An update for zlib is now available for HCE 1.1

HCE1-SA-2024-0042 An update for zlib is now available for HCE 1.1 Critical HCE 1.1 Security Fix(es): MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. (CVE-2023-45853) zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). (CVE-2022-37434) HCE 1.1 zlib-1.2.7-22.hce1c.x86_64.rpm zlib-devel-1.2.7-22.hce1c.x86_64.rpm