We have received a report that the faxsurvey script that was included
in former releases of hylafax would execute arbitrary commands.
Please be warned that this package doesn't contain a fix, the
offending script is just removed.
We recommend you upgrade your hylafax-doc package immediately.
dpkg -i file.deb
will install the referenced file.
Debian GNU/Linux 2.0 alias hamm
-------------------------------
This version of Debian were released only for the Intel and the
Motorola 68xxx architecture.
All architectures:
ftp://ftp.debian.org/debian/dists/stable-updates/hylafax-doc_4.0.2-5_all.deb
MD5 checksum: 0d44ddfe046ba684080416790ee68c3c
These files will be moved into
ftp://ftp.debian.org/debian/dists/hamm/binary-$arch/ soon.
For other architectures please refer to the appropriate directory
ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .
--
Debian GNU/Linux . Security Managers . security@debian.org
debian-security-announce@lists.debian.org
Christian Hudon <chrish@debian.org> . Martin Schulze <joey@debian.org>
Attachment:
pgp5IxfQW7FoN.pgp
Description: PGP signature