlib compression library. This vulnerability may allow a remote attacker to execute arbitrary code or cause a denial of service. An exploit for this vulnerability is publicly available.

Description

The zlib website describes zlib as a "...lossless data-compression library for use on virtually any computer hardware and operating system." A buffer overflow exists in the gzprintf function contained within the zlib compression library. For more detailed information, please see Richard Kettlewell's advisory.


Impact

A remote attacker may be able to execute code or cause a denial of service.


Solution

Apply a vendor patch.


Systems Affected

Vendor| Status| Date Notified| Date Updated
---|---|---|---
Gentoo Linux| | -| 23 May 2003
IBM Corporation| | 23 May 2003| 27 May 2003
Mandriva, Inc.| | 23 May 2003| 08 Sep 2004
Mandriva, Inc.| | -| 23 May 2003
NetBSD| | 23 May 2003| 23 May 2003
OpenPKG| | -| 23 May 2003
Openwall GNU/*/Linux| | 23 May 2003| 02 Jun 2003
Red Hat, Inc.| | 23 May 2003| 27 May 2003
SCO| | -| 23 May 2003
SUSE Linux| | 23 May 2003| 24 Jun 2003
Apple Computer, Inc.| | 23 May 2003| 02 Jun 2003
Foundry Networks Inc.| | 23 May 2003| 02 Jun 2003
Fujitsu| | 23 May 2003| 05 Jun 2003
Hitachi| | 23 May 2003| 14 Jul 2003
Xerox Corporation| | 23 May 2003| 12 Jun 2003
If you are a vendor and your product is affected, let us know.

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A

References

Credit

This vulnerability was discovered by Richard Kettlewell.

This document was written by Ian A Finlay.

Other Information

  • CVE IDs: CVE-2003-0107
  • Date Public: 22 Feb 2003
  • Date First Published: 23 May 2003
  • Date Last Updated: 06 Jun 2008
  • Severity Metric: 29.11
  • Document Revision: 11