Debian 2.1: Critical Update for Splitvt Local Root Exploit
debian
June 5, 2000
The version of splitvt distributed in Debian GNU/Linux 2.1, the frozen (potato) and unstable (woody) distributions, is vulnerable to a local buffer overflow.
Topics Covered
Summary
Package: splitvt
Vulnerability: local root exploit
Debian-specific: no
This is an update to the previous splitvt advisory. The previous release
had incorrrect addresses for the updates for Debian GNU/Linux potato.
The version of splitvt distributed in Debian GNU/Linux 2.1 (a.k.a. slink),
as well as in the frozen (potato) and unstable (woody) distributions, is
vulnerable to a local buffer overflow. This could be exploited to give a
shell running as root.
This has been fixed in versions 1.6.3-7.0slink1 and 1.6.3-7.1, and we
recommend that you update your splitvt package immediately.
Debian GNU/Linux 2.1 alias slink
This version of Debian was released only for Intel ia32, the Motorola
680x0, the Alpha, and the Sun Sparc architecture.
Source archives:
MD5 checksum: 883b177488cb1618e757169c383ef563
MD5 checksum: 73b1d7633a59d0b34aefd38409ceaa8e
MD5 checksum: e95e166145ec51d2a9d80aa6472f9f98
Alpha architecture:
MD5 checksum: 52ed7478ad363584cd9f21577abd0365
...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!