Mandrake: xemacs vulnerability
Posted by LinuxSecurity.com Team   
Mandrake Under some circumstances, users are able to snoop on other users' keystrokes.
-----------------------------------------------

        Linux-Mandrake Security Update

-----------------------------------------------

Package: xemacs

Problem: from the Caldera advisory : under some circumstances, users
are able to snoop on other users' keystrokes. This is a serious
problems if you use modules that require e.g. input of passwords, such
as MailCrypt. Please upgrade to:

2068421c1100bcbfe92874847cd34905  7.0/RPMS/xemacs-21.1.9-7mdk.i586.rpm
9816bc82b4c4122a1b731cd801f889bf 
7.0/RPMS/xemacs-el-21.1.9-7mdk.i586.rpm
e7dd6da4aeae83d22e643d2ef462736b 
7.0/RPMS/xemacs-extras-21.1.9-7mdk.i586.rpm
98b910a764151c6d87caca571f1ba82b 
7.0/RPMS/xemacs-info-21.1.9-7mdk.i586.rpm
71dff65df4a29f2d9211a58a9b0b10f9 
7.0/RPMS/xemacs-mule-21.1.9-7mdk.i586.rpm
1cc69e20eb911c190eed51be3f32e922  7.0/SRPMS/xemacs-21.1.9-7mdk.src.rpm

Affected versions: 7.0

To upgrade automatically, use « MandrakeUpdate ». If want to upgrade
manually, download the updated package from one of our FTP server
mirrors and uprade with "rpm -Uvh package_name". All mirrors are
listed on http://www.mandrake.com/en/ftp.php3 Updated packages are
available in the "updates/" directory.

For example, if you are looking for an updated RPM package for
Mandrake 7.0, look for it in: updates/7.0/RPMS/

Note: we give the md5 sum for each package. It lets you check the
integrity of the downloaded package by running the md5sum command on
the package ("md5sum package.rpm").