Date: Tue, 17 Nov 1998 23:12:15 +0100
From: Martin Schulze <joey@finlandia.Infodrom.North.DE>
To: Debian Security Announcements <debian-security-announce@lists.debian.org>
Subject: Subject: Debian not vulnerable to klogd bug


--BXVAT5kNtrzKuDFl
Content-Type: text/plain; charset=us-ascii

We have received a report from Michal Zalewski that the klogd program
as provided by the sysklogd was vulnerable to a buffer overrun.

Debian is not affected since it uses a current version of this
package.  The bug was detected and fixed two years ago bei Leeland
Olds.  Details may be grabbed from the klogd.c source file.

--
Debian GNU/Linux    .    Security Managers    .    security@debian.org
              debian-security-announce@lists.debian.org
  Christian Hudon     .      Wichert Akkerman     .     Martin Schulze
<chrish@debian.org>   .   <wakkerma@debian.org>   .   <joey@debian.org>

--BXVAT5kNtrzKuDFl
Content-Type: application/pgp-signature

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia

iQCVAwUBNlH0vxRNm5Suj3z1AQHZJQP+OaSlFQRZ1DBM/qsULwC8BCDGBrzHsNYx
lvjAbw33xn7E7zyeP7iiorPz4F3at3Ay0uQrtiRS2vyTclj//zs7lWHYNeyrCizo
tOueB70xubn6k0xF+GbeSyRePtK3OBSrk5TbvwCd8m0nFQ0BrajwmzQ1TG3NZITj
7PJhsDJH0lc=
=s/82
-----END PGP SIGNATURE-----

--BXVAT5kNtrzKuDFl--


--  
To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org