[Previo por Fecha] [Siguiente por Fecha] [Previo por Hilo] [Siguiente por Hilo]
[Hilos de Discusión] [Fecha] [Tema] [Autor]------- Start of forwarded message ------- Return-Path: <redhat-announce-list-request en redhat com> Resent-Cc: recipient list not shown: ; MBOX-Line: From redhat-announce-list-request en redhat com Wed Jan 28 16:13:00 1998 Date: Wed, 28 Jan 1998 16:11:33 -0500 (EST) From: Erik Troan <ewt en redhat com> Reply-To: redhat-list en redhat com To: redhat-announce-list en redhat com Subject: SECURITY: new gzip now available Approved: ewt en redhat com MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Resent-From: redhat-announce-list en redhat com X-Mailing-List: <redhat-announce-list en redhat com> archive/latest/735 X-Loop: redhat-announce-list en redhat com Precedence: list Resent-Sender: redhat-announce-list-request en redhat com X-URL: http://www.redhat.com gzexe, part of the gzip package, uses files in /tmp which very predictable names. This may allow users to destroy the contents of files on your system. As most systtems do not use gzexe, we doubt this will be a problem. However, Red Hat does recommend upgrading to new versions of the gzip package to avoid any future problems. Thanks to Michal Zalewski for finding this problem. Red Hat 5.0 - ------------- i386: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/gzip-1.2.4-10.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/alpha/gzip-1.2.4-10.alpha.rpm Red Hat 4.2 - ------------- i386: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/gzip-1.2.4-7.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/alpha/gzip-1.2.4-7.alpha.rpm SPARC: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/gzip-1.2.4-7.sparc.rpm - -- To unsubscribe: mail -s unsubscribe redhat-announce-list-request en redhat com < /dev/null ------- End of forwarded message -------