The Yellow Dog Linux Updates Team has released a new errata
update to the ypserv package which fixes a recently discovered
Date: October 27, 1999
With ypserv, local administrators in the NIS domain could possibly
inject password tables. In rpc.yppasswdd, users could change GECOS
and login shells of other users, and there is a buffer overflow in
the md5 hash generation.
All Yellow Dog users that are using ypserv should upgrade to
this errata update.
Solution: rpm -Uvh
Please verify the following md5 checksum for the ypserv update
before you install this new package: md5sum
For more information, please see our Errata and Updates
Yellow Dog Linux Updates Team
Terra Soft Solutions, Inc.