Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2005 > Three Debian Security Advisories: 1. DSA 637-1 - New exim-tls packages fix arbitrary code execution 2. DSA 638-1 - New gopher packages fix several vulnerabilities 3. DSA 639-1 - New mc packages fix several vulnerabilities

January 2005

Three Debian Security Advisories: 1. DSA 637-1 - New exim-tls packages fix arbitrary code execution 2. DSA 638-1 - New gopher packages fix several vulnerabilities 3. DSA 639-1 - New mc packages fix several vulnerabilities

ID: 00032
Ref: 28/2005
Date: 17 January 2005:14:49:19
Version: 1
Title: Three Debian Security Advisories: 1. DSA 637-1 - New exim-tls packages fix arbitrary code execution 2. DSA 638-1 - New gopher packages fix several vulnerabilities 3. DSA 639-1 - New mc packages fix several vulnerabilities
Abstract:
Vendors affected: Debian
Operating systems affected: Debian
Applications affected: Debian
Title
=====

Three Debian Security Advisories:

1. DSA 637-1 - New exim-tls packages fix arbitrary code execution

2. DSA 638-1 - New gopher packages fix several vulnerabilities

3. DSA 639-1 - New mc packages fix several vulnerabilities

Detail
======

1. Philip Hazel announced a buffer overflow in the host_aton function in
exim-tls, the SSL-enabled version of the default mail-tranport-agent in
Debian, which can lead to the execution of arbitrary code via an illegal
IPv6 address.

2. "jaguar" has discovered two security relevant problems in gopherd, the Gopher
server in Debian which is part of the gopher package.

3. Andrew V. Samoilov has noticed that several bugfixes which were applied
to the source by upstream developers of mc, the midnight commander, a
file browser and manager, were not backported to the current version of
mc that Debian ships in their stable release.



1.




- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================


ESB-2005.0041 -- Debian Security Advisory DSA 637-1
New exim-tls packages fix arbitrary code execution
14 January 2005

===========================================================================



Product: exim-tls
Publisher: Debian
Operating System: Debian GNU/Linux 3.0
Linux variants
UNIX variants
Impact: Execute Arbitrary Code/Commands
Access: Remote/Unauthenticated
CVE Names: CAN-2005-0021

Original Bulletin: http://www.debian.org/security/2005/dsa-637

- - --------------------------BEGIN INCLUDED TEXT--------------------

- - -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - --------------------------------------------------------------------------
Debian Security Advisory DSA 637-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 13th, 2005 http://www.debian.org/security/faq
- - - --------------------------------------------------------------------------

Package : exim-tls
Vulnerability : buffer overflow
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-0021
Debian Bug : 289046

Philip Hazel announced a buffer overflow in the host_aton function in exim-tls,
the SSL-enabled version of the default mail-tranport-agent in Debian, which can
lead to the execution of arbitrary code via an illegal IPv6 address.

For the stable distribution (woody) this problem has been fixed in version
3.35-3woody3.

In the unstable distribution (sid) this package does not exist anymore.

We recommend that you upgrade your exim-tls package.


Upgrade Instructions
- - - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list
as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the footer to
the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3.dsc
Size/MD5 checksum: 677 059e83c496e959d01bcca0a11637b017
http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3.diff.gz
Size/MD5 checksum: 80492 90d594f60ae815a780faa5f9c9d1859d
http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35.orig.tar.gz
Size/MD5 checksum: 1271057 42d362e40a21bd7ffc298f92c8bd986a

Alpha architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_alpha.deb
Size/MD5 checksum: 873682 935e1dddb27a713d562b905c2951dea7

ARM architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_arm.deb
Size/MD5 checksum: 784148 c97ded116303fe5ee1c4a9f741350c58

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_i386.deb
Size/MD5 checksum: 759442 1477e25fe953ee209ec86a67a59306ba

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_ia64.deb
Size/MD5 checksum: 974058 74cd3707971105a75398a0ce46e4bb80

HP Precision architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_hppa.deb
Size/MD5 checksum: 814316 56d73dab6e0bbd4df6068c5f9f065491

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_m68k.deb
Size/MD5 checksum: 736730 ba35f1bd8dcfaf6ef9f35aded9176cab

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_mips.deb
Size/MD5 checksum: 824408 0f8af4bf6f39d1dbb10e05e5717e3115

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_mipsel.deb
Size/MD5 checksum: 825160 abfc0dc6c75fc7fafba89f6673bd1913

PowerPC architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_powerpc.deb
Size/MD5 checksum: 792574 f8c3a2d72890f766a72a6ddc39f2ea31

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_s390.deb
Size/MD5 checksum: 779236 aca9521a7b347d291e158a919cca0ed5

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/e/exim-tls/exim-tls_3.35-3woody3_sparc.deb
Size/MD5 checksum: 782800 5e3a9478dc77a0943ce0c41611973c95


These files will probably be moved into the stable distribution on
its next update.

- - - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp:
ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list:
debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB5iL8W5ql+IAeqTIRAn1eAJwMSHPcsyO1ErWCQmEPMsxFf/PQXwCfetsH
suc9pTv73NqZRAKBio6LQz0=
=toCp
- - -----END PGP SIGNATURE-----

- - --------------------------END INCLUDED TEXT--------------------


iQCVAwUBQedaxyh9+71yA2DNAQLZuQQAgC0864Bi6mY8pZKqY+4XvZ4nTSNpaVMp
LPtM2rh0sZnrCJZ6C+fT6rsXwEkPjp0UXV6X+GYwZdO5sGkE41DjSem3mHazOG12
DZZGHOKndbiAEUloNLeLoMCvhKiw4osfnYwY/76o41hJNnD/+5/OrzIzqBVh5wQ1
ZxWPYulxl4I=
=DB2K
- -----END PGP SIGNATURE-----


2.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================

ESB-2005.0042 -- Debian Security Advisory DSA 638-1
New gopher packages fix several vulnerabilities
14 January 2005

===========================================================================



Product: gopher
Publisher: Debian
Operating System: Debian GNU/Linux 3.0
Linux variants
Impact: Execute Arbitrary Code/Commands
Denial of Service
Access: Remote/Unauthenticated
CVE Names: CAN-2004-0561 CAN-2004-0560

Original Bulletin: http://www.debian.org/security/2005/dsa-638

- - --------------------------BEGIN INCLUDED TEXT--------------------

- - -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - --------------------------------------------------------------------------
Debian Security Advisory DSA 638-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 13th, 2005 http://www.debian.org/security/faq
- - - --------------------------------------------------------------------------

Package : gopher
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-0560 CAN-2004-0561

"jaguar" has discovered two security relevant problems in gopherd, the Gopher
server in Debian which is part of the gopher package. The Common Vulnerabilities
and Exposures project identifies the following
vulnerabilities:

CAN-2004-0560

An integer overflow can happen when posting content of a specially
calculated size.

CAN-2004-0561

A format string vulnerability has been found in the log routine.

For the stable distribution (woody) these problems have been fixed in version
3.0.3woody2.

The unstable distribution (sid) does not contain a gopherd package. It has
been replaced by Pygopherd.

We recommend that you upgrade your gopherd package.


Upgrade Instructions
- - - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as
given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the footer to the
proper configuration.


Debian GNU/Linux 3.0 alias woody
- - - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2.dsc
Size/MD5 checksum: 552 8ca5e42b27ee90a38e94bf9a6970c66c
http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2.tar.gz
Size/MD5 checksum: 508697 f6c925530ffbf8bf5cfcab97f04f9d1f

Alpha architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_alpha.deb
Size/MD5 checksum: 151380 cc2a882cde9216d6a23f7cd6c9f90623
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_alpha.deb
Size/MD5 checksum: 120180 d0b221cf1f583be4b051f0a8e82a11c3

ARM architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_arm.deb
Size/MD5 checksum: 114646 a27be2be4a1572fba35d959f01023888
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_arm.deb
Size/MD5 checksum: 98678 9313f132ea75b7dd6a855cd43c1e3c9f

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_i386.deb
Size/MD5 checksum: 112528 e687f76519118d0ea5b3c6cb579db286
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_i386.deb
Size/MD5 checksum: 96886 2c0b651d2d00bd8c805c319ad8c33866

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_ia64.deb
Size/MD5 checksum: 173718 2bf3e4b86029c74635a084c1eede9787
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_ia64.deb
Size/MD5 checksum: 139836 2b9440218cb621c60dad5495e0820301

HP Precision architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_hppa.deb
Size/MD5 checksum: 129848 be292cc2310c1acb7d68e5209009c7bd
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_hppa.deb
Size/MD5 checksum: 109810 081dbee8c04697ff7102060a03fed127

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_m68k.deb
Size/MD5 checksum: 105758 3e4a75b833f9c0ef1c205997c1034019
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_m68k.deb
Size/MD5 checksum: 91926 703284910206b8b5cb191e946d27dd12

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_mips.deb
Size/MD5 checksum: 130832 8593601cee3ac10b726b8a5fda187594
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_mips.deb
Size/MD5 checksum: 109556 51cc6daa4ed07de0d48da154af788a59

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_mipsel.deb
Size/MD5 checksum: 130846 c12d42a4030b8f48f0c10d52c8a9a4e3
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_mipsel.deb
Size/MD5 checksum: 109464 8a53bdb7a6884680eefc6513fdaa47ff

PowerPC architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_powerpc.deb
Size/MD5 checksum: 121114 5a4a7d7816b5a07fad0f332f586779db
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_powerpc.deb
Size/MD5 checksum: 102828 ce470ddb1885a029489353bbab62703d

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_s390.deb
Size/MD5 checksum: 116304 1b87e909f94aa8c1123b41c126fb7d3f
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_s390.deb
Size/MD5 checksum: 99904 213c3b6ece4d0db0c23ac17548626677

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/g/gopher/gopher_3.0.3woody2_sparc.deb
Size/MD5 checksum: 121968 06b5d848a5abf676485b7012b84f5dce
http://security.debian.org/pool/updates/main/g/gopher/gopherd_3.0.3woody2_sparc.deb
Size/MD5 checksum: 102190 2243fe4cde92498111781de8ea7af932


These files will probably be moved into the stable distribution on
its next update.

- - - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp:
ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list:
debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB5qSzW5ql+IAeqTIRAvfNAKCdI4zkXSjWHcda3wR1FsBuFFf0HwCfSsx8
n5dnkF9yclMBJ/MDyyZ0knw=
=vJME
- - -----END PGP SIGNATURE-----

- - --------------------------END INCLUDED TEXT--------------------


iQCVAwUBQedlDSh9+71yA2DNAQKgPwP/dvTA1DtLVYgpW1r8LPnhcF8lQn13aYuK
4NIkPbUSzmPZH8WVyq3sJhI22YAsyouyKzslFZNl4nHXojJ5k1lBy5CoNf1ft6pj
0rhAIwYqJgtrSaYecLyeMq0HOwwfijm/3L7QARE8ptZcrb9wg40xZZMT/x3FgFvH
/9jG7ezC+jA=
=G2wx
- -----END PGP SIGNATURE-----



3.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================

ESB-2005.0044 -- Debian Security Advisory DSA 639-1
New mc packages fix several vulnerabilities
17 January 2005

===========================================================================



Product: mc
Publisher: Debian
Operating System: Debian GNU/Linux 3.0
Linux variants
Impact: Execute Arbitrary Code/Commands
Denial of Service
Access: Remote/Unauthenticated
CVE Names: CAN-2004-1176 CAN-2004-1175 CAN-2004-1174
CAN-2004-1093 CAN-2004-1092 CAN-2004-1091
CAN-2004-1090 CAN-2004-1009 CAN-2004-1005
CAN-2004-1004

Original Bulletin: http://www.debian.org/security/2005/dsa-639

- - --------------------------BEGIN INCLUDED TEXT--------------------

- - -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - - --------------------------------------------------------------------------
Debian Security Advisory DSA 639-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 14th, 2005 http://www.debian.org/security/faq
- - - --------------------------------------------------------------------------

Package : mc
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2004-1004 CAN-2004-1005 CAN-2004-1009 CAN-2004-1090 CAN-2004-1091
CAN-2004-1092 CAN-2004-1093 CAN-2004-1174 CAN-2004-1175 CAN-2004-1176

Andrew V. Samoilov has noticed that several bugfixes which were applied
to the source by upstream developers of mc, the midnight commander, a
file browser and manager, were not backported to the current version of
mc that Debian ships in their stable release. The Common Vulnerabilities
and Exposures Project identifies the following
vulnerabilities:

CAN-2004-1004

Multiple format string vulnerabilities

CAN-2004-1005

Multiple buffer overflows

CAN-2004-1009

One infinite loop vulnerability

CAN-2004-1090

Denial of service via corrupted section header

CAN-2004-1091

Denial of service via null dereference

CAN-2004-1092

Freeing unallocated memory

CAN-2004-1093

Denial of service via use of already freed memory

CAN-2004-1174

Denial of service via manipulating non-existing file handles

CAN-2004-1175

Unintended program execution via insecure filename quoting

CAN-2004-1176

Denial of service via a buffer underflow

For the stable distribution (woody) these problems have been fixed in version
4.5.55-1.2woody5

For the unstable distribution (sid) these problems should already be fixed
since they were backported from current versions.

We recommend that you upgrade your mc package.


Upgrade Instructions
- - - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list
as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the footer to the
proper configuration.


Debian GNU/Linux 3.0 alias woody
- - - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5.dsc
Size/MD5 checksum: 798 09408d39e539898d3384293454b806a8
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5.diff.gz
Size/MD5 checksum: 51884 64d27d64149013cbbfcbe0d568f872af
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55.orig.tar.gz
Size/MD5 checksum: 4850321 82772e729bb2ecfe486a6c219ebab09f

Alpha architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_alpha.deb
Size/MD5 checksum: 1186490 28bce9bd85c73413c4e610a83f6c80dd
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_alpha.deb
Size/MD5 checksum: 562942 519466cca7aa730a64c5ff629fe64112
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_alpha.deb
Size/MD5 checksum: 1351654 7b7e2ee396427d08f38bb2610533fb25

ARM architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_arm.deb
Size/MD5 checksum: 1028206 7bc8143ab26f4c42ef99de8f86d30604
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_arm.deb
Size/MD5 checksum: 480562 94e93aaa4a2dccb4b3acde553091fce7
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_arm.deb
Size/MD5 checksum: 1351824 cd5a6b905f11fd1661a16e790bf1f588

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_i386.deb
Size/MD5 checksum: 994986 0c53de4cf192308977e39bb4a7216314
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_i386.deb
Size/MD5 checksum: 455878 7a09ac156183bc9cee032d674e21587c
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_i386.deb
Size/MD5 checksum: 1351766 fe4f6d051f36930a1533ac7239d5759f

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_ia64.deb
Size/MD5 checksum: 1435394 06eb2692e366aa35d3aa39f2903253a7
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_ia64.deb
Size/MD5 checksum: 689186 df58ef7f32905a5c4ade98dab6013ef0
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_ia64.deb
Size/MD5 checksum: 1351652 6530011245a834c8df64a972855b3995

HP Precision architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_hppa.deb
Size/MD5 checksum: 1144490 2d28d59dacd0d57ade92139783897a52
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_hppa.deb
Size/MD5 checksum: 541214 cae4c0accc681cb6d74bebcd38424657
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_hppa.deb
Size/MD5 checksum: 1352116 9b18a11f41ad50f53787129cbb70ee45

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_m68k.deb
Size/MD5 checksum: 957852 622795322c8d3ccb1f844ca4e80fbc07
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_m68k.deb
Size/MD5 checksum: 436992 28fe37f13b19930168d06a6092e4295e
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_m68k.deb
Size/MD5 checksum: 1352176 83bdc91613abb383a2ba65e39b86ec17

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_mips.deb
Size/MD5 checksum: 1087044 ca4c17d34d697187723ed33915949171
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_mips.deb
Size/MD5 checksum: 536772 f797b059e1baf558a147296545ab308c
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_mips.deb
Size/MD5 checksum: 1352072 de11cf9737a1835a78db10a9f9e01677

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_mipsel.deb
Size/MD5 checksum: 1081206 15555616a4587281d589d6c4d75fff4d
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_mipsel.deb
Size/MD5 checksum: 535634 44ba98ca679814dca5414955ade5477c
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_mipsel.deb
Size/MD5 checksum: 1351830 d4dd86b51fd4f80034323d8fb7fed93e

PowerPC architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_powerpc.deb
Size/MD5 checksum: 1043048 fa3c76890db2a3eb8910630dda4e2ee1
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_powerpc.deb
Size/MD5 checksum: 490084 f9a035d0cabd0b5a2208a83ccdb262d3
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_powerpc.deb
Size/MD5 checksum: 1352100 07c82e678f74390eb7be89ca324faaad

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_s390.deb
Size/MD5 checksum: 1029952 d114807d61819ad87a705d9c145e4e69
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_s390.deb
Size/MD5 checksum: 479508 b9ce19425fb67653ca449f13a564c5b6
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_s390.deb
Size/MD5 checksum: 1352022 66290d632d0aeefd2758a9b09c41bd00

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/m/mc/gmc_4.5.55-1.2woody5_sparc.deb
Size/MD5 checksum: 1029094 189ad1f55bee5b1f45f8286830c59413
http://security.debian.org/pool/updates/main/m/mc/mc_4.5.55-1.2woody5_sparc.deb
Size/MD5 checksum: 483478 f693c3a851ff549e7ea1e64dc993f776
http://security.debian.org/pool/updates/main/m/mc/mc-common_4.5.55-1.2woody5_sparc.deb
Size/MD5 checksum: 1352114 e26e3f182414e28488950d059bfeee61


These files will probably be moved into the stable distribution on
its next update.

- - - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp:
ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list:
debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB55zrW5ql+IAeqTIRAhPuAJ9POWu791C+QxxlBkpRYnUUyopcJQCeJNRL
Srs4O/oBMdZ7mqo8XvoVIbU=
=xz+R
- - -----END PGP SIGNATURE-----


- - --
To UNSUBSCRIBE, email to debian-security-announce-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org


- - --------------------------END INCLUDED TEXT--------------------



iQCVAwUBQer2Uih9+71yA2DNAQLrqgP/ZWUFq2+fTXaJwtpAEf7hhokcJEi+y0aB
A0txEly6Swjy9Zq5VyIFqTfhn0uH8c18W+vakMVEQasZlx9ktdP6wq9xJd9c0w/2
8KYujCqhv2d0PtW/YgKZNYfDYnWGDJZIii2zFPpiF1mmiIT5GxNKOT5fHCvf++dB
sDnYsP0EXXY=
=yMM7
- -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |