CVE-2004-0797

Description

The error handling in the (1) inflate and (2) inflateBack functions in ZLib compression library 1.2.x allows local users to cause a denial of service (application crash).

How to fix CVE-2004-0797

To remediate CVE-2004-0797, upgrade the affected package to a fixed version below.

• Debian/zlib—upgrade to 1:1.2.1.1-6 or later

Is CVE-2004-0797 being exploited?

Low — EPSS is 2.2%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 1:1.2.1.1-6

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2004-0797