Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Jul 16, 2000

  • Debian Security Advisory: Package: cvsweb (Jul 16, 2000, 21:19)
    "The versions of cvsweb distributed in Debian GNU/Linux 2.1 (aka slink) as well as in the frozen (potato) and unstable (woody) distributions, are vulnerable to a remote shell exploit. An attacker with write access to the cvs repository can execute arbitrary code on the server, as the www-data user."