Slashdot Mirror

← Back to Stories (view on slashdot.org)

Zlib Security Flaw Could Cause Widespread Trouble

Posted by timothy on Sunday July 10, 2005 @12:40AM from the all-over-the-place dept.

BlueSharpieOfDoom writes "Whitedust has an interesting article posted about the new zlib buffer overflow. It affects countless software applications, even on Microsoft Windows. Some of the most affected application are those that are able to use the PNG graphic format, as zlib is wildely used in compression of PNG images. Zlib was also in the news in 2002 because of a flaw found in the way it handled memory allocation. The new hole could allow remote attackers to crash the vulnerable program or even the possiblity of executing arbitrary code."

1 of 372 comments (clear)

Min score:

Reason:

Sort:

For those with IE on XP,2003 by A+beautiful+mind · 2005-07-10 00:52 · Score: 1, Redundant

please visit this link:
http://www.hunger.hu/win.html

Warning: the link causes BSOD because of a flaw in the image rendering algorithm of some windows component when it tries to render a huge image, the waiting times out and the kernel decides its better just to panic.

The link causes no problems on linux, as it's implementation is not faulty.

I think there is a patch for this fault on windowsupdate, but i can't be certain as i'm not using windows.

So long with the zealotry of IE's safeness.

--
It takes a man to suffer ignorance and smile
Be yourself no matter what they say