Fedora 11: 2009-10237 Critical Update for zlib Issue in Deltarpm
fedora
October 8, 2009
deltarpm prior to the current build ships with a bundled copy of zlib
Summary
A deltarpm contains the difference between an old
and a new version of a rpm, which makes it possible
to recreate the new rpm from the deltarpm and the old
one. You don't have to have a copy of the old rpm,
deltarpms can also work with installed rpms.
Update Information:
deltarpm prior to the current build ships with a bundled copy of zlib. This version of zlib has a known vulnerability with CVE identifier: CAN-2005-1849 This build of deltarpm patches the program to use the system zlib (which was fixed when the vulnerability was first discovered) instead of the bundled copy.
Topics Covered
Change Log
* Wed Sep 30 2009 Toshio Kuratomi
References
[ 1 ] Bug #526432 - deltarpm contains an own, modified copy of zlib
https://bugzilla.redhat.com/show_bug.cgi?id=526432
Update Instructions
This update can be installed with the "yum" update program. Use su -c 'yum update deltarpm' at the command line. For more information, refer to "Managing Software with yum", available at .
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: deltarpm
Product: Fedora 11
Version: 3.4
Release: 17.fc11
URL: Summary : Create deltas between rpms
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!