Re: Has tar-1.15.1 been built & released for rh7.3?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Monday 10 October 2005 19:22, Jeff Sheltren wrote:
>On Oct 10, 2005, at 5:43 PM, Gene Heskett wrote:
>> I've been running 1.15.1 on this FC2 box now for about 3 months,
>> and it
>> appears to be completey compatible.  Then I read someplace where a
>> security hole had been found in pre 1.15 issues, so I thought I'd
>> try to
>> upgrade my firewall box, which is still running 7.3, but with a 2.4.29
>> kernel.
>
>Hi Gene, the only recent tar report I've seen is regarding tar
>preserving setuid/setgid information, which is actually the intended
>behavior of tar, so I am not sure that anyone even patched it.
>
>See http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2541 and
>http://marc.theaimsgroup.com/?l=bugtraq&m=112327628230258&w=2
>
>I don't think that there are any other (unpatched) security issues
>aside from that.
>
>-Jeff

In that case, and since its working fine with 1.13-25, its possible I
miss-read the security advisory.  And as that is now a few pages back up
the log, making my elderly  memory pretty hazy, I'll just let it run till
the fenders fall off.  And so far, I'm not seeing any signs of rust. :)

Thanks.

-- 
Cheers, Gene
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
99.35% setiathome rank, not too shabby for a WV hillbilly
Yahoo.com and AOL/TW attorneys please note, additions to the above
message by Gene Heskett are:
Copyright 2005 by Maurice Eugene Heskett, all rights reserved.

--

fedora-legacy-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-legacy-list

[Index of Archives]     [Fedora Development]     [Fedora Announce]     [Fedora Legacy Announce]     [Fedora Config]     [PAM]     [Fedora General Discussion]     [Big List of Linux Books]     [Gimp]     [Yosemite Questions]

  Powered by Linux