OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Wichert Akkerman (wichertwiggy.net)
Date: Sun Jan 20 2002 - 18:07:28 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    -----BEGIN PGP SIGNED MESSAGE-----

    - ------------------------------------------------------------------------
    Debian Security Advisory DSA-105-1 securitydebian.org
    http://www.debian.org/security/ Wichert Akkerman
    January 21, 2002
    - ------------------------------------------------------------------------

    Package : enscript
    Problem type : insecure temporary files
    Debian-specific: no

    The version of enscript (a tool to convert ASCII text to different
    formats) has been found to create temporary files insecurely.

    This has been fixed in version 1.6.2-4.1 .

    wget url
            will fetch the file for you
    dpkg -i file.deb
            will install the referenced file.

    Debian GNU/Linux 2.2 alias potato
    - ---------------------------------

      Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

      Source archives:
        http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2-4.1.diff.gz
          MD5 checksum: 9804afe6e88ce01c401e7ba69c16f499
        http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2-4.1.dsc
          MD5 checksum: 45d3c704006ac4f5782af606c85950f8
        http://security.debian.org/dists/stable/updates/main/source/enscript_1.6.2.orig.tar.gz
          MD5 checksum: 823e5eec421350c91bd5e65ebdc9fa7f

      Alpha architecture:
        http://security.debian.org/dists/stable/updates/main/binary-alpha/enscript_1.6.2-4.1_alpha.deb
          MD5 checksum: de76734dc050b25b7e910373c8952b4e

      ARM architecture:
        http://security.debian.org/dists/stable/updates/main/binary-arm/enscript_1.6.2-4.1_arm.deb
          MD5 checksum: 30a6f887dcfe58b03683dfceb36891ae

      Intel IA-32 architecture:
        http://security.debian.org/dists/stable/updates/main/binary-i386/enscript_1.6.2-4.1_i386.deb
          MD5 checksum: 6eb940c410f2363a35fc0ba29bd03e6b

      Motorola 680x0 architecture:
        http://security.debian.org/dists/stable/updates/main/binary-m68k/enscript_1.6.2-4.1_m68k.deb
          MD5 checksum: 411d2c7f1dda66b5ae1e560b664063e0

      PowerPC architecture:
        http://security.debian.org/dists/stable/updates/main/binary-powerpc/enscript_1.6.2-4.1_powerpc.deb
          MD5 checksum: ea2a8299d261a0bdc33c7b26d2a5adde

      Sun Sparc architecture:
        http://security.debian.org/dists/stable/updates/main/binary-sparc/enscript_1.6.2-4.1_sparc.deb
          MD5 checksum: e53fc25a3f3788f2063c8b5490aaeb24

      These packages will be moved into the stable distribution on its next
      revision.

    - --
    - ----------------------------------------------------------------------------
    apt-get: deb http://security.debian.org/ stable/updates main
    dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
    Mailing list: debian-security-announcelists.debian.org

    -----BEGIN PGP SIGNATURE-----
    Version: 2.6.3ia
    Charset: noconv

    iQB1AwUBPEtbt6jZR/ntlUftAQF+8wL+KzyCUIOESEAEL8DxwzvAUoBPphvZhBfM
    +Wn2XSKzMKTEotAqxaiTEnGqLuu+4UpsWvP/SIYRQu6ReYyej9En2ULSYFd3lT1C
    ohMoghVTneo+m4VWKx3LZB7eREkiiwaW
    =2rW6
    -----END PGP SIGNATURE----- 

    -- 
To UNSUBSCRIBE, email to debian-security-announce-requestlists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmasterlists.debian.org