|
|
| Problem Description |
A buffer overflow was discovered in the lpr printer spooling system
that can be exploited by a local user to gain root privileges. This
can be done even if the printer is configured properly.
| Updated Packages |
Mandrakelinux 8.2
7ed39a748d4c48ce9839299ee24a5e04 8.2/RPMS/lpr-0.72-3.1mdk.i586.rpm bfff98bc4036f8c2c813707ade3bc041 8.2/SRPMS/lpr-0.72-3.1mdk.src.rpm
Mandrakelinux 8.2/PPC
fa5bbf033a6fc4c2dca26771f2db9ef2 ppc/8.2/RPMS/lpr-0.72-3.1mdk.ppc.rpm bfff98bc4036f8c2c813707ade3bc041 ppc/8.2/SRPMS/lpr-0.72-3.1mdk.src.rpm
| References |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0144
| Upgrade |
To upgrade automatically, use MandrivaUpdate.
| Verification |
Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :
rpm --checksig package.rpm
You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.
If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.