Bugtraq mailing list archives
[SECURITY] Debian esound packages not affected by /tmp/.esd race condition
From: debian-security-announce () LISTS DEBIAN ORG
Date: Mon, 9 Oct 2000 12:01:37 -0700
-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------------- Debian Security Advisory security () debian org http://www.debian.org/security/ Daniel Jacobowitz October 8, 2000 - ---------------------------------------------------------------------------- Package: esound Vulnerability: Race condition Debian-specific: no Vulnerable: no Linux-Mandrake has recently released a Security Advisory (MDKSA-2000:051) covering a race condition in the esound. Debian is not affected by this bug; the bug is specific to the unix domain socket support, which was turned off in stable (2.2/potato) and unstable (woody) on February 16, 2000. Therefore neither the current stable or unstable distribution of Debian is vulnerable to this problem. Debian 2.1 (aka "slink") is also not vulnerable to this problem; the version of esound in Debian 2.1 is 0.2.6, which predates the buggy unix domain socket code. More information regarding this bug can be found at: http://bugs.debian.org/cgi-bin/bugreport.cgi?archive=yes&bug=58054 - ---------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable updates Mailing list: debian-security-announce () lists debian org -----BEGIN PGP SIGNATURE----- Version: 2.6.3a Charset: noconv iQCVAwUBOeIUIz5fjwqn/34JAQHsewQAr4NvRrcJRiaLKlKx0nVWEX9/fPkGz+ib EPem1gZYfb9FEJrV7lNhFTGqjoXfS0ZFryFp3ZfbiBkKOzAcH07QVvUSqqHFegf8 Q42gpppa2KxeP83iNUjQp4aca/VlBEHMH9uRvV9YNbd2TY/79CBoN3yvL+n00a+q BI9aZn7IotA= =3IJF -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-security-announce-request () lists debian org with a subject of "unsubscribe". Trouble? Contact listmaster () lists debian org
Current thread:
- [SECURITY] Debian esound packages not affected by /tmp/.esd race condition debian-security-announce (Oct 09)