USN-151-3: zlib vulnerabilities

Ubuntu Security Notice USN-151-3

28th October, 2005

aide vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 5.10
  • Ubuntu 5.04
  • Ubuntu 4.10

Details

USN-148-1 and USN-151-1 fixed two security flaws in zlib, which could
be exploited to cause Denial of Service attacks or even arbitrary code
execution with malicious data streams.

Since aide is statically linked against the zlib library, it is also
affected by these issues. The updated packagages have been rebuilt
against the fixed zlib.

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 5.10:
aide
Ubuntu 5.04:
aide
Ubuntu 4.10:
aide

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

None

References

CVE-2005-1849, CVE-2005-2096