Uploaded image for project: 'C Driver'
  1. C Driver
  2. CDRIVER-4377

Bundled zlib 1.2.11 is outdated and vulnerable

    XMLWordPrintableJSON

Details

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Unknown Unknown
    • 1.21.2
    • 1.21.1
    • None
    • None

    Description

      Summary

      The bundled version zlib 1.2.11 is outdated and is affected by a known vulnerability.

      The changelog of the recently released zlib 1.2.12 recommends to update.
      Quote from https://zlib.net/

      Due to the bug fixes, any installations of 1.2.11 should be replaced with 1.2.12.

      Check this CVE for more info
      https://nvd.nist.gov/vuln/detail/CVE-2018-25032

      Attachments

        Activity

          People

            colby.pike@mongodb.com Colby Pike
            spam.dump.one@gmail.com Agostino Sturaro
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: