![[LWN Logo]](/images/lwn.banner.gif)
Date: Thu, 5 Nov 1998 12:18:30 -0500 (EST)
From: Cristian Gafton <gafton@redhat.com>
To: redhat-watch-list@redhat.com
Subject: SECURITY: New zgv and svgalib packages available.
-----BEGIN PGP SIGNED MESSAGE-----
Security problems have been found in svgalib and zgv. Fixes are
now availble for Red Hat 4.2, 5.0, 5.1, and 5.2. We recommend all
users upgrade to these new releases. svgalib is only supported
on the i386 platform; this issue does not affect users of Alpha
and SPARC machines.
Red Hat would like to thank the users of the BUGTRAQ security
list for identifying the problem and Kevin Vajk <kvajk@ricochet.net>
for providing a fix.
Users of Red Hat Linux are recommended to upgrade to the new packages
available under the updates directory on our ftp site:
* Red Hat Linux 4.2:
====================
i386:
rpm -Uvh ftp://updates.redhat.com/4.2/i386/svgalib-1.2.13-0.1.i386.rpm
rpm -Uvh ftp://updates.redhat.com/4.2/i386/svgalib-devel-1.2.13-0.1.i386.rpm
rpm -Uvh ftp://updates.redhat.com/4.2/i386/zgv-3.0-0.4.2.i386.rpm
source:
rpm -Uvh ftp://updates.redhat.com/4.2/SRPMS/svgalib-1.2.13-0.1.src.rpm
rpm -Uvh ftp://updates.redhat.com/4.2/SRPMS/zgv-3.0-0.4.2.src.rpm
* Red Hat Linux 5.0:
====================
i386:
rpm -Uvh ftp://updates.redhat.com/5.0/i386/svgalib-1.2.13-6.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.0/i386/svgalib-devel-1.2.13-6.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.0/i386/zgv-3.0-0.5.0.i386.rpm
source:
rpm -Uvh ftp://updates.redhat.com/5.0/SRPMS/svgalib-1.2.13-6.src.rpm
rpm -Uvh ftp://updates.redhat.com/5.0/SRPMS/zgv-3.0-0.5.0.src.rpm
* Red Hat Linux 5.1:
====================
i386:
rpm -Uvh ftp://updates.redhat.com/5.1/i386/svgalib-1.2.13-6.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.1/i386/svgalib-devel-1.2.13-6.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.1/i386/zgv-3.0-4.1.i386.rpm
source:
rpm -Uvh ftp://updates.redhat.com/5.1/SRPMS/svgalib-1.2.13-6.src.rpm
rpm -Uvh ftp://updates.redhat.com/5.1/SRPMS/zgv-3.0-4.1.src.rpm
* Red Hat Linux 5.2:
====================
i386:
rpm -Uvh ftp://updates.redhat.com/5.2/i386/svgalib-1.3.0-3.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.2/i386/svgalib-devel-1.3.0-3.i386.rpm
rpm -Uvh ftp://updates.redhat.com/5.2/i386/zgv-3.0-6.i386.rpm
source:
rpm -Uvh ftp://updates.redhat.com/5.2/SRPMS/svgalib-1.3.0-3.src.rpm
rpm -Uvh ftp://updates.redhat.com/5.2/SRPMS/zgv-3.0-6.src.rpm
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBNkHcqvGvxKXU9NkBAQGEGgQAjETbJsa48hk9Kh8pC2uMVA3MRpqAbrI+
ozATQBu1KwBxnXhXRB5RfAAao6Q2h5ZteICegsl+tSFp0I4BC2B7Le8iSPYF2YWZ
lexepB18FZAR7vgq618s5afglK+wA+IDVLHn+xcUldtREWeDKDBsnjEH7LTnJ7Mw
RD3eTvIKjuQ=
=W5VB
-----END PGP SIGNATURE-----
Cristian
--
----------------------------------------------------------------------
Cristian Gafton -- gafton@redhat.com -- Red Hat Software, Inc.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
UNIX is user friendly. It's just selective about who its friends are.
--
To unsubscribe: mail redhat-watch-list-request@redhat.com with
"unsubscribe" as the Subject.