[suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)

From: Felix Schulte (felix.schulte_at_gmail.com)
Date: Mon Apr 02 2007 - 16:22:25 CEST

• Next message: Markus Roeffen: "Re: Antw: Re: [suse-sles-e] Re: catastrophic disk-performance on SLES10 with SATA drives"
• Previous message: matilda matilda: "Antw: SPAM: Re: [suse-sles-e] Re: catastrophic disk-performance on SLES10 with SATA drives"
• Next in thread: Alexei_Roudnev: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Reply: Alexei_Roudnev: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Reply: Marcus Meissner: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Message-ID: <74f15d5f0704020722g1e871cffrb7b94d0941362249@mail.gmail.com>
Date: Mon, 2 Apr 2007 16:22:25 +0200
From: "Felix Schulte" <felix.schulte@gmail.com>
Subject: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)

AT&T released [https://mailman.research.att.com/pipermail/ast-users/2007q1/001715.html]
new binaries and sources of ksh(93) which include two major fixes for
security vulnerabilities:
07-03-06 Several serious bugs with the restricted shell were reported
and fixed.
...
06-10-13 The klockwork.com software detected a few coding errors that
have been fixed.

Is anyone doing patches for Suse 10.2? It looks Suse still ships a
vulnerable version.

-- 
      _        Felix Schulte
    _|_|_     mailto:felix.schulte@gmail.com
    (0 0)
ooO--(_)--Ooo
---------------------------------------------------------------------
To unsubscribe, e-mail: suse-sles-e-unsubscribe@suse.com
For additional commands, e-mail: suse-sles-e-help@suse.com

• Next message: Markus Roeffen: "Re: Antw: Re: [suse-sles-e] Re: catastrophic disk-performance on SLES10 with SATA drives"
• Previous message: matilda matilda: "Antw: SPAM: Re: [suse-sles-e] Re: catastrophic disk-performance on SLES10 with SATA drives"
• Next in thread: Alexei_Roudnev: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Reply: Alexei_Roudnev: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Reply: Marcus Meissner: "Re: [suse-sles-e] Security note: Multiple vulnerabilities in Suse ksh(93)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Mon Apr 02 2007 - 18:26:20 CEST