Slackware: 2004-015-01 Important: OpenSSL Security Update
slackware
January 15, 2004
INN (InterNetNews) is used to run a news (NNTP) server
Summary
Here are the details from the Slackware 9.1 ChangeLog: Wed Jan 14 11:58:58 PST 2004 patches/packages/inn-2.4.1-i486-1.tgz: Upgraded to inn-2.4.1. From the inn-2.4.1 NEWS file: * SECURITY: Handle the special filing of control messages into per-type newsgroups more robust. This closes a potentially exploitable buffer overflow. Thanks to Dan Riley for his excellent bug report. (* Security fix *) WHERE TO FIND THE NEW PACKAGE: Updated package for Slackware 9.0: ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/inn-2.4.1-i386-1.tgz Updated package for Slackware 9.1: ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/inn-2.4.1-i486-1.tgz Updated package for Slackware -current: MD5 SIGNATURES: Slackware 9.0 package: e8f68835dcb70cfa4f5b812352880bea inn-2.4.1-i386-1.tgz Slackware 9.1 package: 7d7e8e8934bd53f7b2c884115078cd5d inn-2.4.1-i486-1.tgz Slackware -current
Read the Full Advisory
Topics Covered
Where Find New Packages
MD5 Signatures
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: First, back up your config files in /etc/news and /var/lib/news. Shut down the news server with /etc/rc.d/rc.news stop. Upgrade the INN package with upgradepkg. Restore any custom config files (or edit the new ones). Restart the news server with /etc/rc.d/rc.news start.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!