USN-151-3: zlib vulnerabilities

29 October 2005

aide vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 5.10
  • Ubuntu 5.04
  • Ubuntu 4.10

Software Description

Details

USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could be exploited to cause Denial of Service attacks or even arbitrary code execution with malicious data streams.

Since aide is statically linked against the zlib library, it is also affected by these issues. The updated packagages have been rebuilt against the fixed zlib.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.10
aide
Ubuntu 5.04
aide
Ubuntu 4.10
aide

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

References