- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2005-009 http://www.skolelinux.no/security/ Morten Werner Olsen July 1st, 2005 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- This DESA deals with severel packages that the Debian Security Team has fixed. Each section start with "Package" and includes a link to the Debian Security Team's announce for the security upgrade. Package : squid (squid) Vulnerability : design flaw Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-1345 DSA ID : DSA-721-1 DSA URL : http://www.debian.org/security/2005/dsa-721 Package : bzip2 (bzip2 libbz2-1.0) Vulnerability : race condition Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-0953 DSA ID : DSA-730-1 DSA URL : http://www.debian.org/security/2005/dsa-730 Package : sudo (sudo) Vulnerability : pathname validation race Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-1993 DSA ID : DSA-735-1 DSA URL : http://www.debian.org/security/2005/dsa-735 Upgrade Instructions - -------------------- Make sure the line deb http://security.debian.org/ woody/updates main contrib non-free is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Then run 'apt-get upgrade' to upgrade all the packages mentioned above. This might upgrade other packages too, and if you only want to upgrade the packages above, you should run 'apt-get install <pkg1> ... <pkgN>' where <pkg1> to <pkgN> is the package names in paranthesis from each package section above. - -------------------------------------------------------------------------- Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org, linuxiskolen@skolelinux.no, user@skolelinux.de, admin-discuss@skolelinux.org Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature