[Whitebox-announce] [WBSA-2004:190-01] Updated cvs package fixes security issue
John Morris
jmorris@beau.org
Thu, 10 Jun 2004 23:06:20 -0500 (CDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ----------------------------------------------------------------------
Security Advisory
Synopsis: Updated cvs package fixes security issue
Advisory ID: [WBSA-2004:190-01]
Issue date: 2004-06-10
Updated on: 2004-06-10
Product: White Box Enterprise Linux 3.0 (i386)
Keywords: cvs
Cross references:
Obsoletes: WBSA-2004:153
CVE Names: CAN-2004-0396
- ----------------------------------------------------------------------
Note: This one went to the mirrors on May 22 and is now obsoleted by a
newer version.
An updated cvs package that fixes a server vulnerability that could be
exploited by a malicious client is now available.
More information is available in Red Hat, Inc's original advisory
available on their site at:
http://www.redhat.com/archives/enterprise-watch-list/2004-May/msg00003.html
To install this new package on your White Box Enterprise Linux system
use the Up2Date Network or Yum.
Note: Be sure to change the default Up2Date or Yum server from the
initial location to prevent undue load to the whiteboxlinux.org
server, which doesn't have a lot of outbound bandwidth. The config
files already have entries for mirror sites commented out.
Up2Date's configuration file is at /etc/sysconfig/rhn/sources
Yum's configuration is in /etc/yum.conf
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
Comment: Made with pgp4pine 1.76
iD8DBQFAyS/EqME6bvnsqA8RAqdEAKDZ5lSMzF7Qn7dAn8A/nmh6YXvPygCeLoPa
7PFCoCF6b7X9OzOuVMdvKPQ=
=kTRY
-----END PGP SIGNATURE-----