[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] Corrupt PKG's

Subject: [cobalt-users] Corrupt PKG's
From: "Robbert Hamburg \(HaVa Web- & Processdesign\)" <user@xxxxxxx>
Date: Fri Nov 2 06:43:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Just a few moments our brand new raq4r arrived. When trying to install the
patches which were released i get an error saying that this packagefile is
corrupt.
(http://ftp.cobalt.com/pub/packages/raq4/eng/RaQ4-All-Security-1.0.1-8747.pk
g Security: ncurses Update 1.0.1 HTTP RaQ4-All-Security-1.0.1-8747.pkg
Posted: January 25, 2001  FTP Point your FTP client to ftp://ftp.cobalt.com
Size: 1,038,655 bytes There used to be an overflowable buffer in the part of
the ncurses library handling cursor movement. Attackers can force a
privileged application to use their own termcap file containing a special
terminal entry which will trigger the ncurses vulnerability, allowing them
to execute arbitrary code with the privileges of the exploited binary. )
is there anyway to get a working version of this patch ?


Furthermore I need to know wheter I can continue with installing the rest of
the released updates ??

I would to thank you in advance for your answer.

Robbert

Follow-Ups:
- Re: [cobalt-users] Corrupt PKG's
  - From: SteelHead
- Re: [cobalt-users] Corrupt PKG's
  - From: SteelHead

References:
- [cobalt-users] MySQL watchdog
  - From: Graham Nichols
- Re: [cobalt-users] MySQL watchdog
  - From: Nico Meijer

Prev by Date: Re: [cobalt-users] Where to put PHP database connection info fileon RaQ3?
Next by Date: [cobalt-users] How to make a restore disk
Previous by thread: Re: [cobalt-users] MySQL watchdog
Next by thread: Re: [cobalt-users] Corrupt PKG's

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index