- --------------------------------------------------------------------------
Debian-Edu/Skolelinux Security Advisory DESA 2004-022
http://www.skolelinux.no/security/ Morten Werner Olsen
December 2nd, 2004 debian-edu-security@lists.alioth.debian.org
- --------------------------------------------------------------------------
This DESA deals with severel packages that the Debian Security Team
has fixed. Each section start with "Package" and includes a link to
the Debian Security Team's announce for the security upgrade.
Package : tetex-bin (tetex-bin libkpathsea3)
Vulnerability : integer overflows
Need reboot : no
Debian-Edu-specific : no
CVE ID : CAN-2004-0888
DSA ID : DSA-599-1
DSA URL : http://www.debian.org/security/2004/dsa-599
Package : libgd2 (libgd2)
Vulnerability : integer overflow
Need reboot : no
Debian-Edu-specific : no
CVE ID : CAN-2004-0941 CAN-2004-0990
DSA ID : DSA-602-1
DSA URL : http://www.debian.org/security/2004/dsa-602
Package : openssl (openssl libssl0.9.6)
Vulnerability : insecure temporary file
Need reboot : no
Debian-Edu-specific : no
CVE ID : CAN-2004-0975
DSA ID : DSA-603-1
DSA URL : http://www.debian.org/security/2004/dsa-603
Upgrade Instructions
- --------------------
Make sure the line
deb http://security.debian.org/ stable/updates main contrib non-free
is present in your /etc/apt/sources.list and run 'apt-get update' to
update your package lists. Then run
'apt-get upgrade'
to upgrade all the packages mentioned above. This might upgrade other
packages too, and if you only want to upgrade the packages above, you
should run
'apt-get install <pkg1> ... <pkgN>'
where <pkg1> to <pkgN> is the package names in paranthesis
from each package section above.
- --------------------------------------------------------------------------
Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org,
linuxiskolen@skolelinux.no, user@skolelinux.de,
admin-discuss@skolelinux.org
Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature