[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-developers] RAQ4 - Security Problems

Subject: [cobalt-developers] RAQ4 - Security Problems
From: "ToPPi" <ToPPi@xxxxxxxxx>
Date: Thu May 2 09:43:42 2002
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

Hi,

has anyone of you a solution for these problems:

1) sendmail upgrade to current version
- Problem: 8.10.2 is vulnerable to the -bt overflow hack

2) mod_ssl / snpp upgrade to current version
- Problem: All versions < 2.8.7 are exploitable (buffer overflow hack)
                 Attacker may get a shell

3) imap2 upgrade to current version
- Problem UW-IMAP is vulnerable to a lot of overflow hacks wich could cause
an attacker to get a shell

4) apache upgrade to current version
- Problem: also vulnerable for some overflow hacks

I'd appreciate to find some pkg's or rpm's to update this software in order
to close this security leaks.
Is sun developing new pkgs?? or do the discontinue the support for the raq's
?

Regards,

ToPPi

Follow-Ups:
- Sendmail request for comments (Was: Re: [cobalt-developers] RAQ4 - Security Problems)
  - From: Jeff Lasman
- Re: [cobalt-developers] RAQ4 - Security Problems
  - From: Michael Stauber

Prev by Date: Re: [cobalt-developers] Installing Cobalt PKG Patches
Next by Date: Re: [cobalt-developers] Qube 2 (2700WG) Netbooting...
Previous by thread: [cobalt-developers] Sendmail Upgrade
Next by thread: Sendmail request for comments (Was: Re: [cobalt-developers] RAQ4 - Security Problems)

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index