Re: [RHSA-2002:026-35] Vulnerability in zlib library

From: helmut g. katzgraber (dummkopf@physics.ucsc.edu)
Date: 03/12/02 

Date: Tue, 12 Mar 2002 13:23:31 -0800 (PST)
From: "helmut g. katzgraber" <dummkopf@physics.ucsc.edu>
To: bugtraq@securityfocus.com, <redhat-watch-list@redhat.com>

hm... when i look at the rpm list below i notice that redhat
seems to be doing the same thing they did last time there was a
big upgrade: issue new kernel rpms, forget about the kernel
headers. while these might not change, several programs will barf
if the directory in which the headers are, does not match the
kernel version.... unless they put the headers now in the
kernel, which i doubt. a quick check of the 6.2 kernel rpm
kernel-2.2.19-6.2.15.alpha.rpm shows that

[debussy ~]$ rpm -qlf kernel-2.2.19-6.2.15.alpha.rpm | grep include

it does not contain header files. please redhat, provide the
necessary rpms (in time)...

i'd be careful to start patching without the headers. i'd be
careful without patching either...

h.

header of redhat advisory:

# ---------------------------------------------------------------------
# Red Hat, Inc. Red Hat Security Advisory
#
# Synopsis: Vulnerability in zlib library
# Advisory ID: RHSA-2002:026-35
# Issue date: 2002-02-11
# Updated on: 2002-03-11
# Product: Red Hat Linux
# Keywords: zlib double free
# Cross references: RHSA-2002:028 RHSA-2002:027
# Obsoletes:
# ---------------------------------------------------------------------

_______________________________________________________________
Dr. Helmut G. Katzgraber dummkopf@physics.ucdavis.edu
Department of Physics http://nacaq.ucdavis.edu/
University of California, Davis Phone: (+1) 530-752-9855
One Shields Ave, Davis, CA 95616 Fax: (+1) 530-752-4717

Relevant Pages

  • Re: Latest glibc RHN update breaks RPM/GNOME?
    ... Looks like RedHat fixed this issue today, releasing a .7 set of RPMs. ... > I just updated the latest glibc packages from the RedHat Network, ... and they seem to have broken both RPM and GNOME. ... What's going with this glibc that requires a kernel model ...
    (linux.redhat)
  • Re: Latest glibc RHN update breaks RPM/GNOME?
    ... Looks like RedHat fixed this issue today, releasing a .7 set of RPMs. ... > I just updated the latest glibc packages from the RedHat Network, ... and they seem to have broken both RPM and GNOME. ... What's going with this glibc that requires a kernel model ...
    (alt.os.linux.redhat)
  • Re: [RHSA-2002:026-35] Vulnerability in zlib library
    ... when i look at the rpm list below i notice that redhat ... issue new kernel rpms, ... > if the directory in which the headers are, ... use ipvs-1.0.8-2.2.19.patch which lacks this particular hunk! ...
    (Bugtraq)
  • Re: Large binary newreader help please!
    ... Well, that's Redhat for ya. ... This is the latest rpm version for Redhat so far ... > Last time I tried to get over 100,000 headers from a bin group in slrn, ... using that nget thing you were talking about but I need some basic info if ...
    (alt.os.linux)
  • Re: Network driver
    ... even i have the same issue, i tried with the rpm procedure but it is ... i untar the file and tried using the make command but i got the kernel ... i just installed the redhat ES-3 and trying to install my broadcom NIC ...
    (linux.redhat)
Quantcast