Closed Bug 1875965 Opened 1 year ago Closed 1 year ago

Update zlib in NSS to 1.3.1

Categories

(NSS :: Libraries, task)

Product:
NSS
Component:
Libraries
Type:
task

Tracking

(firefox124 fixed)

Status:
RESOLVED FIXED
Tracking Flags:
Tracking Status
firefox124 --- fixed

People

(Reporter: RyanVM, Assigned: RyanVM)

References

Details

Attachments

(1 file)

Bug 1875965 - Update zlib to 1.3.1.
48 bytes, text/x-phabricator-request
Details | Review

Version 1.3.1 has these key changes:

  • Reject overflows of zip header fields in minizip
  • Fix bug in inflateSync() for data held in bit buffer
  • Add LIT_MEM define to use more memory for a small deflate speedup
  • Fix decision on the emission of Zip64 end records in minizip
  • Add bounds checking to ERR_MSG() macro, used by zError()
  • Neutralize zip file traversal attacks in miniunz
  • Fix a bug in ZLIB_DEBUG compiles in check_match()
See Also: → 1875968

https://hg.mozilla.org/projects/nss/rev/8af08b36c4331f86810e435f7af2637d5e8f5fb2

Status: NEW → RESOLVED
Closed: 1 year ago
status-firefox124: --- → fixed
Resolution: --- → FIXED
Target Milestone: --- → 3.98
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: