Uploaded slrn 0.9.6.2-6 (powerpc) to samosa
-----BEGIN PGP SIGNED MESSAGE-----
Format: 1.6
Date: Wed, 9 Feb 2000 15:51:33 -0800
Source: slrn
Binary: slrn slrnpull
Architecture: powerpc
Version: 0.9.6.2-6
Distribution: frozen unstable
Urgency: low
Maintainer: PowerPC Build Daemon/Daniel Jacobowitz <buildd@them.org>
Description:
slrn - threaded news reader (fast for slow links)
slrnpull - pulls a small newsfeed from an NNTP server
Closes: 57616
Changes:
slrn (0.9.6.2-6) frozen unstable; urgency=low
.
* Fixed 2 sprintf calls in launch_url that get untrusted text passed
into them, and so could be used for exploits in theory.
* Also fixed a quoting bug that let attackers run arbitrary commands by
embedding them in URLs. (This is not entirely fixed, but you are safe if
you use the suggested quoting in the slrn man page. It should really use
exec..)
* Luckily, there are 2 barriers for either of these security holes to be
expolited: first, the user is presented with the url before the browser
is launched (though an attacker could simply pad the front of the url with
something innocuous and hope the victim didn't scroll all the way to the
end of it). Second, you have to have non_Xbrowser or Xbrowser set in your
.slrnrc, and they are not set by default. Still, this needs to go into
frozen. Closes: #57616
* The bug reporter is right, slrn needs a through audit. :-(
Files:
b2a4dfc80e0aa3b2f8c41b01b189d539 198140 news optional slrn_0.9.6.2-6_powerpc.deb
84282e9a84dd2f214995866ecff6a478 68520 news optional slrnpull_0.9.6.2-6_powerpc.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE4pgVGbgOPXuCjg3cRAdPcAJ9JMMi+O5UgMMReEW5S1GIONid+nQCeK62B
DlU/nWV5gw33Ov0UATwtFDU=
=oNMp
-----END PGP SIGNATURE-----
Reply to: