Date: Fri, 3 Nov 2000 16:57:17 -0200 From: Andreas Hasenack <andreas@CONECTIVA.COM.BR> Subject: dump issues with Conectiva Linux To: BUGTRAQ@SECURITYFOCUS.COM -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Our last mandatory update of the dump package (June 29th, 2000) brought it up to version 0.4b18 and had the SUID bits disabled. These packages do not have the vulnerability discussed earlier in bugtraq that could give a local attacker root access. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6Awq942jd0JmAcZARAh/RAJ0aVqSfzWKmlV3j7OVXuT0VAkAi3QCfSkAH Cl1nBxPzSDfEJls9TebFfV4= =sDQ/ -----END PGP SIGNATURE-----