Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-4377

Bundled zlib 1.2.11 is outdated and vulnerable

XMLWordPrintableJSON

    • Type: Icon: Bug Bug
    • Resolution: Fixed
    • Priority: Icon: Unknown Unknown
    • 1.21.2
    • Affects Version/s: 1.21.1
    • Component/s: None
    • Labels:
      None

      Summary

      The bundled version zlib 1.2.11 is outdated and is affected by a known vulnerability.

      The changelog of the recently released zlib 1.2.12 recommends to update.
      Quote from https://zlib.net/

      Due to the bug fixes, any installations of 1.2.11 should be replaced with 1.2.12.

      Check this CVE for more info
      https://nvd.nist.gov/vuln/detail/CVE-2018-25032

            Assignee:
            colby.pike@mongodb.com Colby Pike
            Reporter:
            spam.dump.one@gmail.com Agostino Sturaro
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: