LinuxSecurity.com: Linux Advisory Watch, October 6th, 2000Oct 06, 2000, 14:19 (0 Talkback[s])
(Other stories by Benjamin D. Thomas)
[ Thanks to Benjamin D. Thomas for this link. ]
"This week, advisories were released for lpr, LPRng, libutil, gnorpm, traceroute, and xinitrc. The vendors include Conectiva, Immunix, Mandrake, OpenBSD, and RedHat. It is critical that you update all vulnerable packages. One of the more serious advisories released this week is lpr."
"One of the more serious advisories released this week is lpr. There is a format string bug in lpd that could potentially be exploited to gain local root access. There is also a bug in traceroute that could result as a local root compromise."
"Our sponsor this week is OpenDoc Publishing. Their 480-page comprehensive security book, Securing and Optimizing Linux, takes a hands-on approach to installing, optimizing, configuring, and securing Red Hat Linux. Topics include sendmail 8.10.1, OpenSSL, ApacheSSL, OpenSSH and much more! Includes Red Hat 6.2 and Red Hat 6.2 PowerTools edition."