Sponsored link
Vyatta –
Linux & Open Source
Alternative to Cisco –
Advanced Routing,
Firewall, VPN, QoS..
Free Download ->
| |||||||||||||
TSL-2004-0013 - multi
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --------------------------------------------------------------------------
Trustix Secure Linux Bugfix Advisory #2004-0013
Package name: anaconda, bind, cyrus-imap, gcc, iptables, mod_php4,
module-init-tools, modutils, openssh, postgresql, python,
rpm, samba, swup, util-linux
Summary: First bugfix updates for TSL 2.1
Date: 2004-03-18
Affected versions: Trustix 2.1
- --------------------------------------------------------------------------
Package description:
anaconda:
The anaconda package contains portions of the Trustix Secure Linux
installation program which can then be run by the user for
reconfiguration and advanced installation options.
bind:
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses, and a resolver library
(routines for applications to use when interfacing with DNS). A DNS
server allows clients to name resources or objects and share the
information with other network machines. The named DNS server can be
used on workstations as a caching name server, but is generally only
needed on one machine for an entire network.
cyrus-imap:
The Cyrus IMAP server is a scaleable enterprise mail system
designed for use from small to large enterprise environments using
standards-based technologies.
gcc:
The gcc package contains the GNU Compiler Collection: cc and gcc. You'll need
this package in order to compile C code.
iptables:
The iptables utility controls the network packet filtering code in the
Linux kernel. If you need to set up firewalls and/or IP masquerading,
you must install this package.
mod_php4:
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP
also offers built-in database integration for several commercial
and non-commercial database management systems, so writing a
database-enabled web page with PHP is fairly simple. The most
common use of PHP coding is probably as a replacement for CGI
scripts. The mod_php module enables the Apache web server to
understand and process the embedded PHP language in web pages.
module-init-tools:
The module-init-tools package includes programs for managing automatic
loading and unloading of modules under 2.6 kernels, with support for older
kenrnels using the old modutils package, as well as other module management
programs. Examples of loaded and unloaded modules are device drivers and
filesystems, as well as some other things.
modutils:
The modutils packages includes programs for managing automatic
loading and unloading of modules under 2.2 and 2.4 kernels, as well as
other module management programs. Examples of loaded and unloaded
modules are device drivers and filesystems, as well as some other things.
openssh:
Ssh (Secure Shell) a program for logging into a remote machine and for
executing commands in a remote machine. It is intended to replace
rlogin and rsh, and provide secure encrypted communications between
two untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.
OpenSSH is OpenBSD's rework of the last free version of SSH, bringing it
up to date in terms of security and features, as well as removing all
patented algorithms to seperate libraries (OpenSSL).
postgresql:
PostgreSQL is an advanced Object-Relational database management system
(DBMS) that supports almost all SQL constructs (including
transactions, subselects and user-defined types and functions). The
postgresql package includes the client programs and libraries that
you'll need to access a PostgreSQL DBMS server. These PostgreSQL
client programs are programs that directly manipulate the internal
structure of PostgreSQL databases on a PostgreSQL server. These client
programs can be located on the same machine with the PostgreSQL
server, or may be on a remote machine which accesses a PostgreSQL
server over a network connection. This package contains the docs
in HTML for the whole package, as well as command-line utilities for
managing PostgreSQL databases on a PostgreSQL server.
python:
Python is an interpreted, interactive, object-oriented programming
language often compared to Tcl, Perl, Scheme or Java. Python includes
modules, classes, exceptions, very high level dynamic data types and
dynamic typing. Python supports interfaces to many system calls and
libraries.
rpm:
The RPM Package Manager is a powerful command line driven package
management system capable of installing, uninstalling, verifying,
querying, and updating software packages. Each software package
consists of an archive of files along with information about the
package like its version, a description, etc.
samba:
Samba provides an SMB server which can be used to provide network
services to SMB (sometimes called "Lan Manager") clients, including
various versions of MS Windows, OS/2, and other Linux machines. Samba
uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need NetBEUI
(Microsoft Raw NetBIOS frame) protocol.
swup:
SWUP - SoftWare UPdater is an extension for existing software packaging
systems to facilitate automatic and secure update and install. SWUP
handles dependencies between software packages, and is able to fetch
additional required software when installing or upgrading.
util-linux:
The util-linux package contains a large variety of low-level system
utilities that are necessary for a Linux system to function. Among
many features, Util-linux contains the fdisk configuration tool and
the login program.
Problem description:
anaconda:
Added XFS support. Note that this does work on /boot.
bind:
Added allow-query { any; }; to the external view.
This allows query of those zones in that view without specifying it in
each and every one.
cyrus-imapd:
New upstream version which fixes some reported bugs.
gcc:
Turn off stack protection by default.
iptables:
Fixed bug in ICMP configuration.
mod_php4:
Added the missing extensions to the php.ini files.
module-init-tools:
New upstream. No longer a pre-release.
modutils:
New upstream to fit module-init-tools.
openssh:
Fixed default sftp subsystem path.
postgresql:
New upstream version with critical bugfixes.
NOTE: This package requires manual upgrade. Please see the PostgreSQL
release notes at http://www.postgresql.org/news/173.html
python:
Added patch from upstream to fix CacheFTPHandler.
rpm:
Add a enable_stack_protector_by_default option.
samba:
Added missing Requires on glibc-locales.
swup:
Now uses the fixed CacheFTPHandler. Should increase the speed on
sites using ftp.
util-linux:
Removed patch that breaks rpc dependent mounting.
Action:
We recommend that all systems with this package installed be upgraded.
Please note that if you do not need the functionality provided by this
package, you may want to remove it from your system.
Location:
All Trustix updates are available from
<URI:http://http.trustix.org/pub/trustix/updates/>
<URI:ftp://ftp.trustix.org/pub/trustix/updates/>
About Trustix Secure Linux:
Trustix Secure Linux is a small Linux distribution for servers. With focus
on security and stability, the system is painlessly kept safe and up to
date from day one using swup, the automated software updater.
Automatic updates:
Users of the SWUP tool can enjoy having updates automatically
installed using 'swup --upgrade'.
Public testing:
Most updates for Trustix are made available for public testing some time
before release.
If you want to contribute by testing the various packages in the
testing tree, please feel free to share your findings on the
tsl-discuss mailinglist.
The testing tree is located at
<URI:http://tsldev.trustix.org/horizon/>
You may also use swup for public testing of updates:
site {
class = 0
location = "http://tsldev.trustix.org/horizon/rdfs/latest.rdf"
regexp = ".*"
}
Questions?
Check out our mailing lists:
<URI:http://www.trustix.org/support/>
Verification:
This advisory along with all Trustix packages are signed with the
TSL sign key.
This key is available from:
<URI:http://www.trustix.org/TSL-SIGN-KEY>
The advisory itself is available from the errata pages at
<URI:http://www.trustix.org/errata/trustix-2.1/>
or directly at
<URI:http://www.trustix.org/errata/misc/2004/TSL-2004-0013-multi.asc.txt>
MD5sums of the packages:
- --------------------------------------------------------------------------
75e088a41d4b91a4f2d239fb98cff240 anaconda-7.2.4-2tr.i586.rpm
aa3f78adc5b8da4c345488ca548f29e5 anaconda-runtime-7.2.4-2tr.i586.rpm
abe3b767b508c61e0cab079005f9c859 bind-9.2.3-6tr.i586.rpm
fd68285e51f5d08e9055f4c723639082 bind-devel-9.2.3-6tr.i586.rpm
5489ca6e5563a591b4ab0b90e469f89b bind-libs-9.2.3-6tr.i586.rpm
ae0ae4f6cc20751d73fbc6111b5824bc bind-light-9.2.3-6tr.i586.rpm
8ebdb34a9c8f149915ed2e66633588d1 bind-light-devel-9.2.3-6tr.i586.rpm
6f9248f5463e3b0e14efa720173529e4 bind-utils-9.2.3-6tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
07b045cfa508f13b63bf0170f293d767 cyrus-imapd-2.2.3-1tr.i586.rpm
f173e074aefab6196e69aca8abacbb28 cyrus-imapd-devel-2.2.3-1tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
fbdc09b9e93665c3ea6135dc72ed596f gcc-3.3.3-4tr.i586.rpm
06fe8f747421133dc69291b5e82376aa gcc-c++-devel-3.3.3-4tr.i586.rpm
0d8dc944ab5fa5ce3249732073eafd37 gcc-c++-runtime-3.3.3-4tr.i586.rpm
a930a2b44f273f3af0105a34f832c1d4 gcc-runtime-3.3.3-4tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
42f34e89bfd5a9b6c3edb28fde7c3e45 iptables-1.2.9-3tr.i586.rpm
cb1acd167671bac079817aeb81f9d86b iptables-devel-1.2.9-3tr.i586.rpm
389932345c1c19b75f3b9a79c789ab3c iptables-ipv6-1.2.9-3tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
53ff65d8e1a261aa441261ad552526fe mod_php4-4.3.4-8tr.i586.rpm
c51255deab52ee3ec23b0046c4d7a7a7 mod_php4-cli-4.3.4-8tr.i586.rpm
12e9c2a67405b9e69ba4e990cf4115c6 mod_php4-devel-4.3.4-8tr.i586.rpm
767cc5f464c384b13dbdc1a824f22fed mod_php4-domxml-4.3.4-8tr.i586.rpm
c3797e5c2fb075048fb49b70c50c5ff5 mod_php4-exif-4.3.4-8tr.i586.rpm
7605c0aecc394b020a10f6d60202844c mod_php4-gd-4.3.4-8tr.i586.rpm
90ee57598a8519eb8fdb541dd592459f mod_php4-imap-4.3.4-8tr.i586.rpm
d3d347450487989f63f67caccaa8a2cf mod_php4-ldap-4.3.4-8tr.i586.rpm
1bd73162d183ee7c7b4e22ae1421de1b mod_php4-mysql-4.3.4-8tr.i586.rpm
dbf3bb5841717818fb3af421083b6117 mod_php4-pgsql-4.3.4-8tr.i586.rpm
079d04e708cc89e2bdfa68ec49c3cc9f mod_php4-test-4.3.4-8tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
e401234a6652a5dc1068dc453737af3b module-init-tools-3.0-1tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
fa84f8b6d2d624be84a6b2a33861bf7b modutils-2.4.27-1tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
5bb4f37f836ff1ad2e92ed48cdacf62b openssh-3.8.0p1-3tr.i586.rpm
6d66f91e170bbd1e4f51e55e76bd36a5 openssh-clients-3.8.0p1-3tr.i586.rpm
61706743d810b8e21fdbe876a6521fb1 openssh-server-3.8.0p1-3tr.i586.rpm
a8f4527d1531b851dc3bc34774c8b337 openssh-server-config-3.8.0p1-3tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
d320ab2235c10bb41105bed291a0ff41 postgresql-7.4.2-1tr.i586.rpm
e4290ab04735033b8779e79be4c0764e postgresql-contrib-7.4.2-1tr.i586.rpm
f49179f69cb4355f97012f81a0d4e194 postgresql-devel-7.4.2-1tr.i586.rpm
fc29175e08b584b34681f4f98ad91453 postgresql-docs-7.4.2-1tr.i586.rpm
19398a6ae831c26ccaadb1d2c74a58de postgresql-libs-7.4.2-1tr.i586.rpm
fa2c0acab7a4ad494cdb9a6ec5d3aa90 postgresql-plperl-7.4.2-1tr.i586.rpm
01397218514f4311a811249133fde761 postgresql-python-7.4.2-1tr.i586.rpm
14e25236d381468e2a63d6ee064501e4 postgresql-server-7.4.2-1tr.i586.rpm
eee9bb67e82d13d889c40387d9c3d43a postgresql-test-7.4.2-1tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
9cfbabeeba52f807981bbcf9587cdfff python-2.2.3-10tr.i586.rpm
7449c17f121f8a051c90de776040bca9 python-dbm-2.2.3-10tr.i586.rpm
5d600e2fe9c17fb327520c886456c71f python-devel-2.2.3-10tr.i586.rpm
83a6aeef01e48905bc5f3c427ef8c435 python-docs-2.2.3-10tr.i586.rpm
e24750fc3720fa06ca50dbdf62458f5f python-gdbm-2.2.3-10tr.i586.rpm
1dc704bd4f7b5e24d41106397d68cbbd python-modules-2.2.3-10tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
0d29bc81113693015fd049ea4d0770ff rpm-4.0.5-10tr.i586.rpm
af6e7fe482e6f89a1dae2b45575a27f3 rpm-build-4.0.5-10tr.i586.rpm
e4c3dda5fc7d39238144b75f61fefbe3 rpm-devel-4.0.5-10tr.i586.rpm
ab084a69ca12eb5fd119c87f9004e737 rpm-python-4.0.5-10tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
ab0b3fb66dd46b63435458298a060c62 samba-3.0.2-6tr.i586.rpm
d8b1531ae0e615575d0c696a9200252e samba-client-3.0.2-6tr.i586.rpm
0ec890ca72d107473fbe59306e4e22b8 samba-common-3.0.2-6tr.i586.rpm
17ad4c0ed1e6b38153301d54ed8cbaa6 samba-mysql-3.0.2-6tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
daed339f2164fdb9b245b58646190a9e swup-2.3.17-1tr.noarch.rpm
61de8981c587d7bc34f781cf7602ba21 swup-libs-2.3.17-1tr.noarch.rpm
e853ee26dd65899a7d5c88c92b12e529 swupconf-2.3.17-1tr.noarch.rpm
9428362174d42dfb2027c09d1a74cc06 swupcron-2.3.17-1tr.noarch.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
4daac461c0e73d472af5fcd4645b6f6f util-linux-2.11z-10tr.i586.rpm
884a3ca766b626dee0960774840fb83e popt-1.6.4.1-10tr.i586.rpm
- --------------------------------------------------------------------------
Trustix Security Team
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQFAWeV0i8CEzsK9IksRAgxFAKCUsznfYiykvz7vF+hEY0cL8o/IkQCgg7ns
+Flvx9xY9W1d3NibOpjASXM=
=1HJ6
-----END PGP SIGNATURE-----
_______________________________________________
tsl-announce mailing list
tsl-announce@lists.trustix.org
http://lists.trustix.org/mailman/listinfo/tsl-announce
(Log in to post comments)
|
|||||||||||||