From security at tinysofa.org Sun May 2 14:24:19 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] TSSA-2004-001 - multiple packages Message-ID: <20040502192419.GA22949@tinysofa.org> - -------------------------------------------------------------------------- tinysofa Security Advisory #2004-001 Package name: initscripts libpcap libpng rsync proftpd Summary: Potential security holes, Bug fixes Advisory ID: TSSA-2004-001 Date: 2004-05-03 Affected versions: tinysofa enterprise server 1.0 - -------------------------------------------------------------------------- Package description: initscripts: The initscripts package contains the basic system scripts used to boot your tinysofa, change runlevels, and shut the system down cleanly. Initscripts also contains the scripts that activate and deactivate most network interfaces. libpcap: A system-independent interface for user-level packet capture. libpng: A library of functions for creating and manipulating PNG (Portable Network Graphics) image format files. rsync: A program for synchronizing files over a network. proftpd: An enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based directory visibility. Problem description: initscripts: A problem in the ifup script caused the dhclient program to lose its lease information. This update fixes Bug #2 libpcap: A shared library of libpcap is now included in this package. libpng: Steve Grubb discovered that libpng would access memory that is out of bounds when creating an error message. The impact of this bug is not clear, but it could lead to a core dump in a program using libpng, or could result in a DoS (Denial of Service) condition in a daemon that uses libpng to process PNG images. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0421 to this issue. rsync: A bugfix release that mainly fixes a bug with the --relative option (-R) in 2.6.1 that could cause files to be transferred incorrectly. proftpd: A portability workaround was applied in version 1.2.9 of the FTP server ProFTPD. As a side-effect, CIDR based (aaa.bbb.ccc.ddd/NN) ACL entries in "Allow" and "Deny" directives act like a "AllowAll" directive and so FTP clients are granted access to files and directories although the server configuration explicitly deny this access. Action: We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All tinysofa updates are available from Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: Verification: This advisory is signed with the tinysofa security sign key. This key is available from: Aall tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums of the packages: - -------------------------------------------------------------------------- ec326f225c104593723af0dd5be890f7 initscripts-7.14-19ts.i586.rpm 193cd1ea696a206a0411dd4f5b498a4b libpcap-0.8.3-2ts.i586.rpm bfff58f6b90001f9b2059137f30fa349 libpng-1.2.5-10ts.i586.rpm 11869d580cf897c739ad9851c6f81d4c libpng-devel-1.2.5-10ts.i586.rpm 273a87d6889488b77ee566cf81f7d945 libpng-tools-1.2.5-10ts.i586.rpm ec3806a077d7b721886fd8f0a9677c74 proftpd-1.2.9-8ts.i586.rpm 6abbb4ed7a7688a981f6706675fa1337 rsync-2.6.2-1ts.i586.rpm 0e1690d270b88fc90a2ebadd65fdd9d0 rsync-server-2.6.2-1ts.i586.rpm - -------------------------------------------------------------------------- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040503/edc40062/attachment.bin From security at tinysofa.org Mon May 3 07:10:24 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] TSSA-2004-002 - perl Message-ID: <20040503121024.GA11542@tinysofa.org> - -------------------------------------------------------------------------- tinysofa Security Advisory #2004-002 Package name: perl Summary: Major security hole Advisory ID: TSSA-2004-002 Date: 2004-05-03 Affected versions: tinysofa enterprise server 1.0 - -------------------------------------------------------------------------- Package description: perl: Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Problem description: perl: Due to changes in the perl installation process, starting from version 5.8.4, the suidperl binary is a hard link to the perl5.8.4 binary, instead of the sperl5.8.4 binary. As a result of this change, and due to the package specifying that suidperl is a setuid binary, the perl5.8.4 binary was also setuid. This is a critical security hole that allows local users to access the system as root. This update fixes Bug #4: Action: We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All tinysofa updates are available from Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: Verification: This advisory is signed with the tinysofa security sign key. This key is available from: Aall tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums of the packages: - -------------------------------------------------------------------------- 76da1c41f914145475e37853cefda339 perl-5.8.4-2ts.i586.rpm 2e5b746c870a13f5cbcf7bdcf062427c perl-devel-5.8.4-2ts.i586.rpm 749468986c3e5e39a0a06a14d34142f6 perl-doc-5.8.4-2ts.i586.rpm - -------------------------------------------------------------------------- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040503/62734a09/attachment.bin From security at tinysofa.org Mon May 3 07:34:21 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] TSSA-2004-003 - multiple packages Message-ID: <20040503123421.GA11609@tinysofa.org> - -------------------------------------------------------------------------- tinysofa Security Advisory #2004-003 Package name: e2fsprogs expat initscripts kerberos5 ntp stunnel tinysofa-gpgkeys-emily Summary: Minor bug fixes Advisory ID: TSSA-2004-003 Date: 2004-05-03 Affected versions: tinysofa enterprise server 1.0 - -------------------------------------------------------------------------- Package description: e2fsprogs: The e2fsprogs package contains a number of utilities for creating, checking, modifying and correcting any inconsistencies in second extended (ext2) filesystems. E2fsprogs contains e2fsck (used to repair filesystem inconsistencies after an unclean shutdown), mke2fs (used to initialize a partition to contain an empty ext2 filesystem), debugfs (used to examine the internal structure of a filesystem, to manually repair a corrupted filesystem or to create test cases for e2fsck), tune2fs (used to modify filesystem parameters) and most of the other core ext2fs filesystem utilities. expat: Expat is an XML 1.0 parser written in C by James Clark. It aims to be fully conforming. It is not a validating XML parser. initscripts: The initscripts package contains the basic system scripts used to boot your tinysofa, change runlevels, and shut the system down cleanly. Initscripts also contains the scripts that activate and deactivate most network interfaces. kerberos5: (MIT) Kerberos is a network authentication protocol. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. A free implementation of this protocol is available from the Massachusetts Institute of Technology. Kerberos is available in many commercial products as well. ntp: The Network Time Protocol (NTP) is used to synchronize a computer's time with another reference time source. The ntp package contains utilities and daemons that will synchronize your computer's time to Coordinated Universal Time (UTC) via the NTP protocol and NTP servers. The ntp package includes ntpdate (a program for retrieving the date and time from remote machines via a network) and ntpd (a daemon which continuously adjusts system time). stunnel: stunnel is a socket wrapper which can be used to give ordinary applications SSL (secure sockets layer) support. For example, it can be used in conjunction with a imapd to create a SSL secure IMAP server. tinysofa-gpgkeys-emily: This package contains the GPG keys used to sign packages and rdfs. It is used by swup to verify that the packages and rdfs found on the official tinysofa sites and mirrors are correct. Problem description: e2fsprogs: Fixed libcom_err-devel permissions. This update fixes Bug #3 expat: Fixed permissions of documentation and include files. This update fixes Bug #3 initscripts: Fixed permissions of configuration and documentation files. This update fixes Bug #3 kerberos5: Fixed permissions of manual and include files. This update fixes Bug #3 ntp: Fixed permissions of configuration and documentation files. This update fixes Bug #3 stunnel: Fixed permissions of documentation files. This update fixes Bug #3 tinysofa-gpgkeys-emily: Fixed permissions of configuration files. Added the tinysofa contrib public key. This update fixes Bug #3 Action: We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All tinysofa updates are available from Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: Verification: This advisory is signed with the tinysofa security sign key. This key is available from: Aall tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums of the packages: - -------------------------------------------------------------------------- b358a3d1dd71169c0d7fa5c214db2f93 e2fsprogs-1.35-6ts.i586.rpm 5165967c815825e261445d68bed4ac2e e2fsprogs-devel-1.35-6ts.i586.rpm 36cffb1554a84eaad0eddb1948b58840 expat-1.95.7-10ts.i586.rpm c62e1d3596733147d5be288ea5d6b1c3 expat-devel-1.95.7-10ts.i586.rpm 4476d28c5f7099f40429e3335af3434d expat-libs-1.95.7-10ts.i586.rpm a2e3d088304d72cebccec238d8543cfd initscripts-7.14-21ts.i586.rpm b2813ff94d3ee8596079ceb19a8e5d86 kerberos5-1.3.2-3ts.i586.rpm c35d77f1799f64717a64525322d4c71d kerberos5-devel-1.3.2-3ts.i586.rpm 2239da035579d22208b7c9e61d857c65 kerberos5-libs-1.3.2-3ts.i586.rpm a4f05429e0720f67933b9dc9564ed2ba ntp-4.2.0-11ts.i586.rpm 12f0f74be5b4ef76e669a8a0c9049e0e stunnel-4.05-7ts.i586.rpm b0882bec3fd09e43271a8a336e61f594 tinysofa-gpgkeys-emily-1.0-6ts.noarch.rpm - -------------------------------------------------------------------------- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040503/2f436cf6/attachment.bin From security at tinysofa.org Tue May 4 08:22:51 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] TS-2004-004 - multiple packages Message-ID: <20040504132251.GA21331@tinysofa.org> - -------------------------------------------------------------------------- tinysofa Bugfix Advisory #2004-004 Package name: hwdata openssl swup tinysofa-gpgkeys-emily Summary: Minor bug fixes, Feature enhancements Advisory ID: TS-2004-004 Date: 2004-05-04 Affected versions: tinysofa enterprise server 1.0 - -------------------------------------------------------------------------- Package description: hwdata: hwdata contains various hardware identification and configuration data, such as the pci.ids database, the XFree86 Cards and MonitorsDb databases. openssl: A C library that provides various crytographic algorithms and protocols, including DES, RC4, RSA, and SSL. Includes shared libraries. swup: SWUP - SoftWare UPdater is an extension for existing software packaging systems to facilitate automatic and secure update and install. SWUP handles dependencies between software packages, and is able to fetch additional required software when installing or upgrading. tinysofa-gpgkeys-emily: This package contains the GPG keys used to sign packages and rdfs. It is used by swup to verify that the packages and rdfs found on the official tinysofa sites and mirrors are correct. Problem description: hwdata: Update to latest hardware lists. Update module-info to include SATA drivers. This update fixes Bug #8 openssl: Updated M2Crypto. Fixed permissions of python related directories. Fixed missing M2Crypto files. This update fixes Bug #6 and Bug #7 swup: Fixed permissions of python related directories. Added a swup as local user fix. Updated to latest cvs, which contains some cosmetic fixes. This update fixes Bug #9 tinysofa-gpgkeys-emily: Added security key. Now imports keys into rpm automatically. This update fixes Bug #10 Action: We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All tinysofa updates are available from Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: Verification: This advisory is signed with the tinysofa security sign key. This key is available from: Aall tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums of the packages: - -------------------------------------------------------------------------- bf7d307bc470fce1db624a7b88e6a20f hwdata-0.44-17ts.noarch.rpm ca39bda44f82a3ab2c1344f94c7e5ddc hwdata-devel-0.44-17ts.noarch.rpm 37277a74ad5904fc0b1c5905f4661bfc openssl-0.9.7c-7ts.i586.rpm 38b9511063c02da4c5243a76d48c710d openssl-devel-0.9.7c-7ts.i586.rpm 7c651084ccf8b219840aa35af17ff955 openssl-python-0.9.7c-7ts.i586.rpm bf302bbe97fa2c7474b0ef19a33f7616 openssl-support-0.9.7c-7ts.i586.rpm 98ba79c00d01190a47f94a718baf1928 swup-2.4.3-5ts.noarch.rpm 362dfaa5d24ba1cb7cfc3d6ac3e73453 swup-libs-2.4.3-5ts.noarch.rpm 4b9c1a00c5f6dc22793ea697c3a8af1d swupcron-2.4.3-5ts.noarch.rpm 195709149b4dc35c11f4c107d4529dfe rdfgen-2.4.3-5ts.noarch.rpm a229aaef538ce5c0aab28089dc9239f0 tinysofa-gpgkeys-emily-1.0-7ts.noarch.rpm - -------------------------------------------------------------------------- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040504/396f6830/attachment.bin From security at tinysofa.org Wed May 5 00:47:43 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] TS-2004-005 - multiple packages Message-ID: <20040505054743.GA25193@tinysofa.org> - -------------------------------------------------------------------------- tinysofa Bugfix Advisory #2004-005 Package name: anaconda mkinitrd swup tinysofa-gpgkeys-emily Summary: Minor bug fixes, Feature enhancements Advisory ID: TS-2004-005 Date: 2004-05-05 Affected versions: tinysofa enterprise server 1.0 - -------------------------------------------------------------------------- Package description: anaconda: The tinysofa installation program. mkinitrd: Mkinitrd creates filesystem images for use as initial ramdisk (initrd) images. These ramdisk images are often used to preload the block device modules (SCSI or RAID) needed to access the root filesystem. swup: SWUP - SoftWare UPdater is an extension for existing software packaging systems to facilitate automatic and secure update and install. SWUP handles dependencies between software packages, and is able to fetch additional required software when installing or upgrading. tinysofa-gpgkeys-emily: This package contains the GPG keys used to sign packages and rdfs. It is used by swup to verify that the packages and rdfs found on the official tinysofa sites and mirrors are correct. Problem description: anaconda: Fixed permissions on /etc/modules.conf during installation. Fixed path to libncurses. This update fixes Bug #11 and Bug #12 mkinitrd: Fixed module dependency resolution. This update enables full SATA support under tinysofa. This update fixes Bug #13 swup: Turn off rpm library signature verification, as it is error prone and buggy. swup does its own signature verification external to rpm. This update fixes Bug #14 tinysofa-gpgkeys-emily: Do not rpm --import the public keys. This update fixes Bug #10 Action: We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location: All tinysofa updates are available from Automatic updates: Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? Check out our mailing lists: Verification: This advisory is signed with the tinysofa security sign key. This key is available from: Aall tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums of the packages: - -------------------------------------------------------------------------- baf6ba80ca8ef7e4245146bdf308fef9 anaconda-7.2.5-9ts.i586.rpm 1ae70d8b8b9105fa4e962f8598abf8b3 anaconda-runtime-7.2.5-9ts.i586.rpm ee8095ccc9f82929ed28231b271458c4 mkinitrd-3.5.21-2ts.i586.rpm d3dd33ab27d8d9895f8bf602ec7804d9 rdfgen-2.4.3-8ts.noarch.rpm 43784c050e76c70df972cdb2f7125d81 swup-2.4.3-8ts.noarch.rpm 8a4aae4a47512a986a3e82ec1d77a209 swup-libs-2.4.3-8ts.noarch.rpm 44c5fb22db52a4952a15c819986766dd swupcron-2.4.3-8ts.noarch.rpm 40f230b2441e94cea551816bfd991705 tinysofa-gpgkeys-emily-1.0-8ts.noarch.rpm - -------------------------------------------------------------------------- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040505/281f5db9/attachment.bin From omar at tinysofa.org Thu May 20 07:53:27 2004 From: omar at tinysofa.org (Omar Kilani) Date: Sun May 4 12:26:33 2008 Subject: [tinysofa-announce] [announce] tinysofa enterprise server 1.0-U1 Message-ID: <20040520125327.GA24779@tinysofa.org> ======================================================================== ,,,................, ,....JugQmmmGmmmmmccccccc3cccccmmmGWg, .JQmGGm3ccc?ccccccc?I??ccc?ccccccccccccccccZA, .$mccccccccccccccccccccccQQQcccccccc3ZBQccccccmW0Gmxj...., .Dccccccccccccccccc3$GQccmD!IGGGGGmQ$0=lmQccccccme:!!!::lIIOGQQ:. ..gQQccccccccccccccccYn!!IOGXuu!!::!dS:::!cdGQQQQQmQuuul!:::!u$v:lD ,$v!:ldGGQQQccccccccccmU:!:!!::uDo!:!uQI!:!uugm8GmmmmmmmGGEBQQgDc:ug+ mu:::::!:cdGBQQcccc3mDu!!::!:jZouu!u4BAuugmccccccccccccccccc?mD:jf' 4Qu::!:::uQ00GMQQWWGmmmQQguudWGGGmQQmZBmWWQccccccccccc3QQQQQWDjD !EGQgu:jE=::!:3BQcccccccmmWmccccccccccc?mWQQQQQQQWWM8880v=:dDjz je:ldGmWu!::!!jmQcccccccccccccccQQQQQQWMMM80II!:::!::::!::dDlz .U:!!::lGWc!!:!4XcccccQQQQQQQWM888YI=:::!::!!:!:!::!:!:!lugAgb .vl::!:!!3mc:!:3WWWMM8HY0II!::!::::!:!:!::!::!:!!uuuuoO+"BQaC Qwl::!:::dA!::jD:::!::::!::!::!:!::!:!luuuaxI++"^ dmWXal:!!lmc!:4C::!:!:!::!::!!uuuueZ++"` 7` 7mu:lmn!!4n::::!uuuuxoO+"^ .+gdn:ugwuwO++"' jGEGR` .4HZ+ jW1 .uc$0; .Wi JcZ JQQWQQp, Jg; Qp.gQgQ, qw, gp .JxQQa: ,.uxwa:, .ad3Qae, .uxwQa:, JWi jW; MWT 3Wi jWp jW' m3r J3C` !mca j3Z .' !cw JWi jW; ME .WD 4W; .Wr 7GcQu. .mc1 Jcm; J3U ,JuxxocZ JWr jW; ME .WD .WW.Wb .m3z mci j3C J3U JJC .3Z .WW,., jW; ME .WD .WWW uujumZ` .4mQuugZC: J3U !mQujuZmm, !"` ' ^ ' jWt .'' !' ': ,,JW+ ."` tinysofa release announcement tinysofa enterprise server 1.0-U1 "imagine a world full of tiny sofas..." ======================================================================== The summation of what could only be described as an amazingly expedient development process, tinysofa enterprise server 1.0-U1 (Update 1) is now generally available. This release is what every server distribution should be; extremely polished, meticulously crafted, well tested, and secure out of the box. 1.0-U1 is the first tinysofa enterprise server release since the inception of the subversion source control management system. subversion has allowed the tinysofa development team to work around the clock, from all over the globe to bring you what is quite possibly the fastest, most stable, secure enterprise grade operating system freely available today. What's New? =========== Notable changes since tinysofa enterprise server 1.0: * Kernel 2.4.26 (2.4.27-pre2, libata + ata_piix; full SATA support) * Samba 3.0.4 * MySQL 4.0.20 * SWUP 2.4.5 * Kudzu 1.1.22, initscripts 7.31.9, grub 0.94 (for Linux kernel 2.6 use.) * The IBM stack protector is now enabled by default, and has been used to compile the complete distribution. * All packages have been updated to the latest stable upstream versions. Development process improvements since tinysofa enterprise server 1.0: * subversion source control management system (1698 revisions since 1.0) * All packages are now built in a chroot, as non-root. * All packages have proper build requirements. * All packages have undergone a permissions audit. * General package cleanup and rationalisation. Getting tinysofa enterprise server 1.0-U1 ========================================= tinysofa may be downloaded using various protocols from: * http://www.tinysofa.org/download/ The tinysofa website, and means of support, communication and so forth can be found at: * http://www.tinysofa.org/ Upgrading from tinysofa enterprise server 1.0 ============================================= SWUP ---- A bug in the version of SWUP included in 1.0 prevents an automatic upgrade to 1.0-U1. Users of 1.0 should issue the following command: swup --upgrade swup-libs prior to doing a swup --upgrade. anaconda -------- The anaconda installer can be used to upgrade all packages on 1.0 whilst leaving all configuration intact. To upgrade your system using anaconda, insert the tinysofa enterprise server 1.0-U1 CD into your CDROM drive, enter the anaconda installation program, and select "Upgrade Existing System" on the "Installation Type" screen, and follow the prompts. Thanks ====== The tinysofa development team would like to thank all the users who have filled the mailing lists with encouraging appraisal of tinysofa. Your support means a lot to us, and plays a huge role in our dedication to providing you the with best enterprise grade server operating system freely available today. The tinysofa development team ============================= tinysofa is brought to you by: Omar Kilani -- Sydney, NSW, Australia -- Emily Boyd -- Newcastle, NSW, Australia -- Gerald Dachs -- Germany -- Goetz Bock -- Munich, Germany -- Jaakko Heinonen -- Turku, Finland -- Michael Wolf -- Boston, MA, USA -- Tor Hveem -- Norway -- From security at tinysofa.org Mon May 24 09:23:26 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:34 2008 Subject: [tinysofa-announce] TS-2004-006 - multiple packages Message-ID: <20040524142326.GA32450@tinysofa.org> =========================================================================== _ |_ . _ _ _ (_ _ |_ | | ) \/ _) (_) | (_| / Bug Fix Advisory #2004-006 Package names: bind dev dhcp freeswan initscripts iputils kerberos5 lsof mkinitrd pcre sudo swup swupconf tcp_wrappers tinysofa-utils xfsdump Summary: Major bug fixes, Minor bug fixes, Feature enhancements Advisory ID: TS-2004-006 Date: 2004-05-24 Affected versions: tinysofa enterprise server 1.0 tinysofa enterprise server 1.0-U1 =========================================================================== Bug Fixes and Enhancements ========================== Major Bug Fixes --------------- mkinitrd: * mkinitrd now requires module-init-tools and modutils. This fixes problems with initrd generation on install when using the smp, firewall or firewallsmp kernels. pcre: * libpcre.so.0 is now located in /lib. This fixes an issue with grep and initscripts in which libpcre.so.0 could not be linked if the /usr partition had not been mounted yet. Minor Bug Fixes --------------- bind: * Fix manual page permissions. dev: * Requires coreutils instead of fileutils and textutils. This update does not change package output. dhcp: * Fix manual page permissions. freeswan: * Fix manual page permissions. iputils: * Fix manual page permissions. initscripts: * Fix the recognition of a LVM on RAID in the RAID autoactivate code. kerberos5: * Fix permissions for /usr/bin/krb5ksu and /usr/bin/krb5v4rcp. lsof: * Fix manual page permissions. sudo: * Fix manual page permissions. tcp_wrappers: * Specify permissions for files. This update does not change package output. xfsdump: * Fix the location of the manual pages. Feature Enhancements -------------------- swup: * Updated to the latest upstream version. Adds a new --search-provide option and fixes a local file downloading bug. swupconf: * local.cdrom.conf has been added to conf.d. This allows the use of the local cdrom drive (mounted on /mnt/cdrom) as a swup source. Users must explicitly enable this source. tinysofa-utils: * tinysofa-utils now includes the tinysofa development tools tsrep (subversion repository tool), tsbuild (chroot, non-root build system) and tsrelease (ISO generation tool) Recommended Action ================== We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location ======== All tinysofa updates are available from Automatic Updates ================= Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? ========== Check out our mailing lists: Verification ============ This advisory is signed with the tinysofa security sign key. This key is available from: All tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums Of The Packages ======================= 4a2a6973a9d6b812f141c4f95cda7c74 bind-9.2.3-9ts.i586.rpm 48fab499e0e2ed0c2c1cd350a221d6e7 bind-devel-9.2.3-9ts.i586.rpm 4c05e8e3d54caf2413524612d2082d23 bind-libs-9.2.3-9ts.i586.rpm 5786267d47ee09263e34f6e8f29f25d5 bind-light-9.2.3-9ts.i586.rpm 3460d12205135d6c680ece5eaad78bb0 bind-light-devel-9.2.3-9ts.i586.rpm 21704ba7290d6b657784bf7913e780fd bind-utils-9.2.3-9ts.i586.rpm 9a9d7dfab396401783e16b14401bbbde dev-3.3.13-2ts.i586.rpm 6d2edc4d3070b91d058ee5d9b4bd0b83 dev-make-3.3.13-2ts.i586.rpm 9b4ded1c024ff3972f5017fd0b704a6b dhcp-client-3.0pl2-14ts.i586.rpm e23fd24a9972092adcca186d1345d9c7 dhcp-common-3.0pl2-14ts.i586.rpm 376c55747e6991322678acd98543e9e9 dhcp-devel-3.0pl2-14ts.i586.rpm c58f0ad64c98f34d4d280e13014a3420 dhcp-server-3.0pl2-14ts.i586.rpm 6de5a5a06a6c213b65ce8c2822406bff freeswan-2.05-3ts.i586.rpm c03fecab6d282a5730a423ed83c0262a initscripts-7.31.9-2ts.i586.rpm d5ab6d1a65e4f3dcb2a77826aec92bcd iputils-0.0.20020927-14ts.i586.rpm f7411af9c09dc82f8a3463dd983501d1 iputils-tftpd-0.0.20020927-14ts.i586.rpm aa737295aaa3e04bb24a07e7ef17d08c kerberos5-1.3.3-2ts.i586.rpm a8c09c3da4cfbdd0ad0ff9a93f87da5e kerberos5-devel-1.3.3-2ts.i586.rpm 01e9a377c507df04f755dad987f8dde4 kerberos5-libs-1.3.3-2ts.i586.rpm 1c1d70273e6ef58b4874a4555bbbb5c5 lsof-4.71-3ts.i586.rpm 00b67252b64d4478718ac1d4a1e06fc5 mkinitrd-3.5.21-4ts.i586.rpm fe7acd004d4dcbda8b10977777c9972b pcre-4.5-3ts.i586.rpm 18f50a3b1d7ac55fd9d1f108f6922739 pcre-devel-4.5-3ts.i586.rpm 21f05566bda1854c71b38082b22d10a7 rdfgen-2.4.6-1ts.noarch.rpm 970bfc6c8bc4207731c1606d6c1617a5 sudo-1.6.7p5-6ts.i586.rpm 70161913d6098d4ae1a2f3ab4a5b22a7 swup-2.4.6-1ts.noarch.rpm 6d4f4df852b61e4a3b1e9ce9f3bd52f8 swup-libs-2.4.6-1ts.noarch.rpm c57c24e587953956dd537bbc05ad4772 swupconf-1.1-1ts.noarch.rpm 63fcc267a22a85e904e7f0f3956a38db swupcron-2.4.6-1ts.noarch.rpm f10f6bfe4b0288bf4bf9101ff402791c tcp_wrappers-7.6-19ts.i586.rpm b181b7c3e1d7c2720c1a0874cf02bc28 tinysofa-utils-2.0-3ts.noarch.rpm 2e0ead5b4f379524949c2f7b0973677e xfsdump-2.2.21-3ts.i586.rpm -- tinysofa Security Team -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available Url : http://lists.tinysofa.org/pipermail/tinysofa-announce/attachments/20040525/67ac3982/attachment.bin From security at tinysofa.org Tue May 25 08:06:37 2004 From: security at tinysofa.org (tinysofa Security Team) Date: Sun May 4 12:26:34 2008 Subject: [tinysofa-announce] TS-2004-007 - multiple packages Message-ID: <20040525130637.GA15887@tinysofa.org> =========================================================================== _ |_ . _ _ _ (_ _ |_ | | ) \/ _) (_) | (_| / Bug Fix Advisory #2004-007 Package names: initscripts python screen Summary: Major bug fixes, Minor bug fixes, Feature enhancements Advisory ID: TS-2004-007 Date: 2004-05-25 Affected versions: tinysofa enterprise server 1.0 tinysofa enterprise server 1.0-U1 =========================================================================== Bug Fixes and Enhancements ========================== Major Bug Fixes --------------- python: * Python is now built with the stack protector disabled due to a problem with the stack protector and the python socketmodule.so module. This problem presented itself as a segmentation fault in BitTorrent. Minor Bug Fixes --------------- initscripts: * An extraneous /etc/rc.d/halt~ file was removed from the package. Feature Enhancements -------------------- screen: * Added PAM support. Allows screen locking with system password. Recommended Action ================== We recommend that all systems with these packages installed be upgraded. Please note that if you do not need the functionality provided by this package, you may want to remove it from your system. Location ======== All tinysofa updates are available from Automatic Updates ================= Users of the SWUP tool can enjoy having updates automatically installed using 'swup --upgrade'. Questions? ========== Check out our mailing lists: Verification ============ This advisory is signed with the tinysofa security sign key. This key is available from: All tinysofa packages are signed with the tinysofa stable sign key. This key is available from: The advisory is available from the tinysofa errata database at or directly at MD5sums Of The Packages ======================= a8f51479361787be36f8bcce23898b32 initscripts-7.31.9-3ts.i586.rpm 2b16d0ea954ed5a8872b0297e9b29e7b python-2.3.3-8ts.i586.rpm 5b05ad33e321a89ee221db76390a8000 python-devel-2.3.3-8ts.i586.rpm 99b381b88f1b9f7d5de757abb8b32dbf python-docs-2.3.3-8ts.i586.rpm ea989647348844f91a273d69c564e840 python-tools-2.3.3-8ts.i586.rpm d4c3b61b21b4ed8714ccc331aa4586a3 screen-4.0.2-3ts.i586.rpm -- tinysofa Security Team