-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory                             security@debian.org 
Debian -- Security Information                          Wichert Akkerman
November 25, 2000
- ------------------------------------------------------------------------


Package        : mc
Problem type   : local DoS
Debian-specific: no

Maurycy Prodeus found a problem in cons.saver, a screensaver for
the console that is included in the mc package. cons.saver does not
check if it is started with a valid stdout, which combined with a
bug in its check to see if its argument is a tty (it forgot to
close the file-descriptor after opening the supposed tty) causes it
to write a NUL character to the file given as its parameter.

This has been fixed in version 4.5.42-11.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.


Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
      
      MD5 checksum: 98428eb4284349e15b21b2cd36fbf55d
      
      MD5 checksum: f6bfd1c1c458247e49ec1f73a8da5a47
      
      MD5 checksum: 0d2e63dd4b0c0a3d4d6c5933187ba222

  Alpha architecture:
      
      MD5 checksum: 778a5121ae88e6dd5921ce65159a8f62
      
      MD5 checksum: b33dab94b93fe534fb448ad6ab5c2d3d
      
      MD5 checksum: 8fc235ecf3f4d39db8b6d264a99bcc88

  ARM architecture:
      
      MD5 checksum: 41de0eced28ed9962cf3cd7744e25842
      
      MD5 checksum: b99c2bfcb69adcc103760542c18870fc
      
      MD5 checksum: 93c09c57cb6cd99908999764ecc955cf

  Intel ia32 architecture:
      
      MD5 checksum: 13e981aac3e5562cd10354af83a756c5
      
      MD5 checksum: 3bd645c007bef90220f48bf3e8b451e8
      
      MD5 checksum: ffb14638ea3bdcd5faa8e49e7611266b

  Motorola 680x0 architecture:
      
      MD5 checksum: b63de3e53f49b188e5a516dac57185bf
      
      MD5 checksum: 8ba419260b77557da2cfd4f867cddc73
      
      MD5 checksum: d49246c914ad48fa0fdfdc08e5150635

  PowerPC architecture:
      
      MD5 checksum: 165eb728fc75d5ee4ebadad0609a8350
      
      MD5 checksum: 0cee7ec7bc646a3987a7571a36446f1e
      
      MD5 checksum: 14628f3fdc3cd10eb81e5458cb5f49a5

  Sun Sparc architecture:
      
      MD5 checksum: 44893268efa32df9867088cffa2c2f4d
      
      MD5 checksum: a6e92192b8b5ea7dc91f8607adddcddd
      
      MD5 checksum: 9e18fc005fffdb0e08c44c32df8b2e50

  These files will be moved into
     soon.

For not yet released architectures please refer to the appropriate
directory    .

- -- 
- ----------------------------------------------------------------------------
apt-get: deb  Debian -- Security Information  stable/updates main
dpkg-ftp:    dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBOh8ZHajZR/ntlUftAQErhAL/RhjW44ivPCrcwDvXqWonER3Kb0JSZGqp
xg4nDLXKZCx6n1EBOuaKkUH3au4xIcW6OkwUNbIN2CIWr22RZyIFN8PlcYIaJbx1
k8qg9jwhT7n7CaghAjEv4Y0q40kWsrRz
=iJdl
-----END PGP SIGNATURE-----

Debian: 'mc' local DoS

November 25, 2000
cons.saver does not check if it is started with a valid stdout, potentially causing a denial of service.

Summary


Package : mc
Problem type : local DoS
Debian-specific: no

Maurycy Prodeus found a problem in cons.saver, a screensaver for
the console that is included in the mc package. cons.saver does not
check if it is started with a valid stdout, which combined with a
bug in its check to see if its argument is a tty (it forgot to
close the file-descriptor after opening the supposed tty) causes it
to write a NUL character to the file given as its parameter.

This has been fixed in version 4.5.42-11.

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.


Debian GNU/Linux 2.2 alias potato

Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

Source archives:

MD5 checksum: 98428eb4284349e15b21b2cd36fbf55d

MD5 checksum: f6bfd1c1c458247e49ec1f73a8da5a47

MD5 checksum: 0d2e63dd4b0c0a3d4d6c5933187ba222

Alpha architecture:

MD5 checksum: 778a5121ae88e6dd5921ce65159a8f62

MD5 checksum: b33dab94b93fe534fb448ad6ab5c2d3d

MD5 checksum: 8fc235ecf3f4d39db8b6d264a99bcc88

ARM architecture:

MD5 checksum: 41de0eced28ed9962cf3cd7744e25842

MD5 checksum: b99c2bfcb69adcc103760542c18870fc

MD5 checksum: 93c09c57cb6cd99908999764ecc955cf

Intel ia32 architecture:

MD5 checksum: 13e981aac3e5562cd10354af83a756c5

MD5 checksum: 3bd645c007bef90220f48bf3e8b451e8

MD5 checksum: ffb14638ea3bdcd5faa8e49e7611266b

Motorola 680x0 architecture:

MD5 checksum: b63de3e53f49b188e5a516dac57185bf

MD5 checksum: 8ba419260b77557da2cfd4f867cddc73

MD5 checksum: d49246c914ad48fa0fdfdc08e5150635

PowerPC architecture:

MD5 checksum: 165eb728fc75d5ee4ebadad0609a8350

MD5 checksum: 0cee7ec7bc646a3987a7571a36446f1e

MD5 checksum: 14628f3fdc3cd10eb81e5458cb5f49a5

Sun Sparc architecture:

MD5 checksum: 44893268efa32df9867088cffa2c2f4d

MD5 checksum: a6e92192b8b5ea7dc91f8607adddcddd

MD5 checksum: 9e18fc005fffdb0e08c44c32df8b2e50

These files will be moved into
soon.

For not yet released architectures please refer to the appropriate
directory .

- --
apt-get: deb Debian -- Security Information stable/updates main
dpkg-ftp: dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBOh8ZHajZR/ntlUftAQErhAL/RhjW44ivPCrcwDvXqWonER3Kb0JSZGqp
xg4nDLXKZCx6n1EBOuaKkUH3au4xIcW6OkwUNbIN2CIWr22RZyIFN8PlcYIaJbx1
k8qg9jwhT7n7CaghAjEv4Y0q40kWsrRz
=iJdl
-----END PGP SIGNATURE-----





Severity

Related News

5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
Sign Up