|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Immunix OS Security update for bash 1.x
From: Greg KH (greg
wirex.com)Date: Thu Nov 30 2000 - 13:42:23 CST
- Next message: Greg KH: "Immunix OS Security update for ghostscript"
- Previous message: Greg KH: "Re: problems compiling subdomain modules"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
-----------------------------------------------------------------------
Immunix OS Security Advisory
Packages updated: bash1
Effected products: Immunix OS 6.2
Bugs Fixed: immunix/1296
Date: November 30, 2000
Advisory ID: IMNX-2000-62-043-01
Author: Greg Kroah-Hartman <gregwirex.com>
-----------------------------------------------------------------------
Description:
The << operator in bash 1.x used predictable filenames, which could
lead to a potential denial of service attack. This is the same
vulnerability that tsch had. It does not exist in bash2
Package names and locations:
Precompiled binary packages for Immunix 6.2 are available at:
http://www.immunix.org/ImmunixOS/6.2/updates/RPMS/bash-1.14.7-23.6x_StackGuard.i386.rpm
Source packages for Immunix 6.2 are available at:
http://www.immunix.org/ImmunixOS/6.2/updates/SRPMS/bash-1.14.7-23.6x_StackGuard.src.rpm
md5sums of the packages:
7811263e6a87a4334148ded8aa007007 bash-1.14.7-23.6x_StackGuard.i386.rpm
001a53eb0da5feb3b26d959586b3486a bash-1.14.7-23.6x_StackGuard.src.rpm
Online location of all updates for Immunix 6.2:
http://www.immunix.org/ImmunixOS/6.2/updates/
- application/pgp-signature attachment: stored
_______________________________________________
Stackguard mailing list
Stackguardmail.wirex.com
http://mail.wirex.com/mailman/listinfo/stackguard
- Next message: Greg KH: "Immunix OS Security update for ghostscript"
- Previous message: Greg KH: "Re: problems compiling subdomain modules"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]