[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Insecurities in traceroute and lpr packages

To: linux-delhi@xxxxxxxxxxxxxxxxxxxxx, linux-india-help@xxxxxxxxxxxxxxxxxxxxx
Subject: Insecurities in traceroute and lpr packages
From: Raju Mathur <raju@xxxxxxxxxxxxxxx>
Date: Fri, 6 Oct 2000 05:19:24 +0530 (IST)
Reply-to: raju@xxxxxxxxxxxxxxx

Hi,

New vulnerabilities have been found in the following programs:

1.  traceroute

2.  lpr packages (lpd, lprNG, etc)

Both of these allow escalation of local user privileges (i.e. a
logged-in user can become root if s/he uses the appropriate exploit).
Please check if your distribution has updates for either/both these
packages and upgrade if so.

Regards,

-- Raju

Prev by Subject: Re: Increasing SWAP from 127 MB to 128 MB
Next by Subject: insmod problem
Previous by thread: Re: Prob with Telnet service in RH Linux 6.2
Next by thread: Re: [RedHat 7 CD]
Index(es):
- Subject
- Thread