This rather disturbs me, since I depend on sudo far too much..
----- Forwarded message from Gossi The Dog <[EMAIL PROTECTED]> -----
Delivered-To: [EMAIL PROTECTED]
Approved-By: [EMAIL PROTECTED]
Delivered-To: [EMAIL PROTECTED]
Delivered-To: bugtraq@securityfocus.com
Date: Fri, 23 Feb 2001 00:53:18 +0000
Reply-To: Gossi The Dog <[EMAIL PROTECTED]>
From: Gossi The Dog <[EMAIL PROTECTED]>
Subject: Sudo version 1.6.3p6 now available (fwd)
To: BUGTRAQ@SECURITYFOCUS.COM
FYI...
---------- Forwarded message ----------
Date: Thu, 22 Feb 2001 08:52:56 -0700
From: Todd C. Miller <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: Sudo version 1.6.3p6 now available
Sudo version 1.6.3p6 is now available (ftp sites listed at the end).
This fixes a *buffer overflow* in sudo which is a potential security
problem. I don't know of any exploits that currently exist but I
suggest that you upgrade none the less.
Sudo has a good track record wrt secure coding, but this one slipped
by me.
- todd
Sudo web site:
http://www.courtesan.com/sudo/
Master FTP sites:
ftp.courtesan.com:/pub/sudo/
ftp.cs.colorado.edu:/pub/sudo/
FTP Mirrors:
ftp.uu.net:/pub/security/sudo/ (Falls Church, Virginia, USA)
ftp.tux.org:/pub/security/sudo/ (Beltsville, Maryland, USA)
coast.cs.purdue.edu:/pub/tools/unix/sudo/ (West Lafayette, Indiana, USA)
ftp.uwsg.indiana.edu:/pub/sudo/ (Bloomington, Indiana, USA)
ftp.tamu.edu:/pub/mirrors/ftp.courtesan.com/ (College Station, Texas, USA)
ftp.rge.com:/pub/admin/sudo/ (Rochester, New York, USA)
ftp.srv.ualberta.ca:/pub/Mirror/sudo/ (Canada)
ftp.umds.ac.uk:/pub/sudo/ (Great Britain)
ftp.iphil.net:/pub/sudo/ (Makati City, Philippines)
ftp.csc.cuhk.edu.hk:/pub/packages/unix-tools/sudo/ (Hong Kong)
ftp.icm.edu.pl:/vol/wojsyl5/sudo/ (Poland)
ftp.tuwien.ac.at:/utils/admin-tools/sudo/ (Austria)
ftp.eunet.cz:/pub/security/sudo/ (Czechoslovakia)
ftp.tvi.tut.fi:/pub/security/unix/sudo/ (Finland)
ftp.lps.ens.fr:/pub/software/sudo/ (France)
ftp.crihan.fr:/pub/security/sudo/ (France)
ftp.sai.msu.su:/pub/unix/security/ (Russia)
ftp.mc.hik.se:/pub/unix/security/sudo/ (Sweden)
ftp.rz.uni-osnabrueck.de/pub/unix/security/sudo/ (Germany)
ftp.edu.tw:/UNIX/sudo/ (Taiwan)
ftp.win.ne.jp:/pub/misc/sudo/ (Japan)
ftp.st.ryukoku.ac.jp:/pub/security/tool/sudo/ (Japan)
ftp.eos.hokudai.ac.jp:/pub/misc/sudo/ (Japan)
ftp.tokyonet.ad.jp:/pub/security/sudo/ (Japan)
ftp.kobe-u.ac.jp:/pub/util/security/tool/sudo/ (Japan)
ftp.cin.nihon-u.ac.jp:/pub/util/sudo/ (Japan)
ftp.fujitsu.co.jp:/pub/misc/sudo/ (Japan)
core.ring.gr.jp:/pub/misc/sudo/ (Japan)
ftp.ring.gr.jp:/pub/misc/sudo/ (Japan)
Master WWW site:
http://www.courtesan.com/sudo/dist/
WWW Mirrors:
http://www.rge.com/pub/admin/sudo/ (Rochester, New York, USA)
http://gd.tuwien.ac.at/utils/admin-tools/sudo/ (Austria)
http://sudo.cdu.elektra.ru/ (Russia)
http://www.ring.gr.jp/archives/misc/sudo/ (Japan)
http://core.ring.gr.jp/archives/misc/sudo/ (Japan)
RPMs:
ftp://ftp.rpmfind.net/linux/falsehope/pub/sudo
ftp://ftp.tux.org/pub/sites/ftp.falsehope.com/sudo
ftp://ftp.freshmeat.net/pub/rpms/sudo
Note that mirror sites may take a while to update.
---
Todd C. Miller Sysadmin/Consultant [EMAIL PROTECTED]
____________________________________________________________
sudo-announce mailing list <[EMAIL PROTECTED]>
For list information, options, or to unsubscribe, visit:
http://www.courtesan.com/mailman/listinfo/sudo-announce
----- End forwarded message -----
--
"... being a Linux user is sort of like living in a house inhabited
by a large family of carpenters and architects. Every morning when
you wake up, the house is a little different. Maybe there is a new
turret, or some walls have moved. Or perhaps someone has temporarily
removed the floor under your bed." - Unix for Dummies, 2nd Edition
-- found in the .sig of Rob Riggs, [EMAIL PROTECTED]
