[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[debian-users:27930] Forward: [SECURITY] [DSA-046-1] exuberant-ctags uses insecure temporary files

From: Kenshi Muto <kmuto@xxxxxxxxxxxxxxx>
Subject: [debian-users:27930] Forward: [SECURITY] [DSA-046-1] exuberant-ctags uses insecure temporary files
Date: Mon, 16 Apr 2001 00:04:23 +0900
X-ml-info: If you have a question, send e-mail with the body "help" (without quotes) to the address debian-users-ctl@debian.or.jp; help=<mailto:debian-users-ctl@debian.or.jp?body=help>
X-ml-name: debian-users
X-mlserver: fml [fml 3.0pl#17]; post only (only members can post)
Message-id: <20010415150421.484B953827@xxxxxxxxxxxxxxxxxxxxxx>
X-mail-count: 27930
User-agent: Wanderlust/2.2.15 (More Than Words) EMIKO/1.13.9 (Euglena tripteris) FLIM/1.13.2 (Kasanui) APEL/10.2 MULE XEmacs/21.1 (patch 10) (Capitol Reef) (i386-debian-linux)

現在の Debian 安定版 (2.2 potato) にセキュリティに関する深刻な問題が発見
されました。

対象パッケージ: exuberant-ctags

対処済みのパッケージに更新するには、

deb http://security.debian.org/ stable/updates main

を /etc/apt/sources.list に追加し、

apt-get update ; apt-get upgrade

を実行してください。

詳細については添付のアナウンスをご覧ください。

--- Begin Message ---

From: Wichert Akkerman <wichert@xxxxxxxxxx>
Subject: [SECURITY] [DSA-046-1] exuberant-ctags uses insecure temporary files
Date: Sun, 15 Apr 2001 14:23:59 +0200
Content-disposition: inline
Priority: urgent
Resent-date: Sun, 15 Apr 2001 21:32:46 +0900 (JST)
Resent-from: debian-security-announce@lists.debian.org
Resent-message-id: <UaPX2.A.UxB._LZ26@murphy>
Resent-sender: debian-security-announce-request@lists.debian.org
X-debian: PGP check passed for security officers
X-envelope-sender: wichert@xxxxxxxxxx
X-loop: debian-security-announce@lists.debian.org
X-mailing-list: <debian-security-announce@lists.debian.org> archive/latest/228
Message-id: <20010415142359.A9540@xxxxxxxxxx>
User-agent: Mutt/1.3.17i

-----BEGIN PGP SIGNED MESSAGE-----

- ------------------------------------------------------------------------
Debian Security Advisory DSA-046-1                   security@debian.org
http://www.debian.org/security/                         Wichert Akkerman
April 15, 2001
- ------------------------------------------------------------------------


Package        : exuberant-ctags
Problem type   : insecure temporary files
Debian-specific: no

Colin Phipps discovered that the exuberant-ctags packages as distributed
with Debian GNU/Linux 2.2 creates temporary files insecurely. This has
been fixed in version 1:3.2.4-0.1 of the Debian package, and upstream
version 3.5.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.2 alias potato
- ---------------------------------

  Potato was released for alpha, arm, i386, m68k, powerpc and sparc.

  Source archives:
    http://security.debian.org/dists/stable/updates/main/source/exuberant-ctags_3.2.4-0.1.diff.gz
      MD5 checksum: 39f3a5578b34ee5c92487ad666640f76
    http://security.debian.org/dists/stable/updates/main/source/exuberant-ctags_3.2.4-0.1.dsc
      MD5 checksum: 28829651dade3469b57562d07b79db57
    http://security.debian.org/dists/stable/updates/main/source/exuberant-ctags_3.2.4.orig.tar.gz
      MD5 checksum: 55a96549e98e1ae55e356a5b92e11c0b

  Alpha architecture:
    http://security.debian.org/dists/stable/updates/main/binary-alpha/exuberant-ctags_3.2.4-0.1_alpha.deb
      MD5 checksum: 5729175cd362b1db8ae12df5e698514f

  ARM architecture:
    http://security.debian.org/dists/stable/updates/main/binary-arm/exuberant-ctags_3.2.4-0.1_arm.deb
      MD5 checksum: 6cae95b120683fd54a4b91d3debcbc97

  Intel ia32 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-i386/exuberant-ctags_3.2.4-0.1_i386.deb
      MD5 checksum: 34d47b29d526d34b1b74701884201400

  Motorola 680x0 architecture:
    http://security.debian.org/dists/stable/updates/main/binary-m68k/exuberant-ctags_3.2.4-0.1_m68k.deb
      MD5 checksum: 31dd7e10a5ed1cca3d43c1f6af025f5e

  PowerPC architecture:
    http://security.debian.org/dists/stable/updates/main/binary-powerpc/exuberant-ctags_3.2.4-0.1_powerpc.deb
      MD5 checksum: 992fe75ae8d2b996e39650bb1af65646

  Sun Sparc architecture:
    http://security.debian.org/dists/stable/updates/main/binary-sparc/exuberant-ctags_3.2.4-0.1_sparc.deb
      MD5 checksum: 998c4b4b261d2d21a46119992946cc05

  These files will be moved into
  ftp://ftp.debian.org/debian/dists/stable/*/binary-$arch/ soon.

For not yet released architectures please refer to the appropriate
directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .

- -- 
- ----------------------------------------------------------------------------
apt-get: deb http://security.debian.org/ stable/updates main
dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQB1AwUBOtmS3qjZR/ntlUftAQFBcwL9EW1ximWpQAFo8a/uKzd0lusCUBydMoZh
10gz/3qNETS9gAOh/LY+lurJGFEtc9Kh8QApfssnB37+lD/WP+n6el/Zge6FqaCE
tpdbmaAyVmntJujEPsUH6dksksXcwZjM
=/kXv
-----END PGP SIGNATURE-----


--  
To UNSUBSCRIBE, email to debian-security-announce-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

--- End Message ---

Prev by Date: [debian-users:27929] Re: required Java runtime environment for openoffice
Next by Date: [debian-users:27931] Re: Re gnome のメニューが ?????
Previous by thread: [debian-users:27926] Re: フォントの設定
Next by thread: [debian-users:27934] Bug#JP/1392: marked as done (www.debian.or.jp: wrong charset designation)
Index(es):
- Date
- Thread