In this weeks Security Alerts, we look at a buffer overflow in OpenServer's mana; symbolic link race conditions in Solaris' patchadd and the Netscape 6.01a installation scripts; and problems in ProFTPd, Conectiva Linux's tcltk, NetBSD's dump, mailman, mod_auth_mysql, Directory Manager, Taylor UUCP, screen, PHProjekt, and Red Hat's lpd.
http://linux.oreillynet.com/pub/a/li...ecurities.html