LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-28-2003, 07:31 AM   #1
php
Member
 
Registered: Jun 2001
Location: USA
Distribution: Slackware
Posts: 825

Rep: Reputation: 30
Slackware Security Advisories


http://www.slackware.com/security/li...ecurity&y=2003


Yesterday, two new patches were placed by the Slackware Security team. One outlines a known vulnerability in Fetchmail:

Fetchmail is a mail-retrieval and forwarding utility.

Upgraded fetchmail packages are available for Slackware 8.1, 9.0,
9.1, and -current. These fix a vulnerability where a specially
crafted email could crash fetchmail, preventing the user from
downloading or forwarding their email.

More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename...=CAN-2003-0792

Here are the details from the Slackware 9.1 ChangeLog:
+--------------------------+
Wed Oct 22 12:10:11 PDT 2003
patches/packages/fetchmail-6.2.5-i486-1.tgz: Upgraded to fetchmail-6.2.5.
This fixes a security issue where a specially crafted message could cause
fetchmail to crash, preventing the user from retrieving email.
(* Security fix *)
+--------------------------+


---------------------------------------------
The Second is for a one in gdm: |
---------------------------------------------


GDM is the GNOME Display Manager, and is commonly used to provide
a graphical login for local users.

Upgraded gdm packages are available for Slackware 9.0, 9.1,
and -current. These fix two vulnerabilities which could allow a local
user to crash or freeze gdm, preventing access to the machine until a
reboot. Sites using gdm should upgrade, especially sites such as
computer labs that use gdm to provide public or semi-public access.

More details about these issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename...=CAN-2003-0793
http://cve.mitre.org/cgi-bin/cvename...=CAN-2003-0794


Here are the details from the Slackware 9.1 ChangeLog:
+--------------------------+
Wed Oct 22 12:10:11 PDT 2003
patches/packages/gdm-2.4.4.5-i486-1.tgz: Upgraded to gdm-2.4.4.5. This
fixes a bug which can allow a local user to crash gdm, preventing
access until the machine is rebooted.
(* Security fix *)
+--------------------------+
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Problem getting into Mandriva Security Advisories rjw1678 Mandriva 1 05-13-2005 03:36 PM
Slackware Linux Security Advisories aikempshall Slackware 3 03-14-2005 02:17 PM
How do i approach those security advisories vavoem Linux - Security 1 09-11-2004 07:24 PM
How do Distro's handle security advisories? aikempshall Linux - Distributions 7 04-04-2004 03:54 PM
Slackware Security Advisories itsjustme Slackware 1 08-18-2003 11:59 PM


All times are GMT -5. The time now is 04:03 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration