USN-5570-2

Details

USN-5570-1 fixed a vulnerability in zlib. This update provides the corresponding update for Ubuntu 22.04 LTS and Ubuntu 20.04 LTS.

Original advisory details:

Evgeny Legerov discovered that zlib incorrectly handled memory when performing certain inflate operations. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code.

Affected Packages

zlib

Ubuntu 20.04 LTS

Fixed in:

1:1.2.11.dfsg-2ubuntu1.5

zlib

Ubuntu 22.04 LTS

Fixed in:

1:1.2.11.dfsg-2ubuntu9.2

References

REPORThttps://ubuntu.com/security/CVE-2022-37434 ADVISORYhttps://ubuntu.com/security/notices/USN-5570-2

USN-5570-2

Details

Affected Packages

References

Upstream

Ecosystems

Timeline