---------------------------------------------------------------------------- Debian Security Advisory DSA-036-1 security@debian.org http://www.debian.org/security/ Martin Schulze March 7, 2001 ----------------------------------------------------------------------------
Package : mc Vulnerability : random program execution Type : local Debian-specific: no Fixed version : 4.5.42-11.potato.6
It has been reported that a local user could tweak Midnight Commander of another user into executing a random program under the user id of the person running Midnight Commander. This behaviour has been fixed by Andrew V. Samoilov.
We recommend you upgrade your mc package.
wget url will fetch the file for you dpkg -i file.deb will install the referenced file.
You may use an automated update by adding the resources from the footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato ------------------------------------
Potato was released for the alpha, arm, i386, m68k, powerpc and sparc architectures.