[18118] in bugtraq
Re: LPRng remote root exploit
daemon@ATHENA.MIT.EDU (Pekka Savola)
Mon Dec 18 16:12:27 2000
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.LNX.4.30.0012160008280.4851-100000@netcore.fi>
Date: Sat, 16 Dec 2000 00:23:15 +0200
Reply-To: Pekka Savola <pekkas@NETCORE.FI>
From: Pekka Savola <pekkas@NETCORE.FI>
X-To: Matthew Connor <mconnor@GOCODE.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <NEBBLCNJALFAOAOMBLMAKEBCCDAA.mconnor@gocode.com>
On Fri, 15 Dec 2000, Matthew Connor wrote:
> >LPRng-3.6.22/23/24 remote root exploit, enjoy.
>
> Upon submission to RedHat, they replied:
>
> +------- Additional comments from droesen@entire-systems.com 2000-12-15
> 11:13 -------
> +This is resolved long ago. There is an errata update for LPRng available.
> +
> +*** This bug has been marked as a duplicate of 17756 ***
And the problem with that is...?
See: http://www.redhat.com/support/errata/RHSA-2000-065-06.html
The working version is LPRng-3.6.24-2, released ~2.5 months ago. Newer
versions of LPRng weren't available at the time. As a matter of fact, it
was auditing [for RHL7] by Chris Evans that uncovered the bug in the first
place.
The upgrade is integrated with -respin ISO's, alongside the up2date and
several misc issues AFAIR.
--
Pekka Savola "Tell me of difficulties surmounted,
Netcore Oy not those you stumble over and fall"
Systems. Networks. Security. -- Robert Jordan: A Crown of Swords
