← Back to index | Original Bugzilla link

Bug 23288 – zlib: Fix potential buffer overflow

Status: RESOLVED
Resolution: FIXED
Severity: normal
Priority: P1
Component: phobos
Product: D
Version: D2
Platform: All
OS: All
Creation time: 2022-08-08T19:10:21Z
Last change time: 2022-08-10T12:22:08Z
Assigned to: No Owner
Creator: Brian Callahan

Comments

Comment #0 by bcallah — 2022-08-08T19:10:21Z

Hello -- There is a potential buffer overflow in Phobos's built-in zlib. The fix is here: https://github.com/madler/zlib/commit/eff308af425b67093bab25f80f1ae950166bece1 However, that fix broke curl, which prompted a further fix: https://github.com/madler/zlib/commit/1eb7682f845ac9e9bf9ae35bbfb3bad5dacbd91d I have a combined diff prepared.

Comment #1 by dlang-bot — 2022-08-10T12:22:08Z

dlang/phobos pull request #8528 "Fix Issue 23288 - zlib: Fix potential buffer overflow" was merged into master: - 720f2183eb96e9477f713f08ac67b1c26b12f942 by Brian Callahan: Fix Issue 23288 - zlib: Fix potential buffer overflow https://github.com/dlang/phobos/pull/8528