- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2006-008 http://www.skolelinux.no/security/ Morten Werner Olsen December 17th, 2006 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- This DESA deals with severel packages that the Debian Security Team has fixed. Each section start with "Package" and includes a link to the Debian Security Team's announce for the security upgrade. Package : tar (tar) Vulnerability : input validation error Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-6097 DSA ID : DSA-1223-1 DSA URL : http://www.debian.org/security/2006/dsa-1223 Package : libgsf (libgsf-1) Vulnerability : buffer overflow Need reboot : no Debian-Edu-specific : no CVE ID : None DSA ID : DSA-1221-1 DSA URL : http://www.debian.org/security/2006/dsa-1221 Package : imagemagick (libmagick6, imagemagick) Vulnerability : several vulnerabilities Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-5868 DSA ID : DSA-1213-1 DSA URL : http://www.debian.org/security/2006/dsa-1213 Package : gnupg (gnupg) Vulnerability : several vulnerabilities Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-6235 DSA ID : DSA-1231-1 DSA URL : http://www.debian.org/security/2006/dsa-1231 Package : gv (gv) Vulnerability : buffer overflow Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-5864 DSA ID : DSA-1214-1 DSA URL : http://www.debian.org/security/2006/dsa-1214 Package : openssh (ssh) Vulnerability : Denial of service Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-5051 DSA ID : DSA-1212-1 DSA URL : http://www.debian.org/security/2006/dsa-1212 Package : texinfo (info) Vulnerability : buffer overflow Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-4810 DSA ID : DSA-1219-1 DSA URL : http://www.debian.org/security/2006/dsa-1219 Package : libpam-ldap Vulnerability : programming error Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-5170 DSA ID : DSA-1203-1 DSA URL : http://www.debian.org/security/2006/dsa-1203 Package : mozilla-thunderbird Vulnerability : several vulnerabilities Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2006-4310 DSA ID : DSA-1227-1 DSA URL : http://www.debian.org/security/2006/dsa-1227 Upgrade Instructions - -------------------- Make sure the line deb http://security.debian.org/ sarge/updates main contrib non-free is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Then run 'apt-get upgrade' to upgrade all the packages mentioned above. This might upgrade other packages too, and if you only want to upgrade the packages above, you should run 'apt-get install <pkg1> ... <pkgN>' where <pkg1> to <pkgN> is the package names in paranthesis from each package section above. - -------------------------------------------------------------------------- Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org, linuxiskolen@skolelinux.no, user@skolelinux.de, admin-discuss@skolelinux.org Package info: `apt-cache show <pkg>'
Attachment:
signature.asc
Description: Digital signature