[LWN Logo]

Date: Fri, 16 Apr 1999 07:06:08 -0400 (EDT)
From: Cristian Gafton <gafton@redhat.com>
To: redhat-watch-list@redhat.com
Subject: (Correction) SECURITY: New rsync packages available

-----BEGIN PGP SIGNED MESSAGE-----


Potential security problems have been identified in the rsync package
shipped with Red Hat Linux 5.2. A user can not exploit this hole
deliberately to gain privileges (ie. this is not an "active" security hole)
but a system administrator could easily be caught by the bug and
inadvertently compromise the security of their system.

Red Hat would like to thank Andrew Tridgel for providing an update that
fixed the problem.

Users of Red Hat Linux are recommended to upgrade to the new packages
available under updates directory on our ftp site:

Red Hat Linux 5.2:
==================

alpha:
rpm -Uvh ftp://updates.redhat.com/5.2/alpha/rsync-2.3.1-0.alpha.rpm

i386:
rpm -Uvh ftp://updates.redhat.com/5.2/i386/rsync-2.3.1-0.i386.rpm

sparc:
rpm -Uvh ftp://updates.redhat.com/5.2/sparc/rsync-2.3.1-0.sparc.rpm

Source rpm:
rpm -Uvh ftp://updates.redhat.com/5.2/SRPMS/rsync-2.3.1-0.src.rpm


Cristian
- --
- ----------------------------------------------------------------------
Cristian Gafton   --   gafton@redhat.com   --   Red Hat Software, Inc.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 UNIX is user friendly. It's just selective about who its friends are.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQCVAwUBNxcZpPGvxKXU9NkBAQFtXgP+IQkchpozWLqFzFXbvCwAQW8HHmhbr/HU
XSkpmYr8XpmS20fq9O7kPp4SzEThyTswEoeFT//jpB3ssyU+jx9c4b5XoPBicZFL
GQ308+ku7o8oeaWQFbYejp6HaxP7ZDFI4XIsBIhCRSjfq0JhAYnFfxJyiRRG5p/i
7dbkLTSCDNQ=
=BiJW
-----END PGP SIGNATURE-----


-- 
         To unsubscribe: mail redhat-watch-list-request@redhat.com with 
                       "unsubscribe" as the Subject.

-- 
To unsubscribe:
mail -s unsubscribe redhat-announce-list-request@redhat.com < /dev/null