Created
March 1, 2010 10:58
-
-
Save mxey/318269 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
apticron report [Mon, 01 Mar 2010 11:57:06 +0100] | |
======================================================================== | |
apticron has detected that some packages need upgrading on: | |
donik.lan.secute.org | |
[ 127.0.1.1 188.40.152.65 ] | |
The following packages are currently pending an upgrade: | |
libavcodec51 0.svn20080206-18+lenny1 | |
libavformat52 0.svn20080206-18+lenny1 | |
libavutil49 0.svn20080206-18+lenny1 | |
libmysqlclient15off 5.0.51a-24+lenny3 | |
libpostproc51 0.svn20080206-18+lenny1 | |
libsmbclient 2:3.2.5-4lenny9 | |
libswscale0 0.svn20080206-18+lenny1 | |
libwbclient0 2:3.2.5-4lenny9 | |
mysql-common 5.0.51a-24+lenny3 | |
======================================================================== | |
Package Details: | |
Reading changelogs... | |
--- Changes for ffmpeg-debian (libavcodec51 libavformat52 libavutil49 libpostproc51 libswscale0) --- | |
ffmpeg-debian (0.svn20080206-18+lenny1) stable-security; urgency=high | |
* Fix multiple security issues, update provided by Reinhard Tartler | |
-- Moritz Mühlenhoff <jmm@debian.org> Mon, 25 Jan 2010 18:10:51 +0100 | |
--- Changes for mysql-dfsg-5.0 (libmysqlclient15off mysql-common) --- | |
mysql-dfsg-5.0 (5.0.51a-24+lenny3) stable-security; urgency=high | |
* Non-maintainer upload by the Security Team. | |
* Backport upstream fix for CVE-2009-4019: does not properly handle errors | |
during execution of certain SELECT statements with subqueries, and does not | |
preserve certain null_value flags during execution of statements that use | |
the GeomFromWKB function. | |
* Backport upstream fix for CVE-2009-4030: bypass certain privilege checks | |
by calling CREATE TABLE on a MyISAM table with modified DATA DIRECTORY | |
or INDEX DIRECTORY arguments that are originally associated with pathnames | |
without symlinks, and that can point to tables created at a future time at | |
which a pathname is modified to contain a symlink to a subdirectory of the | |
MySQL data home directory. | |
* Backport upstream fix for CVE-2009-4484: Multiple stack-based buffer | |
overflows in the CertDecoder::GetName function in yaSSL | |
* Update SSL certificates in the test suite. | |
-- Giuseppe Iuculano <iuculano@debian.org> Sat, 13 Feb 2010 00:14:52 +0100 | |
--- Changes for samba (libsmbclient libwbclient0) --- | |
samba (2:3.2.5-4lenny9) stable-security; urgency=low | |
* Security update, fixing the following issues in mount.cifs: | |
- CVE-2009-3297: fix a race condition that allows an attacker with local | |
access to mount remote filesystems over arbitrary mount points via | |
a symlink attack. Closes: #567554. | |
- CVE-2010-0547: fix a denial-of-service problem where a user can corrupt | |
/etc/mtab, preventing further filesystem mounts and unmounts by other | |
users. Closes: #568942. | |
-- Steve Langasek <vorlon@debian.org> Sat, 13 Feb 2010 15:14:03 -0800 | |
======================================================================== | |
You can perform the upgrade by issuing the command: | |
aptitude full-upgrade | |
as root on donik.lan.secute.org | |
-- | |
apticron |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment