[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Fwd: [cobalt-security] Seems that SUN woke up :-)
- Subject: Re: [cobalt-users] Fwd: [cobalt-security] Seems that SUN woke up :-)
- From: Mailing Lists <listonly@xxxxxxxxxxxxxxxxxxxx>
- Date: Tue Jun 25 07:54:58 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
on 6-25-02 8:16 AM, Gerald Waugh stated:
>
> Sun Cobalt is aware of a vulnerability in the Apache webserver installed
> on SunCobalt products. This vulnerability could be used to issue a
> Denial of Service against an affected machine. Some reports have been
> made that some non-Sun Cobalt versions of Apache are can allow a remote
> shell exploit.
>
> Please see http://www.cert.org/advisories/CA-2002-17.html for more details.
>
> Sun Cobalt is currently testing a PKG format files for all products
> which should be available on 6/28/2002. When available these packages
> will be installable via the user interface or through BlueLinq on
> products supporting the BlueLinq interface.
>
>
> RPM files are currently available for the RaQ 4, RaQ 550, RaQ XTR, and
> Qube 3. Versions of the RPM files will be made available in these
> directories as they become available. Note that for some products there
> are only four files.
>
This is why I earlier asked about the Raq3's. They make no mention of them.
The only person at Cobalt, Bruce, has stated that the 3's will be covered.
Dave