Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 730
Alerts This Week
Warning Icon 1 730

Debian 2.1: Critical Update - Man-db Symlink Attack Risk

debian
Calendar Grey December 13, 1999
Debian Logo
Enhance your man-db component in Debian 2.1 to address a significant symlink vulnerability that has been documented lately.
We have received reports that the man-db package as supplied in Debian GNU/Linux 2.1 has a vulnerability in the zsoelim program: it was vulnerable to a symlink attack

Summary

We recommend you upgrade your man-db package immediately.

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

Debian GNU/Linux 2.1 alias slink

This version of Debian was released only for Intel, the Motorola
680x0, the alpha and the Sun sparc architecture.

Source archives:

db_2.3.10-69FIX.1.diff.gz
MD5 checksum: c4285a252e4ed1ffea13ac95930ae108

db_2.3.10-69FIX.1.dsc
MD5 checksum: 2c8f000da7c4cb05a2264d7d3c25d861

n-db_2.3.10.orig.tar.gz
MD5 checksum: d2e9db8c0e1fa96e7463b968ad53a04b

Alpha architecture:

alpha/man-db_2.3.10-69FIX.1_alpha.deb
MD5 checksum: 78d88d31d5248d085b6da774cbf248c3

Intel ia32 architecture:

i386/man-db_2.3.10-69FIX.1_i386.deb
MD5 checksum: 3141d2549a8873895dbc0fd0eead7324

Motorola 680x0 architecture:

m68k/man-db_2.3.10-69FIX.1_m68k.deb
MD5 checksum: 40d30c985d0c9ab3f49649270a23f7f3

Sun Sparc architecture:

sparc/man-db_2.3.10-69FIX.1_sparc.deb
...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.