[1977] in SIPB_Linux_Development
Re: update.pl
daemon@ATHENA.MIT.EDU (mhpower@MIT.EDU)
Thu Jan 8 23:48:39 1998
From: mhpower@MIT.EDU
To: linux-dev@MIT.EDU
In-Reply-To: "[1972] in SIPB_Linux_Development"
Date: Thu, 08 Jan 1998 23:48:22 EST
>Someone with more time may want to make sure that we have recent
>RPMs in there ...
Of the updated RPMs that were added tonight to the small-gods
/redhat/4.2/i386/RedHat/RPMS directory, libc-5.3.12-18.2.i386.rpm
was specifically announced as being also applicable to RedHat 4.0
(see the attached message). This RPM has the patch for the syslog
buffer overflow reported in http://www.mit.edu:8008/menelaus/bt/5848
I didn't get any errors when installing this on a RedHat 4.0 system,
and I didn't notice any programs not working properly after
installing it. So, it's possible that this ought to be made available
somehow for RedHat 4.0 users -- I'm not sure whether or not that means
it belongs in /redhat/4.0.0/i386/RedHat/RPMS though.
Matt
------- Forwarded Message
Date: Mon, 29 Dec 1997 12:13:21 -0500 (EST)
From: Erik Troan <ewt@redhat.com>
Reply-To: redhat-list@redhat.com
To: redhat-announce-list@redhat.com
Subject: SECURITY: new libc 5.3.12 now available
Message-ID: <Pine.LNX.3.96.971229120839.14946A-100000@lacrosse.redhat.com>
A security problem has been found in libc 5.3.12, which affects Red Hat
Linux 4.0, 4.1, and 4.2 on Intel and SPARC machines (Alpha users are not
affected). Users of those platforms should upgrade to libc-5.3.12-18.2
as soon as possible. Users only need to install the libc-static package
if they are building statically linked applications -- most users will only
need the main libc package.
i386:
rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/libc-5.3.12-18.2.i386.rpm
rpm -Uvh ftp://ftp.redhat.com/updates/4.2/i386/libc-static-5.3.12-18.2.i386.rpm
sparc:
rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/libc-5.3.12-18.2.sparc.rpm
rpm -Uvh ftp://ftp.redhat.com/updates/4.2/sparc/libc-static-5.3.12-18.2.sparc.rpm
This problem may also affect users of Red Hat Linux 5.0 on the Intel. While
basic Red Hat 5.0 installations are not affected, systems with legacy libc 5
applications may be. Unlesss you know you are not affected, we recommend
installing the libc-5.3.12-25 package.
rpm -Uvh ftp://ftp.redhat.com/updates/5.0/i386/libc-5.3.12-25.i386.rpm
Erik
------- End of Forwarded Message
