[7857] in bugtraq
Re: Buffer overflows in Minicom 1.80.1
daemon@ATHENA.MIT.EDU (Patrick J. Volkerding)
Wed Sep 2 12:56:00 1998
Date: Wed, 2 Sep 1998 11:26:12 -0500
Reply-To: "Patrick J. Volkerding" <gonzo@RRNET.COM>
From: "Patrick J. Volkerding" <gonzo@RRNET.COM>
X-To: "M.C.Mar" <emsi@it.com.pl>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.GSO.3.96.980902164902.6128A-100000@dollar.it.com.pl>
On Wed, 2 Sep 1998, M.C.Mar wrote:
> In Slackware 3.5 distribution minicom is setuid root and
> is STILL VULNERABLE, but not easily. ;)
Not any more. It's been updated to minicom_1.81.1, and is no longer
setuid root. In fact, these problems were fixed a good 12 hours before
the above message was posted.
The updated package is available here:
ftp://ftp.cdrom.com/pub/linux/slackware-3.5/a6/minicom.tgz
Fixes are also online for other reported problems with the NFS daemons and
routed. See ftp://ftp.cdrom.com/pub/linux/slackware-3.5/ChangeLog.txt for
more details.
---
Patrick J. Volkerding
Slackware Linux Project
