A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly. For the stable distribution (woody) this problem has been fixed in version 2000.05.07-4.3. For the old stable distribution (potato) this problem has been fixed in version 0.48-1.1. For the unstable distribution (sid) this problem has been fixed in version 2000.05.07-4.20. We recommend that you upgrade your lpr package immediately.
A buffer overflow has been discovered in lpr, a BSD lpr/lpd line printer spooling system. This problem can be exploited by a local user to gain root privileges, even if the printer system is set up properly.
For the stable distribution (woody) this problem has been fixed in version 2000.05.07-4.3.
For the old stable distribution (potato) this problem has been fixed in version 0.48-1.1.
For the unstable distribution (sid) this problem has been fixed in version 2000.05.07-4.20.
We recommend that you upgrade your lpr package immediately.
MD5 checksums of the listed files are available in the original advisory.
MD5 checksums of the listed files are available in the revised advisory.