Debian Security Advisory: New version of sash releasedJan 23, 2001, 08:16 (0 Talkback[s])
(Other stories by Martin Schulze)
Date: Tue, 23 Jan 2001 03:57:24 +0100
Debian Security Advisory DSA-015-1 firstname.lastname@example.org http://www.debian.org/security/ Martin Schulze January 23, 2001
Package : sash Vulnerability : broken maintainer script Debian-specific: yes Versions of sash prior to 3.4-4 did not clone /etc/shadow properly which lead into readable files for anybody. This was fixed by the Debian maintainer. This package only exists in stable, so if you are running unstable you won't see a bugfix unless you use the resources from the bottom of this message to the proper configuration. We recommend you upgrade your sash package immediately. wget url will fetch the file for you dpkg -i file.deb will install the referenced file.You may use an automated update by adding the resources from the footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato
Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures.
Intel ia32 architecture:
Motorola 680x0 architecture:
Sun Sparc architecture:
These files will be moved into ftp://ftp.debian.org/debian/dists/stable/*/binary-$arch/ soon.
For not yet released architectures please refer to the appropriate directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .
For apt-get: deb http://security.debian.org/