Re: patch for screen

To: debian-devel@lists.debian.org
Subject: Re: patch for screen
From: Adam Lazur <zal@debian.org>
Date: Tue, 16 Dec 2003 11:28:33 -0500
Message-id: <[🔎] 20031216162833.GI636@ninjak.clustermonkey.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 34913.192.168.0.23.1071584973.squirrel@hnsg.net>
References: <[🔎] 34913.192.168.0.23.1071584973.squirrel@hnsg.net>

Christopher J. Pace (cpace@hnsg.net) said:
> Timo Sirainen reported a vulnerability in screen in which an attacker can
> gain the privledges of the user/group in which screen runs as.  I have
> used his submitted patch to create a .deb for Debian users, since Debian
> security is bogged down @ the moment.

Quoting http://bugs.debian.org/222385 (screen: buffer overflow):

> woody packages are at
> http://pkg-screen.alioth.debian.org/woody-security/ and the security
> team was made aware of them.
> 
> sid packages have been uploaded... maybe someday they'll be built and
> moved into sarge.
> 
> This bug will be closed when they both make it into their appropriate
> dists.

-- 
Adam Lazur, Cluster Monkey

Reply to:

References:
- patch for screen
  - From: "Christopher J. Pace" <cpace@hnsg.net>

Prev by Date: Re: Proposed change to debian release system
Next by Date: Debian Mini CD bootable?
Previous by thread: patch for screen
Next by thread: Debian Mini CD bootable?
Index(es):
- Date
- Thread