Joe McDonnell has submitted this change and it was merged. ( http://gerrit.cloudera.org:8080/19748 )
Change subject: IMPALA-11603, IMPALA-12063: Address CVE in zlib by upgrading to 1.2.13 ...................................................................... IMPALA-11603, IMPALA-12063: Address CVE in zlib by upgrading to 1.2.13 Zlib fixed CVE-2022-37434, an issue in inflateGetHeader() in 1.2.13. This bumps the version of zlib to 1.2.13 to pick up this fix. This also adds a build of Cloudflare zlib. Cloudflare zlib is a drop-in replacement for the standard zlib library that has been optimized to take advantage of SIMD and other processor support on x86_64 and ARM. This adds a build of the latest Cloudflare zlib as a new component. This version of Cloudflare zlib also contains the fix for CVE-2022-37434. Testing: - Ran a native-toolchain build Change-Id: I14137848ebbe82f42df6a97fd24f5cdba4f65d21 Reviewed-on: http://gerrit.cloudera.org:8080/19748 Reviewed-by: Michael Smith <[email protected]> Reviewed-by: Wenzhe Zhou <[email protected]> Tested-by: Joe McDonnell <[email protected]> --- M buildall.sh A source/cloudflarezlib/build.sh 2 files changed, 61 insertions(+), 3 deletions(-) Approvals: Michael Smith: Looks good to me, but someone else must approve Wenzhe Zhou: Looks good to me, approved Joe McDonnell: Verified -- To view, visit http://gerrit.cloudera.org:8080/19748 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: native-toolchain Gerrit-Branch: master Gerrit-MessageType: merged Gerrit-Change-Id: I14137848ebbe82f42df6a97fd24f5cdba4f65d21 Gerrit-Change-Number: 19748 Gerrit-PatchSet: 3 Gerrit-Owner: Joe McDonnell <[email protected]> Gerrit-Reviewer: Joe McDonnell <[email protected]> Gerrit-Reviewer: Michael Smith <[email protected]> Gerrit-Reviewer: Wenzhe Zhou <[email protected]>
