Subject: Package suse_base-6.4 on i386
To: None <tech-security@netbsd.org>
From: Sean Davis <dive-nb@endersgame.net>
List: tech-pkg
Date: 08/19/2001 10:11:15
I'm running NetBSD current (as of the 17th) on i386, and I'm getting the
following from audit-packages:
<dive@eros(/etc){8}> # /usr/pkg/sbin/audit-packages
Package suse_base-6.4 has a local-root-shell vulnerability, see
http://www.suse.com/de/support/security/2001_001_glibc_txt.txt
What I am wondering, is what would tbe best way to correct / workaround this
vulnerability be? I updated and checked my pkgsrc, and that's still the most
recent version of the port in there. Any suggestions?
thanks,
-Sean