LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

TSL-2005-0044 - multi

[Posted September 7, 2005 by ris]

From:  Trustix Security Advisor <tsl-AT-trustix.org>
To:  tsl-announce-AT-lists.trustix.org
Subject:  TSL-2005-0044 - multi
Date:  Thu, 1 Sep 2005 18:50:02 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Bugfix Advisory #2005-0044

Package names:	   a2ps, amanda, apache-ant, autofs, dev, gcc4, gpm,
                   iptables, kernel, lrzsz, mc, module-init-tools, mrtg,
                   newt, openswan, setup, slang, sysstat, tsl-utils  
Summary:           Various bug fixes
Date:              2005-08-26
Affected versions: Trustix Secure Linux 2.2
                   Trustix Secure Linux 3.0

- --------------------------------------------------------------------------
Package description:
  a2ps
  GNU a2ps is an Any to PostScript filter. Of course it processes plain 
  text files, but also pretty prints quite a few popular languages. More 
  detailed web pages about GNU a2ps, including documentation, flashes,
  updates, mailing lists, FAQ etc.  
  
  amanda
  AMANDA (Advanced Maryland Automatic Network Disk Archiver) is a backup 
  system designed to archive many computers on a network to a single 
  large-capacity tape drive.  AMANDA uses native dump and/or GNU tar 
  facilities and can back up a large number of workstations running multiple
  versions of Unix.
  
  apache-ant
  Ant is a Java based build tool. In theory it is kind of like "make"
  without makes wrinkles and with the full portability of pure java code.
  Ant is different. Instead of a model where it is extended with shell-based
  commands, Ant is extended using Java classes. Instead of writing shell
  commands, the configuration files are XML-based, calling out a target tree
  where various tasks get executed. Each task is run by an object that
  implements a particular Task interface.

  autofs
  Autofs is a kernel-based automounter for Linux.  It performs a job similar
  to amd but relies on a small stub of kernel code instead of pretending to 
  be an NFS server. The result is simpler code, better reliability, and much
  faster operation in the common case (everything already mounted.)
  
  dev
  The Trustix operating system uses file system entries to represent
  devices (CD-ROMs, floppy drives, etc.) attached to the machine. All of
  these entries are in the /dev tree (although they don't have to be).
  This package contains the most commonly used /dev entries.

  gcc4
  The gcc package contains the GNU Compiler Collection: cc and gcc. You'll 
  need this package in order to compile C code.
  
  gpm
  Gpm provides mouse support to text-based Linux applications like the 
  Midnight Commander file management system.  Gpm also provides console 
  cut-and-paste operations using the mouse.

  iptables
  The iptables utility controls the network packet filtering code in the
  Linux kernel. If you need to set up firewalls and/or IP masquerading,
  you must install this package.

  kernel
  The kernel package contains the Linux kernel (vmlinuz), the core of your
  Trustix Secure Linux operating system.  The kernel handles the basic
  functions of the operating system:  memory allocation, process allocation,
  device input and output, etc.
  
  lrzsz
  This collection of commands can be used to download and upload files 
  using the Z, X, and Y protocols. Many terminal programs (like minicom)
  make use of these programs to transfer files.

  mc
  GNU Midnight Commander (also referred to as MC) is a user shell with
  text-mode full-screen interface. It can be run on the OS console, in xterm 
  and other terminal emulators.
  
  module-init-tools
  The module-init-tools package includes programs for managing automatic
  loading and unloading of modules under 2.6 kernels, with support for older
  kenrnels using the old modutils package, as well as other module management
  programs.  Examples of loaded and unloaded modules are device drivers and
  filesystems, as well as some other things.

  mrtg
  The Multi Router Traffic Grapher (MRTG) is a tool to monitor the traffic 
  load on network links. MRTG generates HTML pages containing PNG images which 
  provide a LIVE visual representation of this traffic.

  newt
  Newt is a programming library for color text mode, widget based user
  interfaces. Newt can be used to add stacked windows, entry widgets,
  checkboxes, radio buttons, labels, plain text fields, scrollbars, etc.,
  to text mode user interfaces. This package also contains the shared library
  needed by programs built with newt, as well as a /usr/bin/dialog replacement
  called whiptail. Newt is based on the slang library.

  openswan
  Openswan is a free implementation of IPSEC & IKE for Linux.

  setup
  The setup package contains a set of important system configuration and
  setup files, such as passwd, group, and profile.

  slang
  S-Lang is an interpreted language and a programming library. The S-Lang
  language was designed so that it can be easily embedded into a program to
  provide the program with a powerful extension language. The S-Lang library,
  provided in this package, provides the S-Lang extension language. S-Lang's
  syntax resembles C, which makes it easy to recode S-Lang procedures in C if
  you need to.

  sysstat
  SAR and IOSTAT for Linux. 

  tsl-utils
  The Trustix Secure Linux utils is a set of utilities and scripts that are 
  made in the development process, and that really fit in no other package.


Problem description:
  a2ps
  - Initial Entry into TSL 3.0

  amanda
  - Initial Entry into TSL 3.0

  apache-ant
  - Initial Entry into TSL 3.0 
 
  autofs
  - Initial Entry into TSL 3.0

  dev
  - Added i2c nodes. Bug #1202.

  gcc4
  - 4.0.1 official. Bug #1187.

  gpm
  - Initial Entry into TSL 3.0  
  - Added nodebug/idie display fix
  - clean up the gpm.init

  iptables
  - Added option to save the rules to file on stop, Fix Bug #1211

  kernel
  - New OpenSWAN.

  lrzsz
  - Initial Entry into TSL 3.0

  mc
  - with ext2undel enabled
  - with editing options enabled
  - with gpm support enabled

  module-init-tools
  - Kill %%post script.

  mrtg
  - Shift site html to new location /home/httpd/sites/mrtg
  - new sane defaults to pid, log and lock patched
  - new improved init to check for stale pids
  - fixed a typo in mrtg sysconfig , Bug #1208
  - httpd-mrtg.conf reflects change to new location

  newt
  - Rebuilt on utf8 supported slang

  openswan
  - Try to fix initdir. Bug #1221.

  setup
  - Added User, Group info for mrtg and amanda

  slang
  - imported changes by Olaf Rempel
  - added UTF-8 support, Bug #974
  - Added backward compatible links

  sysstat
  - New upstream.
  - /usr/local/ -> /usr. Bug #1218.

  tsl-utils
  - Now also ship with /sbin/installkernel. Bug #1228.

Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All Trustix Secure Linux updates are available from
  <URI:http://http.trustix.org/pub/trustix/updates/>>
  <URI:ftp://ftp.trustix.org/pub/trustix/updates/>>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.


Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.org/support/>>


Verification:
  This advisory along with all Trustix packages are signed with the
  TSL sign key.
  This key is available from:
  <URI:http://www.trustix.org/TSL-SIGN-KEY>>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.org/errata/trustix-2.2/>> and
  <URI:http://www.trustix.org/errata/trustix-3.0/>>
  or directly at
  <URI:http://www.trustix.org/errata/2005/0044/>>


MD5sums of the packages:
- --------------------------------------------------------------------------
0a0f18328bfc4f086e64c016a03e4d26  3.0/rpms/a2ps-4.13-1tr.i586.rpm
3151e1d15012db73d7171b80cd2f856e  3.0/rpms/amanda-2.4.5-1tr.i586.rpm
b3ff3f9bcb1cf990c55c4ae511320cc8  3.0/rpms/amanda-client-2.4.5-1tr.i586.rpm
f6f43e60aa80dff446adf3340534b7d7  3.0/rpms/amanda-devel-2.4.5-1tr.i586.rpm
eb450c092cd354793cea381839e90fec  3.0/rpms/amanda-server-2.4.5-1tr.i586.rpm
1322cd4cbd79baf3c2a7ea60493f91ab  3.0/rpms/autofs-4.1.4-1tr.i586.rpm
fee3bb3ae1df277bc8866bcd2e9f8a19  3.0/rpms/dev-2.7.20-1tr.i586.rpm
450dc5524f9154cb13e6e9eff385ce93  3.0/rpms/gcc4-4.0.1-2tr.i586.rpm
c51f64739bef38b93a53d857da1571f0  3.0/rpms/gcc4-c++-devel-4.0.1-2tr.i586.rpm
97714898fe27f646dadd345e85810892  3.0/rpms/gcc4-cpp-4.0.1-2tr.i586.rpm
b78cd332749ff416ba207a2a961dd4a3  3.0/rpms/gcc4-gcj-4.0.1-2tr.i586.rpm
cd3cddff2b4aa4f4cb726ef4f03b276b  3.0/rpms/gcc4-gcj-devel-4.0.1-2tr.i586.rpm
bad87fde42e2629cbf6e94069b10e8e3  3.0/rpms/gcc4-libmudflap-4.0.1-2tr.i586.rpm
b935fd63c78d104223ed457d44c502e4  3.0/rpms/gcc4-libmudflap-devel-4.0.1-2tr.i586.rpm
50d36270319a41eb77e2d736aacd1f32  3.0/rpms/gcc4-objc-4.0.1-2tr.i586.rpm
d3b9c97fdb52fec8b2cd0ae1878a3c6f  3.0/rpms/gcc4-objc-devel-4.0.1-2tr.i586.rpm
133157fb564530f77d245776ff72b8a7  3.0/rpms/gpm-1.20.1-2tr.i586.rpm
c10e1c637640b9215fca1b5e5d6e4932  3.0/rpms/gpm-devel-1.20.1-2tr.i586.rpm
fe4e118ecf00f90abfb75d8b58dfad9a  3.0/rpms/iptables-1.3.3-2tr.i586.rpm
c7565df3ef2287c3a06ead95ddf11d2a  3.0/rpms/iptables-devel-1.3.3-2tr.i586.rpm
da98a96bd925f82bddd0864bd303aab5  3.0/rpms/iptables-ipv6-1.3.3-2tr.i586.rpm
f4af6329d81c356e43ab2b2daaf0d9d8  3.0/rpms/lrzsz-0.12.20-1tr.i586.rpm
eea7fbf892ef15488409509fc156d630  3.0/rpms/mc-4.6.1-3tr.i586.rpm
27e1ca7331d2f248cc0e8155db96fbc4  3.0/rpms/mrtg-2.12.2-6tr.i586.rpm
9e3b0d5058000b6de0e28b1b400c279b  3.0/rpms/newt-0.51.6-20tr.i586.rpm
f19fb2e9cd19e7a74a7ae21f370fb456  3.0/rpms/newt-devel-0.51.6-20tr.i586.rpm
bc7ccde709a0cd65368c2ae5e0c62604  3.0/rpms/openswan-2.3.1-8tr.i586.rpm
2fe87bde88fa900b57931714256dc2aa  3.0/rpms/setup-2.2.9-15tr.i586.rpm
e8fcb8d50122d5066d460dc1b28ce80f  3.0/rpms/slang-1.4.9-7tr.i586.rpm
f4b99284aee08884b26e53cdd1f077f1  3.0/rpms/slang-devel-1.4.9-7tr.i586.rpm
6b612c31ad273e959afc60ec7b598b03  3.0/rpms/sysstat-6.0.1-1tr.i586.rpm
5ecfb8aa0fb18920674dd1f7f41683e5  3.0/rpms/tsl-utils-1.7-7tr.i586.rpm

f4156a14069d828bd9f8f00e49da67bf  2.2/rpms/kernel-2.4.31-5tr.i586.rpm
e53ff9b0a0c46fe980c563efac09e4ba  2.2/rpms/kernel-BOOT-2.4.31-5tr.i586.rpm
da6c63b2395f2b228c1ab396899c2037  2.2/rpms/kernel-doc-2.4.31-5tr.i586.rpm
617e21f4306d1b014ace28e68ce66f9b  2.2/rpms/kernel-smp-2.4.31-5tr.i586.rpm
67007f6fd136ac7a0b988f818e3acad9  2.2/rpms/kernel-source-2.4.31-5tr.i586.rpm
ef3acd24b805062cf8b63a1e01a50183  2.2/rpms/kernel-utils-2.4.31-5tr.i586.rpm
d15c96fd265a1e045ab02a3ae2cae736  2.2/rpms/module-init-tools-3.1-1tr.i586.rpm
7f37acc273010e5348ed8bc4b54f702e  2.2/rpms/tsl-utils-1.6-3tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDFzBei8CEzsK9IksRAh7KAKCHllZfpBUbd0BHtD3hAeifuHuOXwCbBoFy
HtiFw5A+dDHdCLLzIif6riA=
=jZWE
-----END PGP SIGNATURE-----
_______________________________________________
tsl-announce mailing list
tsl-announce@lists.trustix.org
http://lists.trustix.org/mailman/listinfo/tsl-announce
(Log in to post comments)

Copyright © 2005, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds