Re: list of 2.1r4 changes (was: Re: Last call for updated non-i386 packages.)
On Thu, 9 Dec 1999, Wichert Akkerman wrote:
> Here's a new list (added htdig securityfix).
>
> Can someone please check the y2k fixes and be a bit more specific
> about the problem with each package? No long description needed,
> but something more then just `y2k fix' would be nice..
I tried where I could.
> Another one that is missing is a new samba-doc package to bring it
> in sync with the samba packages currently in slink. If nobody
> beats me to that I'll do that saturday.
it looks like samba-doc was a standalone package in slink, but is now
produced by the samba source package. Should we rebuild the whole samba
package?
Attached: the corrected version of the list, and the changes I
made. (shouldn't we be using CVS for this anyway?)
Cordialement,
--
- Vincent RENARDIAS vincent@{{ldsol,pipo}.com,{debian,openhardware}.org} -
- Debian/GNU Linux: GNOME : -
- http://www.fr.debian.org http://www.gnome.org -
---------------------------------------------------------------------------
"Every man has two nations, and one of them is France" [Benjamin Franklin]
Security updates:
package : amd
version : 102-23.slink2
architectures: alpha i386 m68k sparc
vulnerability: remote exploit
package : bind
version : 8.2.2p5-0slink1
architectures: alpha i386 m68k sparc
vulnerability: remote DoS
package : dump
version : 0.4b9-0slink1
architectures: alpha i386 m68k sparc
vulnerability: local exploit
package : kernel-source-2.0.38
version : 2.0.38-1.1
architectures: i386 (m68k & alpha builders aren't interested)
vulnerability: various
package : htdig
version : 3.1.2-4slink6
architectures: alpha i386 m68k sparc
vulnerability: remote exploit
package : inn
version : 1.7.2-4.1
architectures: alpha i386 m68k sparc
vulnerability: fix buffer overflows in inews
package : libdb1
version : 1.85.4-4
architectures: alpha (Note: depends on libc6.1, but that ok on alpha)
vulnerability: buffer overflow
package : lpr
version : 0.46-1-0slink1
architectures: alpha i386 m68k sparc
vulnerability: local exploit (users could print files they couldn't read)
package : mirror
version : 2.9-2.1
architectures: all
vulnerability: remote exploit
package : netkit-telnet
version : 0.12-4slink.1
architectures: alpha i386 m68k sparc
vulnerability: remote DoS
package : nfs-server
version : 2.2beta37-1slink.1
architectures: alpha i386 m68k sparc
vulnerability: remote exploit
package : nis
version : 3.5-2
architectures: alpha i386 m68k sparc
vulnerability: remote exploit
package : proftpd
version : 1.2.0pre9-4
architectures: alpha i386 m68k sparc
vulnerability: remote exploit
package : pvm
version : 3.4beta7-4
architectures: i386
vulnerability: local exploit
package : rvplayer
version : 5.0-9
architectures: i386
vulnerability: local exploit
package : termcap-compat
version : 1.1.2
architectures: i386 m68k (not applicable to alpha, sparc)
vulnerability: local exploit (buffer overflows)
package : sendmail
version : 8.9.3-3slink1
architectures: i386 alpha m68k sparc
vulnerability: local exploit
package : sendmail-wide
version : 8.9.3+3.2W-3slink1
architectures: i386 (alpha on security.d.o) (M68K and SPARC MISSING!!!!)
vulnerability: local exploit
Y2K updates:
package : cvs
version : 1.10.7-1.99.slink.y2k.0
architectures: alpha i386 (SPARC & M68K MISSING!!!!)
issue : date pbm in logs
package : egcs
version : 1.1.2-0slink1 and 1.1.2-0slink2
architectures: alpha i386 m68k (SPARC MISSING!!!!)
issue : date handling in g77
package : enscript
version : 1.6.2-3.99.slink.y2k.1
architectures: alpha i386 m68k (SPARC MISSING!!!!)
issue : Versions < 1.6.1 are known to have problems with y2k dates.
package : gnats
version : 3.113-0slink1
architectures: alpha i386 (SPARC & M68K MISSING!!!!)
issue : fix y2k problem
package : gs
version : 5.10-3.99.slink.1
architectures: i386 alpha(M68K and SPARC MISSING!!!!)
issue : fix y2k problem
package : smartlist
version : 3.13-2
architectures: alpha i386 m68k (SPARC MISSING!!!!)
issue : fix y2k problem in digest volume numbers
package : vflib2
version : 2.24.2-2.99.slink.0
architectures: i386 alpha (M68K and SPARC MISSING!!!!)
issue : needed by newer gs.
package : sharutils
version : 1:4.2.1-1
architectures: m68k i386 (SPARC & ALPHA MISSING!!!!)
issue : Fixes unportable use of `touch' in shar indroced by y2k fix.
Other updates:
package : selfhtml
version : 7.0-3
architectures: alpha i386 m68k sparc
problem : trademark violation
package : pcmcia-cs
version : 3.0.5-10.slink.1
architectures: i386
problem : recompile for new 2.0.38 kernel
package : trn
version : 3.6-9.3.2
architectures: m68k (other not applicable)
problem : sync with other archs.
package : boot-floppies
version : 2.1.12
architectures: i386 (other not applicable)
problem : recompile to fix several problems fixed in CVS
--- wichert.orig Fri Dec 10 13:56:06 1999
+++ wichert Fri Dec 10 15:16:45 1999
@@ -15,8 +15,8 @@
vulnerability: local exploit
package : kernel-source-2.0.38
- version : 2.0.38-0
- architectures: i386 (ALPHA & M68k MISSING!!)
+ version : 2.0.38-1.1
+ architectures: i386 (m68k & alpha builders aren't interested)
vulnerability: various
package : htdig
@@ -29,9 +29,9 @@
architectures: alpha i386 m68k sparc
vulnerability: fix buffer overflows in inews
- package : libdb2
+ package : libdb1
version : 1.85.4-4
- architectures: alpha
+ architectures: alpha (Note: depends on libc6.1, but that ok on alpha)
vulnerability: buffer overflow
package : lpr
@@ -80,13 +80,13 @@
vulnerability: local exploit (buffer overflows)
package : sendmail
- version : 8.9.3-3slink1.0.1
- architectures: i386 (ALPHA, M68K and SPARC MISSING!!!!)
+ version : 8.9.3-3slink1
+ architectures: i386 alpha m68k sparc
vulnerability: local exploit
package : sendmail-wide
version : 8.9.3+3.2W-3slink1
- architectures: i386 (ALPHA, M68K and SPARC MISSING!!!!)
+ architectures: i386 (alpha on security.d.o) (M68K and SPARC MISSING!!!!)
vulnerability: local exploit
@@ -102,8 +102,8 @@
issue : date handling in g77
package : enscript
- version : 1.6.2-3.99.slink.y2k.0
- architectures: alpha i386 (M68K and SPARC MISSING!!!!)
+ version : 1.6.2-3.99.slink.y2k.1
+ architectures: alpha i386 m68k (SPARC MISSING!!!!)
issue : Versions < 1.6.1 are known to have problems with y2k dates.
package : gnats
@@ -113,24 +113,24 @@
package : gs
version : 5.10-3.99.slink.1
- architectures: i386 (ALPHA, M68K and SPARC MISSING!!!!)
- issue : fix y2k problem
-
- package : htdig
- version : 3.1.2-4slink5
- architectures: alpha i386 (M68K and SPARC MISSING!!!!)
+ architectures: i386 alpha(M68K and SPARC MISSING!!!!)
issue : fix y2k problem
package : smartlist
version : 3.13-2
architectures: alpha i386 m68k (SPARC MISSING!!!!)
- issue : fix y2k problem
+ issue : fix y2k problem in digest volume numbers
package : vflib2
version : 2.24.2-2.99.slink.0
- architectures: i386 (ALPHA, M68K and SPARC MISSING!!!!)
+ architectures: i386 alpha (M68K and SPARC MISSING!!!!)
issue : needed by newer gs.
+ package : sharutils
+ version : 1:4.2.1-1
+ architectures: m68k i386 (SPARC & ALPHA MISSING!!!!)
+ issue : Fixes unportable use of `touch' in shar indroced by y2k fix.
+
Other updates:
package : selfhtml
version : 7.0-3
@@ -146,4 +146,9 @@
version : 3.6-9.3.2
architectures: m68k (other not applicable)
problem : sync with other archs.
+
+ package : boot-floppies
+ version : 2.1.12
+ architectures: i386 (other not applicable)
+ problem : recompile to fix several problems fixed in CVS
Reply to: