-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

##
## Patch description of patch 011af757e120a14a2fae7dc271470bac
##

Kind: security

Shortdescription.english:  Security update for ncpfs

Longdescription.english:

   Applies to

   Package: ncpfs,ncpfs-devel
   Product(s):

   Release: 20050125
   Obsoletes: 1ff6e6ba79e765dbf4515f2a5380cdd6

  Indications

   Everyone should update.

  Contraindications

   None.

  Problem description

   This update fixes the following security issues:
     * a buffer overflow in ncplogin and ncpmap. Both
       applications are installed setuid-root on SuSE Linux,
       but only users of group 'trusted' are allowed to execute
       the binaries. If successfully exploited this
       vulnerabilities could be used to gain local root access.
     * missing file permisions checks for ~/.nwclient
       (CAN-2005-0013)
     * a buffer overflow in ncplogin (CAN-2005-0014)

   This update also fixes the following non-security issues:
     * On SLES9 translations for several languages have been
       added

  Solution

   Please install the updates provided at the location noted
   below.

  Installation notes

   This update is provided as an RPM package that can easily be
   installed onto a running system by using this command:
rpm -Fvh ncpfs.rpm ncpfs-devel.rpm
Hsilgne.noitpircsedgnol:

Size: 884


MinYaST1Version:
MinYaST2Version:
UpdateOnlyInstalled: true

Packages:
##
## -----> ncpfs <-----
##
Filename: ncpfs.rpm
Label: Tools for accessing Novell filesystems
Series: i586
Size: 2354646 742293
PatchRpmBasedOn: 2.2.0.19-118 2.2.0.19-140 2.2.0.19-140 2.2.0.19-42
PatchRpmSize: 2354646 614969
Buildtime: 1106602483
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Productivity/Networking/Novell
Copyright: GPL
AuthorName: Volker Lendecke <lendecke@namu01.gwdg.de>
AuthorAddress:
Version: 2.2.0.19-143
StartCommand:
Obsoletes:
Requires: aaa_base fillup fileutils /bin/sh /bin/sh ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libdl.so.2 libncp.so.2.3 libncp.so.2.3(NCPFS.2.2.0.17) libncp.so.2.3(NCPFS.2.2.0.18) libncp.so.2.3(NCPFS.INTERNAL) libncp.so.2.3(NCPFS_2.2.0.19) libpam.so.0 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: libncp.so.2.3   libncp.so.2.3(NCPFS.2.2.0.17)   libncp.so.2.3(NCPFS.2.2.0.18)   libncp.so.2.3(NCPFS.INTERNAL)   libncp.so.2.3(NCPFS.MPILIB)   libncp.so.2.3(NCPFS_2.2.0.19)   libncp.so.2.3(libncp.so.2.3)   pam_ncp_auth.so
##
## -----> ncpfs-devel <-----
##
Filename: ncpfs-devel.rpm
Label: Tools for accessing Novell filesystems
Series: i586
Size: 576468 163325
PatchRpmBasedOn: 2.2.0.19-140 2.2.0.19-140 2.2.0.19-42
PatchRpmSize: 576468 135420
Buildtime: 1106602483
DepAND:
DepOR:
DepExcl:
Flag:
Category:
RpmGroup: Development/Libraries/C and C++
Copyright: GPL
AuthorName: Volker Lendecke <lendecke@namu01.gwdg.de>
AuthorAddress:
Version: 2.2.0.19-143
StartCommand:
Obsoletes:
Requires: ncpfs = 2.2.0.19 rpmlib(PayloadIsBzip2) <= 3.0.5-1
Provides: 
Segakcap:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQFB+kt4qE7a6JyACsoRAhYcAKCAflZ+Spw+DOSVtJDj6CP4nnefYgCf
Q+yj028Ol/t+Fb5jPXtzOjZvUCA=
=Ymwh
-----END PGP SIGNATURE-----