similar to: [SECURITY] RHSA-2000:009-02.text: New gpm packages available

Well, last night, my box was hit again.. same symptoms: All attempts to connect remotely receive a connection, but a login prompt never comes up. When I went to the console and turned on the monitor, I had the login prompt, but written on to the screen was the message IPMASQ: Reverse ICMP: Checksum error from xxx.xxx.xxx.xxx So, on this occasion, I thought I would post a summary of the

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: gpm security flaws have been addressed Advisory ID: RHSA-2000:045-01 Issue date: 2000-07-26 Updated on: 2000-07-26 Product: Red Hat Linux Keywords: gpm, denial of service, /dev/gpmctl, gpm-root, setgid Cross references:

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Buffer overflow problem in the inews program Advisory ID: RHSA-1999:033-01 Issue date: 1999-09-01 Keywords: inn inews buffer overflow - --------------------------------------------------------------------- 1. Topic: New packages for INN

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: screen defaults to not using Unix98 ptys Advisory ID: RHSA-1999:042-01 Issue date: 1999-10-20 Updated on: Keywords: Cross references: screen unix98 pty permissions --------------------------------------------------------------------- 1. Topic: Screen uses ptys with world

This and the following 2 messages are from linux-watch@redhatc.com Dan ___________________________________________________________________________ Dan Yocum | Phone: (630) 840-8525 Linux/Unix System Administrator | Fax: (630) 840-6345 Computing Division OSS/FSS | email: yocum@fnal.gov .~. L Fermi National Accelerator Lab | WWW:

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Security problems in WU-FTPD Advisory ID: RHSA-1999:043-01 Issue date: 1999-10-21 Updated on: Keywords: wu-ftp security remote exploit Cross references: --------------------------------------------------------------------- 1. Topic: Various computer security groups have

GPM Modula-2 and Oberon-2 Compilers File locations: ftp.fit.qut.edu.au:/pub/gpm ftp.psg.com:/pub/modula-2/gpm WEB Site: http://www.fit.qut.edu.au/CompSci/PLAS/GPM/ The Gardens Point Modula (GPM) compilers are an ongoing development project for the Programming Languages and Systems Group in the Faculty of Information Technology at the Queensland University of Technology.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ________________________________________________________________________ Linux-Mandrake Security Update Advisory ________________________________________________________________________ Package name: gpm Date: July 27th, 2000 Advisory ID: MDKSA-2000:025 Affected versions: 6.0, 6.1, 7.0, 7.1

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ Caldera Systems, Inc. Security Advisory Subject: DoS on gpm Advisory number: CSSA-2000-024.0 Issue date: 2000 July, 6 Cross reference: ______________________________________________________________________________ 1. Problem Description There are security

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Security problems in WU-FTPD Advisory ID: RHSA-1999:043-01 Issue date: 1999-10-21 Updated on: Keywords: wu-ftp security remote exploit Cross references: - --------------------------------------------------------------------- 1. Topic:

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New PAM packages available Advisory ID: RHSA-1999:040 Issue date: 10/13/1999 Updated on: 10/13/1999 Keywords: pam security login NIS server Cross references: N/A -

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Buffer overflow in proftpd Advisory ID: RHSA-1999:034-01 Issue date: 1999-08-31 Keywords: proftpd buffer overflow remote exploit - --------------------------------------------------------------------- 1. Topic: proftpd is a ftp server

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Security problems in bind Advisory ID: RHSA-1999:054-01 Issue date: 1999-11-11 Updated on: 1999-11-11 Keywords: bind named NXT solinger fdmax Cross references: http://www.isc.org/products/BIND/bind-security-19991108.html

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New Samba packages for Red Hat Linux 4.2, 5.2, 6.0 Advisory ID: RHSA-1999:022-01 Issue date: 1999-07-22 Updated on: Keywords: samba smbd nmbd security Cross references: --------------------------------------------------------------------- 1. Topic: Samba 2.0.5a has

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New samba packages for Red Hat Linux 4.2, 5.2, 6.0 Advisory ID: RHSA-1999:022-02 Issue date: 1999-07-22 Updated on: 1999-07-23 Keywords: samba smbd nmbd security Cross references: --------------------------------------------------------------------- Revision History:

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New samba packages for Red Hat Linux 4.2, 5.2, 6.0 Advisory ID: RHSA-1999:022-02 Issue date: 1999-07-22 Updated on: 1999-07-29 Keywords: samba smbd nmbd security Cross references: --------------------------------------------------------------------- Revision History:

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New openldap packages. Advisory ID: RHSA-2000:012-05 Issue date: 2000-04-13 Updated on: 2000-04-21 Product: Red Hat Linux Keywords: openldap startup symlink overwrite denial Cross

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: ircii buffer overflow Advisory ID: RHSA-2000:008-01 Issue date: 2000-03-29 Updated on: 2000-03-29 Product: Red Hat Linux Keywords: N/A Cross references: ircii 4.4M buffer dcc

--------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: New lpr packages available Advisory ID: RHSA-2000:002-01 Issue date: 2000-01-07 Updated on: 2000-01-07 Keywords: lpr lpd DNS sendmail Cross references: --------------------------------------------------------------------- 1. Topic: New lpr packages are available to fix two

-----BEGIN PGP SIGNED MESSAGE----- - --------------------------------------------------------------------- Red Hat, Inc. Security Advisory Synopsis: Buffer overrun in amd Advisory ID: RHSA-1999:032-01 Issue date: 1999-08-30 Keywords: amd am-utils buffer overflow remote exploit - --------------------------------------------------------------------- 1. Topic: New packages of am-utils