[35031] in bugtraq
Re: IRIX libcpr vulnerability
daemon@ATHENA.MIT.EDU (Jan Schaumann)
Wed May 26 18:16:49 2004
Date: Wed, 26 May 2004 14:51:21 -0400
From: Jan Schaumann <jschauma@netmeister.org>
To: SGI Security Coordinator <agent99@sgi.com>
Cc: bugtraq@securityfocus.com, full-disclosure@lists.netsys.com,
vulnwatch@vulnwatch.org
Message-ID: <20040526185121.GB24849@netmeister.org>
Mail-Followup-To: SGI Security Coordinator <agent99@sgi.com>,
bugtraq@securityfocus.com, full-disclosure@lists.netsys.com,
vulnwatch@vulnwatch.org
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
protocol="application/pgp-signature"; boundary="oLBj+sq0vYjzfsbl"
Content-Disposition: inline
In-Reply-To: <Pine.SGI.4.56.0405260936290.812356@einstein.csd.sgi.com>
--oLBj+sq0vYjzfsbl
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
SGI Security Coordinator <agent99@sgi.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>=20
> _________________________________________________________________________=
_____
>=20
> SGI Security Advisory
>=20
> Title: libcpr vulnerability
> Number: 20040507-01-P
> Date: May 26, 2004
> Reference: SGI BUG 914419
> Reference: CVE CAN-2004-0134
> Fixed in: Patches 5606, 5607, 5608, 5609 and 5610
> _________________________________________________________________________=
_____
The patches are not readable on the ftp server:
ftp://patches.sgi.com/support/free/security/patches/6.5.22:
-rw-r----- 1 21 4079 May 26 09:32 patch5609.pgp.and.chksums
-rw-r----- 1 21 3666 May 26 09:32 patch5609.relnotes
-rw-r----- 1 21 1761280 May 26 09:32 patch5609.tar
This has happened before, so I don't know if it's a matter of the upload
script not having completed yet or not. But one would assume that the
patches are readable at the time the SA is published...
-Jan
--=20
DON'T PANIC!
--oLBj+sq0vYjzfsbl
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (NetBSD)
iD8DBQFAtOcpfFtkr68iakwRAi3mAJ0WH+GT1IsDJXWLKz2ijDkrpIN8OwCeP51L
YVU3OMGsmXjoStm77HKhtNw=
=db6k
-----END PGP SIGNATURE-----
--oLBj+sq0vYjzfsbl--
