Red Hat: CVE-2018-25032: A flaw found in zlib when compressing (not decompressing) certain inputs (Multiple Advisories)
5
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
03/25/2022
04/29/2022
04/29/2022
12/15/2023
Description
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
Solution(s)
- redhat-upgrade-mingw32-zlib
- redhat-upgrade-mingw32-zlib-debuginfo
- redhat-upgrade-mingw32-zlib-static
- redhat-upgrade-mingw64-zlib
- redhat-upgrade-mingw64-zlib-debuginfo
- redhat-upgrade-mingw64-zlib-static
- redhat-upgrade-minizip
- redhat-upgrade-minizip-compat-debuginfo
- redhat-upgrade-minizip-devel
- redhat-upgrade-rsync
- redhat-upgrade-rsync-daemon
- redhat-upgrade-rsync-debuginfo
- redhat-upgrade-rsync-debugsource
- redhat-upgrade-zlib
- redhat-upgrade-zlib-debuginfo
- redhat-upgrade-zlib-debugsource
- redhat-upgrade-zlib-devel
- redhat-upgrade-zlib-static
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center