Thamer Al-Harbash found a buffer overrun problem in the current version 1.1.4 of zlib. It has to do with vsprintf and vnsprintf. Neither he nor anyone else has offered a solution to the problem, due to its evasive nature.
There doesn't seem to be a correct way to deal with this, and the case is therefore on hold until the zlib team (or anybody else) offers a solution. Regards, Michael
pgp00000.pgp
Description: PGP signature
