Date: Wed, 7 Mar 2001 20:39:40 +0100
From: Martin Schulze joey@finlandia.infodrom.north.de
To: Debian Security Announcements
debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 035-1] New version of man2html
available
Package : man2html
Vulnerability : denial of service
Type : remote DoS
Debian-specific: no
Fixed version : 1.5-22 and 1.5-23
It has been reported that one can tweak man2html remotely into
consuming all available memory. This has been fixed by
Nicolás Lichtmaier with help of Stephan Kulow.
We recommend you upgrade your man2html package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato
Potato was released for the alpha, arm, i386, m68k, powerpc and
sparc architectures.