Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

Malware devs embrace open-source

A tale of two distros: Ubuntu and Linux Mint

Raspberry Pi benchmarked against Beagleboard, low price is long term

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:Advisories: September 5, 2005
Advisories: September 5, 2005
Sep 6, 2005, 04 :45 UTC (0 Talkback[s]) (2593 reads)

Debian Security Advisory DSA 795-1 security@debian.org
http://www.debian.org/security/ Michael Stone
September 1st, 2005 http://www.debian.org/security/faq

Package : proftpd
Vulnerability : potential code execution
Problem-Type : format string error
Debian-specific: no
CVE ID : CAN-2005-2390

infamous42md reported that proftpd suffers from two format string vulnerabilities. In the first, a user with the ability to create a directory could trigger the format string error if there is a proftpd shutdown message configured to use the "%C", "%R", or "%U" variables. In the second, the error is triggered if mod_sql is used to retrieve messages from a database and if format strings have been inserted into the database by a user with permission to do so.

The old stable distribution (woody) is not affected by these vulnerabilities.

For the stable distribution (sarge) this problem has been fixed in version 1.2.10-15sarge1.

For the unstable distribution (sid) this problem has been fixed in version 1.2.10-20.

We recommend that you upgrade your proftpd package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10.orig.tar.gz
      Size/MD5 checksum: 920495 7d2bc5b4b1eef459a78e55c027a4f3c4
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1.dsc
      Size/MD5 checksum: 897 1a728465d7d40d224e457809a06bc99c
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1.diff.gz
      Size/MD5 checksum: 127095 88f227abf247ed988fc35203d4108802

Architecture independent packages:

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-doc_1.2.10-15sarge1_all.deb
      Size/MD5 checksum: 417460 ffde86a53bcc329f806d1014478730d0

alpha architecture (DEC Alpha)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_alpha.deb
      Size/MD5 checksum: 444400 f07ac7db8a9c2745de8f9cab76cdb3c4
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_alpha.deb
      Size/MD5 checksum: 457288 92100f9ba762c52d715c1f56f51f70a1
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_alpha.deb
      Size/MD5 checksum: 476538 dc6f68d4dec57fb3646e15ca98e78d4a
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_alpha.deb
      Size/MD5 checksum: 200800 ac5d323b2501c4396afd80ef0fb15c7f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_alpha.deb
      Size/MD5 checksum: 476842 5caa3a66575ae253d0ce1df399d2c145

amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_amd64.deb
      Size/MD5 checksum: 194542 dff3b3414b99189ea8a9f8d119109d47
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_amd64.deb
      Size/MD5 checksum: 388576 e197f0eb6340706bb998872c0ea32949
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_amd64.deb
      Size/MD5 checksum: 415108 906cf04f3eed0c5164f71bc22b6b7e01
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_amd64.deb
      Size/MD5 checksum: 414970 a7baba4ba0bdd13548e6e28c4825a83f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_amd64.deb
      Size/MD5 checksum: 399826 a026b6c75ea587df68fbd1466adc1a2d

arm architecture (ARM)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_arm.deb
      Size/MD5 checksum: 188762 0740654ff6aedc7e96a8c3dfbbd2d315
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_arm.deb
      Size/MD5 checksum: 384080 1befd34e95a59132a071e3f9954eb6c4
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_arm.deb
      Size/MD5 checksum: 398882 f4d78c3f50080f238407945718b45567
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_arm.deb
      Size/MD5 checksum: 373788 bf67d85da87abfe27c7bf42cf2833b91
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_arm.deb
      Size/MD5 checksum: 398776 b25b17e7f6bf86234865896bafa84678

hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_hppa.deb
      Size/MD5 checksum: 194488 8267bb5ad6c70238fcebf3fb4035dace
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_hppa.deb
      Size/MD5 checksum: 403606 7dfe73131c34dc3e55c729bbc59f1252
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_hppa.deb
      Size/MD5 checksum: 431726 42c9d2d7d190e0ccaafcdb44e31536f5
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_hppa.deb
      Size/MD5 checksum: 431410 1aaf5d6855318e067640969095d8e96c
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_hppa.deb
      Size/MD5 checksum: 414794 8ebec69081b2c56b56a532db0ce504fb

i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_i386.deb
      Size/MD5 checksum: 397122 c629a1bf4982b085d05be740052cfa67
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_i386.deb
      Size/MD5 checksum: 396966 f67e8ec673c483fd3aa90f917595a250
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_i386.deb
      Size/MD5 checksum: 189470 8f024068171ca297064f29e58bc51b33
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_i386.deb
      Size/MD5 checksum: 381756 5355604f7b1625db02a3f68d97eff290
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_i386.deb
      Size/MD5 checksum: 371622 1a26e468fef7b863f30bf2b1fe7df817

ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_ia64.deb
      Size/MD5 checksum: 207014 acacffe75c737005bb6c9d9bd63f091b
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_ia64.deb
      Size/MD5 checksum: 535252 ed7479cef8bc9777c5f11223779896d0
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_ia64.deb
      Size/MD5 checksum: 519678 0217f6bd617282f1e8d9e598f86f83aa
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_ia64.deb
      Size/MD5 checksum: 562122 2fbccb31b331c17609d5e4fdf517416a
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_ia64.deb
      Size/MD5 checksum: 562312 5084eb589b099cfd51759557ce8fd21b

m68k architecture (Motorola Mc680x0)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_m68k.deb
      Size/MD5 checksum: 332318 a61dd073f2f9a4697d254b8e7fb48a14
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_m68k.deb
      Size/MD5 checksum: 353102 1e24565274060aeeafb77a756f31f212
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_m68k.deb
      Size/MD5 checksum: 340938 7afb5724e4caf150b6f5102c34c3c1d6
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_m68k.deb
      Size/MD5 checksum: 352770 ed92f153968e58aa200df1ef2888afba
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_m68k.deb
      Size/MD5 checksum: 187180 764673a0052a9b2b39e94076d764e2bb

mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_mips.deb
      Size/MD5 checksum: 382426 aee4a0de1997e66fb89f3a8b964e716a
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_mips.deb
      Size/MD5 checksum: 406442 e45275b4fbc4479ffd60849efb79d067
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_mips.deb
      Size/MD5 checksum: 201640 879687be2b57e8dcc90a8ea1158393ad
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_mips.deb
      Size/MD5 checksum: 406224 5e522fc33f697d5dbd4df431c0cc9790
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_mips.deb
      Size/MD5 checksum: 391930 08faf62b0089f29bd019866911c699e1

mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_mipsel.deb
      Size/MD5 checksum: 201838 239a8377c0a5b2940afe2cf5b86bdaf2
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_mipsel.deb
      Size/MD5 checksum: 409472 378d91ea943ff489ed38b49d60e84b76
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_mipsel.deb
      Size/MD5 checksum: 384264 dfd8fa9d98bdcda752dc1cf7a88f6582
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_mipsel.deb
      Size/MD5 checksum: 393384 ce795b5aa745c5d412c39814a5a8a427
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_mipsel.deb
      Size/MD5 checksum: 409220 a84d6673ece2d89d4e28f39279f2914e

powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_powerpc.deb
      Size/MD5 checksum: 384498 492efa6567a3f8e13b019c7fb05f160e
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_powerpc.deb
      Size/MD5 checksum: 411728 2073ec04cf38a1449d4a350c3e55f16f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_powerpc.deb
      Size/MD5 checksum: 412074 f07eb73d8f40955facf41d2d52d67da2
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_powerpc.deb
      Size/MD5 checksum: 195382 c6079a29a73a585f060c1ee6037cb93f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_powerpc.deb
      Size/MD5 checksum: 395084 23ec082a6c703f517b3d9fa68ec42d9b

s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_s390.deb
      Size/MD5 checksum: 193006 1e52c1da9c58b290978b7935a9d58770
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_s390.deb
      Size/MD5 checksum: 379632 b7ecd26925dd5bf9a69f24e33dd55184
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_s390.deb
      Size/MD5 checksum: 390112 814e21080d6d95cea596a8dc5747e29f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_s390.deb
      Size/MD5 checksum: 403740 8426f8d4d195c1d51dd568249cb61619
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_s390.deb
      Size/MD5 checksum: 403984 89ff426837c5b0dbfed07f88700f619c

sparc architecture (Sun SPARC/UltraSPARC)

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1_sparc.deb
      Size/MD5 checksum: 394824 4b17a185fb614e83739fd7cdc711b63a
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1_sparc.deb
      Size/MD5 checksum: 379428 5f182cf8e0303797c78f65f6aa8704a9
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1_sparc.deb
      Size/MD5 checksum: 369734 a75df8c75998eae366a2200516eaf01f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1_sparc.deb
      Size/MD5 checksum: 189018 c30ff0d36b2f68fc795f25efb128dd20
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1_sparc.deb
      Size/MD5 checksum: 394700 9a8eb46038f3086f04daef31fea9b821

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 795-2 security@debian.org
http://www.debian.org/security/ Michael Stone
September 2, 2005 http://www.debian.org/security/faq

Package : proftpd
Vulnerability : potential code execution
Problem-Type : format string error
Debian-specific: no
CVE ID : CAN-2005-2390

infamous42md reported that proftpd suffers from two format string vulnerabilities. In the first, a user with the ability to create a directory could trigger the format string error if there is a proftpd shutdown message configured to use the "%C", "%R", or "%U" variables. In the second, the error is triggered if mod_sql is used to retrieve messages from a database and if format strings have been inserted into the database by a user with permission to do so.

There was a build error for the sarge i386 proftpd packages released in DSA 795-1. A new build, 1.2.10-15sarge1.0.1, has been prepared to correct this error. The packages for other architectures are unaffected.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/p/proftpd/proftpd_1.2.10-15sarge1.0.1_i386.deb
      Size/MD5 checksum: 371596 bd3d82221561e281e11d4583ce384b4f
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-common_1.2.10-15sarge1.0.1_i386.deb
      Size/MD5 checksum: 189462 05f1c13c671f2576e119bfc316d01814
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-ldap_1.2.10-15sarge1.0.1_i386.deb
      Size/MD5 checksum: 381726 b2d469c77fed2de5d35c325226556b02
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-mysql_1.2.10-15sarge1.0.1_i386.deb
      Size/MD5 checksum: 397092 ef73f4b69701c8e88454f56887ed5b35
    http://security.debian.org/pool/updates/main/p/proftpd/proftpd-pgsql_1.2.10-15sarge1.0.1_i386.deb
      Size/MD5 checksum: 396948 42aaaeb976a9395550efc9667aa4ff31

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 796-1 security@debian.org
http://www.debian.org/security/ Michael Stone
September 1st, 2005 http://www.debian.org/security/faq

Package : affix
Vulnerability : remote command execution
Problem-Type : unsafe use of popen
Debian-specific: no
CVE ID : CAN-2005-2716

Kevin Finisterre reports that affix, a package used to manage bluetooth sessions under Linux, uses the popen call in an unsafe fashion. A remote attacker can exploit this vulnerability to execute arbitrary commands on a vulnerable system.

The old stable distribution (woody) does not contain the affix package.

For the stable distribution (sarge) this problem has been fixed in version 2.1.1-3.

For the unstable distribution (sid) this problem has been fixed in version 2.1.2-3.

We recommend that you upgrade your affix package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3.diff.gz
      Size/MD5 checksum: 81959 0914c96291c7bf8a4bbf5d05e5dc74c5
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3.dsc
      Size/MD5 checksum: 669 616d043f1c72b3a8ebcae37e4a59fb98

alpha architecture (DEC Alpha)

    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_alpha.deb
      Size/MD5 checksum: 93462 a3569622764735b1b09829e575c34a04
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_alpha.deb
      Size/MD5 checksum: 75608 7d0d72ed495c904ca7820624fc66b8b5
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_alpha.deb
      Size/MD5 checksum: 103142 b534a5fbf6f1537456917fe45c5c8c58

amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_amd64.deb
      Size/MD5 checksum: 93480 dead16d09da75e9628bae0d3a61cb04d
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_amd64.deb
      Size/MD5 checksum: 64450 ef7ec29b46f95b5255e9ad23243a117c
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_amd64.deb
      Size/MD5 checksum: 71796 0b83fbb8796d06867c26a197393cdbed

arm architecture (ARM)

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_arm.deb
      Size/MD5 checksum: 85908 0e58ede6488bd4e9bd3dd4a06201ac7e
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_arm.deb
      Size/MD5 checksum: 69546 1fb4f727a1215a89fd4e998fc56d1f26
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_arm.deb
      Size/MD5 checksum: 56844 837b30e2112981a65327993f242d2e62

hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_hppa.deb
      Size/MD5 checksum: 76626 a701325fa8e52d04da9044b90cf2be5e
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_hppa.deb
      Size/MD5 checksum: 95006 80e8960c60548492a66c6642d9977e82
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_hppa.deb
      Size/MD5 checksum: 68558 a869b9ae8172cb4a2616e500dc3ba34d

i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_i386.deb
      Size/MD5 checksum: 63360 e98b76db0c1be17fd0a0fad388580e28
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_i386.deb
      Size/MD5 checksum: 59644 6c1a4dde54ea88022052473c1385418d
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_i386.deb
      Size/MD5 checksum: 84952 87f0ced911c009e8cad63b1f1f517e0d

ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_ia64.deb
      Size/MD5 checksum: 93934 95cd1df0416297d184cf5f8a2fd8e6ff
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_ia64.deb
      Size/MD5 checksum: 83676 8eb81855b4e75cc1690cbea79569cceb
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_ia64.deb
      Size/MD5 checksum: 122328 317969cdc70be9a42632329472b425f8

m68k architecture (Motorola Mc680x0)

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_m68k.deb
      Size/MD5 checksum: 80118 ec2c0265cb1068d676bb0e5dbadeb199
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_m68k.deb
      Size/MD5 checksum: 58458 76faca4c3f9a94e34398927d5024991f
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_m68k.deb
      Size/MD5 checksum: 54970 45bd12213859c4212baf4d1a127d0916

mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_mips.deb
      Size/MD5 checksum: 97566 1d8e834bd41fb7f062f47c975f25bcb8
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_mips.deb
      Size/MD5 checksum: 61378 918a6064f35db1800f03529ae32d6ed9
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_mips.deb
      Size/MD5 checksum: 76436 ee779d182b774efcf033a159a3e1d337

mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_mipsel.deb
      Size/MD5 checksum: 97296 8c445a7e88c489d53b0f52c46e9d0a50
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_mipsel.deb
      Size/MD5 checksum: 76320 32e64b4ee8452a037efc17ec02e6315f
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_mipsel.deb
      Size/MD5 checksum: 61012 717b6b4c932547467802ff042948fe08

powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_powerpc.deb
      Size/MD5 checksum: 65466 15e4ae116669a5c3431edeed01439790
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_powerpc.deb
      Size/MD5 checksum: 94880 8af910d14455e555e6cb5840830c5724
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_powerpc.deb
      Size/MD5 checksum: 70092 03882f73d1876f72b3bd8034b20f3f71

s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_s390.deb
      Size/MD5 checksum: 73034 d1a72f0d825afd50bbbe65d03ac4f492
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_s390.deb
      Size/MD5 checksum: 66810 3f8535a792cebdd817ff27c3a2dacd5a
    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_s390.deb
      Size/MD5 checksum: 92464 bd4141e5726e01b520b8766e3e1fabdd

sparc architecture (Sun SPARC/UltraSPARC)

    http://security.debian.org/pool/updates/main/a/affix/affix_2.1.1-3_sparc.deb
      Size/MD5 checksum: 84816 2b20cbbc4020bad007a38bb8bd69718d
    http://security.debian.org/pool/updates/main/a/affix/libaffix-dev_2.1.1-3_sparc.deb
      Size/MD5 checksum: 66094 ae3660011a4422011ce0f202af218f09
    http://security.debian.org/pool/updates/main/a/affix/libaffix2_2.1.1-3_sparc.deb
      Size/MD5 checksum: 57762 00bdb8e55e4a68cb8675b0220947d423

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 797-1 security@debian.org
http://www.debian.org/security/ Michael Stone
September 1st, 2005 http://www.debian.org/security/faq

Package : zsync
Vulnerability : DOS
Problem-Type : buffer overflow
Debian-specific: no
CVE ID : CAN-2005-1849, CAN-2005-2096

zsync, a file transfer program, includes a modified local copy of the zlib library, and is vulnerable to certain bugs fixed previously in the zlib package.

The old stable distribution (woody) does not contain the zsync package.

For the stable distribution (sarge) this problem has been fixed in version 0.3.3-1.sarge.1.

For the unstable distribution (sid) this problem has been fixed in version 0.4.0-2.

We recommend that you upgrade your zsync package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1.dsc
      Size/MD5 checksum: 742 38abbfacbf93f57692641a0f257abe4e
    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1.diff.gz
      Size/MD5 checksum: 6213 224eae057a1eebdd3ffe16e6e3d584e6
    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3.orig.tar.gz
      Size/MD5 checksum: 241726 71efef80525276990cf8af97ee2b8f97

Alpha architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_alpha.deb
      Size/MD5 checksum: 120612 0efd2b252f7a2eebac03d04aee7bff87

AMD64 architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_amd64.deb
      Size/MD5 checksum: 99560 ede8508b5d555b6be89c5adbbea49c20

ARM architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_arm.deb
      Size/MD5 checksum: 100420 713b7d689f4ccdf4317c255dd0de7e6f

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_i386.deb
      Size/MD5 checksum: 98414 bb4ff605c6e3b94f23dd0986ca55e450

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_ia64.deb
      Size/MD5 checksum: 139370 91cef962076eb5d66ddda86e1ca1e8f8

HP Precision architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_hppa.deb
      Size/MD5 checksum: 105062 ba01f3b644ea1be05e51d3d07b00d363

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_m68k.deb
      Size/MD5 checksum: 85176 ec83816290778ca23005cbcf001962ed

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_mips.deb
      Size/MD5 checksum: 106840 bdd9b5d16ed84330292a97eb01deb381

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_mipsel.deb
      Size/MD5 checksum: 107912 bf7c5dfcac00e250efefe59959f47deb

PowerPC architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_powerpc.deb
      Size/MD5 checksum: 100460 7126e64533e31ccd1be3302772ca4158

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_s390.deb
      Size/MD5 checksum: 103472 b9712abdbaa529ab5ed20854b5b70406

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/z/zsync/zsync_0.3.3-1.sarge.1_sparc.deb
      Size/MD5 checksum: 98614 534233dd79188ea592f23a0b00f5d524

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 798-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
September 2nd, 2005 http://www.debian.org/security/faq

Package : phpgroupware
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-2498 CAN-2005-2600 CAN-2005-2761

Several vulnerabilities have been discovered in phpgroupware, a web based groupware system written in PHP. The Common Vulnerabilities and Exposures project identifies the following problems:

CAN-2005-2498

Stefan Esser discovered another vulnerability in the XML-RPC libraries that allows injection of arbitrary PHP code into eval() statements. The XMLRPC component has been disabled.

CAN-2005-2600

Alexander Heidenreich discovered a cross-site scriptiong problem in the tree view of FUD Forum Bulletin Board Software, which is also present in phpgroupware.

CAN-2005-2761

A global cross-site scripting fix has also been included that protects against potential malicious scripts embedded in CSS and xmlns in various parts of the application and modules.

This update also contains a postinst bugfix that has been approved for the next update to the stable release.

For the old stable distribution (woody) these problems don't apply.

For the stable distribution (sarge) these problems have been fixed in version 0.9.16.005-3.sarge2.

For the unstable distribution (sid) these problems have been fixed in version 0.9.16.008.

We recommend that you upgrade your phpgroupware packages.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware_0.9.16.005-3.sarge2.dsc
      Size/MD5 checksum: 1665 e10b74698fb0ccd70d9960c4e9745224
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware_0.9.16.005-3.sarge2.diff.gz
      Size/MD5 checksum: 36212 ce2653530ea7790676d68687ac9ab89a
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware_0.9.16.005.orig.tar.gz
      Size/MD5 checksum: 19442629 5edd5518e8f77174c12844f9cfad6ac4

Architecture independent components:

    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-addressbook_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 176408 e62845031a7af8182d876d93ce3a653d
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-admin_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 186202 70608b587089d644a3c2ff787f6ef3a0
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-bookmarks_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 100830 97695db70fdda862347531f7b22b40cd
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-calendar_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 323858 db8259d262257e59a620113a97dc5a75
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-chat_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 23068 57ecbc9bed7823851eef44102e59e36d
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-comic_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 434086 f8c1e175ab1b1dc0b337ca47f3670f30
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-core_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 6388 690fb88e32c50d3d00f440362c27dc78
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-developer-tools_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 33196 dab4c5133ea41f23a8752d93e8bd9786
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-dj_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 42654 9db6fec8e4687d8fe6099a467a8246db
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-eldaptir_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 50302 f4aeb63d1aeaa72c2bbfa6a5c0f8f247
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-email_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 1117628 e467218f15060c0edbabaa85cc6d561e
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-etemplate_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 1329298 95e88686c6212b6b1fcbfe404aef76ea
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-felamimail_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 180022 5930fda4d00b9814600dd3164243e678
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-filemanager_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 91478 d2bd73cc22569c599fcadbedcfe1abb6
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-folders_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 166208 3b310fc7dedb0c055e1bbb451b61edd8
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-forum_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 45422 37e0f53559aa145decf9ee82906f6225
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-ftp_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 36296 e196baee2c1c89fc3872ea91b4046845
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-fudforum_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 1355378 5453aa07a4c4372f247a994d7122170d
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-headlines_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 63786 533a084f5b12d9471fd0bf8e7eb471a1
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-hr_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 18712 feaa03f55c431cb7265c98dd5ea3ccbb
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-img_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 8472 4595ab292c8139cbe4596754403a471a
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-infolog_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 136256 9f5270506681b88bc7b55c459e7c6ab6
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-manual_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 90472 8a82ed20e8bb22e098610bf988338966
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-messenger_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 25864 fe33aebc1fe6887b3a36624139216092
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-news-admin_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 41170 971b81d589f9ec41661260c666d7b0ac
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-nntp_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 46804 749dcf3257343b66b0d866fdfee0a933
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-notes_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 34828 4135f525d65dafde78ab72da65e84ab7
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-phonelog_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 20566 cca6d535bd572adb89be5337c2ea4081
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-phpbrain_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 40058 e4fd11ffcc187d218e8e761443210de2
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-phpgwapi_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 9677508 a2e03ccffbc07f28b7e40610a223173b
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-phpsysinfo_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 116316 ea045a4a3bc0b30fefa3105d781f1e6b
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-polls_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 31390 42add8aa672fcbad2bc45bcc86de345f
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-preferences_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 59496 907318b665a238d7d272125377e786ff
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-projects_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 120176 6d4c7741a3706276da2e67f76ccda644
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-qmailldap_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 23352 8d9360711e849414a9e331b820a06e7e
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-registration_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 29810 c1414f1646c86cc9548cd21091b9402d
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-setup_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 267152 dc7418b235702e20c9c746116a41cd0b
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-sitemgr_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 902332 d18c60e4a310be6a8079659d9edb1ef3
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-skel_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 19062 5c21d71782cb4790f0037ae7358c6366
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-soap_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 23888 001d27f63b54f9a60788b0512f3b0315
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-stocks_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 21842 20bdf757aa0ba7d6e7ddd64454af89c5
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-todo_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 50120 825d4e389401fe8d3ed3cc4f5bad71ed
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-tts_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 55662 7594f3210ebd11e91f483aac7cc9c20b
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-wiki_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 70170 01379389b829ca8fc81f820df5ba0f76
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware-xmlrpc_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 62818 303dbc331b9bdab5e476a6dacfe08a87
    http://security.debian.org/pool/updates/main/p/phpgroupware/phpgroupware_0.9.16.005-3.sarge2_all.deb
      Size/MD5 checksum: 156040 b02eea4ffa8eac66bab0e673df7a5afa

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 798-1 security@debian.org
http://www.debian.org/security/ Michael Stone
September 2, 2005 http://www.debian.org/security/faq

Package : webcalendar
Vulnerability : remote code execution
Problem-Type : input validation
Debian-specific: no
CVE ID : CAN-2005-2717

A trivially-exploitable bug was discovered in webcalendar that allows an attacker to execute arbitrary code with the privileges of the HTTP daemon on a system running a vulnerable version.

The old stable distribution (woody) does not contain the webcalendar package.

For the stable distribution (sarge) this problem has been fixed in version 0.9.45-4sarge2.

For the unstable distribution (sid) this problem will be fixed shortly.

We recommend that you upgrade your webcalendar package immediately.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/w/webcalendar/webcalendar_0.9.45-4sarge2.diff.gz
      Size/MD5 checksum: 9908 ae927afd627778637759df5f2e4e8336
    http://security.debian.org/pool/updates/main/w/webcalendar/webcalendar_0.9.45-4sarge2.dsc
      Size/MD5 checksum: 725 0e765e2795bba3a7ccaedea569f2475c
    http://security.debian.org/pool/updates/main/w/webcalendar/webcalendar_0.9.45.orig.tar.gz
      Size/MD5 checksum: 612360 a6a66dc54cd293429b604fe6da7633a6

Architecture independent packages:

    http://security.debian.org/pool/updates/main/w/webcalendar/webcalendar_0.9.45-4sarge2_all.deb
      Size/MD5 checksum: 627470 1206a45774cad65c0b2b85bdc48a2d53

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 800-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
September 2nd, 2005 http://www.debian.org/security/faq

Package : pcre3
Vulnerability : integer overflow
Problem-Type : depends on use
Debian-specific: no


CVE ID : CAN-2005-2491 BugTraq ID : 14620 Debian Bug : 324531

An integer overflow with subsequent buffer overflow has been detected in PCRE, the Perl Compatible Regular Expressions library, which allows an attacker to execute arbitrary code.

Since several packages link dynamically to this library you are advised to restart the corresponding services or programs respectively. The command ``apt-caches showpkg libpcre3'' will list the corresponding packages in the "Reverse Depends:" section.

For the old stable distribution (woody) this problem has been fixed in version 3.4-1.1woody1.

For the stable distribution (sarge) this problem has been fixed in version 4.5-1.2sarge1.

For the unstable distribution (sid) this problem has been fixed in version 6.3-1.

We recommend that you upgrade your libpcre3 package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:

    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_3.4-1.1woody1.dsc
      Size/MD5 checksum: 546 f20fefc57bb56bfa6cf32d9c18a7add4
    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_3.4-1.1woody1.diff.gz
      Size/MD5 checksum: 49801 b69439f16a83c75f4afdad1bc87e0983
    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_3.4.orig.tar.gz
      Size/MD5 checksum: 296708 75918d0111f592097939a7b8c490dcd0

Alpha architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_alpha.deb
      Size/MD5 checksum: 66020 fe9b69946352606036a89ce9c442624e
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_alpha.deb
      Size/MD5 checksum: 62204 c566c04c9588d67cfe27372905b0d10b
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_alpha.deb
      Size/MD5 checksum: 5826 68691c08411bf16a238b7bdc7188a6f5

ARM architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_arm.deb
      Size/MD5 checksum: 60406 2d6c5ba122757fe453ccb97159839b27
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_arm.deb
      Size/MD5 checksum: 58406 e6478cafa3ba2735f7c8c4ccb9f2d375
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_arm.deb
      Size/MD5 checksum: 5276 6d183c6c7b7b3a271608718b1b330abf

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_i386.deb
      Size/MD5 checksum: 58940 2af5e448f2d6fb3cb718be00b12e8dc8
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_i386.deb
      Size/MD5 checksum: 55680 e48ae5ac13350c9069c34883c66689d8
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_i386.deb
      Size/MD5 checksum: 5166 cfbed9bcee48a300b5f3342f585c2ea4

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_ia64.deb
      Size/MD5 checksum: 70888 2810af532211a5ff7237faa02f2fa2a2
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_ia64.deb
      Size/MD5 checksum: 65898 ea3ff46a153c3755f9c1fc70555e016d
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_ia64.deb
      Size/MD5 checksum: 6614 421f2ed6e492250f4ea7455d0790cc60

HP Precision architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_hppa.deb
      Size/MD5 checksum: 63716 ca76198968a8c301fed26b02ea0fb8ea
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_hppa.deb
      Size/MD5 checksum: 59746 2679d450cd83f08718ee2e825cda2410
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_hppa.deb
      Size/MD5 checksum: 5774 e48ac73b088227f326c8f4c1d1328c2a

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_m68k.deb
      Size/MD5 checksum: 57432 cb5f2f533adcf17218d99e48a3cb4faf
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_m68k.deb
      Size/MD5 checksum: 52286 367246afee4ccfa45ce06fdac281bc58
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_m68k.deb
      Size/MD5 checksum: 5036 c295511ed7b42ccede3741fece86cad1

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_mips.deb
      Size/MD5 checksum: 60862 0f2c59e735155972eeb95083f6e25bf9
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_mips.deb
      Size/MD5 checksum: 60022 f0566f7dbe6c545108f3d8fd23a41a08
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_mips.deb
      Size/MD5 checksum: 5496 af07688fbaf8c7fdccb2835f1096f99a

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_mipsel.deb
      Size/MD5 checksum: 60768 1d8f1b60ff53f23e19ac991789a7d249
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_mipsel.deb
      Size/MD5 checksum: 59722 23d38d0b52b948d47c10a6eb316660d2
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_mipsel.deb
      Size/MD5 checksum: 5562 380dcfd8f22af1a34ea063b0844c64e4

PowerPC architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_powerpc.deb
      Size/MD5 checksum: 60780 eaa1b51cef30ed9008eba5eaf669b285
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_powerpc.deb
      Size/MD5 checksum: 62524 516b9b739fb165c07d2c2f44469273f6
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_powerpc.deb
      Size/MD5 checksum: 5428 e9cd704387f98d3d3b8218d0b099bda4

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_s390.deb
      Size/MD5 checksum: 59822 1273b0034ce45c9d67b1c9a5ecadd8a4
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_s390.deb
      Size/MD5 checksum: 56730 3eb9e55677ce89c5d830ff7003443ac4
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_s390.deb
      Size/MD5 checksum: 5600 ab80c98f176ae54f9ece2b41c9d80263

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_3.4-1.1woody1_sparc.deb
      Size/MD5 checksum: 59392 cdcd38f84276e1d976d90578a9a558d4
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_3.4-1.1woody1_sparc.deb
      Size/MD5 checksum: 56750 bc0b0c65125ebfd1c1d6815a09bcb1c8
    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_3.4-1.1woody1_sparc.deb
      Size/MD5 checksum: 7864 251068569691247a4beb0d46db1cb789

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_4.5-1.2sarge1.dsc
      Size/MD5 checksum: 595 ac6150d25157f866b2b7f46812a82761
    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_4.5-1.2sarge1.diff.gz
      Size/MD5 checksum: 186116 fa5cd3f6a8cbcc88bcfd387634d12c66
    http://security.debian.org/pool/updates/main/p/pcre3/pcre3_4.5.orig.tar.gz
      Size/MD5 checksum: 476057 a58971177114a3b7a5da0e5a89a43c96

Architecture independent components:

    http://security.debian.org/pool/updates/main/p/pcre3/pgrep_4.5-1.2sarge1_all.deb
      Size/MD5 checksum: 768 6349e44e476cfb9dfccd483b5bc98cbc

Alpha architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_alpha.deb
      Size/MD5 checksum: 113688 a7df1688edf447a5df5ef3cf42e20a9b
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_alpha.deb
      Size/MD5 checksum: 113664 72c1450c3510622db54acec47adc0996
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_alpha.deb
      Size/MD5 checksum: 9886 8c22637e9341ab909d0588dbd8aa542c

AMD64 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_amd64.deb
      Size/MD5 checksum: 107126 f79097dfad2a9c3c27d2792aa8e17975
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_amd64.deb
      Size/MD5 checksum: 106884 a29c5174f6bf23d632a4f70b1cb6bab7
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_amd64.deb
      Size/MD5 checksum: 9176 ed86973df6a047b0b8279875119795ac

ARM architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_arm.deb
      Size/MD5 checksum: 106846 8e2192b4a99f34b431185b638059184e
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_arm.deb
      Size/MD5 checksum: 107464 bf4ace192cd1e4991bbd49004ff345a5
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_arm.deb
      Size/MD5 checksum: 8654 194c154e5fd01bae833252fefce48ef8

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_i386.deb
      Size/MD5 checksum: 107806 5462241d0e9cbad6f9385d9e69e63df5
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_i386.deb
      Size/MD5 checksum: 106116 2776119c04627d7e020e0e2a28d829b4
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_i386.deb
      Size/MD5 checksum: 8574 9bd58334a575fce0f39ad1b7e96e8bf0

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_ia64.deb
      Size/MD5 checksum: 126468 2fb6d844c1816f86fbdc180ec874458c
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_ia64.deb
      Size/MD5 checksum: 119958 27a1b846fc9d4549bc7d56acbebc4701
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_ia64.deb
      Size/MD5 checksum: 11156 0e05c09a9156c1649451dc04cc1a403b

HP Precision architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_hppa.deb
      Size/MD5 checksum: 112270 d872b9d73852c5cdaee9e7b99dfd4a8c
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_hppa.deb
      Size/MD5 checksum: 108640 21a814ece299a9d9dd73878f17703805
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_hppa.deb
      Size/MD5 checksum: 9740 ab0261190a75ac0893dbd0d83a0d075e

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_m68k.deb
      Size/MD5 checksum: 101580 6ba0f48fa1a5d58b76d098b09233dda1
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_m68k.deb
      Size/MD5 checksum: 99358 150bf88d39a8627940a05e1e06ae325b
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_m68k.deb
      Size/MD5 checksum: 8320 ac81c73b5d96c61343eaee5a30db045c

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_mips.deb
      Size/MD5 checksum: 106808 4330ce6ef2dbe3e74930912b5d842091
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_mips.deb
      Size/MD5 checksum: 108422 b4b532ddd12affa682bc873befdaf8ff
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_mips.deb
      Size/MD5 checksum: 9498 159f69ee0f42193545774a6c6fa582ee

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_mipsel.deb
      Size/MD5 checksum: 106908 cdcbdcbc499046f5d735d4e9edd6f7ae
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_mipsel.deb
      Size/MD5 checksum: 107774 5b495d916e35f1b2f46aca316f981c17
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_mipsel.deb
      Size/MD5 checksum: 9546 dfa799043e392273ed76cf5659b6498a

PowerPC architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_powerpc.deb
      Size/MD5 checksum: 110010 d91eb03e18c0f7d124505c671103fce0
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_powerpc.deb
      Size/MD5 checksum: 111210 9b32b4685b49562d3c8183bb9246c392
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_powerpc.deb
      Size/MD5 checksum: 10678 1548bafd11e8b283627f16dbb977f5be

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_s390.deb
      Size/MD5 checksum: 107654 f10b8fe1fa1dd19948f3d286807ce553
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_s390.deb
      Size/MD5 checksum: 106998 d76769f32c87ea11bfd71e585d6de219
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_s390.deb
      Size/MD5 checksum: 9364 69d17cd7d354048f2e8e972b7a15987e

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3_4.5-1.2sarge1_sparc.deb
      Size/MD5 checksum: 105100 3598c03dd322930154071e6a5e8209e5
    http://security.debian.org/pool/updates/main/p/pcre3/libpcre3-dev_4.5-1.2sarge1_sparc.deb
      Size/MD5 checksum: 105458 f47f0ca4d4db2a948db936d56831a0aa
    http://security.debian.org/pool/updates/main/p/pcre3/pcregrep_4.5-1.2sarge1_sparc.deb
      Size/MD5 checksum: 8728 b8877f4ed857346920c2773047efc821

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 801-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
September 5th, 2005 http://www.debian.org/security/faq

Package : ntp
Vulnerability : programming error
Problem-Type : local
Debian-specific: no
CVE ID : CAN-2005-2496

SuSE developers discovered that ntp confuses the given group id with the group id of the given user when called with a group id on the commandline that is specified as a string and not as a numeric gid, which causes ntpd to run with different privileges than intended.

The old stable distribution (woody) is not affected by this problem.

For the stable distribution (sarge) this problem has been fixed in version 4.2.0a+stable-2sarge1.

The unstable distribution (sid) is not affected by this problem.

We recommend that you upgrade your ntp-server package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1.dsc
      Size/MD5 checksum: 854 073a5db4d10747c018badaf285c8d673
    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1.diff.gz
      Size/MD5 checksum: 227920 18441676d886725e9772f50d6d66ed73
    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable.orig.tar.gz
      Size/MD5 checksum: 2272395 30f8b3d5b970c14dce5c6d8c922afa3e

Architecture independent components:

    http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.0a+stable-2sarge1_all.deb
      Size/MD5 checksum: 888700 65e345e5a4c5671c35c35c2321a57929

Alpha architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_alpha.deb
      Size/MD5 checksum: 281984 8018bab983d1b1273d80f13c98ab043e
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_alpha.deb
      Size/MD5 checksum: 268648 6a928c73d9a35e5d46be564919bfc5b3
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_alpha.deb
      Size/MD5 checksum: 33048 1206c292d2aea812ab31bc6c82747a83
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_alpha.deb
      Size/MD5 checksum: 157866 8129080e8d5a3efeeb35639a016455cc
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_alpha.deb
      Size/MD5 checksum: 48592 05084385b3fc719fc86ad052fa03417d

AMD64 architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_amd64.deb
      Size/MD5 checksum: 264728 7fcf78a01ddc8e476057626abec86301
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_amd64.deb
      Size/MD5 checksum: 214096 e50b5a1b4dc57d8717fff35a3e482e11
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_amd64.deb
      Size/MD5 checksum: 31970 0251dd0e396376bf7eddaab24011dba8
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_amd64.deb
      Size/MD5 checksum: 129240 1c87bef079e38724a2c842001ba27444
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_amd64.deb
      Size/MD5 checksum: 44064 75f22981803941881927a8d5c81e95ef

ARM architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_arm.deb
      Size/MD5 checksum: 257214 619dabee145fcc286294846d69d7d90c
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_arm.deb
      Size/MD5 checksum: 209646 1e134996fc09d8d0c93a7bfb4414c95a
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_arm.deb
      Size/MD5 checksum: 31368 3fe285ab9de86209226659ee91e07784
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_arm.deb
      Size/MD5 checksum: 127812 d0a44d77818399c1dbffba95a0d2bb71
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_arm.deb
      Size/MD5 checksum: 42664 6e4e47990a6d0c296fee757c6f4f0d43

Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_i386.deb
      Size/MD5 checksum: 255444 03cc653031d7be7ff023b66a59bc681e
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_i386.deb
      Size/MD5 checksum: 200168 7a5bc9c7071e9b4c48573aa0e1334013
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_i386.deb
      Size/MD5 checksum: 31284 82c3f7be081c0c49f7447c0a2bffe007
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_i386.deb
      Size/MD5 checksum: 120276 e01e8f15ee6b755a71bc80662a9db60e
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_i386.deb
      Size/MD5 checksum: 41574 82575f5fbb7a6bf7d5b98ec9ea0cdfc8

Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_ia64.deb
      Size/MD5 checksum: 302788 e9c9691a2effcb54e19e36637b8f4510
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_ia64.deb
      Size/MD5 checksum: 312428 82bbe1fcbfb03f64158b074116440c59
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_ia64.deb
      Size/MD5 checksum: 35044 b9100c5ee1d7bb7feeb42a931078cdd5
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_ia64.deb
      Size/MD5 checksum: 179862 dce97a989ead971d6a2a92914cc27b4c
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_ia64.deb
      Size/MD5 checksum: 54388 c368e58b9ab51c7ee284962fb87df75f

HP Precision architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_hppa.deb
      Size/MD5 checksum: 268198 2fd7862ec6edb2fc494da2ddad4a04fd
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_hppa.deb
      Size/MD5 checksum: 223882 45e64eae438e54010678c4238561bbe7
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_hppa.deb
      Size/MD5 checksum: 32602 78cf25bd39bc1d32c7fe0717b85ebc0b
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_hppa.deb
      Size/MD5 checksum: 132252 2a38c59d881fede586fe0a1188f68cb6
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_hppa.deb
      Size/MD5 checksum: 45084 6b16a8e6dd8a4e734c5c78a48a661d53

Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_m68k.deb
      Size/MD5 checksum: 245984 0fd8a681ade16a07b93871b9f274c833
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_m68k.deb
      Size/MD5 checksum: 176774 0b0f69e0c66d6f884471d3f75ca97e7b
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_m68k.deb
      Size/MD5 checksum: 30962 370a2555328ef924fd184e705f481fbb
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_m68k.deb
      Size/MD5 checksum: 108038 f40c34ae5aa890b32ba3ad7ae9d2ebcf
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_m68k.deb
      Size/MD5 checksum: 39940 52edbfdbe569a155f849e9cb1f171955

Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_mips.deb
      Size/MD5 checksum: 268154 9135d6701c0ab87d77a73cc9850a0726
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_mips.deb
      Size/MD5 checksum: 233488 56e93ee7ecba66b6ebca7310cd564faa
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_mips.deb
      Size/MD5 checksum: 33926 fd4e4f7c6abd5ae4d106eb193944f616
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_mips.deb
      Size/MD5 checksum: 138146 0e816e27f765f9a046127f4bb7163819
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_mips.deb
      Size/MD5 checksum: 46228 acb472598aa68bcc2e02f7fa76c39519

Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_mipsel.deb
      Size/MD5 checksum: 270556 83a5301cef400a1c60ebab2a39907436
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_mipsel.deb
      Size/MD5 checksum: 242944 a6550d4d21423deecafbc8e5c24830b1
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_mipsel.deb
      Size/MD5 checksum: 33942 c2660bf5737ede43d3857a09ae83462d
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_mipsel.deb
      Size/MD5 checksum: 146338 669c97272299c5d6f79cf0cec161a270
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_mipsel.deb
      Size/MD5 checksum: 46606 766f54b333ecafbce9f935c3013aa273

PowerPC architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_powerpc.deb
      Size/MD5 checksum: 266082 4b95908ba945a5981de225e7f08a08cf
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_powerpc.deb
      Size/MD5 checksum: 213172 40f7b322d123d4a0c07b0a72c88ea316
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_powerpc.deb
      Size/MD5 checksum: 31914 41f2214cbba83c953645d828cb08163c
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_powerpc.deb
      Size/MD5 checksum: 129092 f278da81542a03b383117acdbc223045
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_powerpc.deb
      Size/MD5 checksum: 43684 67e6a656ad5786b54f5924b4d33f7da3

IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_s390.deb
      Size/MD5 checksum: 262906 a5dba3ef8693a44ca7e53c750a7b602c
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_s390.deb
      Size/MD5 checksum: 209214 521113f21da1b4b125806dc673c13a41
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_s390.deb
      Size/MD5 checksum: 31812 f115ec3f6c74b884c2e8d6ed46c362e8
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_s390.deb
      Size/MD5 checksum: 126366 2bea02161d8fe272b63e9ea73afd2634
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_s390.deb
      Size/MD5 checksum: 44204 b6c1d457ee2938707cc601ee533d4103

Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.0a+stable-2sarge1_sparc.deb
      Size/MD5 checksum: 255138 2fa91e71128b89183d52bda74f4e6329
    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.0a+stable-2sarge1_sparc.deb
      Size/MD5 checksum: 201106 945e6362db7bca49daa7f1ae91637b60
    http://security.debian.org/pool/updates/main/n/ntp/ntp-server_4.2.0a+stable-2sarge1_sparc.deb
      Size/MD5 checksum: 31398 578d29c5f031717a9a5cd7c5afa6f756
    http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.0a+stable-2sarge1_sparc.deb
      Size/MD5 checksum: 120274 9cabce720603c3b96b168df882bb3230
    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.0a+stable-2sarge1_sparc.deb
      Size/MD5 checksum: 42486 75b2d4cc418c402819f29249b329fcb0

These files will probably be moved into the stable distribution on its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>


No talkbacks posted.
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP