On Tue, 14 Jan 2003, Joerg Mayer wrote:
On Tue, Jan 14, 2003 at 11:30:03AM +0100, Thomas Biege wrote:
2) Pending vulnerabilities in SuSE Distributions and Workarounds:
- fam SuSE Versions < 8.0 are shipping a vulnerable version of fam which allows unprivileged users to determine filenames of group root. New fam packages are build and will be released right after quality assurance permits. - xpdf An integer overflow in pdftops may lead to system compromise. New packages are currently being build. - libmcrypt Several buffer overflows in libmcrypt were discovered by Ilia Alshanetsky. The buffer overflows can lead to system compromise. New packages are currently being build.
How about the kde 3.0.5a fixes? Did I miss an announcement?
No, you didnt miss it. It will take some time due to the extensive testing phase. Bye, Thomas -- Thomas Biege <thomas@suse.de> SuSE Linux AG,Deutschherrnstr. 15-19,90429 Nuernberg Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/contact/thomas.asc | pgp -fka" Key fingerprint = 51 AD B9 C7 34 FC F2 54 01 4A 1C D4 66 64 09 83 -- Over thinking, Over analyzing, seperates the body from the mind. - Maynard James Keenan