walkero
/
physfs
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Patched zlib security hole discussed here: 

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2096
This commit is contained in:
Ryan C. Gordon 2005-07-13 15:10:00 +00:00
parent ec86fac0bb
commit c794701885
2 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGELOG
View File

@ -2,7 +2,8 @@
* CHANGELOG. * CHANGELOG.
*/ */
07132005 - Updated zlib to 1.2.2. 07132005 - Updated zlib to 1.2.2, and patched it for this security hole:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2096
06122005 - Added support for mingw to Unix build process (thanks, Matze!). 06122005 - Added support for mingw to Unix build process (thanks, Matze!).
03162005 - Added missing translation and Portuguese support (thanks, Danny!). 03162005 - Added missing translation and Portuguese support (thanks, Danny!).
MPW support and several MacOS Classic fixes (thanks, Chris!). MPW support and several MacOS Classic fixes (thanks, Chris!).

2
zlib122/inftrees.c
View File

@ -134,7 +134,7 @@ unsigned short FAR *work;
left -= count[len]; left -= count[len];
if (left < 0) return -1; /* over-subscribed */ if (left < 0) return -1; /* over-subscribed */
} }
if (left > 0 && (type == CODES || (codes - count[0] != 1))) if (left > 0 && (type == CODES || max != 1))
return -1; /* incomplete set */ return -1; /* incomplete set */
/* generate offsets into symbol table for each length for sorting */ /* generate offsets into symbol table for each length for sorting */