Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Apr 05, 2002

  • Linux Advisory Watch: April 5, 2002 (Apr 05, 2002, 20:30)
    This week, advisories were released for the Linux kernel, openssh, cups, nscd, kde, squid, mod_ssl, XFree86, rsync, and zlib. The vendors include Caldera and Conectiva. Caldera users especially should pay particular close attention to this newsletter. A total of nine specific Caldera advisories were released this week.

  • Caldera Advisory: Double Free in zlib (libz) Vulnerability (Apr 05, 2002, 17:24)
    "There is a bug in the zlib compression library that may manifest itself as a vulnerability in programs that are linked with zlib. This may allow an attacker to conduct a denial-of-service attack, gather information, or execute arbitrary code."

  • Red Hat Advisory: Race Conditions in LogWatch (Apr 05, 2002, 17:12)
    Updated LogWatch packages are available that fix tmp file race conditions which can cause a local user to gain root privileges.

  • NLUUG E-Zine: On ProxyTunnel (Apr 05, 2002, 05:00)
    "It dawned on me that, in essence, an HTTPS web proxy is a sort of tunnel into the Internet for everyone who is willing to speak the HTTP's protocol CONNECT command..."