Subject: New procmail, security fixes...
To: None <tech-security@netbsd.org>
From: Mason Loring Bliss <mason@acheron.middleboro.ma.us>
List: tech-security
Date: 04/06/1999 14:59:36 
This just came through a Debian list. It doesn't reference the particular
fixes, but I thought 3.13 might be worth a look, since we've got procmail
in our package system...


----- Forwarded message from Wichert Akkerman <wichert@cs.leidenuniv.nl> -----

Date: Sun, 4 Apr 1999 22:06:01 +0200
From: Wichert Akkerman <wichert@cs.leidenuniv.nl>
To: debian-security-announce@lists.debian.org
Subject: [SECURITY] new version of procmail with security fixes

A new version of procmail has been released which fixes a couple
of buffer overflows and has extra security checks.

We recommend you upgrade your procmail package immediately.

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

Debian GNU/Linux 2.1 alias slink
-------------------------------

  This version of Debian was released only for Intel, the Motorola
  680x0, the alpha and the Sun sparc architecture.

  Source archives:
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13.orig.tar.gz
	  MD5 checksum: 8c90af9adf933a6bc1f088efacfd9082
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1.diff.gz
      MD5 checksum: b65310e4c1d3bec1b472911373feb705
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1.dsc
      MD5 checksum: 3b6fdf4b9f8ed88d797ffd5f046f2fd9

  Alpha architecture:
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1_alpha.deb
      MD5 checksum: bab9879c1b20c0c054e9a4e7a1949171

  Intel architecture:
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1_i386.deb
      MD5 checksum: 4058e03128080dedf8668b185af8e40b

  Motorola 680x0 architecture:
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1_m68k.deb
      MD5 checksum: bbabee67ef2ff13656ef0231fa440a04

  Sun sparc architecture:
    ftp://ftp.debian.org/debian/dists/proposed-updates/procmail_3.13-1_sparc.deb
      MD5 checksum: 53fd16e8b927a165c30509780cc8c240

  These files will be moved into
  ftp://ftp.debian.org/debian/dists/slink/*/binary-$arch/ soon.


For not yet released architectures please refer to the appropriate
directory ftp://ftp.debian.org/debian/dists/sid/binary-$arch/ .

-- 
Debian GNU/Linux      .    Security Managers     .   security@debian.org
              debian-security-announce@lists.debian.org
  Christian Hudon     .     Wichert Akkerman     .     Martin Schulze
<chrish@debian.org>   .   <wakkerma@debian.org>  .   <joey@debian.org>



----- End forwarded message -----

-- 
Mason Loring Bliss             ((  "In the drowsy dark cave of the mind dreams
mason@acheron.middleboro.ma.us  ))  build  their nest  with fragments  dropped
http://acheron.ne.mediaone.net ((   from day's caravan." - Rabindranath Tagore