patch for screen

To: debian-devel@lists.debian.org
Subject: patch for screen
From: "Christopher J. Pace" <cpace@hnsg.net>
Date: Tue, 16 Dec 2003 07:29:33 -0700 (MST)
Message-id: <[🔎] 34913.192.168.0.23.1071584973.squirrel@hnsg.net>

Timo Sirainen reported a vulnerability in screen in which an attacker can
gain the privledges of the user/group in which screen runs as.  I have
used his submitted patch to create a .deb for Debian users, since Debian
security is bogged down @ the moment.

http://hnsg.net/~cpace/screen_3.9.11-5_i386.deb

is the patched .deb archive (for i386 only obviously), and

http://hnsg.net/~cpace/patch.txt

is the patch (obviously).

This has so far been tested on 5 i586&i486-based systems, and works
flawlessly.  If I can be of any more assistance to Debian let me know.

-- 
Christopher J. Pace
System Administrator/Webmaster/Founder
HNSG
http://hnsg.net
ssh://request@hnsg.net

Reply to:

Follow-Ups:
- Re: patch for screen
  - From: Adam Lazur <zal@debian.org>

Prev by Date: Re: Proposed change to debian release system
Next by Date: Re: Nice multilingual environment with Debian menu
Previous by thread: Announce - SSP/ProPolice compiler for Woody
Next by thread: Re: patch for screen
Index(es):
- Date
- Thread