OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Trustix Security Advisory - ping gnupg ypbind
From: TSL Team (tslTRUSTIX.COM)
Date: Mon Oct 30 2000 - 08:43:28 CST


Hi

Trustix recently released several updated packages:

iputils: Fixes serveral problems in ping including a buffer overflow.
gnupg: Fixed a serious bug which could lead to false signature
         verification results when more than one signature is fed to gpg.
ypbind: Local root exploit.

Users of TSL 1.0x and 1.1 that worry about local security should
definitely upgrade.

MD5sums:
9e2bbf3ddd728da4cbab3ece1ba390b7 gnupg-1.0.4-2tr.i586.rpm
43d503eb306f202c794ca064980574ad iputils-20001011-1tr.i586.rpm
8625657f6edea52b88e0cff1dfff4bb4 ypbind-3.3-29tr.i586.rpm

Get them at:
ftp://ftp.trustix.com/pub/Trustix/updates/1.1/RPMS/ or
http://www.trustix.net/download/Trustix/updates/1.1/RPMS/

Regards,
TSL Security Advisor