Date: Fri, 16 Apr 1999 07:06:08 -0400 (EDT) From: Cristian Gafton <gafton@redhat.com> To: redhat-watch-list@redhat.com Subject: (Correction) SECURITY: New rsync packages available -----BEGIN PGP SIGNED MESSAGE----- Potential security problems have been identified in the rsync package shipped with Red Hat Linux 5.2. A user can not exploit this hole deliberately to gain privileges (ie. this is not an "active" security hole) but a system administrator could easily be caught by the bug and inadvertently compromise the security of their system. Red Hat would like to thank Andrew Tridgel for providing an update that fixed the problem. Users of Red Hat Linux are recommended to upgrade to the new packages available under updates directory on our ftp site: Red Hat Linux 5.2: ================== alpha: rpm -Uvh ftp://updates.redhat.com/5.2/alpha/rsync-2.3.1-0.alpha.rpm i386: rpm -Uvh ftp://updates.redhat.com/5.2/i386/rsync-2.3.1-0.i386.rpm sparc: rpm -Uvh ftp://updates.redhat.com/5.2/sparc/rsync-2.3.1-0.sparc.rpm Source rpm: rpm -Uvh ftp://updates.redhat.com/5.2/SRPMS/rsync-2.3.1-0.src.rpm Cristian - -- - ---------------------------------------------------------------------- Cristian Gafton -- gafton@redhat.com -- Red Hat Software, Inc. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ UNIX is user friendly. It's just selective about who its friends are. -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBNxcZpPGvxKXU9NkBAQFtXgP+IQkchpozWLqFzFXbvCwAQW8HHmhbr/HU XSkpmYr8XpmS20fq9O7kPp4SzEThyTswEoeFT//jpB3ssyU+jx9c4b5XoPBicZFL GQ308+ku7o8oeaWQFbYejp6HaxP7ZDFI4XIsBIhCRSjfq0JhAYnFfxJyiRRG5p/i 7dbkLTSCDNQ= =BiJW -----END PGP SIGNATURE----- -- To unsubscribe: mail redhat-watch-list-request@redhat.com with "unsubscribe" as the Subject. -- To unsubscribe: mail -s unsubscribe redhat-announce-list-request@redhat.com < /dev/null