Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

On Friday 28 September 2007 07:45, Johannes Wiedersich wrote: > Holger Levsen wrote: > > Hi, > > > > On Friday 28 September 2007 11:18, Jan Wagner wrote: > >>> Running postinst hook script /sbin/update-grub. > >>> You shouldn't call /sbin/update-grub. Please call /usr/sbin/update-grub > >>> instead

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

Hi, On Friday 28 September 2007 14:45, Johannes Wiedersich wrote: > IIRC, this should apply only to upgrades from sarge. It's covered in > Etch's release notes [1]. I stand corrected, thanks for pointing this out. > [1] > http://www.de.debian.org/releases/stable/i386/release-notes/ch-upgrading.e

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

Hi, On Friday 28 September 2007 14:32, Marcin Owsiany wrote: > It's just a warning, so not _that_ bad... Not that bad, but everytime I see it, I think "bad QA", which is bad. regards, Holger pgp2YO9Lmyjk8.pgp Description: PGP signature

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Holger Levsen wrote: > Hi, > > On Friday 28 September 2007 11:18, Jan Wagner wrote: >>> Running postinst hook script /sbin/update-grub. >>> You shouldn't call /sbin/update-grub. Please call /usr/sbin/update-grub >>> instead! >> you need to modify /etc

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

On Fri, Sep 28, 2007 at 01:10:10PM +0200, Holger Levsen wrote: > Hi, > > On Friday 28 September 2007 11:18, Jan Wagner wrote: > > > Running postinst hook script /sbin/update-grub. > > > You shouldn't call /sbin/update-grub. Please call /usr/sbin/update-grub > > > instead! > > you need to modify /e

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

Hi, On Friday 28 September 2007 11:18, Jan Wagner wrote: > > Running postinst hook script /sbin/update-grub. > > You shouldn't call /sbin/update-grub. Please call /usr/sbin/update-grub > > instead! > you need to modify /etc/kernel-img.conf! I believe this happens with a freshly installed etch sys

Re: Bug#439927: t1lib security flaw: CVE-2007-4033/#439927

On Fri, 28 Sep 2007 08:39:13 pm Ionut Georgescu wrote: > On Thu, 2007-09-27 at 20:12 +0200, Torsten Werner wrote: > > On 9/17/07, Torsten Werner <[EMAIL PROTECTED]> wrote: > > > On 9/16/07, Artur R. Czechowski <[EMAIL PROTECTED]> wrote: > > > > The t1lib 5.1.0 available in Debian (either etch as le

Re: Bug#439927: t1lib security flaw: CVE-2007-4033/#439927

On Thu, 2007-09-27 at 20:12 +0200, Torsten Werner wrote: > On 9/17/07, Torsten Werner <[EMAIL PROTECTED]> wrote: > > On 9/16/07, Artur R. Czechowski <[EMAIL PROTECTED]> wrote: > > > The t1lib 5.1.0 available in Debian (either etch as lenny and sid[1]) is > > > vulnerable to CVE-2007-4033 security f

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

Hi, On Friday 28 September 2007 10:04, G.W. Haywood wrote: > Running postinst hook script /sbin/update-grub. > You shouldn't call /sbin/update-grub. Please call /usr/sbin/update-grub > instead! you need to modify /etc/kernel-img.conf! With kind regards, Jan. -- Never write mail to <[EMAIL PROTE

Re: [SECURITY] [DSA 1378-1] New Linux 2.6.18 packages fix several vulnerabilities

Hi there, On Thu, 27 Sep 2007, dann frazier wrote: > - -- > Debian Security Advisory DSA 1378-1[EMAIL PROTECTED] > http://www.debian.org/security/ Dann Frazier > September 27t