Debian Security Advisory: New man-db packages releasedFeb 08, 2001, 23:58 (0 Talkback[s])
(Other stories by Martin Schulze)
Date: Fri, 9 Feb 2001 00:38:31 +0100
Debian Security Advisory DSA-028-1 email@example.com http://www.debian.org/security/ Martin Schulze February 9, 2001
Package : man-db Vulnerability : format string vulnerability Type : local exploit Debian-specific: noStyx has reported that the program `man' mistakenly passes malicious strings (i.e. containing format characters) through routines that were not meant to use them as format strings. Since this could cause a segmentation fault and privileges were not dropped it may lead to an exploit for the 'man' user.
We recommend you upgrade your man-db package immediately.
wget url will fetch the file for you dpkg -i file.deb will install the referenced file.You may use an automated update by adding the resources from the footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato
Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures.
Intel ia32 architecture:
Motorola 680x0 architecture:
Sun Sparc architecture:
For not yet released architectures please refer to the appropriate directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .
For apt-get: deb http://security.debian.org/
0 Talkback[s] (click to add your comment)