Trustix Security Advisory - diffutils squidJan 12, 2001, 23:39 (0 Talkback[s])
Date: Fri, 12 Jan 2001 16:30:10 +0100
Trustix today released updated versions of the diffutils and squid packages with patches fixing insecure tempfile handling leading to potential local root compromise.
All versions of Trustix Secure Linux are, as far as we know, vulnerable and should be updated.
Get these updates at:
As always, any users of 1.0x should use the update for 1.1.
As of today, users of Trustix Secure Linux 1.2 can grab our new free-as-in-speech (GPL licenced) SoftWare UPdater (SWUP) to automatically update packages and install new packages.
Get SWUP at:
After proper configuration, you can use 'swup --update' to automatically download new updates.
Trustix Security Team