Debian GNU/Linux 2.0: wu-ftpd-academ Critical Buffer Overflow Fix
debian
December 13, 1999
We have received reports that the wu-ftpd-academ package as distributed
in Debian GNU/Linux 2.0 is vulnerable to a buffer overflow
Topics Covered
Summary
We have received reports that the wu-ftpd-academ package as distributed
in Debian GNU/Linux 2.0 is vulnerable to a buffer overflow. Using this
vulnerability, known as palmetto, it is possible to gain shell access or
otherwise circumvent normal login access and logging mechanisms.
This has been fixed in version 2.4.2.16-12.2 .
We recommend you upgrade your wu-ftpd-academ package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.0 alias hamm
This version of Debian was released only for the Intel and the
Motorola 680x0 architecture.
Source archives:
e/net/wu-ftpd-academ_2.4.2.16.orig.tar.gz
MD5 checksum: 1b636fbfb3a5417886cc4265cca0fc5f
MD5 checksum: c51d3661904daac81b4c7bbe90ebe79f
MD5 checksum: bc3bcb012fc251a88fe604dc71669e70
Intel architecture:
MD5 checksum: 4739c56cfc1decebb462e5030784a75a
Motorola 680x0 architecture:
MD5 checksum: 9302526c8c6368f87e805e943ce66...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!