Back

    New version of nis released

    Date 13 Dec 1999
    Category Debian Linux Distribution - Security Advisories
    3250
    Posted By LinuxSecurity Advisories
    The nis package that was distributed with Debian GNU/Linux 2.1 has a couple of problems: * ypserv allowed any machine in the NIS domain to insert new tables * rpc.yppasswd had a bufferoverflow in its MD5 code * rpc.yppasswd allowed users to change the GECOS and loginshell entries of other users 
    -----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory                             This email address is being protected from spambots. You need JavaScript enabled to view it.
https://www.debian.org/security/      
                   Wichert Akkerman
October 28, 1999
- ------------------------------------------------------------------------


The nis package that was distributed with Debian GNU/Linux 2.1 has a
couple of problems:
* ypserv allowed any machine in the NIS domain to insert new tables
* rpc.yppasswd had a bufferoverflow in its MD5 code
* rpc.yppasswd allowed users to change the GECOS and loginshell entries
  of other users

This has been fixed in version 3.5-2. We recommend you upgrade your nis
package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

  Source archives:
    https://security.debian.org/dists/stable/updates/source/nis_3.5-
2.diff.gz
      MD5 checksum: 5b41361ce80bd2067c2c40f03ea14ac4
    https://security.debian.org/dists/stable/updates/source/nis_3.5-2.dsc
      MD5 checksum: 696ad9726555336e8bab482ee8f2f040
    https://security.debian.org/dists/stable/updates/source/nis_3.5.orig.tar.gz
      MD5 checksum: 368167b1e16eb25ac639935310a26daa

  Alpha architecture:
    https://security.debian.org/dists/stable/updates/binary-
alpha/nis_3.5-2_alpha.deb
      MD5 checksum: c0a8066bd00ed4fe10ac4c7294768ede

  Intel ia32 architecture:
    https://security.debian.org/dists/stable/updates/binary-
i386/nis_3.5-2_i386.deb
      MD5 checksum: 0cc3b116a4ede4dec99189b9bdb9830a

  Motorola 680x0 architecture:
    https://security.debian.org/dists/stable/updates/binary-
m68k/nis_3.5-2_m68k.deb
      MD5 checksum: 5a713462f36bb6faf90d362b5e28aa61

  Sun Sparc architecture:
    https://security.debian.org/dists/stable/updates/binary-
sparc/nis_3.5-2_sparc.deb
      MD5 checksum: 9fa64238b625748523e5f5e8591434cd

  These files will be moved into
  ftp://ftp.debian.org/debian/dists/stable/*/binary-$arch/ soon.


For not yet released architectures please refer to the appropriate
directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .

- -- 
- ----------------------------------------------------------------------------
For apt-get: deb https://security.debian.org/ stable 
updates
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates
Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBOBd/VqjZR/ntlUftAQEDaQL/U4xUvtW84sRPjrXQS1kqEE0nyUBqEM8b
T0lVB68/OS1hiwMXAV/oVnBvBnoGSuX0nqA54fcwEBbeagHf7q2/aY/E1C7vPdSU
SrgcxGwjA66YomkzkfBNLHosSMitKE/F
=cEQe
-----END PGP SIGNATURE-----

    Get the Latest News & Insights

    Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox

    Related News

    The Current State of Open-Source Testing Tools
    The Current State of Open-Source Testing Tools
    Microsoft Launches Free Linux Forensics and Rootkit Malware Detection Service
    Microsoft Launches Free Linux Forensics and Rootkit Malware Detection Service
    F5 patches vulnerability that received a CVSS 10 severity score
    F5 patches vulnerability that received a CVSS 10 severity score
    Purism Launches Librem 14 Security-Focused Linux Laptop
    Purism Launches Librem 14 Security-Focused Linux Laptop

    LinuxSecurity Poll

    Are you considering making the switch to Purism's new Librem 14 Linux laptop to improve your security and privacy online?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/31-are-you-considering-making-the-switch-to-purism-s-new-librem-14-linux-laptop-to-improve-your-security-and-privacy-online?task=poll.vote&format=json
    31
    radio
    [{"id":"109","title":"Yes - the hardware kill switches and default ad blocking\/tracking protection sold me on it.","votes":"2","type":"x","order":"1","pct":40,"resources":[]},{"id":"110","title":"Not sure yet - I need to do more research.","votes":"2","type":"x","order":"2","pct":40,"resources":[]},{"id":"111","title":"No - I'm satisfied with my current laptop and have no security\/privacy concerns.","votes":"1","type":"x","order":"3","pct":20,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
    bottom 200

    Advisories

    Fedora 31: firefox 2020-8ba9376229
    Date 07 Jul 2020 @ 17:07
    Fedora 31: ngircd 2020-8c33e3a771
    Date 07 Jul 2020 @ 17:06
    Fedora 31: chromium 2020-77f89ab772
    Date 07 Jul 2020 @ 17:06
    Fedora 32: ngircd 2020-e6d1d849c5
    Date 07 Jul 2020 @ 17:04

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

    Our Cookie Policy