Support / Security / Advisories / Mandrakelinux 7.0 / MDKSA-2000:028

Package name: kon2
Date: 2000-08-01
Advisory ID: MDKSA-2000:028
Affected versions: 7.0 i586 , 7.1 i586

Problem description

There is a vulnerable suid program called fld. This program accepts option input from a text file and it is possible to input arbitrary code into the stack, thus spawning a root shell.

Updated packages

7.0 i586

 38623f39463755637748dd692c059fd4  7.0/RPMS/kon2-0.3.8-15mdk.i586.rpm
040fb17eabb96cf5920d6a623bf8b809  7.0/SRPMS/kon2-0.3.8-15mdk.src.rpm

7.1 i586

 7c0a253209e2d760e6b99110e82ea73e  7.1/RPMS/kon2-0.3.8-15mdk.i586.rpm
040fb17eabb96cf5920d6a623bf8b809  7.1/SRPMS/kon2-0.3.8-15mdk.src.rpm