Slashdot Mirror


Microsoft, zlib, and Security Flaws

nakhla writes: "News.com is reporting that Microsoft's use of code from the open-source zlib library has led to possible security problems. The flaws in zlib were reported recently, and apply to several key Microsoft technologies, such as DirectX, Front Page, Install Shield, Office, and Internet Explorer. The article also mentions how this is not Microsoft's first use of open-source code in its software, but does point out that since zlib is not GPL'd they are under no obligation to release the source code to any of their products."

8 of 470 comments (clear)

  1. I'm not sure I understand... by YoPt · · Score: 0, Troll

    the real implications behind. I'll proabbly be flamed for just looking for info, but how does this change anything that we have known about MS software being insecure?

  2. oh goody by smack_attack · · Score: -1, Troll

    Time for today'$ round of +5 Funny Micro$oft ba$hing (I u$e the $ in$tead of a 's' to $ymbolize that they are an axi$ of evil computing, no one has thought of this before me. HAHA!)

  3. Re:Just waiting for the press release... by edrugtrader · · Score: 0, Troll

    actually i'm waiting for all the open source hypocrits to issue a press release noting that this is yet another risk of using microsoft products

    --
    MARIJUANA, SHROOMS, X: ONLINE?! - E
  4. Redhat stock's in the shitter. by Anonymous Coward · · Score: -1, Troll

    $7 according to one share. That's only $6 more than K-MART!! Haha hahahah. OSS is NOT a valid business model. http://goatse.cx

  5. Insecurity. by metacell · · Score: -1, Troll

    I don't think the point of the article is that Microsoft is insecure ('cept about keeping their market share, of course :). I think it was interesting that Microsoft used open source code in software they sell externally. I didn't know that before. It was also interesting that security flaws in Microsoft products was caused by open source code. Kind of turns the tables on those geeks. (Wait... what site am I at? Oh, Slashdot! Damn...)^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H ^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H ^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H ^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^H^HKind of turns the tables on those Microsofties, doesn't it? And then comes the interesting question: what will they do about it? Apply the open source patch within 24 hrs, and admit that open source gets fixed damn fast, then hang their head in shame waiting week after week for the patch to reach out to all the end-users. Muahahahhahaha... So, I dissed Microsoft. Do I get my Karma now?

  6. Re:This wouldn't have happened... by rusty0101 · · Score: 0, Troll

    I beg your pardon, this looks like the same level of Inovation microsoft has been doing since Day one.

    port basic
    buy qdos
    borrow from Apple and Xerox
    borrow from BSD
    borrow from open source.

    ....

    -Rusty

    --
    You never know...
  7. Re:Just waiting for the press release... by Ooblek · · Score: 0, Troll
    Oh please, so its an OS originated bug and now people are already criticizing Microsoft about it. What do you think they are going to do? Release a patch that does nothing just for the fun of it?

    I don't think Microsoft could ever look good, not matter if the bug is theirs or not. Hell, the next bug found in any OS software should be blamed on Microsoft. Just because they're there.

  8. Re:If we can't see MS's source by Cyno · · Score: 0, Troll


    Because that would be illegal, to use GPL'ed code for commercial use and not release the source. But I'd love to see Microsoft write their own OS from scratch the way GNU did. ;)