Security patch 15273

From: John Nebel (nebel@csdco.com)
Date: Sun Sep 01 2002 - 10:20:33 EDT

• Next message: Tom Linden: "Open Relay Sendmail on 5.1A?"
• Previous message: Claudio Salinas Mendez: "Download collgui"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

The e-mail announcing SSRT2275 and SSRT2229 states that

"These ERPs supercede ERPs delivered with the release of SSRT2257 HP Tru64
UNIX /usr/bin/su buffer overflow potential exploit August 1, 2002. cross
reference CERT VU#193347"

The earlier patch which was superceded itself superceded an earlier patch,

"Tru64 UNIX has integrated the fixes delivered for SSRTM541 in
t64v40gb17-c0010303-14314-es-20020515.tar into this ERP kit because
both needed to update libc."

There is a libc.a in the latest patch, does this mean it superceds both
earlier ones?

There is no write-up on

http://ftp.support.compaq.com/patches/.new/unix.shtml

to cast light on this.

John Nebel

• Next message: Tom Linden: "Open Relay Sendmail on 5.1A?"
• Previous message: Claudio Salinas Mendez: "Download collgui"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:48:50 EDT