LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Serve your customers, not your servers, with VERIO Linux VPS. Full-access test-drive here.

Recent Features

LWN.net Weekly Edition for May 15, 2008

Distributed bug tracking

A Talk with Fedora Project Leader Paul Frields

LWN.net Weekly Edition for May 8, 2008

Blizzard tests the reach of copyright law

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

TSL-2004-0057 - multi

[Posted November 10, 2004 by ris]

From:  Trustix Security Advisor <tsl-AT-trustix.org>
To:  tsl-announce-AT-lists.trustix.org
Subject:  TSL-2004-0057 - multi
Date:  Mon, 8 Nov 2004 14:59:54 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Bugfix Advisory #2004-0057

Package name:      php, postfix, kernel, sqlgrey, sqlite
Summary:           Package bugfixes
Date:              2004-11-08
Affected versions: Trustix Secure Linux 2.2

- --------------------------------------------------------------------------
Package description:
  php:
  PHP is an HTML-embedded scripting language.  PHP attempts to make it
  easy for developers to write dynamically generated web pages.  PHP
  also offers built-in database integration for several commercial
  and non-commercial database management systems, so writing a
  database-enabled web page with PHP is fairly simple.  The most
  common use of PHP coding is probably as a replacement for CGI
  scripts.  The mod_php module enables the Apache web server to
  understand and process the embedded PHP language in web pages.

  postfix:
  Postfix is an alternative to the sendmail mailer daemon. Postfix attempts
  to be fast, easy to administer, and secure, while at the same time being
  sendmail compatible enough to not upset existing users.

  kernel:
  The kernel package contains the Linux kernel (vmlinuz), the core of your
  Trustix Secure Linux operating system.  The kernel handles the basic functions
  of the operating system:  memory allocation, process allocation, device
  input and output, etc.

  sqlgrey:
  SQLgrey is a Postfix grey-listing policy service with auto-white-listing
  written in Perl with SQL database as storage backend.
  Greylisting stops 50 to 90 % junk mails (spam and virus) before they
  reach your Postfix server (saves BW, user time and CPU time).

  sqlite:
  SQLite is a C library that implements an embeddable SQL database engine.
  Programs that link with the SQLite library can have SQL database access
  without running a separate RDBMS process. The distribution comes with a
  standalone command-line access program (sqlite) that can be used to
  administer an SQLite database and which serves as an example of how to
  use the SQLite library.


Problem description:
  php:
  Wrong "extension_dir" leads to problems loading modules.

  postfix:
  Fixed a missing define that prevented dynamic loading of modules.

  kernel:
  Fixed symlinks to firewall kernels which could lead to problems booting
  for people who had the firewall kernel installed.

  sqlgrey:
  Now use user sqlgrey by default.

  sqlite:
  Now with manpage.

Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All Trustix Secure Linux updates are available from
  <URI:http://http.trustix.org/pub/trustix/updates/>>
  <URI:ftp://ftp.trustix.org/pub/trustix/updates/>>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.


Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.org/support/>>


Verification:
  This advisory along with all Trustix packages are signed with the
  TSL sign key.
  This key is available from:
  <URI:http://www.trustix.org/TSL-SIGN-KEY>>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.org/errata/trustix-2.2/>>
  or directly at
  <URI:http://www.trustix.org/errata/2004/0057/>>


MD5sums of the packages:
- --------------------------------------------------------------------------
25bc5b83e597864921d781237c443485  2.2/rpms/php-5.0.2-2tr.i586.rpm
a88f1d3636488800509174f81b947b75  2.2/rpms/php-cli-5.0.2-2tr.i586.rpm
8771407e82f91f15bd98a8bf095eaa4f  2.2/rpms/php-devel-5.0.2-2tr.i586.rpm
63adcea6911782055c0a337a4b63b000  2.2/rpms/php-exif-5.0.2-2tr.i586.rpm
e9592ca99335011c2db6c5c51126942e  2.2/rpms/php-gd-5.0.2-2tr.i586.rpm
0d8589f5d7b8e0354a363b419efed205  2.2/rpms/php-imap-5.0.2-2tr.i586.rpm
c9e8ba3de5ae365b8e537eba8a2d3115  2.2/rpms/php-ldap-5.0.2-2tr.i586.rpm
f4ee837324059a54db548b064cf588e9  2.2/rpms/php-mysql-5.0.2-2tr.i586.rpm
4b0c09ab7480208f9f525414c927370f  2.2/rpms/php-mysqli-5.0.2-2tr.i586.rpm
96c2eb986bfd01fa580d3f930d3d673a  2.2/rpms/php-pgsql-5.0.2-2tr.i586.rpm

afa4891dfa58ed77b6adcde832a1877a  2.2/rpms/postfix-2.1.5-8tr.i586.rpm
7723d61f4064308093db8a9c799586b4  2.2/rpms/postfix-conf-2.1.5-8tr.i586.rpm
e9b7e34baba59dbe7bec404f57faa837  2.2/rpms/postfix-ldap-2.1.5-8tr.i586.rpm
f2f0726831d57d3c653a94c3c870c9ad  2.2/rpms/postfix-mysql-2.1.5-8tr.i586.rpm
4a17823aae87d9f323499e2c4e9a2a5b  2.2/rpms/postfix-pcre-2.1.5-8tr.i586.rpm
1539cb1c2c27b46f57860f958ef82f0f  2.2/rpms/postfix-pgsql-2.1.5-8tr.i586.rpm
1c6a9aef335548f6c956b3c65dc7ad20  2.2/rpms/postfix-rmail-2.1.5-8tr.i586.rpm

cd00cd898bfb05c7ec589bfa2166f395  2.2/rpms/kernel-2.4.27-8tr.i586.rpm
6fc01e6b9219980b511629613fe26257  2.2/rpms/kernel-BOOT-2.4.27-8tr.i586.rpm
c13a6d692618eb7be375ffde5a9ab9fc  2.2/rpms/kernel-doc-2.4.27-8tr.i586.rpm
4ddb3a889a313951c35aaefb591e442c  2.2/rpms/kernel-smp-2.4.27-8tr.i586.rpm
baf01aa8deb38ffb3baa92d387ac65f2  2.2/rpms/kernel-source-2.4.27-8tr.i586.rpm
7ae997ad2201b466103d5bbc8c4c9fd1  2.2/rpms/kernel-utils-2.4.27-8tr.i586.rpm

56be7dfa7fa0fb8641f315ee6823172c  2.2/rpms/sqlgrey-1.1.3-5tr.i586.rpm

da7d4a1625785860ec8bb5947dc7e2d3  2.2/rpms/sqlite-3.0.8-2tr.i586.rpm
a4fe7bc03660289f2726beeac9b45647  2.2/rpms/sqlite-devel-3.0.8-2tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQFBj1r2i8CEzsK9IksRAj6vAJ45+dIqAFzCtPC+gvi1eZ+YXZXpnQCdEFJc
6UNwuuxL1Oqgwh7SpC4LvxA=
=0lac
-----END PGP SIGNATURE-----
_______________________________________________
tsl-announce mailing list
tsl-announce@lists.trustix.org
http://lists.trustix.org/mailman/listinfo/tsl-announce
(Log in to post comments)

Copyright © 2004, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds
Powered by Rackspace Managed Hosting.