[Previo por Fecha] [Siguiente por Fecha] [Previo por Hilo] [Siguiente por Hilo]
[Hilos de Discusión] [Fecha] [Tema] [Autor]------- Start of forwarded message ------- Return-Path: <redhat-announce-list-request en redhat com> Resent-Cc: recipient list not shown: ; MBOX-Line: From redhat-announce-list-request en redhat com Mon Mar 9 18:20:06 1998 Delivered-To: djb en redhat com To: redhat-announce-list en redhat com From: "Michael K. Johnson" <johnsonm en redhat com> Subject: SECURITY: New initscripts, findutils, and textutils packages Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Mon, 09 Mar 1998 18:08:45 -0500 Sender: johnsonm en redhat com Approved: djb en redhat com Resent-From: redhat-announce-list en redhat com Reply-To: redhat-list en redhat com X-Mailing-List: <redhat-announce-list en redhat com> archive/latest/14 X-Loop: redhat-announce-list en redhat com Precedence: list Resent-Sender: redhat-announce-list-request en redhat com X-URL: http://www.redhat.com The initscripts, findutils, and textutils packages all have various temporary file creation race conditions. These bugs allow local users create at least denial of service conditions and may allow local users to gain root access to affected systems. All systems with local users that do not have the root password should have these fixes applied. The fixes are available for Red Hat Linux 5.0 and Red Hat Linux 4.2. As always, these packages have been signed with the Red Hat PGP key. Thanks to several members of the BUGTRAQ mailing list for finding most of these bugs, and thanks to Paul Eggert for finding another related bug and simplifying a bug fix. Red Hat 5.0 =========== i386: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/findutils-4.1-21.i386.rpm rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/textutils-1.22-5.i386.rpm rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/initscripts-3.31-1.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/5.0/alpha/findutils-4.1-21.alpha.rpm rpm -Uvh ftp://ftp.redhat.com/updates/5.0/alpha/textutils-1.22-5.alpha.rpm rpm -Uvh ftp://ftp.redhat.com/updates/5.0/alpha/initscripts-3.31-1.alpha.rpm Red Hat 4.2 =========== i386: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/findutils-4.1-11.1.i386.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/textutils-1.22-1.1.i386.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/initscripts-2.94-1.i386.rpm alpha: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/alpha/findutils-4.1-11.1.alpha.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/alpha/textutils-1.22-1.1.alpha.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/alpha/initscripts-2.94-1.alpha.rpm SPARC: rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/findutils-4.1-11.1.sparc.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/textutils-1.22-1.1.sparc.rpm rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/initscripts-2.94-1.sparc.rpm - -- To unsubscribe: mail -s unsubscribe redhat-announce-list-request en redhat com < /dev/null ------- End of forwarded message -------