COMMAND

    netstd

SYSTEMS AFFECTED

    Debian Linux

PROBLEM

    Following is based  on Debian info.   Debian has received  reports
    that the  netstd suffered  from two  buffer overflows.   The first
    problem is  an exploitable  buffer overflow  in the  bootp server.
    The second problem is an overflow in the FTP client.

SOLUTION

    Both  problems  are  fixed  in  a  new  netstd  package,   version
    3.07-2hamm.4.   His version  of Debian  was released  only for the
    Intel and the Motorola 680x0 architecture.  Debian GNU/Linux 2.0r5
    has this fixed (netstd_3.07-2hamm.5.deb)

    Source archives:

        ftp://ftp.debian.org/debian/dists/stable/main/source/net/netstd_3.07.orig.tar.gz
        ftp://ftp.debian.org/debian/dists/proposed-updates/netstd_3.07-2hamm.4.diff.gz
        ftp://ftp.debian.org/debian/dists/proposed-updates/netstd_3.07-2hamm.4.dsc

    Intel architecture:

        ftp://ftp.debian.org/debian/dists/proposed-updates/netstd_3.07-2hamm.4_i386.deb

    Motorola 680x0 architecture:

        ftp://ftp.debian.org/debian/dists/proposed-updates/netstd_3.07-2hamm.4_m68k.deb

    These files will be moved soon into:

        ftp://ftp.debian.org/debian/dists/hamm/*/binary-$arch/