[1639] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: SNI-19:BSD lpd vulnerabilities

daemon@ATHENA.MIT.EDU (Thomas Roessler)
Sat Oct 4 05:05:56 1997

Date: Fri, 3 Oct 1997 17:28:15 +0200
From: Thomas Roessler <roessler@guug.de>
To: linux-security@redhat.com
In-Reply-To: <Pine.BSI.3.96.971002185136.3994A-100000@silence.secnet.com>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com

On October 02 1997, Oliver Friedrichs of Secure Networks Inc. wrote:

> iv.  Install a fixed version of the BSD print software.  A fixed versio=
n
>      of the BSD print software is availible at the following ftp site:
> =

>      ftp://ftp.secnet.com/pub/patches/lpd.tar.gz
> =

>      This package fixes numerous other problems present in the BSD
>      printing suite, including numerous buffer overflows present in bot=
h
>      the client programs and the server.  This package has been
>      provided by OpenBSD.

A first rough linux port of this (partially based on RedHat's
lpr-0.19.1) can be found on the Net under

ftp://riemann.iam.uni-bonn.de/pub/users/roessler/lpr-tlr-971003.tgz.

It's almost untested, but it should be a good starting point
for your own porting efforts. (Additionally, it seems to run
with my setup. ;-)

tlr
-- =

Thomas Roessler =B7 74a353cc0b19 =B7 dg1ktr =B7 http://home.pages.de/~roe=
ssler/
   1280/593238E1 =B7 AE 24 38 88 1B 45 E4 C6  03 F5 15 6E 9C CA FD DB

--
----------------------------------------------------------------------
Please refere to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe: mail -s unsubscribe test-list-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post