security advisorydenial of servicecritical Updated package.. - --------------------------------------------------------------------------Debian Security Advisory DSA 794-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Martin Schulze September 1st, 2005 http://www.debian.org/security/faq - --------------------------------------------------------------------------Package : polygen Vulnerability : programming error Problem-Type : local Debian-specific: no CVE ID : CAN-2005-2656 Debian Bug : 325468 Justin Rye noticed that polygen generates precompiled grammar objects world-writable, which can be exploited by a local attacker to at least fill up the filesystem. The old stable distribution (woody) does not contain the polygen package. For the stable distribution (sarge) this problem has been fixed in version 1.0.6-7sarge1. For the unstable distribution (sid) this problem has been fixed in version 1.0.6-9. We recommend that you upgrade your polygen package. Upgrade Instructions - --------------------wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.1 alias sarge - -------------------------------- Source archives: Size/MD5 checksum: 624 5884af6c72cffb4715dec28af8f6dd6d Size/MD5 checksum: 3874 2d23ba087885b09cf130c8cbd1cb69ff Size/MD5 checksum: 360877 f75f09a959069e6492845fb10f0d29e2 Architecture independent components: Size/MD5 checksum: 263626 f8fd3d92d9df8cab3a4e980e02af661b Size/MD5 checksum: 85244 09cb354582c54eb20cb78d0912ee3eef These files willprobably be moved into the stable distribution on its next update. - ---------------------------------------------------------------------------------For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Debian Security Advisory DSA 795-1 highlights a crucial update for the apache2 package, addressing significant security flaws. Prompt upgrades are advised to mitigate these vulnerabilities. Polygen Update, Denial Of Service, Debian Security Advisory, Package Management, Programming Error. . Severity: Critical. LinuxSecurity.com Team
Sep 01, 2005 •Critical Debian 
Refine advisories
