OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA16349] Trustix update for multiple packages

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Mon Aug 08 2005 - 08:49:47 CDT


----------------------------------------------------------------------

Bist Du interessiert an einem neuen Job in IT-Sicherheit?

Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/

----------------------------------------------------------------------

TITLE:
Trustix update for multiple packages

SECUNIA ADVISORY ID:
SA16349

VERIFY ADVISORY:
http://secunia.com/advisories/16349/

CRITICAL:
Moderately critical

IMPACT:
Exposure of sensitive information, DoS, System access

WHERE:
From remote

OPERATING SYSTEM:
Trustix Secure Linux 2.2
http://secunia.com/product/4641/

DESCRIPTION:
Trustix has issued updates for multiple packages. These fix some
vulnerabilities, which can be exploited to disclose certain sensitive
information, cause a DoS (Denial of Service), or potentially
compromise a vulnerable system.

For more information:
SA16137
SA16181

This also fixes an input validation error in the bzgrep utility.

SOLUTION:
Apply updated packages.

Trustix Secure Linux 2.2:
114904521848d54ea07c8225d05c4e2e 2.2/rpms/bzip2-1.0.3-3tr.i586.rpm
21410bd75ce00fe486080777c0ba95f8
2.2/rpms/bzip2-devel-1.0.3-3tr.i586.rpm
bb79cd2198cc9a323639ff6188cd5fd9
2.2/rpms/bzip2-libs-1.0.3-3tr.i586.rpm
5a9be0817c3fb7aea5a74e62051edb74
2.2/rpms/perl-compress-zlib-1.35-1tr.i586.rpm
1b12b65524f9c4caa88523c81388853a
2.2/rpms/proftpd-1.2.10-9tr.i586.rpm

ORIGINAL ADVISORY:
http://lists.trustix.org/pipermail/tsl-announce/2005-August/000335.html

OTHER REFERENCES:
SA16137:
http://secunia.com/advisories/16137/

SA16181:
http://secunia.com/advisories/16181/

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------