Security Portal: Weekly Linux Security Digest 2000/11/06 to 2000/11/12Nov 13, 2000, 08:17 (0 Talkback[s])
(Other stories by Kurt Seifried)
"The big news this week is a remote denial of service in some versions of Bind. Luckily, with proper access controls the danger can be greatly minimized. There is also a problem in vlock for Red Hat 6.2, but it doesn't affect 7.0. Mandrake issued updated packages for nss_ldap, and that's about it. Most of the activity this week has been in the BSD world. OpenSSH has released version 2.3.0, continuing their record of excellent software."
"We lead off with general advisories and exploit code, then move to vendor advisories. Most items appear in alphabetical order. If we're missing a Linux vendor's advisory, please tell us - ditto for any Linux-related security alerts. The long strings of hex in front of package names are MD5 signatures."