Bugs

Nick Hudson nhudson at lunar-linux.org
Mon Oct 20 12:17:41 GMT 2003 

GDM is fixed with the latest release 2.4.4.5 ... well fixed of the DOS
problem anyway :)

Nick


On Mon, 2003-10-20 at 09:56, Niki Guldbrand wrote:
> Hi All.
> 
> It's monday again and another mail.
> 
> It's currently unsure if fetchmail 6.2.5 has a fix or not
> Our gdm has been updated to a fixed version...
> Glibc has a buffer overflow in glibc 2.3.2 fix can be found at
> http://sources.redhat.com/cgi-bin/cvsweb.cgi/libc/grp/initgroups.c.diff?r1=1.28&r2=1.29&cvsroot=glibc
> 
> 6. Fetchmail
> 
>     Vendor: Raymond, Eric S.
> 
>     A denial of service vulnerability was reported in fetchmail.  A
>     remote user can cause fetchmail to crash.
> 
>     Impact: Denial of service via network
> 
>     Alert: http://securitytracker.com/alerts/2003/Oct/1007944.html
> 
> 
> 7. GNOME Display Manager
> 
>     Vendor: Gnome Development Team
> 
>     Two security vulnerabilities were reported in the GNOME Display
>     Manager (gdm).  A local user can cause denial of service conditions.
> 
>     Impact: Denial of service via local system
> 
>     Alert: http://securitytracker.com/alerts/2003/Oct/1007942.html
> 
> 
> 8. Glibc
> 
>     Vendor: GNU [multiple authors]
> 
>     A buffer overflow vulnerability was reported in the glibc
>     library.  A remote or local user may be able to cause an affected
>     application to crash or execute arbitrary code.  The specific
>     impact depends on how the application uses the library.
> 
>     Impact: Denial of service via local system
> 
>     Alert: http://securitytracker.com/alerts/2003/Oct/1007940.html
> 
> 
> 
> ______________________________________________________________________
> _______________________________________________
> lunar-dev mailing list
> lunar-dev at lunar-linux.org
> http://dbguin.lunar-linux.org/mailman/listinfo/lunar-dev
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://dbguin.lunar-linux.org/mailman/private/lunar-dev/attachments/20031020/045b283b/attachment.bin

More information about the lunar-dev mailing list