[ARROW-16078] [C++] Upgrade bundled zlib to 1.2.12 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 7.0.2, 8.0.0
Component/s: C++
Labels:
- pull-request-available

External issue URL:
https://github.com/apache/arrow/issues/31491

Description

From latets NVD report https://nvd.nist.gov/vuln/detail/CVE-2018-25032
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

Attachments

Issue Links

links to

GitHub Pull Request #12760

Activity

People

Assignee:: Yibo Cai

Reporter:: Yibo Cai

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 31/Mar/22 03:37

Updated:: 11/Jan/23 11:41

Resolved:: 31/Mar/22 07:53

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

2h 10m