-----BEGIN PGP SIGNED MESSAGE------ ------------------------------------------------------------------------Debian Security Advisory                             security@debian.org 
Debian -- Security Information                          Wichert Akkerman
September  5, 2000
- ------------------------------------------------------------------------
Package: glibc
Vulnerability: local exploit
Debian-specific: no

Recently two problems have been found in the glibc suite, which could be
used to trick setuid applications to run arbitrary code.

An earlier advisory listed the updates for Debian 2.2/potato. This
advisory contains updates for Debian 2.1/slink. For information
about the found problems please see the previous advisory which is
available online at  Debian -- Security Information -- glibc.

UPDATE: the packages mentioned in the previous problem had a bug
that prevented some patches from being applied. This has been
fixed in version 2.0.7.19981211-6.3 .

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.1 alias slink
- ------------------------------------
Fixed packages are available for the Intel ia32 architecture.

  Source archives:
      
      MD5 checksum: 4244c7f623db187881322b0949cc483a
      
      MD5 checksum: 37eb9dc5ecd875e417aaba9ca6e1c25f
      
      MD5 checksum: 91724410e14a2b2b719dc44cf95067f1

  Intel ia32 architecture:
      
      MD5 checksum: 23f5aace9db7104163b2422d600d8869
      
      MD5 checksum: 97deb2bb3eb914174a9bfecf3c3b5f69
      
      MD5 checksum: ca1f18e5d61c4d5f268bc377e06e8cf5
      
      MD5 checksum: 13413f07247f28c2e8b35c1d2c4c9804
      
      MD5 checksum: 1b9d14ad72186ab2a6e9a30990b0ed75
      
      MD5 checksum: c88a5c0ff9d429c0afa280b2dd244b45

- -- 
- ----------------------------------------------------------------------------
For apt-get: deb  Debian -- Security Information  stable/updates main
dpkg - dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----Version: 2.6.3ia
Charset: noconv

iQB1AwUBObQ3M6jZR/ntlUftAQFzRAL7BvCZbNga5mxrBeXq1aZy6iAweIh3ZWc6
BZQ2qHO/azy3Yfi2nfR4S/ND+rvlEfHlGIJRJeE/GhKzinU5t2ybgtl+TyPIy46b
ighG08+q0fI6PE4ek74rr1n/ND4hdEww
=U7oK
-----END PGP SIGNATURE-----

Debian 2.1: glibc vulnerabilities

September 4, 2000

Recently two problems have been found in the glibc suite, which could beused to trick setuid applications to run arbitrary code.

Summary


An earlier advisory listed the updates for Debian 2.2/potato. This
advisory contains updates for Debian 2.1/slink. For information
about the found problems please see the previous advisory which is
available online at Debian -- Security Information -- glibc.

UPDATE: the packages mentioned in the previous problem had a bug
that prevented some patches from being applied. This has been
fixed in version 2.0.7.19981211-6.3 .

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

Debian GNU/Linux 2.1 alias slink
Fixed packages are available for the Intel ia32 architecture.

Source archives:

MD5 checksum: 4244c7f623db187881322b0949cc483a

MD5 checksum: 37eb9dc5ecd875e417aaba9ca6e1c25f

MD5 checksum: 91724410e14a2b2b719dc44cf95067f1

Intel ia32 architecture:

MD5 checksum: 23f5aace9db7104163b2422d600d8869

MD5 checksum: 97deb2bb3eb914174a9bfecf3c3b5f69

MD5 chec...

Read the Full Advisory

Severity

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved