FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

zlib -- buffer overflow vulnerability

Affected packages
linux_base-suse < 9.3_1
Affected systems
5.4 <= FreeBSD < 5.4_6
5.3 <= FreeBSD < 5.3_20

Details

VuXML ID 837b9fb2-0595-11da-86bc-000e0c2e438a
Discovery 2005-07-27
Entry 2005-08-05
Modified 2005-09-24

Problem description

A fixed-size buffer is used in the decompression of data streams. Due to erronous analysis performed when zlib was written, this buffer, which was belived to be sufficiently large to handle any possible input stream, is in fact too small.

Impact

A carefully constructed compressed data stream can result in zlib overwriting some data structures. This may cause applications to halt, resulting in a denial of service; or it may result in an attacker gaining elevated privileges.

References

CVE Name CVE-2005-1849
FreeBSD Advisory SA-05:18.zlib