----------------------------------------------------------------------------
Debian Security Advisory DSA 030-2                       security@debian.org 
Debian -- Security Information                                Martin Schulze
February 12, 2001
----------------------------------------------------------------------------

Package        : xfree86-1
Vulnerability  : buffer overflow, insecure tempfile handling,
                 denial-of-service attack
Debian-specific: no
Architecture   : only m68k

Several people have noted a number of problems in several components
of the X Window System sample implementation (from which XFree86 is
derived).  Please read DSA 030-1 for a detailed description.

We recommend you upgrade your XFree86 packages immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 2.2 alias potato
------------------------------------

  Potato was released for the alpha, arm, i386, m68k, powerpc and sparc
  architectures.  This advisory only covers m68k which was missing in
  DSA 030-1 due to the slowliness of our m68k build box.


  Motorola 680x0 architecture:

      
      MD5 checksum: c26b2f84fb702ee6fc73518bb0f7e7ae
      
      MD5 checksum: e0363d5a9da2b5e01cd7fbede1d8e283
      
      MD5 checksum: 6462a334f10df17ba770eb08ef0d7ab3
      
      MD5 checksum: 1a73a3251b7cc7d7dee035c27fba4a3b
      
      MD5 checksum: 68371690d0cefdfb6761d951f2befa7d
      
      MD5 checksum: 785a4647af68bc25b352dd748b30498d
      
      MD5 checksum: 7ec146d579c2ef52549de70ef4775aaf
      
      MD5 checksum: 6190d755ed22f44a0e7e777ada1684a5
      
      MD5 checksum: 84b01dd5db72283a93c74500cb36a5ae
      
      MD5 checksum: f4831d1b4128b64a173c037c2de90b12
      
      MD5 checksum: 002a3d192fc675b76876ffce233168be
      
      MD5 checksum: c95795a132852b968b8a273082d5e013
      
      MD5 checksum: 990d6f19014a5cc005a61d4476581417
      
      MD5 checksum: a61722d4035e9a0e1e1b5f67dc1a2d25
      
      MD5 checksum: bf8598148af5de6ac25bb72aba602879
      
      MD5 checksum: 3aac56186bcd6ad41dc18632f6c5ed3c
      
      MD5 checksum: bcaea9f6d130461b8a3474fd2fce35f8
      
      MD5 checksum: 9096c7da87b269dcb3bba0397307f584
      
      MD5 checksum: 73d1b9b527d7574062ea31db8ac7b023
      
      MD5 checksum: 7f162872735817a05d16af8bd4970301


  These files will be moved into
     soon.

For not yet released architectures please refer to the appropriate
directory    .

----------------------------------------------------------------------------
For apt-get: deb  Debian -- Security Information  stable/updates main
For dpkg-ftp:    dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and  http://packages.debian.org/

Debian: m68k 'xfree86-1' vulnerabilities

February 14, 2001
Several people have noted a number of problems in several components of the X Window System sample implementation.

Summary

Several people have noted a number of problems in several components
of the X Window System sample implementation (from which XFree86 is
derived). Please read DSA 030-1 for a detailed description.

We recommend you upgrade your XFree86 packages immediately.

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 2.2 alias potato
------------------------------------

Potato was released for the alpha, arm, i386, m68k, powerpc and sparc
architectures. This advisory only covers m68k which was missing in
DSA 030-1 due to the slowliness of our m68k build box.


Motorola 680x0 architecture:


MD5 checksum: c26b2f84fb702ee6fc73518bb0f7e7ae

MD5 checksum: e0363d5a9da2b5e01cd7fbede1d8e283

MD5 checksum: 6462a334f10df17ba770eb08ef0d7ab3

MD5 checksum: 1a73a3251b7cc7d7dee035c27fba4a3b

MD5 checksum: 68371690d0cefdfb6761d951f2befa7d

MD5 checksum: 785a4647af68bc25b352dd748b30498d

MD5 checksum: 7ec146d579c2ef52549de70ef4775aaf

MD5 checksum: 6190d755ed22f44a0e7e777ada1684a5

MD5 checksum: 84b01dd5db72283a93c74500cb36a5ae

MD5 checksum: f4831d1b4128b64a173c037c2de90b12

MD5 checksum: 002a3d192fc675b76876ffce233168be

MD5 checksum: c95795a132852b968b8a273082d5e013

MD5 checksum: 990d6f19014a5cc005a61d4476581417

MD5 checksum: a61722d4035e9a0e1e1b5f67dc1a2d25

MD5 checksum: bf8598148af5de6ac25bb72aba602879

MD5 checksum: 3aac56186bcd6ad41dc18632f6c5ed3c

MD5 checksum: bcaea9f6d130461b8a3474fd2fce35f8

MD5 checksum: 9096c7da87b269dcb3bba0397307f584

MD5 checksum: 73d1b9b527d7574062ea31db8ac7b023

MD5 checksum: 7f162872735817a05d16af8bd4970301


These files will be moved into
soon.

For not yet released architectures please refer to the appropriate
directory .

----------------------------------------------------------------------------
For apt-get: deb Debian -- Security Information stable/updates main
For dpkg-ftp: dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/




Severity
Package : xfree86-1
Vulnerability : buffer overflow, insecure tempfile handling,
denial-of-service attack
Debian-specific: no
Architecture : only m68k

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved