IMPORTANT: security hole in colorize in unstable

To: <debian-user@lists.debian.org>, <debian-devel@lists.debian.org>
Subject: IMPORTANT: security hole in colorize in unstable
From: "Kevin B. McCarty" <kmccarty@Princeton.EDU>
Date: Mon, 29 Oct 2001 13:37:45 -0500 (EST)
Message-id: <[🔎] Pine.LNX.4.33.0110291318590.8195-100000@boater.Princeton.EDU>

Hi all,
I just noticed that version 0.3.0-2 of the colorize package (the one in
unstable; the testing version is OK) has all of its files owned by
user/group 1004.  I filed a critical bug, #117572, against the package.

* To see if you are affected:
	ls -l /usr/bin/colorize
* If this has user and group ownership of "1004" (or whoever is the
  equivalent user on your system), the following should fix it until a
  new deb is available:
	dpkg -L colorize | xargs chown root.root

Please CC replies to me since I'm not subscribed to the lists.

Sincerely,
Kevin McCarty

Reply to:

Follow-Ups:
- Re: IMPORTANT: security hole in colorize in unstable
  - From: Gergely Nagy <algernon@debian.org>

Prev by Date: Re: libexpat in testing
Next by Date: ITP: goats -- A sticky-note type program for Gnome
Previous by thread: Re: libexpat in testing
Next by thread: Re: IMPORTANT: security hole in colorize in unstable
Index(es):
- Date
- Thread