--------------------------------------------------------------------------
  Turbolinux Security Advisory TLSA-2002-42
  http://www/turbolinux.co.jp/security/
                                            security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Mod_python

Vulnerability of publisher handler

   Release date : 2002-07-23

   Solution: package : mod_python-2.7.8-1

   Problem
    Vulnerability exists in publisher handler of the mod_python.
    There is a possibility of being accessed by unauthorized user.

   Solution:
    Please verify version and execute the command below.

    # rpm -qa | grep package name

    When problem corresponds, please download the update package. Do the update  by the using the command below.
    Furthermore, please execute the package number which corresponds to your version number. Without starting a new paragraph, please enter the "\ " Bunchu sign.

    Execution example
    ---------------------------------------------------------------------
    # rpm -Fvh Package-1.0.0-1.i586.rpm \
    Package-doc-1.0.0-1.i586.rpm \
    Package-devel-1.0.0-1.i586.rpm

    The case where rpm command is executed, please enter as follows on the command line.

    # rpm -Fvh package-1.0.0-1.i586.rpm package-doc-1.0.0-1.i586.rpm package-devel-1.0.0-1.i586.rpm
    ---------------------------------------------------------------------

    < Turbolinux 8 Workstation >
    # rpm -Fvh mod_python-2.7.8-1

    < Turbolinux 7 Server >
    < Turbolinux 7 Workstation >
    < Turbolinux Server 6.5 >
    < Turbolinux Advanced Server 6 >
    < Turbolinux Server 6.1 >
    < Turbolinux Workstation 6.0 >

    * If the mod_python package is not being recorded, update is not necessary.

Package updates: http://www.turbolinux.co.jp/update/