zlib vulnerability could affect VNC

Michael Ossmann michael.ossmann "at" alttech.com
Tue, 12 Mar 2002 17:17:13 +0000


On Tue, Mar 12, 2002 at 05:04:49PM +0000, Tim Waugh wrote:
> 
> Right.  But of course, SSH can also use zlib so make sure you upgrade
> that. :-)

Heh.  Good point, although SSH fortunately encrypts after compression,
so the risk isn't huge.  But I suppose there is still a risk from
authenticated users.

-- 
Mike Ossmann, Tarantella/UNIX Engineer/Instructor
Alternative Technology, Inc.  http://www.alttech.com/
---------------------------------------------------------------------
To unsubscribe, mail majordomo "at" uk.research.att.com with the line:
'unsubscribe vnc-list' in the message BODY
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------