From: "Stuart Herbert" <S.Herbert@sheffield.ac.uk> To: "LWN News Items" <lwn@lwn.net> Subject: Security Item: Security vulnerability in Generic NQS Date: Wed, 9 Feb 2000 19:35:12 -0000 Hi there, Just a note for your readers about a security problem with Generic NQS v3.50.6, and v3.50.7. Both releases can be used by *any* local user (and remote users who can introduce batch jobs onto these nodes, using *any* NQS-compatible batch system) to gain a root shell. The solution is to upgrade to Generic NQS v3.50.8, now available from http://ftp.gnqs.org/pub/gnqs/latest/production/ The homepage for the Generic NQS project is http://www.gnqs.org/ Best regards, Stu