Update ZLib to 1.2.11 - Githubissues

lwchkg / dfend-x

(WIP) Maintenance build of D-Fend Reloaded that runs DOSBox-X. (Don't download until the WIP notice is removed.)

GNU General Public License v3.0

5 stars 0 forks source link

Update ZLib to 1.2.11 #1

Open lwchkg opened 6 years ago

lwchkg commented 6 years ago

The current version of ZLib (currently not uploaded in the tree) is 1.1.4, which is vulnerable to https://www.cvedetails.com/cve/CVE-2003-0107/.

lwchkg commented 6 years ago

Turns out that D-Fend Reloaded also use an old version of DelphiZip/ZipMaster, which turns out to use an outdated version of ZLib as well. That also needs to be fixed.