- -------------------------------------------------------------------------- Debian-Edu/Skolelinux Security Advisory DESA 2007-014 http://www.skolelinux.org/security/ Steffen Joeris November 19th, 2007 debian-edu-security@lists.alioth.debian.org - -------------------------------------------------------------------------- This DESA deals with packages that the Debian Security Team has fixed. Each section starts with "Package" and includes a link to the Debian Security Team's announce for the security upgrade. Package : dhcp (dhcp, dhcp-client) Vulnerability : buffer overflow Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2007-5365 DSA ID : DSA-1388-1 DSA URL : http://www.debian.org/security/2007/dsa-1388 Package : pcre3 (libpcre3) Vulnerability : several Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2007-1659 CVE-2007-1660 CVE-2007-1661 CVE-2007-1662 CVE-2007-4766 CVE-2007-4767 CVE-2007-4768 DSA ID : DSA-1399-1 DSA URL : http://www.debian.org/security/2007/dsa-1399 Package : perl (perl-modules, libperl5, perl, perl-base) Vulnerability : heap overflow Need reboot : no Debian-Edu-specific : no CVE ID : CVE-2007-5116 DSA ID : DSA-1400-1 DSA URL : http://www.debian.org/security/2007/dsa-1400 Upgrade Instructions - -------------------- Make sure the line deb http://security.debian.org/ sarge/updates main contrib non-free is present in your /etc/apt/sources.list and run 'apt-get update' to update your package lists. Then run 'apt-get upgrade' to upgrade all the packages mentioned above. This might upgrade other packages too, and if you only want to upgrade the packages above, you should run 'apt-get install ... ' where to is the package names in paranthesis from each package section above. - -------------------------------------------------------------------------- Mailing lists: debian-edu-announce@lists.debian.org Package info: `apt-cache show '