Date: Thu, 15 Mar 2001 16:56:51 -0800 From: Greg KH <greg@WIREX.COM> Subject: Immunix OS Security update for sgml-tools To: BUGTRAQ@SECURITYFOCUS.COM --0hHDr/TIsw4o3iPK Content-Type: text/plain; charset=us-ascii Content-Disposition: inline ----------------------------------------------------------------------- Immunix OS Security Advisory Packages updated: sgml-tools Affected products: Immunix OS 6.2, 7.0-beta, and 7.0 Bugs Fixed: immunix/1508 Date: March 15, 2001 Advisory ID: IMNX-2001-70-008-01 Author: Greg Kroah-Hartman <greg@wirex.com> ----------------------------------------------------------------------- Description: Previous versions of the sgml-tools package would create temporary files without any special permissions in the /tmp directory. This could allow any user to read files that were being created by any other user. Packages have been created and released that fix these problems. Package names and locations: Precompiled binary package for Immunix 6.2 is available at: http://immunix.org/ImmunixOS/6.2/updates/RPMS/sgml-tools-1.0.9-6.2_StackGuard.i386.rpm Source package for Immunix 6.2 is available at: http://immunix.org/ImmunixOS/6.2/updates/SRPMS/sgml-tools-1.0.9-6.2_StackGuard.src.rpm Precompiled binary package for Immunix 7.0-beta and 7.0 is available at: http://immunix.org/ImmunixOS/7.0/updates/RPMS/sgml-tools-1.0.9-9_imnx.i386.rpm Source package for Immunix 7.0-beta and 7.0 is available at: http://immunix.org/ImmunixOS/7.0/updates/SRPMS/sgml-tools-1.0.9-9_imnx.src.rpm md5sums of the packages: 5018e4610623614ee09a4c8df2720e65 sgml-tools-1.0.9-6.2_StackGuard.i386.rpm bf87f7011f0fee4a7739da6f8f86f78f sgml-tools-1.0.9-6.2_StackGuard.src.rpm 0ea3b602e9f57fb33ce95272f34f6308 sgml-tools-1.0.9-9_imnx.i386.rpm b465fe6336cafd5acd9fb75eb9ca5f47 sgml-tools-1.0.9-9_imnx.src.rpm Online version of all Immunix 6.2 updates and advisories: http://immunix.org/ImmunixOS/6.2/updates/ Online version of all Immunix 7.0-beta updates and advisories: http://immunix.org/ImmunixOS/7.0-beta/updates/ Online version of all Immunix 7.0 updates and advisories: http://immunix.org/ImmunixOS/7.0/updates/ NOTE: Ibiblio is graciously mirroring our updates, so if the links above are slow, please try: ftp://ftp.ibiblio.org/pub/Linux/distributions/immunix/ or one of the many mirrors available at: http://www.ibiblio.org/pub/Linux/MIRRORS.html --0hHDr/TIsw4o3iPK Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.3 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE6sWTTAl5ylTeuKpURAsD9AJ4+4AVqh6X/GSOTHx1HCKIfApxWJwCg8Esr xux/ykEaSKQANfXbhkMyE9s´FV -----END PGP SIGNATURE----- --0hHDr/TIsw4o3iPK--