Re: [suse-security] hylafax buffer overflow

2 Sep 2002

      Hi.

On Fri, 30 Aug 2002, Kevin Ivory wrote:
...
Kevin Ivory wrote:
...
The CERT/Debian announcement referring to Hylafax brought me to
http://www.hylafax.org/4.1.3.html "Also fixed is a buffer overflow
condition when receiving fax image data which potentially could be
exploited to execute arbitrary code as root."
Are the SuSE packages affected as well? Are you working on update
packages?
Two weeks later: Now Mandrake has supplied security updates as
well. I still need an answer to the questions above.
We are in the process of verifying these bugs and will release new
packages if they are serious enough. Stay tuned....

Bye,
     Thomas
-- 
  Thomas Biege 
  SuSE Linux AG,Deutschherrnstr. 15-19,90429 Nuernberg
  Function: Security Support & Auditing
  "lynx -source http://www.suse.de/~thomas/contact/thomas.asc | pgp -fka"
  Key fingerprint = 51 AD B9 C7 34 FC F2 54  01 4A 1C D4 66 64 09 83
-- 
	Trete durch die Form ein, und trete aus der Form heraus.