[8073] in bugtraq
Re: mountd- more info (sorry)
daemon@ATHENA.MIT.EDU (RHS Linux User)
Tue Sep 29 14:07:29 1998
Date: Tue, 29 Sep 1998 03:42:14 -0500
Reply-To: RHS Linux User <cdale@HOME.ISOLNET.COM>
From: RHS Linux User <cdale@HOME.ISOLNET.COM>
X-To: John Caldwell <jcald@LAKE.ML.ORG>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.LNX.3.96.980928220456.15689A-100000@dollar>
Hi!
That version is indeed vulnerable. This from
http://www.redhat.com/errata:
Package: nfs
Updated: 28-Aug-1998
Problem:
* (28-Aug-1998)Security Fix: Potential security problems have been
identified in all versions of nfs-server packages shipped with Red
Hat Linux.
Users of Red Hat Linux are recommended to upgrade to the new
packages available under updates directory on our ftp site.
Solution:
* Intel: Upgrade to:
nfs-server-2.2beta29-7.i386.rpm
nfs-server-clients-2.2beta29-7.i386.rpm
* Alpha: Upgrade to:
nfs-server-2.2beta29-7.alpha.rpm
nfs-server-clients-2.2beta29-7.alpha.rpm
* SPARC: Upgrade to:
nfs-server-clients-2.2beta29-7.sparc.rpm
sillyhead
silly@redhat.com
fnord.
On Mon, 28 Sep 1998, John Caldwell wrote:
> I'm sorry i omitted this information in my first post:
>
> OS: Linux (Redhat 5.1)
>
> NFS package version: nfs-server-2.2beta29-5
>
>
> --
> -------------------------
> | John Caldwell
> | jcald@lake.ml.org
> | http://www.lake.ml.org/
> -------------------------
>
