Re: IRIX libcpr vulnerability
From: Jan Schaumann (jschauma_at_netmeister.org)
Date: 05/26/04
- Previous message: badpack3t: "Orenosv HTTP/FTP Server Denial Of Service"
- In reply to: SGI Security Coordinator: "IRIX libcpr vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 May 2004 14:51:21 -0400 To: SGI Security Coordinator <agent99@sgi.com>
SGI Security Coordinator <agent99@sgi.com> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
>
> ______________________________________________________________________________
>
> SGI Security Advisory
>
> Title: libcpr vulnerability
> Number: 20040507-01-P
> Date: May 26, 2004
> Reference: SGI BUG 914419
> Reference: CVE CAN-2004-0134
> Fixed in: Patches 5606, 5607, 5608, 5609 and 5610
> ______________________________________________________________________________
The patches are not readable on the ftp server:
ftp://patches.sgi.com/support/free/security/patches/6.5.22:
-rw-r----- 1 21 4079 May 26 09:32 patch5609.pgp.and.chksums
-rw-r----- 1 21 3666 May 26 09:32 patch5609.relnotes
-rw-r----- 1 21 1761280 May 26 09:32 patch5609.tar
This has happened before, so I don't know if it's a matter of the upload
script not having completed yet or not. But one would assume that the
patches are readable at the time the SA is published...
-Jan
-- DON'T PANIC!
- application/pgp-signature attachment: stored
- Previous message: badpack3t: "Orenosv HTTP/FTP Server Denial Of Service"
- In reply to: SGI Security Coordinator: "IRIX libcpr vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
