Bugtraq mailing list archives
[linux-security] SECURITY: Important bug fix for /sbin/login
From: ewt () redhat com (Erik Troan)
Date: Thu, 16 Jan 1997 10:21:44 -0600
Their is a buffer overrun in /bin/login which has the potential to allow any user of your system to gain root access. util-linux-2.5-29 contains a fix for this and is available for Red Hat Linux 4.0 on all four platforms. We strongly recommend that all of Red Hat 4.0 usres apply this fix. Users of Red Hat Linux versions earlier then 4.0 should upgrade to 4.0 and then apply all available security pacakges. Users whose computers have direct internet connections may apply this update by using one of the following commands: Intel: rpm -Uvh ftp://ftp.redhat.com/updates/4.0/i386/util-linux-2.5-29.i386.rpm Alpha: rpm -Uvh ftp://ftp.redhat.com/updates/4.0/axp/util-linux-2.5-29.axp.rpm SPARC: rpm -Uvh ftp://ftp.redhat.com/updates/4.0/sparc/util-linux-2.5-29.sparc.rpm All of these packages have been signed with Red Hat's PGP key. Erik [mod: Forwarded by Richard Jones, Mangled by me to make this appear to have been sent by Erik himself... -- REW] - ----------------------------------------------------------------------------- -- | I told you I'm not very bright -- Sugar in "Some Like It Hot" | | "RPM is the greatest thing since swap-space" - Bryan C. Andregg | | | Erik Troan = ewt () redhat com = ewt () sunsite unc edu |
Current thread:
- Re: BoS: serious security bug in wu-ftpd v2.4 Dave Kinchlea (Jan 05)
- BoS: serious security bug in wu-ftpd v2.4 -- PATCH Dave Kinchlea (Jan 05)
- Re: BoS: serious security bug in wu-ftpd v2.4 -- PATCH Henrik P Johnson (Jan 12)
- Stronghold v1.3.3: Security Release Sean B. Hamor (Jan 13)
- [linux-security] SECURITY: Important bug fix for /sbin/login Erik Troan (Jan 16)
- Smashing the stack on a DEC Alpha Lamont Granquist (Jan 16)
- Re: Smashing the stack on a DEC Alpha Digital Dreamer (Jan 16)
- Re: Smashing the stack on a DEC Alpha Julian Assange (Jan 16)
- FreeBSD Security Advisory: SA-96:21 - talkd FreeBSD Security Officer (Jan 18)
- Re: FreeBSD Security Advisory: SA-96:21 - talkd Theo de Raadt (Jan 20)
- talkd problem Theo de Raadt (Jan 20)
- Re: talkd problem David Holland (Jan 20)
- Smashing the stack Zygo Blaxell (Jan 20)
- Re: Smashing the stack David Holland (Jan 20)
- Re: Smashing the stack Bill Sommerfeld (Jan 21)
- BoS: serious security bug in wu-ftpd v2.4 -- PATCH Dave Kinchlea (Jan 05)