[MBT] new ticket for pkg ypserv "all Any versions of ypserv prior to 2.5 is remotely exploitable"
undefine at aramin.one.pl
undefine at aramin.one.pl
Sat Nov 30 23:56:14 CET 2002
On Thu, Oct 31, 2002 at 05:40:19PM -0000, bugs at pld.org.pl wrote:
> Date: 2002-10-31 18:40:18+01 Author: (kreutzm) <kreutzm at itp.uni-hannover.de>
> Title: all
> Any versions of ypserv prior to 2.5 is remotely exploitable
> Ticket ID: #412
> Ticket URL: http://bugs.pld.org.pl/?bug=412
> Package: ypserv-1.3.12-4
> Distribution: PLD-Ra.main
> Category: security problem
> Current state: opened
> Text:
>
> According to e.g. the Debian security announcement:
> http://www.debian.org/security/2002/dsa-180
>
> NIS-Servers prior 2.5 is vulnerable. PLD ships (acording to the README.gz in /usr/share/ypserv) 1.3.11.
w branchu jest 2.6. Uzywam jej od dluzszego czasu bez zadnych problemow.
sadze ze mozna by przerzucic na main...
Andrzej
More information about the pld-devel-pl
mailing list