Linux Today: Linux News On Internet Time.

More on LinuxToday

Security Linux News for Jun 06, 2002

  • Trustix Secure Linux Advisory: tcpdump (2002-06-06 23:28:44)
    "The old tcpdump-packages included a buffer overflow that could be triggered when tracing the network by a bad NFS packet..."

  • Conectiva Linux Advisory: bind (2002-06-06 20:26:29)
    "ISC (Internet Software Consortium) reported a remote denial of service vulnerability[2] in the BIND[1] server. A remote attacker can exploit this problem and shut down the name server..."

  • SOT Linux Advisory: bind (2002-06-06 20:24:15)
    "Versions of BIND 9 prior to 9.2.1 have a bug that causes certain requests to the BIND name server (named) to fail an internal consistency check, causing the name server to stop responding to requests. This can be used by a remote attacker to cause a denial of service (DOS) attack against name servers..."

  • SuSE Linux Advisory: bind9, bind9-beta (2002-06-06 17:01:59)
    "There is a bug in the BIND9 name server that is triggered when processing certain types of DNS replies. When this happens an assertion will fail, and named will log a message to the system log before exiting. This means a remote attacker can easily shut down the name server process..."

  • LinuxSecurity.com: Flying Pigs: Snorting Next Generation Secure Remote Log Servers over TCP (2002-06-06 03:00:15)
    "What this paper hopes to accomplish is to walk its readers through building next generation secure remote log servers to use in any environment, more specifically those wanting to utilize this form of logging with the Snort Intrusion Detection System..."