Skip to navigation

Security Advisory Updated ispell packages available for Red Hat Linux 5.2 and 6.2

Advisory: RHSA-2001:074-03
Type: Security Advisory
Severity: N/A
Issued on: 2001-05-30
Last updated on: 2001-06-04
Affected Products: Red Hat Linux 6.2
CVEs (cve.mitre.org): CVE-2001-1276

Details

The ispell program uses mktemp() to open temporary files - this makes it
vulnerable to symlink attacks.

The ispell program uses mktemp() to open temporary files - this makes it
vulnerable to symlink attacks.

This version now uses mkstemp(), and also switches from gets() to fgets()
in two locations dealing with user input. The patches for ispell are from
OpenBSD.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains
the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Linux 6.2

SRPMS:
ftp://updates.redhat.com/rhn/repository/NULL/ispell/3.1.20-27/SRPMS/ispell-3.1.20-27.src.rpm
Missing file
    MD5: 1fb4eef6a8726c49010957dfbe5d2012
 
Alpha:
ftp://updates.redhat.com/rhn/repository/NULL/ispell/3.1.20-27/alpha/ispell-3.1.20-27.alpha.rpm
Missing file
    MD5: 38e242f1d938d4f13b1bd1dbb7f6670b
ftp://updates.redhat.com/rhn/repository/NULL/ispell-catalan/3.1.20-27/alpha/ispell-catalan-3.1.20-27.alpha.rpm
Missing file
    MD5: 61baba4f379b91e49d1534b907816856
ftp://updates.redhat.com/rhn/repository/NULL/ispell-czech/3.1.20-27/alpha/ispell-czech-3.1.20-27.alpha.rpm
Missing file
    MD5: 86ec32eb0b1d0265a5d3dca0da594911
ftp://updates.redhat.com/rhn/repository/NULL/ispell-danish/3.1.20-27/alpha/ispell-danish-3.1.20-27.alpha.rpm
Missing file
    MD5: 950c82064dc06d2afd253e0ca0aabfe2
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dicts/3.1.20-27/alpha/ispell-dicts-3.1.20-27.alpha.rpm
Missing file
    MD5: 1a9af73a5e65d8d2b3b57f09cd35e4a7
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dutch/3.1.20-27/alpha/ispell-dutch-3.1.20-27.alpha.rpm
Missing file
    MD5: 95521dab5d74e52be7f8833b33ccb8bb
ftp://updates.redhat.com/rhn/repository/NULL/ispell-esperanto/3.1.20-27/alpha/ispell-esperanto-3.1.20-27.alpha.rpm
Missing file
    MD5: c33e52eb93308ac562af0bc8e53823c3
ftp://updates.redhat.com/rhn/repository/NULL/ispell-french/3.1.20-27/alpha/ispell-french-3.1.20-27.alpha.rpm
Missing file
    MD5: d39607b341503feefe85a906f3bea7cf
ftp://updates.redhat.com/rhn/repository/NULL/ispell-german/3.1.20-27/alpha/ispell-german-3.1.20-27.alpha.rpm
Missing file
    MD5: bbc178a58b187882a6f3667d94cfd017
ftp://updates.redhat.com/rhn/repository/NULL/ispell-greek/3.1.20-27/alpha/ispell-greek-3.1.20-27.alpha.rpm
Missing file
    MD5: 96f16fd6bde60b0ab0c7d0a5e1349bbe
ftp://updates.redhat.com/rhn/repository/NULL/ispell-italian/3.1.20-27/alpha/ispell-italian-3.1.20-27.alpha.rpm
Missing file
    MD5: 398b9779cf934a3ab239f04366c3e89d
ftp://updates.redhat.com/rhn/repository/NULL/ispell-norwegian/3.1.20-27/alpha/ispell-norwegian-3.1.20-27.alpha.rpm
Missing file
    MD5: e5a12f36b8798c8d3712096fc11a225d
ftp://updates.redhat.com/rhn/repository/NULL/ispell-polish/3.1.20-27/alpha/ispell-polish-3.1.20-27.alpha.rpm
Missing file
    MD5: ec1e5b9887dee0f1b297d9b3509ea726
ftp://updates.redhat.com/rhn/repository/NULL/ispell-portuguese/3.1.20-27/alpha/ispell-portuguese-3.1.20-27.alpha.rpm
Missing file
    MD5: d3056b54a04e4fd89b705e157bb41322
ftp://updates.redhat.com/rhn/repository/NULL/ispell-russian/3.1.20-27/alpha/ispell-russian-3.1.20-27.alpha.rpm
Missing file
    MD5: e6ce09aed82b99ea4c39dc28f38b60a2
ftp://updates.redhat.com/rhn/repository/NULL/ispell-spanish/3.1.20-27/alpha/ispell-spanish-3.1.20-27.alpha.rpm
Missing file
    MD5: 8e37c904a358785754f90bf1bba3682a
ftp://updates.redhat.com/rhn/repository/NULL/ispell-swedish/3.1.20-27/alpha/ispell-swedish-3.1.20-27.alpha.rpm
Missing file
    MD5: 9cdfef72a057d45592e6f8a1ee1e92bc
 
IA-32:
ftp://updates.redhat.com/rhn/repository/NULL/ispell/3.1.20-27/i386/ispell-3.1.20-27.i386.rpm
Missing file
    MD5: d044fb42d87d6d6a584c7b4b8076e870
ftp://updates.redhat.com/rhn/repository/NULL/ispell-catalan/3.1.20-27/i386/ispell-catalan-3.1.20-27.i386.rpm
Missing file
    MD5: 2b42a57b0b7fce52267f51a883caa1ae
ftp://updates.redhat.com/rhn/repository/NULL/ispell-czech/3.1.20-27/i386/ispell-czech-3.1.20-27.i386.rpm
Missing file
    MD5: e52f616a3995c1af99c3e09a078d6bfe
ftp://updates.redhat.com/rhn/repository/NULL/ispell-danish/3.1.20-27/i386/ispell-danish-3.1.20-27.i386.rpm
Missing file
    MD5: d85cf08f939d24bdf492f11f0f6f2c1d
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dicts/3.1.20-27/i386/ispell-dicts-3.1.20-27.i386.rpm
Missing file
    MD5: bc7942c5122acd9fb6b27fe437110b76
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dutch/3.1.20-27/i386/ispell-dutch-3.1.20-27.i386.rpm
Missing file
    MD5: 5b4af1d981c13ba828b925194eec87a5
ftp://updates.redhat.com/rhn/repository/NULL/ispell-esperanto/3.1.20-27/i386/ispell-esperanto-3.1.20-27.i386.rpm
Missing file
    MD5: b925968cce19d612266c2df963979078
ftp://updates.redhat.com/rhn/repository/NULL/ispell-french/3.1.20-27/i386/ispell-french-3.1.20-27.i386.rpm
Missing file
    MD5: 95430e9519931d16f3632e164ebf4e2d
ftp://updates.redhat.com/rhn/repository/NULL/ispell-german/3.1.20-27/i386/ispell-german-3.1.20-27.i386.rpm
Missing file
    MD5: 58cc680b5dd29dc82f50dd7e99c3fb29
ftp://updates.redhat.com/rhn/repository/NULL/ispell-greek/3.1.20-27/i386/ispell-greek-3.1.20-27.i386.rpm
Missing file
    MD5: 637822c0a0e516c89d23e2232793e6ce
ftp://updates.redhat.com/rhn/repository/NULL/ispell-italian/3.1.20-27/i386/ispell-italian-3.1.20-27.i386.rpm
Missing file
    MD5: c3d9b815b3319d8231477cf34064b81a
ftp://updates.redhat.com/rhn/repository/NULL/ispell-norwegian/3.1.20-27/i386/ispell-norwegian-3.1.20-27.i386.rpm
Missing file
    MD5: 9c98608d1c98c03a208614c550a56f46
ftp://updates.redhat.com/rhn/repository/NULL/ispell-polish/3.1.20-27/i386/ispell-polish-3.1.20-27.i386.rpm
Missing file
    MD5: e8953283f2e106d524afdc00649a6f1a
ftp://updates.redhat.com/rhn/repository/NULL/ispell-portuguese/3.1.20-27/i386/ispell-portuguese-3.1.20-27.i386.rpm
Missing file
    MD5: e282fa1392b7c6f5bf7278a11acf2415
ftp://updates.redhat.com/rhn/repository/NULL/ispell-russian/3.1.20-27/i386/ispell-russian-3.1.20-27.i386.rpm
Missing file
    MD5: 05fafd41cda8c9aef1fb5468f45e621e
ftp://updates.redhat.com/rhn/repository/NULL/ispell-spanish/3.1.20-27/i386/ispell-spanish-3.1.20-27.i386.rpm
Missing file
    MD5: ffebf96f2cd03f2dee759dcf7e752c21
ftp://updates.redhat.com/rhn/repository/NULL/ispell-swedish/3.1.20-27/i386/ispell-swedish-3.1.20-27.i386.rpm
Missing file
    MD5: ca954dec303d267078b3c7dabc2c7566
 
Sparc:
ftp://updates.redhat.com/rhn/repository/NULL/ispell/3.1.20-27/sparc/ispell-3.1.20-27.sparc.rpm
Missing file
    MD5: c48b20386293f86859c90c04866f48f4
ftp://updates.redhat.com/rhn/repository/NULL/ispell-catalan/3.1.20-27/sparc/ispell-catalan-3.1.20-27.sparc.rpm
Missing file
    MD5: cc00880a4b591f99a4e7a379360374e4
ftp://updates.redhat.com/rhn/repository/NULL/ispell-czech/3.1.20-27/sparc/ispell-czech-3.1.20-27.sparc.rpm
Missing file
    MD5: dd67010bf33a0c5af282a2c02a76d710
ftp://updates.redhat.com/rhn/repository/NULL/ispell-danish/3.1.20-27/sparc/ispell-danish-3.1.20-27.sparc.rpm
Missing file
    MD5: 923999cb6d7c37ddf980972832b7e222
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dicts/3.1.20-27/sparc/ispell-dicts-3.1.20-27.sparc.rpm
Missing file
    MD5: 772d32d11339c1ca5f86a4ece08bb970
ftp://updates.redhat.com/rhn/repository/NULL/ispell-dutch/3.1.20-27/sparc/ispell-dutch-3.1.20-27.sparc.rpm
Missing file
    MD5: 33ee05db155b1b30582a9dce2d6f5789
ftp://updates.redhat.com/rhn/repository/NULL/ispell-esperanto/3.1.20-27/sparc/ispell-esperanto-3.1.20-27.sparc.rpm
Missing file
    MD5: 5f53966976d5f267c417fe991fdad947
ftp://updates.redhat.com/rhn/repository/NULL/ispell-french/3.1.20-27/sparc/ispell-french-3.1.20-27.sparc.rpm
Missing file
    MD5: 2e99d25a2bd125540f22815f90a9dfcd
ftp://updates.redhat.com/rhn/repository/NULL/ispell-german/3.1.20-27/sparc/ispell-german-3.1.20-27.sparc.rpm
Missing file
    MD5: d85dbeb892461378b2e6b0728a979b2f
ftp://updates.redhat.com/rhn/repository/NULL/ispell-greek/3.1.20-27/sparc/ispell-greek-3.1.20-27.sparc.rpm
Missing file
    MD5: 429265541b9d9dd96880709178f7b38c
ftp://updates.redhat.com/rhn/repository/NULL/ispell-italian/3.1.20-27/sparc/ispell-italian-3.1.20-27.sparc.rpm
Missing file
    MD5: 305d6ada4f624037e86ef4dfea6c51ae
ftp://updates.redhat.com/rhn/repository/NULL/ispell-norwegian/3.1.20-27/sparc/ispell-norwegian-3.1.20-27.sparc.rpm
Missing file
    MD5: cf5bc6a8404f1f23c0d130f2f6a63b20
ftp://updates.redhat.com/rhn/repository/NULL/ispell-polish/3.1.20-27/sparc/ispell-polish-3.1.20-27.sparc.rpm
Missing file
    MD5: fd73afa6b8612e8ef1ff1e4c3a984595
ftp://updates.redhat.com/rhn/repository/NULL/ispell-portuguese/3.1.20-27/sparc/ispell-portuguese-3.1.20-27.sparc.rpm
Missing file
    MD5: 8c245c56d30f3200b52699bd1703e229
ftp://updates.redhat.com/rhn/repository/NULL/ispell-russian/3.1.20-27/sparc/ispell-russian-3.1.20-27.sparc.rpm
Missing file
    MD5: 25ab9d03dfd0b39a9285992212691bc2
ftp://updates.redhat.com/rhn/repository/NULL/ispell-spanish/3.1.20-27/sparc/ispell-spanish-3.1.20-27.sparc.rpm
Missing file
    MD5: 54d44ed945815373d7d4ef7992edd6e1
ftp://updates.redhat.com/rhn/repository/NULL/ispell-swedish/3.1.20-27/sparc/ispell-swedish-3.1.20-27.sparc.rpm
Missing file
    MD5: 569544a9ec16e363ae62d4d98ce82f73
 

References


Keywords

symlink


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/