NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Full-Disclosure> 2004-10

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

application/octet-stream attachment: price.exe

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] [ GLSA 200410-09 ] LessTif: Integer and stack overflows in libXpm

From: Luke Macken (lewkgentoo.org)
Date: Sat Oct 09 2004 - 17:37:17 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200410-09
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

  Severity: Normal
     Title: LessTif: Integer and stack overflows in libXpm
      Date: October 09, 2004
      Bugs: #66647
        ID: 200410-09

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
========

Multiple vulnerabilities have been discovered in libXpm, which is
included in LessTif, that can potentially lead to remote code
execution.

Background
==========

LessTif is a clone of OSF/Motif, which is the standard user interface
toolkit available on Unix and Linux.

Affected packages
=================

    -------------------------------------------------------------------
     Package / Vulnerable / Unaffected
    -------------------------------------------------------------------
  1 x11-libs/lesstif < 0.93.97 >= 0.93.97

Description
===========

Chris Evans has discovered various integer and stack overflows in
libXpm, which is shipped as a part of the X Window System. LessTif, an
application that includes this library, is susceptible to the same
issues.

Impact
======

A carefully-crafted XPM file could crash applications that are linked
against libXpm, such as LessTif, potentially allowing the execution of
arbitrary code with the privileges of the user running the application.

Workaround
==========

There is no known workaround at this time.

Resolution
==========

All LessTif users should upgrade to the latest version:

# emerge sync

# emerge -pv ">=x11-libs/lesstif-0.93.97"
# emerge ">=x11-libs/lesstif-0.93.97"

References
==========

  [ 1 ] CAN-2004-0687
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0687
  [ 2 ] CAN-2004-0688
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0688
  [ 3 ] GLSA-200409-34
        http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml
  [ 4 ] LessTif Release Notes
        http://www.lesstif.org/ReleaseNotes.html

Availability
============

This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200410-09.xml

Concerns?
=========

Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
securitygentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org.

License
=======

The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/1.0

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQBBaGgdRsm3eDkOu7kRAuzyAJ9DwjDND7p+SIzgK6O6ATkwepzZTQCglnzw
CZl7C+POxlv5vKsBhqJ8BLo=
=unVw
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] List Charter

From: John Cartwright (johncgrok.org.uk)
Date: Sat Oct 09 2004 - 21:10:34 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] Mailing List Charter
John Cartwright <johncgrok.org.uk> and Len Rose <lennetsys.com>

Introduction & Purpose
----------------------

This document serves as a charter for the [Full-Disclosure] mailing
list hosted at lists.netsys.com.

The list was created on 9th July 2002 by Len Rose, and is primarily
concerned with security issues and their discussion. The list is
administered by Len Rose and John Cartwright.

Subscription Information
------------------------

Subscription/unsubscription may be performed via the HTTP interface
located at http://lists.netsys.com/mailman/listinfo/full-disclosure.

Alternatively, commands may be emailed to
full-disclosure-requestlists.netsys.com, send the word 'help' in
either the message subject or body for details.

Moderation & Management
-----------------------

The [Full-Disclosure] list is unmoderated. Typically posting will be
restricted to members only, however the administrators may choose to
accept submissions from non-members based on individual merit and
relevance.

It is expected that the list will be largely self-policing, however in
special circumstances (eg spamming, misappropriation) then offending
members may be removed from the list by the management.

An archive of postings is available at
http://lists.netsys.com/pipermail/full-disclosure/

Acceptable Content
------------------

Any information pertaining to vulnerabilities is acceptable, for
instance announcement and discussion thereof, exploit techniques and
code, related tools and papers, and other useful information.

Gratuitous advertisement, product placement, or self-promotion is
forbidden. Disagreements, flames, arguments, and off-topic discussion
should be taken off-list wherever possible.

Humour is acceptable in moderation, providing it is inoffensive.
Politics should be avoided at all costs.

Members are reminded that due to the open nature of the list, they
should use discretion in executing any tools or code distributed via
this list.

Posting Guidelines
------------------

The primary language of this list is English. Members are expected to
maintain a reasonable standard of netiquette when posting to the list.

Quoting should not exceed that which is necessary to convey context,
this is especially relevant to members subscribed to the digested
version of the list.

The use of HTML is discouraged, but not forbidden. Signatures will
preferably be short and to the point, and those containing
'disclaimers' should be avoided where possible.

Attachments may be included if relevant or necessary (e.g. PGP or
S/MIME signatures, proof-of-concept code, etc) but must not be active
(in the case of a worm, for example) or malicious to the recipient.

Vacation messages should be carefully configured to avoid replying to
list postings. Offenders will be excluded from the mailing list until
the problem is corrected.

Members may post to the list by emailing
full-disclosurelists.netsys.com. Do not send subscription/
unsubscription mails to this address, use the -request address
mentioned above.

Charter Additions/Changes
-------------------------

The list charter will be published at
http://lists.netsys.com/full-disclosure-charter.html

In addition, the charter will be posted monthly to the list by the
management.

Alterations will be made after consultation with list members and a
concensus has been reached.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] New auditor security collection 081004-01 released

From: Max Moser (max.mosergmail.com)
Date: Sat Oct 09 2004 - 21:30:05 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi there,

again it is time to announce a major release of the Auditor Security Collection,
the most advanced, penetration testing focused, linux live system.
Grab your copy at my website http://www.remote-exploit.org. With this
new release major feature enhancements where performed. See our
Changes.txt file for detail. Here are some important changes i have
done:

Updated the boot and background graphics, updated the boot
procedures. Added boot parameters for skipping keyboard selection
dialog. Disabled the sound card detection on default. The size of the
terminals of applications have been modified. Added the "Digital
forensics" section. Added a "Honeypot" section. Massive changes in the
wireless menu, new wireless tools for wep cracking and wpa
bruteforcing. Added many new tools and updates. Nessus plugins are now
updateable using a memory stick. There are so many changes, see the
changelog for details at
http://www.remote-exploit.org/downloads/Changes.txt

Short describtion about the Auditor Security Collection:
The Swiss Army Knife for security assessments. A Linux-based, unified
platform focused on penetration tests. The robust power of Open-Source
tools without the hassles of configuring hardware or installing any
additional software. This powerful toolset is started directly from
the CD-ROM without any local installation. Independent of system
hardware, Auditor security collection provides the user with over 300
powerful analysis tools for troubleshooting and securing networks and
systems. Delivering powerful, functional tools in a user-friendly
environment while eliminating complex configuration was our goal when
enhancing knoppix and designing Auditor security collection.

Still, no other commercial or freely available analysis platform
offers an equivalent level of usability with automatic configuration
and focus on penetration testing.

Have phun.

Max

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] [SECURITY] [DSA 458-3] New python2.2 packages really fix buffer overflow and restore functionality

debian-security-announcelists.debian.org
Date: Sun Oct 10 2004 - 02:38:28 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 458-3 securitydebian.org
http://www.debian.org/security/ Martin Schulze
October 10th, 2004 http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package : python2.2
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE Ids : CAN-2004-0150
BugTraq ID : 9836
Debian Bug : 248946 269548

This security advisory corrects DSA 458-2 which caused a problem in
the gethostbyaddr routine.

The original advisory said:

   Sebastian Schmidt discovered a buffer overflow bug in Python's
   getaddrinfo function, which could allow an IPv6 address, supplied by a
   remote attacker via DNS, to overwrite memory on the stack.

   This bug only exists in python 2.2 and 2.2.1, and only when IPv6
   support is disabled. The python2.2 package in Debian woody meets
   these conditions (the 'python' package does not).

For the stable distribution (woody), this bug has been fixed in
version 2.2.1-4.6.

The testing and unstable distribution (sid) are not affected by this
problem.

We recommend that you update your python2.2 packages.

Upgrade Instructions
- --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody
- --------------------------------

Source archives:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6.dsc
      Size/MD5 checksum: 1150 65937052d54f0c7b0cc3af1edddc1925
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6.diff.gz
      Size/MD5 checksum: 92911 a4e0ecb2438f2fd253e8314cca65327b
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1.orig.tar.gz
      Size/MD5 checksum: 6536167 88aa07574673ccfaf35904253c78fc7d

Architecture independent components:

    http://security.debian.org/pool/updates/main/p/python2.2/idle-python2.2_2.2.1-4.6_all.deb
      Size/MD5 checksum: 113072 5f7e9187d077e1692088e6945d5c7ae7
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-doc_2.2.1-4.6_all.deb
      Size/MD5 checksum: 1313122 2af0221c188e29ff449b438949d73614
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-elisp_2.2.1-4.6_all.deb
      Size/MD5 checksum: 50170 ef6cc05e32cfe7fc4ada960c37ecd6c7
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-examples_2.2.1-4.6_all.deb
      Size/MD5 checksum: 477836 445ea46dcdac693d5a46b6168950e337

Alpha architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 2138618 71014802aca636504b0489184fd99481
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 863846 c02b730460cfcd58e7feaf45d955850c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 18172 8a7cb26f7d8d2e9c551010037180b4b5
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 21812 7ea83935f55be726e4a7d3bfb7e5856e
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 86310 e65ff0d1a43d76438003cefa82f7102f
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_alpha.deb
      Size/MD5 checksum: 52408 9cc59f32c82565169f9a2686fd2d273e

ARM architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 1952012 104fba9e75b4d8e696f612627492ba5c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 774610 57a868d154434c5cf1488d1fb841fb29
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 16984 6e9a3fd519fae3420b38c5481ac11a61
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 20234 9f15f04284c29f052d4266c382854d90
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 84596 da71c2d6ac6e66b4f497b0fb15767214
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_arm.deb
      Size/MD5 checksum: 49838 8de1ee7609f5b5936b073ff4d8f5db9b

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 1888932 ad8bbd2aafa3038da2c1aecc43b22ab5
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 684160 cf84251b2a3efe623dcab22015788f99
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 16806 c53ae6b16722d589aa5aa276baa566ea
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 20196 c67a9714c3796edae6013c0fddc7fa20
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 83434 7cb475335d8d49d34b727548947ab98b
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_i386.deb
      Size/MD5 checksum: 48840 dc78a697c07f4d56d50adffed1452098

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 2489870 9143be378efb6984da09a01d71144a3b
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 936662 e44335efece83c86a250ab75791df698
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 19600 426f4c3cb688edd0dfb55b504186d982
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 25532 ed0686f89dc05de69c3ab1fbe55cd9ab
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 90470 7ff395f0aa2734f65a0b6a789bca58d4
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_ia64.deb
      Size/MD5 checksum: 56500 8d2a98c254747e64a99c87bbbbaedc3b

HP Precision architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 2356496 9c2e106c35a485817330372bb509644d
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 924892 e80da41da2bb55974989a86336e5583c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 18334 21f548e9db72ef0711b204d71f768a39
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 24126 3f8ec452923ac1547f722c72e765bdda
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 88150 22621499539fb13cbc5252fde509689f
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_hppa.deb
      Size/MD5 checksum: 55044 41e75afc65e1222939327f6f6cd511d3

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 1894508 1b9969831f244341db4107dd13efae71
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 661006 d55e77df7256f2925110b3cd55463cd3
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 16914 5575632b2e8b9da89be0dbe841a5bac4
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 19862 93a4bf6758fe9dce5f26a39cb5af1cbf
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 84314 47fa5ee8d6301a363fe8b5138bc7a0d9
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_m68k.deb
      Size/MD5 checksum: 49652 7ac82b67f7714e3c739c428d4cc58b4a

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 1952692 a2aa6b12ee9a854531c0993559f994af
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 790322 df223152f26bd5509e2785f670e4e3b9
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 16996 9a3427165c71f0c47fc9836dfbd1c90c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 20264 e757f24a9dc5f17f00f47c848416bbbe
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 83424 81dcc21741159e388ba7105e241bdae8
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_mips.deb
      Size/MD5 checksum: 49010 02d6217b66020e01dcacb1c0b452e222

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 1947624 0f0f0048c110806d090971d5c49d6324
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 790292 b2b78a3e202fd1f629569cd8b18ad78f
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 17014 2a8d7f63f912931241b359905a1770d7
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 20288 be0b06c3b8c31d21aade281a26ace17a
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 83390 dc6cab7251d7c9379577fedf27a162e8
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_mipsel.deb
      Size/MD5 checksum: 48950 eaff5cbd52740cdabd4bbde65e70079b

PowerPC architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 1998612 2aa395086b89e212b13e08cde48fcb00
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 775480 f12b92c5c95fb9a2690756cff7f67f94
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 17124 5bdad3ccc38b8424045462c8f8fbcf1c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 20830 7ea5f274f679cc3f165d9f2b290a12e6
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 85036 33536b14f05ae3ea41aaf45b99939608
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_powerpc.deb
      Size/MD5 checksum: 50364 09868f875519c40ea919b0326732b40e

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 1940578 8aa88725b01ec65f9851d8b02214268c
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 692730 8da1a5ada48bc2e358d65ff703a51ded
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 17364 6dc8793cdc3f4c9a1e16773360fdd4a0
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 20606 bbd4112275acebf6df1e49884adaf9e7
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 85418 0d22d96774004214091360e8e2027d9f
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_s390.deb
      Size/MD5 checksum: 49908 213367943a126d7a5b9936369bcbf386

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/p/python2.2/python2.2_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 2036856 2c05e46687d01ab3e5fad8461e0ec802
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-dev_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 738218 a3f4fd77c5b92e9f8476c016e03d9906
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-gdbm_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 20108 e016583febe12d5bb26cdbb524eafd71
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-mpz_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 19756 e7148222583dd66dc72fd50d667a4ee4
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-tk_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 84240 88c89b96ddede09ebd8fa7502cda42ca
    http://security.debian.org/pool/updates/main/p/python2.2/python2.2-xmlbase_2.2.1-4.6_sparc.deb
      Size/MD5 checksum: 49618 77f444e08be3d7176da149b90439f655

These files will probably be moved into the stable distribution on
its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announcelists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFBaOb0W5ql+IAeqTIRAmvnAKCwg1WcB7xMmx9WRFxLZCd7wbz32wCdHzRj
1zurpxSxlHBOlIxbaAQ0ibw=
=zR0U
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[Full-Disclosure] New changes

From: Als (alsthangorodrim.de)
Date: Sun Oct 10 2004 - 11:41:58 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]