Debian GNU/Linux 2.1: Canna Moderate Remote Exploit Buffer Overflow
debian
July 2, 2000
Buffer overflow has been fixed for Debian GNU/Linux 2.1
Summary
Package : canna
Problem type : remote exploit
Debian-specific: no
The canna package as distributed in Debian GNU/Linux 2.1 can be
remotely exploited to gain access. This could be done by overflowing
a buffer by sending a SR_INIT command with a very long usernamd or
groupname.
This has been fixed in version 3.5b2-24slink1, and recommend that you
upgrade your canna package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.1 alias slink
This version of Debian was released only for Intel, the Motorola
680x0, the alpha and the Sun sparc architecture.
The packages for the Sun sparc architecture are not available at
this moment; they will be announced on Debian -- Security Information
when they are.
Source archives:
MD5 checksum: 7220bdad24aa3be2fdfc4f1bfd978235
MD5 checksum: b62f0558dc852ed61930157236622e3d
MD5 checksum: 5e1d8527d397c3914ce6104dac3db466
Alpha architecture:
...
PREVIOUS
NEXT
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!