Date: Tue, 17 Nov 1998 23:12:15 +0100 From: Martin Schulze <joey@finlandia.Infodrom.North.DE> To: Debian Security Announcements <debian-security-announce@lists.debian.org> Subject: Subject: Debian not vulnerable to klogd bug --BXVAT5kNtrzKuDFl Content-Type: text/plain; charset=us-ascii We have received a report from Michal Zalewski that the klogd program as provided by the sysklogd was vulnerable to a buffer overrun. Debian is not affected since it uses a current version of this package. The bug was detected and fixed two years ago bei Leeland Olds. Details may be grabbed from the klogd.c source file. -- Debian GNU/Linux . Security Managers . security@debian.org debian-security-announce@lists.debian.org Christian Hudon . Wichert Akkerman . Martin Schulze <chrish@debian.org> . <wakkerma@debian.org> . <joey@debian.org> --BXVAT5kNtrzKuDFl Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: 2.6.3ia iQCVAwUBNlH0vxRNm5Suj3z1AQHZJQP+OaSlFQRZ1DBM/qsULwC8BCDGBrzHsNYx lvjAbw33xn7E7zyeP7iiorPz4F3at3Ay0uQrtiRS2vyTclj//zs7lWHYNeyrCizo tOueB70xubn6k0xF+GbeSyRePtK3OBSrk5TbvwCd8m0nFQ0BrajwmzQ1TG3NZITj 7PJhsDJH0lc= =s/82 -----END PGP SIGNATURE----- --BXVAT5kNtrzKuDFl-- -- To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org