Mailinglist Archive: opensuse-security (375 mails)

< Previous Next >
Re: [suse-security] hylafax buffer overflow
  • From: Thomas Biege <thomas@xxxxxxx>
  • Date: Mon, 2 Sep 2002 17:47:00 +0200 (CEST)
  • Message-id: <Pine.LNX.4.33.0209021745260.6441-100000@xxxxxxxxxxxxx>
Hi.


On Fri, 30 Aug 2002, Kevin Ivory wrote:

> Kevin Ivory wrote:
> > The CERT/Debian announcement referring to Hylafax brought me to
> > http://www.hylafax.org/4.1.3.html "Also fixed is a buffer overflow
> > condition when receiving fax image data which potentially could be
> > exploited to execute arbitrary code as root."
> >
> > Are the SuSE packages affected as well? Are you working on update
> > packages?
>
> Two weeks later: Now Mandrake has supplied security updates as
> well. I still need an answer to the questions above.

We are in the process of verifying these bugs and will release new
packages if they are serious enough. Stay tuned....

Bye,
Thomas
--
Thomas Biege <thomas@xxxxxxx>
SuSE Linux AG,Deutschherrnstr. 15-19,90429 Nuernberg
Function: Security Support & Auditing
"lynx -source http://www.suse.de/~thomas/contact/thomas.asc | pgp -fka"
Key fingerprint = 51 AD B9 C7 34 FC F2 54 01 4A 1C D4 66 64 09 83
--
Trete durch die Form ein, und trete aus der Form heraus.


< Previous Next >
This Thread
  • No further messages