[Pkg-aide-maintainers] How does aide use zlib?
Moritz Muehlenhoff
jmm at debian.org
Thu Mar 16 16:45:19 UTC 2006
Dear aide maintainers,
I'm researching some older security issues. aide in Sarge links
statically against zlib, in which several buffer overflows were
fixed in DSA-740 and DSA-763.
Can you tell me, in which ways aide uses zlib? If it operates on
potentialy manipulated compressed data provided by external parties
we might need to issue a DSA to recompile aide against the fixed
zlib.
Cheers,
Moritz
More information about the Pkg-aide-maintainers
mailing list