Users login

Create an account »

JOIN XATRIX

Users login

Home » Security Advisories» Trustix » Multiple package updates

Multiple package updates

Fixed security issues and bugs in: ltrace, mkbootdisk, mrtg, mtools, mysql, php, pptpd, sqlite3 and vim.

  • Vendor: Trustix
  • Vendor ID: TSLSA-2005-0048
  • Date: September 16, 2005


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Bugfix Advisory #2005-0048

Package names: ltrace, mkbootdisk, mrtg, mtools, mysql,
php, pptpd, sqlite3, vim
Summary: Various bug fixes
Date: 2005-09-16
Affected versions: Trustix Secure Linux 2.2
Trustix Secure Linux 3.0

- --------------------------------------------------------------------------
Package description:
ltrace
ltrace is a debugging program which runs a specified command until it
exits. While the command is executing, ltrace intercepts and records the
dynamic library calls which are called by the executed process and the
signals received by that process. It can also intercept and print the
system calls executed by the program.

mkbootdisk
The mkbootdisk program creates a standalone boot floppy disk for
booting the running system. The created boot disk will look for the
root filesystem on the device mentioned in /etc/fstab and includes an
initial ramdisk image which will load any necessary SCSI modules for
the system.

mrtg
The Multi Router Traffic Grapher (MRTG) is a tool to monitor the traffic
load on network links. MRTG generates HTML pages containing PNG images
which provide a LIVE visual representation of this traffic.

mtools
Mtools is a collection of utilities for accessing MS-DOS files. Mtools
allow you to read, write and move around MS-DOS filesystem files (normally
on MS-DOS floppy disks). Mtools supports Windows95 style long file names,
OS/2 XDF disks, and 2m disks.

mysql
MySQL is a true multi-user, multi-threaded SQL (Structured Query Language)
database server. MySQL is a client/server implementation that consists of
a server daemon (mysqld) and many different client programs/libraries.

php
PHP is an HTML-embedded scripting language. PHP attempts to make it easy
for developers to write dynamically generated web pages. PHP also offers
built-in database integration for several commercial and non-commercial
database management systems, so writing a database-enabled web page with
PHP is fairly simple. The most common use of PHP coding is probably as a
replacement for CGI scripts. The mod_php module enables the Apache web
server to understand and process the embedded PHP language in web pages.

pptpd
PPTPd, Point-to-Point Tunnelling Protocol Daemon, offers out
connections to pptp clients to become virtual members of the IP pool
owned by the pptp server. In effect, these clients become virtual members
of the local subnet, regardless of what their real IP address is. A
tunnel is built between the pptp server and client, and packets from the
subnet are wrapped and passed between server and client similar to other
C/S protocols.

sqlite3
SQLite is a C library that implements an embeddable SQL database engine.
Programs that link with the SQLite library can have SQL database access
without running a separate RDBMS process. The distribution comes with a
standalone command-line access program (sqlite) that can be used to
administer an SQLite database and which serves as an example of how to
use the SQLite library.

vim
VIM (VIsual editor iMproved) is an updated and improved version of the vi
editor. Vi was the first real screen-based editor for UNIX, and is still
very popular. VIM improves on vi by adding new features: multiple windows,
multi-level undo, block highlighting and more.

Problem description:
ltrace < TSL 3.0 >
- Initial Entry into TSL 3.0

mkbootdisk < TSL 3.0 >
- New Upstream
- Switched to use syslinux rather then lilo
- Added --kernelargs command line option
- if --kernelargs isn't specified and grubby is available use it to get
the arguments to use
- use copy instead of mkinitrd to get the initrd

mrtg < TSL 3.0 > < TSL 2.2 >
- Now also count rsync servers

mtools < TSL 3.0 >
- Initial Entry into TSL 3.0

mysql < TSL 3.0 > < TSL 2.2 >
- New Upstream
- Multiple Bug Fixes

php < TSL 3.0 >
- Minor cleanup. Fixed Bug# 877.

pptpd < TSL 3.0 >
- New Upstream

sqlite3 < TSL 3.0 >
- New Upstream
- Fix the --enable-threadsafe option on the configure script
- Fix a code generator bug that occurs when the left-hand side of an
IN operator is constant and the right-hand side is a SELECT statement.

vim < TSL 3.0 >
- Enable multibyte

Action:
We recommend that all systems with this package installed be upgraded.
Please note that if you do not need the functionality provided by this
package, you may want to remove it from your system.


Location:
All Trustix Secure Linux updates are available from
;
;


About Trustix Secure Linux:
Trustix Secure Linux is a small Linux distribution for servers. With focus
on security and stability, the system is painlessly kept safe and up to
date from day one using swup, the automated software updater.


Automatic updates:
Users of the SWUP tool can enjoy having updates automatically
installed using 'swup --upgrade'.


Questions?
Check out our mailing lists:
;


Verification:
This advisory along with all Trustix packages are signed with the
TSL sign key.
This key is available from:
;

The advisory itself is available from the errata pages at
; and
;
or directly at
;


MD5sums of the packages:
- --------------------------------------------------------------------------
f7a5cc488ab4dbc47678c488286a159b 3.0/rpms/ltrace-0.3.36-1tr.i586.rpm
55bffb7e735489f03ca563e671375b82 3.0/rpms/mkbootdisk-1.5.2-1tr.i586.rpm
4d1e506e059ccd74617b6c23a147e9d4 3.0/rpms/mrtg-2.12.2-8tr.i586.rpm
bc01b1455cf70b126f44922e236937f8 3.0/rpms/mtools-3.9.10-1tr.i586.rpm
f78347ef57448465e54074eec8cdfe6f 3.0/rpms/mysql-4.1.14-1tr.i586.rpm
1ffd3035311f9ff78edfe32f8005245d 3.0/rpms/mysql-bench-4.1.14-1tr.i586.rpm
ffe1a922664aada5a78ed3aacad7f1ee 3.0/rpms/mysql-client-4.1.14-1tr.i586.rpm
48f7b9ca0869bdeebcee31a66bf27b17 3.0/rpms/mysql-devel-4.1.14-1tr.i586.rpm
9fdd113d253626498ac126516a8f910d 3.0/rpms/mysql-libs-4.1.14-1tr.i586.rpm
cbf536558a7a84093bb91dfaa77ac9b7 3.0/rpms/mysql-shared-4.1.14-1tr.i586.rpm
bc218b951bf4ca99da4da32a018c8fe1 3.0/rpms/php-5.0.4-19tr.i586.rpm
ffd7c3910590eb0f36dfd02b90699487 3.0/rpms/php-cli-5.0.4-19tr.i586.rpm
5bb26a5667479c61f1ad9ae92faede9b 3.0/rpms/php-curl-5.0.4-19tr.i586.rpm
44d86ac512ea15fda6f8278f3f9ba0d1 3.0/rpms/php-devel-5.0.4-19tr.i586.rpm
fd27e0d526df30cf83a9fc1ac2884f0e 3.0/rpms/php-exif-5.0.4-19tr.i586.rpm
79d2aafffcfff183b79b4685c390bd55 3.0/rpms/php-fcgi-5.0.4-19tr.i586.rpm
7caaf473a1e9fe8beca5a83ccfa29695 3.0/rpms/php-gd-5.0.4-19tr.i586.rpm
9e7bda732c7c500f89680f38785d9c3f 3.0/rpms/php-imap-5.0.4-19tr.i586.rpm
10710fb640b70473316f723baab3cdc3 3.0/rpms/php-ldap-5.0.4-19tr.i586.rpm
e3204e5dba55c3081fab03c4522f1bcb 3.0/rpms/php-mhash-5.0.4-19tr.i586.rpm
59d6d0d24069a246b9c5d421a9de458e 3.0/rpms/php-mysql-5.0.4-19tr.i586.rpm
8fed9f15f7f01e735fae3d82ccd891d7 3.0/rpms/php-mysqli-5.0.4-19tr.i586.rpm
4151798419af4bb9e31342d5554e880b 3.0/rpms/php-pgsql-5.0.4-19tr.i586.rpm
0036d6498b9bd85f2f0d61ac527e67dd 3.0/rpms/php-snmp-5.0.4-19tr.i586.rpm
d7e028d54de54eab724a90c839f3d37e 3.0/rpms/php-zlib-5.0.4-19tr.i586.rpm
dc70a7a82c37aed608c8ff74a1c0245b 3.0/rpms/pptpd-1.3.0-1tr.i586.rpm
1653c542121c063839a79050d54de977 3.0/rpms/sqlite3-3.2.5-1tr.i586.rpm
e3d31488840ab06a61f3edfd110aa110 3.0/rpms/sqlite3-devel-3.2.5-1tr.i586.rpm
2bda9bb3d5f9a65636d8a44ed3df3b02 3.0/rpms/vim-6.3.085-8tr.i586.rpm
5f143a84dcd94720843fcdcbbc1063ed 3.0/rpms/vim-doc-6.3.085-8tr.i586.rpm
aa4d2f0ad31601f0ce9a566ed352b782 3.0/rpms/vim-syntax-6.3.085-8tr.i586.rpm
643c563072719ad740520cbff295e703 3.0/rpms/vim-tools-6.3.085-8tr.i586.rpm

5da0505adca3195c7a2386030a1cb274 2.2/rpms/mrtg-2.12.2-8tr.i586.rpm
c5617b499bcded2c0e8660ec8fb1bec5 2.2/rpms/mysql-4.1.14-1tr.i586.rpm
0237ffa0cf12158a9deb2cdd4e2a8ae2 2.2/rpms/mysql-bench-4.1.14-1tr.i586.rpm
a20e2620fa44c76ccec74b162a304b15 2.2/rpms/mysql-client-4.1.14-1tr.i586.rpm
20d3417159f6f2e5b3be9e8a209e442c 2.2/rpms/mysql-devel-4.1.14-1tr.i586.rpm
aac3a1b99e4ecdc00bf4cba6e342503c 2.2/rpms/mysql-libs-4.1.14-1tr.i586.rpm
59d1a9bba51bb772f343120ea58fbce9 2.2/rpms/mysql-shared-4.1.14-1tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)

iD8DBQFDKwq4i8CEzsK9IksRAg4/AJ0ZLsM0ps80btg37jyC8SyN22hIFQCcDgF8
FHxx3MIB2LwdyGfcZy/Knko=
=mINS
-----END PGP SIGNATURE-----

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »