Date: Sat, 12 Jan 2002 13:35:45 -0800 (PST)
From: Slackware Security Team <security@slackware.com>
To: slackware-security@slackware.com
Subject: [slackware-security] Pine update fixes insecure URL-handling



Pine 4.44 packages are now available to fix a problem with insecure URL
handling.

Here's the information from the Slackware 8.0 ChangeLog:

Sat Jan 12 13:05:33 PST 2002
patches/packages/pine.tgz:  Fix a security problem with pine by upgrading
  to pine4.44.

  More details from the Pine Announcement List:
    This note is to announce the availability of the Pine Message System
    version 4.44. The purpose of this release is to fix a security
    bug with the treatment of quotes in the URL-handling code. The bug
    allows a malicious sender to embed commands in a URL. This bug is
    present in all versions of UNIX Pine.


We recommend upgrading Pine as soon as possible.


WHERE TO FIND THE NEW PACKAGE:
------------------------------

Updated pine package for Slackware 8.0: 
 


MD5 SIGNATURE:
--------------

Here is the md5sum for the package:

9511772027b579c1c2c542b4bb0d85da  pine.tgz


INSTALLATION INSTRUCTIONS:
--------------------------

Simply upgrade as root:

   # upgradepkg pine.tgz


Remember, it's also a good idea to backup configuration files before
upgrading packages.

- Slackware Linux Security Team
   The Slackware Linux Project

Slackware: 'Pine' update fixes insecure URL-handling

January 13, 2002
Pine 4.44 packages are now available to fix a problem with insecure URLhandling.

Summary

Where Find New Packages

MD5 Signatures

Severity
Date: Sat, 12 Jan 2002 13:35:45 -0800 (PST) From: Slackware Security Team <security@slackware.com> To: slackware-security@slackware.com Subject: [slackware-security] Pine update fixes insecure URL-handling
Pine 4.44 packages are now available to fix a problem with insecure URL handling.
Here's the information from the Slackware 8.0 ChangeLog:
Sat Jan 12 13:05:33 PST 2002 patches/packages/pine.tgz: Fix a security problem with pine by upgrading to pine4.44.
More details from the Pine Announcement List: This note is to announce the availability of the Pine Message System version 4.44. The purpose of this release is to fix a security bug with the treatment of quotes in the URL-handling code. The bug allows a malicious sender to embed commands in a URL. This bug is present in all versions of UNIX Pine.
We recommend upgrading Pine as soon as possible.
WHERE TO FIND THE NEW PACKAGE: ------------------------------
Updated pine package for Slackware 8.0:
MD5 SIGNATURE: --------------
Here is the md5sum for the package:
9511772027b579c1c2c542b4bb0d85da pine.tgz
INSTALLATION INSTRUCTIONS: --------------------------
Simply upgrade as root:
# upgradepkg pine.tgz
Remember, it's also a good idea to backup configuration files before upgrading packages.
- Slackware Linux Security Team The Slackware Linux Project

Installation Instructions

Related News

24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved