Debian alert: New typespeed packages fix buffer overflow
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 217-1 security@debian.org http://www.debian.org/security/ Martin Schulze December 27th, 2002 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : typespeed Vulnerability : buffer overflow Problem-Type : local Debian-specific: no A problem has been discovered in the typespeed, a game that lets you measure your typematic speed. By overflowing a buffer a local attacker could execute arbitrary commands under the group id games. For the current stable distribution (woody) this problem has been fixed in version 0.4.1-2.1. For the old stable distribution (potato) this problem has been fixed in version 0.4.0-5.1. For the unstable distribution (sid) this problem has been fixed in version 0.4.2-2. We recommend that you upgrade your typespeed package. wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 2.2 alias potato - --------------------------------- Source archives: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1.dsc Size/MD5 checksum: 575 f6226194d5fc98835987d752904f7149 http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1.diff.gz Size/MD5 checksum: 6763 deefebffe7313476dff4d1b076c46cd7 http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0.orig.tar.gz Size/MD5 checksum: 33037 587b3ca15b32142d24bd452881c64dd1 Alpha architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_alpha.deb Size/MD5 checksum: 40752 2fdb1f039ddb6fa746e785744632590f ARM architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_arm.deb Size/MD5 checksum: 34716 ae61105ff80f44f49ea6a92b48cce71e Intel IA-32 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_i386.deb Size/MD5 checksum: 34326 b5bc6881676b8a102afcad03de4c4eb7 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_m68k.deb Size/MD5 checksum: 33486 2b6d7bac7d6f582b77a61683d7afb437 PowerPC architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_powerpc.deb Size/MD5 checksum: 37004 7ef642e4f567077c7eda5094359f6d8d Sun Sparc architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_sparc.deb Size/MD5 checksum: 39132 521d46c4ffcb2315674388756bae0a5a Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1.dsc Size/MD5 checksum: 575 fb28aec0af0ad71d5f3c424359082a32 http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1.diff.gz Size/MD5 checksum: 8136 ccafdd4e0cf004587395ef4a72484efd http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1.orig.tar.gz Size/MD5 checksum: 35492 0af9809cd20bd9010732ced930090f32 Alpha architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_alpha.deb Size/MD5 checksum: 44336 83b3ed65a67602831d5dc089f53bcfc5 ARM architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_arm.deb Size/MD5 checksum: 39016 eb929720e523608b0e74876c28505a86 Intel IA-32 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_i386.deb Size/MD5 checksum: 38708 03594d270467f1e603deb4a710cf1c54 Intel IA-64 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_ia64.deb Size/MD5 checksum: 49902 c21eb5bcefee5e06c2d3172675f1dd1f HP Precision architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_hppa.deb Size/MD5 checksum: 41824 f8366e40e1a202bc517c53f5c4318ff0 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_m68k.deb Size/MD5 checksum: 37398 97cc30fc64831b29fa381525be5efdd5 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_mips.deb Size/MD5 checksum: 41050 32977331dc2e7abc553bcce803a6f91c Little endian MIPS architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_mipsel.deb Size/MD5 checksum: 41078 5d24a3e5e23743e83c2b1e94b8e30efa PowerPC architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_powerpc.deb Size/MD5 checksum: 41172 9d35eb25d585f47dcddc85bc8282ca4d IBM S/390 architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_s390.deb Size/MD5 checksum: 38628 13452b96ee560a05b3d17f71ad194f5f Sun Sparc architecture: http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_sparc.deb Size/MD5 checksum: 42972 0ac49283d67f331bae77b6c52cf2d521 These files will probably be moved into the stable distribution on its next revision. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+DGx1W5ql+IAeqTIRAjbZAJ4/kViaK0I2hsuGDE8w/GAKj/heNgCgo5Zz v0KtZDPMK5E3/3XtpglBrGs= =S3dh -----END PGP SIGNATURE----- |
|
This topic does not have any threads posted yet!
You cannot post until you login.