On Tue, Mar 12, 2002 at 05:04:49PM +, Tim Waugh wrote:
>
> Right. But of course, SSH can also use zlib so make sure you upgrade
> that. :-)
Heh. Good point, although SSH fortunately encrypts after compression,
so the risk isn't huge. But I suppose there is still a risk from
authenticated
On Tue, Mar 12, 2002 at 11:53:04AM -0500, [EMAIL PROTECTED] wrote:
> Looks like it could affect a lot more than VNC so that is probably the
> least of your worries if you are exposing systems using zlib to the
> internet. Seems like if you're running SSH it likely would protect you
> from any ex
Looks like it could affect a lot more than VNC so that is probably the
least of your worries if you are exposing systems using zlib to the
internet. Seems like if you're running SSH it likely would protect you
from any exploit of zlib.
--
it's going to
do something you can't have happen, you're welcome to modify the behavior...
- Original Message -
From: "Tim Waugh" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, 2002-03-12 05:04
Subject: Re: zlib vulnerability could affect
On Mon, Mar 11, 2002 at 09:46:44PM -0600, Mike Miller wrote:
> Has anyone seen this? I hope it doesn't open a security hole in VNC.
> The article suggests that VNC is "potentially vulnerable."
>
> http://www.linuxsecurity.com/articles/security_sources_article-4582.html
The reason is that many
Has anyone seen this? I hope it doesn't open a security hole in VNC.
The article suggests that VNC is "potentially vulnerable."
http://www.linuxsecurity.com/articles/security_sources_article-4582.html
"Packages including X11, rsync, the Linux kernel, QT, mozilla, gcc, vnc,
and many other progra
