[17419] in bugtraq
Trustix Security Advisory - ping gnupg ypbind
daemon@ATHENA.MIT.EDU (TSL Team)
Mon Oct 30 12:45:28 2000
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-Id: <03itqajsof.fsf@colargol.tihlde.hist.no>
Date: Mon, 30 Oct 2000 15:43:28 +0100
Reply-To: TSL Team <tsl@TRUSTIX.COM>
From: TSL Team <tsl@TRUSTIX.COM>
X-To: tsl-announce@trustix.com
To: BUGTRAQ@SECURITYFOCUS.COM
Hi
Trustix recently released several updated packages:
iputils: Fixes serveral problems in ping including a buffer overflow.
gnupg: Fixed a serious bug which could lead to false signature
verification results when more than one signature is fed to gpg.
ypbind: Local root exploit.
Users of TSL 1.0x and 1.1 that worry about local security should
definitely upgrade.
MD5sums:
9e2bbf3ddd728da4cbab3ece1ba390b7 gnupg-1.0.4-2tr.i586.rpm
43d503eb306f202c794ca064980574ad iputils-20001011-1tr.i586.rpm
8625657f6edea52b88e0cff1dfff4bb4 ypbind-3.3-29tr.i586.rpm
Get them at:
ftp://ftp.trustix.com/pub/Trustix/updates/1.1/RPMS/ or
http://www.trustix.net/download/Trustix/updates/1.1/RPMS/
Regards,
TSL Security Advisor
