CVE 2016-9840
inftrees.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.
Related bugs and status
CVE-2016-9840 (Candidate) is related to these bugs:
Bug #1623418: gcc-as-needed.diff patch broke mpx support in GCC
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc-5 (Ubuntu) | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | binutils (Ubuntu) | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | binutils (Ubuntu Xenial) | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc-5 (Ubuntu Xenial) | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc-6 (Ubuntu) | Medium | Fix Released | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | binutils (Ubuntu Yakkety) | Undecided | Won't Fix | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc-5 (Ubuntu Yakkety) | Undecided | Won't Fix | ||
1623418 | gcc-as-needed.diff patch broke mpx support in GCC | gcc-6 (Ubuntu Yakkety) | Undecided | Won't Fix |
Bug #1729414: zlib package in Ubuntu 14.04 LTS (Trusty) has not received patches for critical/high CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1729414 | zlib package in Ubuntu 14.04 LTS (Trusty) has not received patches for critical/high CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843 | zlib (Ubuntu) | Low | Confirmed |
See the
CVE page on Mitre.org
for more details.