Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-announce

From: Daniel Ahlberg <aliz@g.o>
To: gentoo-announce@g.o
Subject: GLSA: atftp (200306-03)
Date: Sun, 08 Jun 2003 19:59:01
Message-Id: 20030608192851.6634D33701@mail1.tamperd.net
1 -----BEGIN PGP SIGNED MESSAGE-----
2 Hash: SHA1
3
4 - - - ---------------------------------------------------------------------
5 GENTOO LINUX SECURITY ANNOUNCEMENT 200306-03
6 - - - ---------------------------------------------------------------------
7
8 PACKAGE : atftp
9 SUMMARY : buffer overflow
10 DATE : 2003-06-08 19:28 UTC
11 EXPLOIT : remote
12 VERSIONS AFFECTED : <atftp-6.0-r2
13 FIXED VERSION : >=atftp-6.0-r2
14 CVE :
15
16 - - - ---------------------------------------------------------------------
17
18 atftp contains a buffer overflow.
19
20 More information is available at
21 http://marc.theaimsgroup.com/?l=bugtraq&m=105493701708152&w=2
22
23
24 SOLUTION
25
26 It is recommended that all Gentoo Linux users who are running
27 net-ftp/aftp upgrade to atftp-6.0-r2 as follows
28
29 emerge sync
30 emerge atftp
31 emerge clean
32
33 - - - ---------------------------------------------------------------------
34 aliz@g.o - GnuPG key is available at http://cvs.gentoo.org/~aliz
35 - - - ---------------------------------------------------------------------
36 -----BEGIN PGP SIGNATURE-----
37 Version: GnuPG v1.2.2 (GNU/Linux)
38
39 iD8DBQE+445yfT7nyhUpoZMRAniUAJ9W9O9dKycA499MspmJ/22YuzW4NACfTqF8
40 K+lGfnJ4GD+rxloij5QIrWE=
41 =Son0
42 -----END PGP SIGNATURE-----
Report Message
Find on MARC Find on Google Groups