[MBT] new ticket for pkg ypserv "all Any versions of ypserv prior to 2.5 is remotely exploitable"
undefine@aramin.one.pl
undefine w aramin.one.pl
Sob, 30 Lis 2002, 23:56:14 CET
On Thu, Oct 31, 2002 at 05:40:19PM -0000, bugs w pld.org.pl wrote:
> Date: 2002-10-31 18:40:18+01 Author: (kreutzm) <kreutzm w itp.uni-hannover.de>
> Title: all
> Any versions of ypserv prior to 2.5 is remotely exploitable
> Ticket ID: #412
> Ticket URL: http://bugs.pld.org.pl/?bug=412
> Package: ypserv-1.3.12-4
> Distribution: PLD-Ra.main
> Category: security problem
> Current state: opened
> Text:
>
> According to e.g. the Debian security announcement:
> http://www.debian.org/security/2002/dsa-180
>
> NIS-Servers prior 2.5 is vulnerable. PLD ships (acording to the README.gz in /usr/share/ypserv) 1.3.11.
w branchu jest 2.6. Uzywam jej od dluzszego czasu bez zadnych problemow.
sadze ze mozna by przerzucic na main...
Andrzej
Więcej informacji o liście dyskusyjnej pld-devel-pl