Low Nessus Plugin ID 14658
SynopsisThe remote host is missing a vendor-supplied security patch
DescriptionThe remote host is missing the patch for the advisory SUSE-SA:2004:029 (zlib).
zlib is a widely used data compression library. Programs linked against it include most desktop applications as well as servers such as Apache and OpenSSH.
The 'inflate' function of zlib handles certain input data incorrectly which could lead to a denial of service condition for programs using it with untrusted data. Whether the vulnerability can be exploided locally or remotely depends on the application using it.
zlib versions older than version 1.2 are not affected.