Re: SECURITY: new bash packages available

To: Debian <debian-user-spanish@lists.debian.org>
Subject: Re: SECURITY: new bash packages available
From: TooManySecrets <sneaker@dracnet.es>
Date: Thu, 10 Sep 1998 11:13:10 +0200
Message-id: <19980910111310.B400@dracnet.es>
In-reply-to: <Pine.LNX.3.96.980908194743.5596N-100000@alien.devel.redhat.com>; from Cristian Gafton on Tue, Sep 08, 1998 at 07:48:30PM -0400
References: <Pine.LNX.3.96.980908194743.5596N-100000@alien.devel.redhat.com>

Buenas.

Estoy viendo que el servicio de seguridad de Debian, parece ser que funciona
más rápido (si es que puede ser en el mundo Linux), que el de Red Hat.
El mensaje de Debian-security referente a una vulnerabilidad del Bash, y sus
updates correspondientes, me llegó uno o dos días antes que éste de Red Hat.

> 
> -----BEGIN PGP SIGNED MESSAGE-----
> 
> A security vulnerability has been identified in all versions of bash shipped
> with Red Hat Linux. Details on the nature of the bug have been posted
> recently to the BUGTRAQ security list.
> 
> The bug is not immediately exploitable - it will require that a user with
> shell account on one machine create a carefully constructed directory
> structure and then wait for somebody else with a root account to cd into
> that directory.
> 
> Red Hat would like to thank Joao Manuel Carolino <root@EINSTEIN.DHIS.EU.ORG>
> for identifying this bug and Wichert Akkerman <wichert@WIGGY.ML.ORG> for
> providing an idea of a fix.


-- 
Have a nice day ;-)
TooManySecrets

Reply to:

Prev by Date: Re: Supergrep
Next by Date: Re: Mail
Previous by thread: RE: El login no me gusta mucho
Next by thread: [no subject]
Index(es):
- Date
- Thread