-
zlib (1:1.2.8.dfsg-2ubuntu4.3) xenial-security; urgency=medium
* SECURITY UPDATE: improper pointer arithmetic might allow
context-dependent attackers to have unspecified impact
- debian/patches/CVE-2016-9840.patch: remove offset pointer optimization
in inftrees.c
- CVE-2016-9840
* SECURITY UPDATE: improper pointer arithmetic might allow
context-dependent attackers to have unspecified impact
- debian/patches/CVE-2016-9841.patch: use post-increment only in inffast.c
- CVE-2016-9841
* SECURITY UPDATE: vectors involving left shifts of negative integers might
allow context-dependent attackers to have unspecified impact
- debian/patches/CVE-2016-9842_1.patch: avoid shifts of negative values in
inflateMark()
- debian/patches/CVE-2016-9842_2.patch: avoid casting an out-of-range
value to long
- CVE-2016-9842
* SECURITY UPDATE: vectors involving big-endian CRC calculation might allow
context-dependent attackers to have unspecified impact
- debian/patches/CVE-2016-9843.patch: avoid pre-decrement of pointer in
big-endian CRC calculation
- CVE-2016-9843
-- Avital Ostromich <email address hidden> Wed, 08 Jan 2020 11:06:35 -0500
-
zlib (1:1.2.8.dfsg-2ubuntu4.1) xenial-proposed; urgency=medium
* SRU
* Move zconf.h back to /usr/include (not differing across architectures)
anymore. Closes: #787956. LP: #1512992.
-- Matthias Klose <email address hidden> Fri, 03 Mar 2017 18:31:53 +0100
-
zlib (1:1.2.8.dfsg-2ubuntu4) wily; urgency=medium
* Call dh_makeshlibs for the 64bit multilib package.
-- Matthias Klose <email address hidden> Sun, 13 Sep 2015 17:47:16 +0200
