- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2005-013 http://www.skolelinux.no/security/ Morten Werner Olsen October 14th, 2005 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- This DESA deals with severel packages that the Debian Security Team has fixed. Each section start with "Package" and includes a link to the Debian Security Team's announce for the security upgrade. Package : cfengine (cfengine) Vulnerability : insecure temporary files Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-2960 DSA ID : DSA-835-1 DSA URL : http://www.debian.org/security/2005/dsa-835 Package : cpio (cpio) Vulnerability : several Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-1111 CAN-2005-1229 DSA ID : DSA-846-1 DSA URL : http://www.debian.org/security/2005/dsa-846 Package : tcpdump (tcpdump) Vulnerability : infinite loop Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005-1279 DSA ID : DSA-850-1 DSA URL : http://www.debian.org/security/2005/dsa-850 Package : libxine0 (xine-lib) Vulnerability : format string vulnerability Need reboot : no Debian-Edu-specific : no CVE ID : CAN-2005- DSA ID : DSA-863-1 DSA URL : http://www.debian.org/security/2005/dsa-863 Upgrade Instructions - -------------------- Make sure the line deb http://security.debian.org/ woody/updates main contrib non-free is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Then run 'apt-get upgrade' to upgrade all the packages mentioned above. This might upgrade other packages too, and if you only want to upgrade the packages above, you should run 'apt-get install <pkg1> ... <pkgN>' where <pkg1> to <pkgN> is the package names in paranthesis from each package section above. - -------------------------------------------------------------------------- Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org, linuxiskolen@skolelinux.no, user@skolelinux.de, admin-discuss@skolelinux.org Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature