-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  bitchx EOLed in Slackware  (SSA:2009-116-02)

This is a notice that bitchx, an IRC client based on ircii-EPIC4, has been
removed from Slackware -current and will not be part of future Slackware
releases.  Security issues and bugs have been reported, but upstream
work seems to have stalled leaving bitchx in a state where there are
known problems without official (or in some cases any) fixes.

The most secure course of action is to remove bitchx from the system and
switch to using a supported IRC client.

We have not compiled a complete list of open issues in BitchX, but here are
a few that we know about:

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3360
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4584
  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5839


Package removal instructions:
+---------------------------+

Remove the package as root:
# removepkg bitchx

Some admins may also want to add a symlink to another console IRC client
such as irssi to help users migrate:

cd /usr/bin
ln -sf irssi BitchX


+-----+

Slackware: 2009-116-02: bitchx EOLed in Slackware Security Update

April 26, 2009
This is a notice that bitchx, an IRC client based on ircii-EPIC4, has been removed from Slackware -current and will not be part of future Slackware releases

Summary

Where Find New Packages

MD5 Signatures

Severity
[slackware-security] bitchx EOLed in Slackware (SSA:2009-116-02)
This is a notice that bitchx, an IRC client based on ircii-EPIC4, has been removed from Slackware -current and will not be part of future Slackware releases. Security issues and bugs have been reported, but upstream work seems to have stalled leaving bitchx in a state where there are known problems without official (or in some cases any) fixes.
The most secure course of action is to remove bitchx from the system and switch to using a supported IRC client.
We have not compiled a complete list of open issues in BitchX, but here are a few that we know about:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3360 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4584 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5839
Package removal instructions:
Remove the package as root: # removepkg bitchx
Some admins may also want to add a symlink to another console IRC client such as irssi to help users migrate:
cd /usr/bin ln -sf irssi BitchX

Installation Instructions

Related News

Google Releases Chrome 130 with Critical Security Fixes for 17 Flaws
3 - 5 min read
Google recently unveiled Chrome 130 , an update that addresses several security vulnerabilities to ensure the web browser's safety and reliability.
U.S. Investigation into China-Backed Telecom Companies Hack: The Role & Risks of Encryption Backdoors
3 - 5 min read
U.S. authorities are on high alert as they investigate an alleged Chinese state-sponsored hack targeting major U.S. telecommunications companies.
FASTCash Linux Malware: A New Cybercrime Menace Targeting Payment Switch Systems
3 - 5 min read
As malware threats evolve to increasingly target Linux systems, admins and organizations must stay up-to-date on the latest Linux malware variants
Optimizing CWPP on Linux Servers: Best Practices and Configurations
3 - 6 min read
Cloud Workload Protection Platforms are now essential for securing virtual environments. These provide a robust security layer vital for addressing
The Infiltration of Supply Chain Attacks in Open-Source Software Management
3 - 6 min read
Open-source projects are renowned for their collaborative nature and widespread adoption, yet more sophisticated supply chain attacks target them
Strengthen Your Linux Software Development Pipeline with Code Security Scanners
3 - 6 min read
Developers recognize the critical nature of protecting software systems as cyberattacks grow more sophisticated, thus necessitating robust security
Everything You Need to Know About Cloud Security Posture Management
3 - 5 min read
Many companies are transitioning from physical servers to cloud operations, but this transformation brings new challenges. Cloud Security Posture
Understanding the Critical Oath-Toolkit Vulnerability and Its Implications for Admins
3 - 5 min read
As Linux security threats advance and evolve, vulnerabilities often surface unexpectedly, exposing systems to potential exploitation. SUSE

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved