Re: [SECURITY] New versions of netstd fixes buffer overflows

wakkermaCS.LEIDENUNIV.NL

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: D. J. Bernstein: "Wiping out setuid programs"
• Previous message: David LeBlanc: "Re: SUN almost has a clue! (automountd)"
• In reply to: Chip Salzenberg: "Re: [SECURITY] New versions of netstd fixes buffer overflows"

--6Nae48J/T25AfBN4
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable

Previously Chip Salzenberg wrote:
> What about the version in potato, 3.07-7?  Is it vulnerable, too?

Debian slink (soon to be 2.1) is fixed in version 3.07-7slink.1=20

Debian potato (current unstable) has no fixed package yet; the
maintainer will incorporate the fix in the next upload for unstable,
but wants to finish a couple other modifications first. In the meantime
you can safely use the package from slink instead.

Wichert.

--=20
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D
This combination of bytes forms a message written to you by Wichert Akkerma=
n.
E-Mail: wakkermacs.leidenuniv.nl
WWW: http://www.wi.leidenuniv.nl/~wichert/

--6Nae48J/T25AfBN4
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia

iQB1AwUBNpK47ajZR/ntlUftAQHhmgL/Uxxya8/HAeGQHKp3xYiLa+GJy/C1A65L
iXRbsDeM8vRC0L8YigvOpfvJ5CK8fjaw9AXjrL5rmrDiF0UMBw9K7TfSdZrtnATB
JxKk9ee0MIRa+5WUib7fvc3hUQ93v/zk
=bfTq
-----END PGP SIGNATURE-----

--6Nae48J/T25AfBN4--

• Next message: D. J. Bernstein: "Wiping out setuid programs"
• Previous message: David LeBlanc: "Re: SUN almost has a clue! (automountd)"
• In reply to: Chip Salzenberg: "Re: [SECURITY] New versions of netstd fixes buffer overflows"