From d4931dc8913cfe193ceca9c4f3819f606fed76d5 Mon Sep 17 00:00:00 2001 From: hilldani Date: Mon, 28 Nov 2022 12:07:03 -0800 Subject: [PATCH] resolve CVE-2022-37434 (#1136) current zlib 1.2.12 is vulnerable to CVE-2022-37434 as documented on zlib website with details at https://nvd.nist.gov/vuln/detail/CVE-2022-37434. This resolves vulnerability by going to zlib 1.2.13 --- third_party/zlib | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/third_party/zlib b/third_party/zlib index 9979c19f..d866d41e 160000 --- a/third_party/zlib +++ b/third_party/zlib @@ -1 +1 @@ -Subproject commit 9979c19f11314156490b53da91df08c934a3c0d4 +Subproject commit d866d41e168ec04545bb17031fa911007a0581f4