Re: [cobalt-security] New Vulnerability - zlib - Red Hat is vulnerable

cobalt Thu, 14 Mar 2002 02:48:43 -0800

On 13 Mar 2002 at 10:11, Rick Ewart wrote:

> Anyone seen this?
> http://www.kb.cert.org/vuls/id/368819
> 
> Here's the text... Any idea if Cobalts are vulnerable as Red Hat 6.2 is?
> Also, don't freak out - apparently nobody has seen it actually exploited
> yet.
> 
There is a list of apps affected by this at:


        http://www.gzip.org/zlib/apps.html

There is also a link to a perl script which will check for statically linked binaries:

        http://cert.uni-stuttgart.de/files/fw/find-zlib

Results from this script on Raq4i:

/bin
    rpm

/sbin
        install-info

/usr/bin
        mysql
    mysqladmin
    mysqldump
    mysqlimport
    mysqlshow
    mysqltest
    rpm2cpio

/usr/sbin
    mysqld
    pppdump

No other directories checked yet...

Ian




_______________________________________________
cobalt-security mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-security

Re: [cobalt-security] New Vulnerability - zlib - Red Hat is vulnerable

Reply via email to