Debian 2.1 Security Advisory: Fix for AMD Remote Exploit Issue
debian
December 13, 1999
The version of amd that was distributed with Debian GNU/Linux 2.1 is
vulnerable to a remote exploit
Summary
The version of amd that was distributed with Debian GNU/Linux 2.1 is
vulnerable to a remote exploit. This was fixed in version 23.0slink1.
However that fix contained an error which has been fixed in version
upl102-23.slink2.
Here is the problem description from the previous fix:
Passing a big directory name to amd its logging code would overflow a
buffer which could be exploited. This has been fixed in version
23.0slink1.
We recommand that you upgrade your amd package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.1 alias slink
This version of Debian was released only for Intel, the Motorola
680x0, the alpha and the Sun sparc architecture.
Source archives:
l102-23.slink2.diff.gz
MD5 checksum: 30a6710a9e3fb6dcf46ec7491d157807
l102
-23.slink2.dsc
MD5 checksum: 290f37dc51c2ed86400176fa9bef15ea
l102.orig.tar.
gz
MD5 checksum: 76c61a893523001961437475ee2f79c5
Intel ia32 architec...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!