OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
[Security Announce] [ MDKA-2007:019 ] - Updated nufw packages fix various bugs

securitymandriva.com
Date: Thu Mar 15 2007 - 13:46:23 CDT

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Advisory MDKA-2007:019
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : nufw
 Date : March 15, 2007
 Affected: Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 A number of bugs have been fixed in the nufw package including:
 
  - problems with case-insensitive authentication directory
  - simultaneous run problems in pam_nufw
  - nuauth would crash at start when bad IPs are placed in the
  configuration file
  - memory leaks in nuauth
  - other minor fixes
 
 The updated packages provide version 2.0.16 which have these issues
 fixed.
 _______________________________________________________________________

 Updated Packages:
 
 Corporate 4.0:
 06c8f38302711f32739d77c0da2bed0a corporate/4.0/i586/libnuclient0-2.0.16-1.1.20060mlcs4.i586.rpm
 47ef43cc40aa93ea5c7658e12f3a7379 corporate/4.0/i586/libnuclient0-devel-2.0.16-1.1.20060mlcs4.i586.rpm
 8c72fb4cc9e6e38f6c52bf8fce4d950a corporate/4.0/i586/nufw-2.0.16-1.1.20060mlcs4.i586.rpm
 133ced60d33ce11724cb3b85ef281448 corporate/4.0/i586/nufw-nuauth-2.0.16-1.1.20060mlcs4.i586.rpm
 0c0ef847a420de6e93ce040e2760cbd1 corporate/4.0/i586/nufw-nuauth-auth-dbm-2.0.16-1.1.20060mlcs4.i586.rpm
 e5785c8cf2067fbda97a1159e002fa42 corporate/4.0/i586/nufw-nuauth-auth-ldap-2.0.16-1.1.20060mlcs4.i586.rpm
 887dc0c4fd6ec8bf5f001857e2d64119 corporate/4.0/i586/nufw-nuauth-log-mysql-2.0.16-1.1.20060mlcs4.i586.rpm
 8a4c9ff7073f94cd670d00b000dbd777 corporate/4.0/i586/nufw-nuauth-log-pgsql-2.0.16-1.1.20060mlcs4.i586.rpm
 3373a73091adb804ba4d432dc5f68ac8 corporate/4.0/i586/nufw-nutcpc-2.0.16-1.1.20060mlcs4.i586.rpm
 3b23969376dd04f07f7cfc949c5c7216 corporate/4.0/i586/nufw-utils-2.0.16-1.1.20060mlcs4.i586.rpm
 0704eb5495851ee519928c2a9abf32ac corporate/4.0/i586/pam_nufw-2.0.16-1.1.20060mlcs4.i586.rpm
 ee883f9085e33de97068b2abb2c860a3 corporate/4.0/SRPMS/nufw-2.0.16-1.1.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 eb421007e7777bab15a59afb7d79cada corporate/4.0/x86_64/lib64nuclient0-2.0.16-1.1.20060mlcs4.x86_64.rpm
 574164d1e75d8eab1ac28dce24a968e2 corporate/4.0/x86_64/lib64nuclient0-devel-2.0.16-1.1.20060mlcs4.x86_64.rpm
 d38f642b4bf57ddb72402800d8f3f128 corporate/4.0/x86_64/nufw-2.0.16-1.1.20060mlcs4.x86_64.rpm
 d24247cbd8139d1e821facba4516ecaa corporate/4.0/x86_64/nufw-nuauth-2.0.16-1.1.20060mlcs4.x86_64.rpm
 0ff3be8e8379b69281a8d9ee6515aecf corporate/4.0/x86_64/nufw-nuauth-auth-dbm-2.0.16-1.1.20060mlcs4.x86_64.rpm
 e265e9bf48446a2bbb4b15c98295a016 corporate/4.0/x86_64/nufw-nuauth-auth-ldap-2.0.16-1.1.20060mlcs4.x86_64.rpm
 617f2211328f309efec64e0c56de7429 corporate/4.0/x86_64/nufw-nuauth-log-mysql-2.0.16-1.1.20060mlcs4.x86_64.rpm
 9794286b013fd14130fc540b574539e9 corporate/4.0/x86_64/nufw-nuauth-log-pgsql-2.0.16-1.1.20060mlcs4.x86_64.rpm
 43cb35bd98849ab749925fd5fc9662c8 corporate/4.0/x86_64/nufw-nutcpc-2.0.16-1.1.20060mlcs4.x86_64.rpm
 cbf50829a95f800df9a17dc0be04fc9e corporate/4.0/x86_64/nufw-utils-2.0.16-1.1.20060mlcs4.x86_64.rpm
 ee17cc6212a55bf718fb86a10b232c02 corporate/4.0/x86_64/pam_nufw-2.0.16-1.1.20060mlcs4.x86_64.rpm
 ee883f9085e33de97068b2abb2c860a3 corporate/4.0/SRPMS/nufw-2.0.16-1.1.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi. The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security. You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID Date User ID
 pub 1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFF+WnmmqjQ0CJFipgRAtp0AJ9D9eGLrbpKXMlPeKwiQTcIjVWrCwCfZIMx
msut/KJGJdJ5uzLrasYhUWk=
=nwWF
-----END PGP SIGNATURE-----

------------=_1173986019-8862-1606
Content-Type: text/plain; name="message-footer.txt"
Content-Disposition: inline; filename="message-footer.txt"
Content-Transfer-Encoding: 8bit

To unsubscribe, send a email to sympamandrivalinux.org
with this subject : unsubscribe security-announce
_______________________________________________________
Want to buy your Pack or Services from Mandriva?
Go to http://www.mandrivastore.com
Join the Club : http://www.mandrivaclub.com
_______________________________________________________

------------=_1173986019-8862-1606--