Next message: Andreas Tscharner: "Re: PFinger 0.7.8 format string vulnerability (#NISR16122002B)"
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --------------------------------------------------------------------------
Debian Security Advisory DSA 217-1 securityat_private
http://www.debian.org/security/ Martin Schulze
December 27th, 2002 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : typespeed
Vulnerability : buffer overflow
Problem-Type : local
Debian-specific: no
A problem has been discovered in the typespeed, a game that lets you
measure your typematic speed. By overflowing a buffer a local
attacker could execute arbitrary commands under the group id games.
For the current stable distribution (woody) this problem has been
fixed in version 0.4.1-2.1.
For the old stable distribution (potato) this problem has been fixed
in version 0.4.0-5.1.
For the unstable distribution (sid) this problem has been fixed in
version 0.4.2-2.
We recommend that you upgrade your typespeed package.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato
- ---------------------------------
Source archives:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1.dsc
Size/MD5 checksum: 575 f6226194d5fc98835987d752904f7149
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1.diff.gz
Size/MD5 checksum: 6763 deefebffe7313476dff4d1b076c46cd7
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0.orig.tar.gz
Size/MD5 checksum: 33037 587b3ca15b32142d24bd452881c64dd1
Alpha architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_alpha.deb
Size/MD5 checksum: 40752 2fdb1f039ddb6fa746e785744632590f
ARM architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_arm.deb
Size/MD5 checksum: 34716 ae61105ff80f44f49ea6a92b48cce71e
Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_i386.deb
Size/MD5 checksum: 34326 b5bc6881676b8a102afcad03de4c4eb7
Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_m68k.deb
Size/MD5 checksum: 33486 2b6d7bac7d6f582b77a61683d7afb437
PowerPC architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_powerpc.deb
Size/MD5 checksum: 37004 7ef642e4f567077c7eda5094359f6d8d
Sun Sparc architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.0-5.1_sparc.deb
Size/MD5 checksum: 39132 521d46c4ffcb2315674388756bae0a5a
Debian GNU/Linux 3.0 alias woody
- --------------------------------
Source archives:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1.dsc
Size/MD5 checksum: 575 fb28aec0af0ad71d5f3c424359082a32
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1.diff.gz
Size/MD5 checksum: 8136 ccafdd4e0cf004587395ef4a72484efd
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1.orig.tar.gz
Size/MD5 checksum: 35492 0af9809cd20bd9010732ced930090f32
Alpha architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_alpha.deb
Size/MD5 checksum: 44336 83b3ed65a67602831d5dc089f53bcfc5
ARM architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_arm.deb
Size/MD5 checksum: 39016 eb929720e523608b0e74876c28505a86
Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_i386.deb
Size/MD5 checksum: 38708 03594d270467f1e603deb4a710cf1c54
Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_ia64.deb
Size/MD5 checksum: 49902 c21eb5bcefee5e06c2d3172675f1dd1f
HP Precision architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_hppa.deb
Size/MD5 checksum: 41824 f8366e40e1a202bc517c53f5c4318ff0
Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_m68k.deb
Size/MD5 checksum: 37398 97cc30fc64831b29fa381525be5efdd5
Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_mips.deb
Size/MD5 checksum: 41050 32977331dc2e7abc553bcce803a6f91c
Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_mipsel.deb
Size/MD5 checksum: 41078 5d24a3e5e23743e83c2b1e94b8e30efa
PowerPC architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_powerpc.deb
Size/MD5 checksum: 41172 9d35eb25d585f47dcddc85bc8282ca4d
IBM S/390 architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_s390.deb
Size/MD5 checksum: 38628 13452b96ee560a05b3d17f71ad194f5f
Sun Sparc architecture:
http://security.debian.org/pool/updates/main/t/typespeed/typespeed_0.4.1-2.1_sparc.deb
Size/MD5 checksum: 42972 0ac49283d67f331bae77b6c52cf2d521
These files will probably be moved into the stable distribution on
its next revision.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announceat_private
Package info: `apt-cache show <pkg>' and http://packages.debian.org/>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQE+DGx1W5ql+IAeqTIRAjbZAJ4/kViaK0I2hsuGDE8w/GAKj/heNgCgo5Zz
v0KtZDPMK5E3/3XtpglBrGs=
=S3dh
-----END PGP SIGNATURE-----
This archive was generated by hypermail 2b30
: Fri Dec 27 2002 - 09:52:57 PST