sslug-teknik team mailing list archive

Thread
Date

Ny Root Exploit i Redhat 6 (INN) fundet

To: "sslug-teknik@xxxxxxxx" <sslug-teknik@xxxxxxxx>
From: Kim Schulz <kim@xxxxxxxxx>
Date: Sat, 22 May 1999 20:45:05 +0200
Delivered-to: mailing list sslug-teknik@xxxxxxxx
Mailing-list: contact sslug-teknik-help@xxxxxxxx; run by ezmlm
Reply-to: sslug-teknik@xxxxxxxx

Dette er netop kommet ind i min mailbox.
---------------------------klip---------------------------
Those of you who are running Red Hat 6.0 may want to take note of the
following security hole, which surfaced on the redhat-watch mailing list
yesterday:
Security problems have been found with the version of INN that shipped
with Red Hat Linux 6.0. By editing the inn.conf file, or changing the
INNCONF environment variable, the 'news' user could execute arbitrary
code as root. Thanks to the users of BUGTRAQ for noting this problem. It
is recommended that users of INN under Red Hat Linux 6.0 upgrade to the
new packages. This vulnerability does not affect the INN that shipped in
previous versions of Red Hat Linux.
--------------------------klip slut-------------------------

Så dem der kører newsserver, husk at hente en opdatering!!!!
--
MVH
Kim@xxxxxxxxx


----------------BEGIN GEEK CODE BLOCK------------------------
  Version: 3.12
GCM/GCS>$ d-- s++: a--- C+++(++++) UL+++>$ P+++>++++ L+++>$ E
W+++ N+++ o++++ w--- O- M-- V PS+ PE- Y++ PGP++ t+ 5++ X+ R++
tv+ b+++ DI+++ D++ G++++ e>e++++>$ h+ r+>r+++ z+ 
----------------END GEEK CODE BLOCK--------------------------