zlib: Multiple vulnerabilities

2017-01-23T00:00:00
ID GLSA-201701-56
Type gentoo
Reporter Gentoo Foundation
Modified 2017-01-23T00:00:00

Description

Background

zlib is a widely used free and patent unencumbered data compression library.

Description

Multiple vulnerabilities have been discovered in zlib. Please review the CVE identifiers referenced below for details.

Impact

An attacker could cause a Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All zlib users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=sys-libs/zlib-1.2.9"