CVE-2023-6992: reported in zlib 1.2.13-r1

[Josep-Lancharro-Indra]

Hi, our Prisma Cloud is reporting this issue with zlib:

It appears to be a fix related to the issue in this commit.

Can you check that?

Thanks.

[mariozelaschi]

Same problem here, some details: https://nvd.nist.gov/vuln/detail/CVE-2023-6992 Just to clarify, the CVE is also detected in version 1.3.1-r0 (latest available on Alpine repo)

[TheStoryEnd]

CVE-2023-6992 Not related to madler/zlib: https://github.com/madler/zlib/issues/905

[mariozelaschi]

CVE-2023-6992 Not related to madler/zlib: madler/zlib#905

Oh! So it seems it is a false positive, thanks a lot for the link I was just going to look in closed issues for it :)