---

Security Portal: Weekly Linux Security Digest 2000/11/06 to 2000/11/12

The big news this week is a remote denial of service in
some versions of Bind. Luckily, with proper access controls the
danger can be greatly minimized.
There is also a problem in
vlock for Red Hat 6.2, but it doesn’t affect 7.0. Mandrake issued
updated packages for nss_ldap, and that’s about it. Most of the
activity this week has been in the BSD world. OpenSSH has released
version 2.3.0, continuing their record of excellent software.”

“We lead off with general advisories and exploit code, then move
to vendor advisories. Most items appear in alphabetical order. If
we’re missing a Linux vendor’s advisory, please tell us – ditto for
any Linux-related security alerts. The long strings of hex in front
of package names are MD5 signatures.”

Complete
Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis