6904399 2001-08-15 00:19 +0200 /79 rader/ Martin Schulze <joey@finlandia.infodrom.north.de> Sänt av: joel@lysator.liu.se Importerad: 2001-08-15 01:56 av Brevbäraren Extern mottagare: Debian Security Announcements <debian-security-announce@lists.debian.org> Externa svar till: security@debian.org Mottagare: Bugtraq (import) <18768> Ärende: [SECURITY] [DSA-075-2] [sparc-only] telnetd-ssl AYT buffer overflow ------------------------------------------------------------ From: Martin Schulze <joey@finlandia.infodrom.north.de> To: Debian Security Announcements <debian-security-announce@lists.debian.org> Message-ID: <20010815001901.S27458@finlandia.infodrom.north.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------------------------------- Debian Security Advisory DSA 075-2 security@debian.org http://www.debian.org/security/ Martin Schulze August 14, 2001 - ---------------------------------------------------------------------------- Package : netkit-telnet-ssl Vulnerability : output buffer overflow Problem-Type : remote exploit Debian-specific: no This is a followup to the problem described in DSA 075-1. Please read the original advisory to find out more about the security problem. This advisory and upload only fixes a problem with binary packages for sparc that were mistakenly linked to the wrong library. We recommend that you upgrade your netkit-telnet-ssl packages immediately if you are running a sparc system. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato - ------------------------------------ Sun Sparc architecture: http://security.debian.org/dists/stable/updates/main/binary-sparc/ssltelnet_0.16.3-1.2_sparc.deb MD5 checksum: 904e2032b596c5c3f322c7bc1367a13b http://security.debian.org/dists/stable/updates/main/binary-sparc/telnet-ssl_0.16.3-1.2_sparc.deb MD5 checksum: 0195eb363ae3b4b8cf31b3377b39d6f7 http://security.debian.org/dists/stable/updates/main/binary-sparc/telnetd-ssl_0.16.3-1.2_sparc.deb MD5 checksum: 77675569c391c62aaf91d0fecd3f4b08 These files will be moved into the stable distribution on its next revision. - ---------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7eaJ7W5ql+IAeqTIRArNSAKCQynpmmAeaypCWcVHxbIHFs818ywCeO+u6 9HkO+x+FnKETwpT+YYAdvAY= =6tb3 -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org (6904399) /Martin Schulze <joey@finlandia.infodrom.north.de>/(Ombruten)