|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Thomas Biege (thomas_at_suse.de)
Date: Wed Jan 15 2003 - 04:03:18 CST
On Tue, 14 Jan 2003, Joerg Mayer wrote:
> On Tue, Jan 14, 2003 at 11:30:03AM +0100, Thomas Biege wrote:
> > 2) Pending vulnerabilities in SuSE Distributions and Workarounds:
> >
> > - fam
> > SuSE Versions < 8.0 are shipping a vulnerable version of fam
> > which allows unprivileged users to determine filenames of
> > group root.
> > New fam packages are build and will be released right after
> > quality assurance permits.
> > - xpdf
> > An integer overflow in pdftops may lead to system compromise.
> > New packages are currently being build.
> > - libmcrypt
> > Several buffer overflows in libmcrypt were discovered by Ilia
> > Alshanetsky. The buffer overflows can lead to system compromise.
> > New packages are currently being build.
>
> How about the kde 3.0.5a fixes? Did I miss an announcement?
No, you didnt miss it.
It will take some time due to the extensive testing phase.
Bye,
Thomas
-- Thomas Biege <thomassuse.de> SuSE Linux AG,Deutschherrnstr. 15-19,90429 Nuernberg Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/contact/thomas.asc | pgp -fka" Key fingerprint = 51 AD B9 C7 34 FC F2 54 01 4A 1C D4 66 64 09 83 --
Over thinking, Over analyzing, seperates the body from the mind. - Maynard James Keenan
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]