[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: debian e seguranca



hau amigo!

vc estava com o sources.list setado para o ftp.debian.org? eu acredito
que tenha havido um problema com uma ligacao entre o queue principal e
esse servidor que jah deve estar consertado...

[]s!

On Thu, Mar 15, 2001 at 11:56:16AM -0300, Flavio Alberto wrote:
> Estou utilizando Debian 2.2.r2 e setado meu sourcers list para stable...
> algumas atualizacoes de seguranca foram baixadas e instaladas... mas o
> qpopper continua 2.53 o qual posui alguns furos.. eu queria saber porque a
> debian nao atualiza este pacote ja que ele possui furos....
> 
> Security Vulnerability
> Some versions of Qpopper are vulnerable to buffer overruns.  Qpopper 2.41
> and older can be used to obtain root access to your system.  Qpopper 2.53
> and older may permit an attacker who has access to a valid account to obtain
> a shell with group-id 'mail', potentially allowing read/write access to all
> mail.
> 
> 
> --  
> To UNSUBSCRIBE, email to debian-user-portuguese-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 
> 

-- 
Gustavo Noronha Silva - kov
/*******************************************************  .''`.
* http://www.metainfo.org/kov			       * : :'  :
* GPG Key: http://www.metainfo.org/kov/html/pgp.html   * `. `'`
* http://www.brainbench.com/transcript.jsp?pid=2448987 *   `-
*******************************************************/ Debian

Attachment: pgp4nhhhOfVGI.pgp
Description: PGP signature


Reply to: