Bug#5024: lpr allows anyone to get a root shell

To: submit@bugs.debian.org
Subject: Bug#5024: lpr allows anyone to get a root shell
From: fanf2@cam.ac.uk (Tony Finch)
Date: Mon, 28 Oct 1996 12:27:35 +0000 (GMT)
Message-id: <[🔎] m0vHqn1-000dGuC@dex.trin.cam.ac.uk>
Reply-to: fanf2@cam.ac.uk (Tony Finch), 5024@bugs.debian.org

Package: lpr
Version: 5.9-12

lpr has a gaping security hole due to its suid status and a buffer
overrun bug. I have details...

Tony.

--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-devel-REQUEST@lists.debian.org . Trouble? e-mail to Bruce@Pixar.com

Reply to:

Prev by Date: Re: stability of non-free?
Next by Date: Bug#5025: diald installs examples in /usr/doc/examples
Previous by thread: Re: A full magazine under Debian?
Next by thread: Bug#5025: diald installs examples in /usr/doc/examples
Index(es):
- Date
- Thread