Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Jun 29, 2001

  • EnGarde Secure Linux Security Advisory: xinetd (2001-06-29 14:45:06)
    This seems to be the day for security announcements. "There are bugs (both security and non-security) in xinetd. The non-security bug causes xinetd to fail after the first connection attempt and the security bug can potentially lead to a root comprimise via a buffer overflow."

  • SuSE Security Announcement: samba (2001-06-29 14:15:30)
    "In addition to the remotely exploitable bug, there exists another vulnerability which is fixed with the update packages we provide below: temporary files are being handled insecurely so that an attacker with local access to the system can increase her privileges. This error was discovered by Marcus Meissner, Caldera. This specific problem has been fixed with the release of the samba-2.0.9 version. samba release version 2.0.8 intended to correct this local problem, but due to an error, 2.0.9 contained the complete fix."

  • LinuxSecurity.com: Linux Advisory Watch - June 29th 2001 (2001-06-29 13:50:44)
    This week, advisories were released for apache, fetchmail, gnupg, samba, webmin, kdesu, iptables, XFree86, rxvt, exim, and ispell. The vendors include Caldera, Conectiva, Debian, EnGarde, Immunix, Mandrake, Red Hat, and Progeny. The samba vulnerability is present on many distributions. Administrators should update their samba packages immediately.