[Previo por Fecha] [Siguiente por Fecha] [Previo por Hilo] [Siguiente por Hilo]
[Hilos de Discusión] [Fecha] [Tema] [Autor]------- Start of forwarded message ------- Return-Path: <redhat-announce-list-request en redhat com> Resent-Cc: recipient list not shown: ; MBOX-Line: From redhat-announce-list-request en redhat com Tue Jan 6 21:14:42 1998 Date: Tue, 6 Jan 1998 21:14:31 -0500 (EST) From: Erik Troan <ewt en redhat com> Reply-To: redhat-list en redhat com To: redhat-announce-list en redhat com Subject: SECURITY: apache 1.2.5 now available Approved: ewt en redhat com MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Resent-From: redhat-announce-list en redhat com X-Mailing-List: <redhat-announce-list en redhat com> archive/latest/697 X-Loop: redhat-announce-list en redhat com Precedence: list Resent-Sender: redhat-announce-list-request en redhat com X-URL: http://www.redhat.com Some potentially serious security flaws have been found in apache. While there problems do not allow *any* compromises by remote users, they do allow local users to gain access to the UID which apache is running under. Under all versions of Red Hat Linux, this is the user 'nobody', which greatly minimizes the impact of these problems. Apache 1.2.5 fixes these security problems, and is now available for Red Hat Linux 4.2 and 5.0. These packages have been signed with the Red Hat PGP key. Red Hat 5.0 - ------------- i386: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/apache-1.2.5-1.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/alpha/apache-1.2.5-1.alpha.rpm Red Hat 4.2 - ------------- i386: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/apache-1.2.5-0.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/alpha/apache-1.2.5-0.alpha.rpm SPARC: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/apache-1.2.5-0.sparc.rpm - -- To unsubscribe: mail -s unsubscribe redhat-announce-list-request en redhat com < /dev/null ------- End of forwarded message -------