Virtual Private Server (VPS) Hosting provided by Central Point Networking cpnllc.com
For some reason, the "Nodelist" and "Recent Callers" features are not working.
| Sysop: | Ray Quinn |
|---|---|
| Location: | Visalia, CA |
| Users: | 60 |
| Nodes: | 10 (0 / 10) |
| Uptime: | 59:46:57 |
| Calls: | 12 |
| Files: | 12,938 |
| Messages: | 99,059 |
Check out the US 99 menu above for links to information about US Highway 99, after which the US 99 BBS is named.
Be sure to click on the Amateur Radio menu item above for packet BBSes, packet software, packet organizations, as well as packet how-to's. Also included is links to local and some not-so-local Amateur Radio Clubs.
====================================================================== ==== Ubuntu Security Notice USN-7349-1 March 12, 2025
rar vulnerabilities ====================================================================== ====
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in RAR.
Software Description:
- rar: Archiver for .rar files
Details:
It was discovered that RAR incorrectly handled certain paths. If a
user or automated system were tricked into extracting a specially
crafted RAR archive, a remote attacker could possibly use this issue
to write arbitrary files outside of the targeted directory. (CVE-2022-30333)
It was discovered that RAR incorrectly handled certain recovery
volumes. If a user or automated system were tricked into extracting a specially crafted RAR archive, a remote attacker could possibly use
this issue to execute arbitrary code. (CVE-2023-40477)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04 LTS
rar 2:6.23-1~22.04.1
Ubuntu 20.04 LTS
rar 2:6.23-1~20.04.1
This update uses a new upstream release, which includes additional bug fixes. In general, a standard system update will make all the
necessary changes.
References:
https://ubuntu.com/security/notices/USN-7349-1
CVE-2022-30333, CVE-2023-40477
Package Information:
https://launchpad.net/ubuntu/+source/rar/2:6.23-1~22.04.1
https://launchpad.net/ubuntu/+source/rar/2:6.23-1~20.04.1
--- BBBS/LiR v4.10 Toy-7
* Origin: TCOB1: https/binkd/telnet binkd.rima.ie (2:263/1)
Several security issues were fixed in RAR.
Several security issues were fixed in RAR.
I'm a registered user of RAR but I quit using it for BBS files since
it's not backwards-compatible. I was using the open-source ARJ as I
find it to be more capable than RAR or ZIP, but enough perople have bitched at me about using ARJ I'm just going to use Info-Zip's ZIP. I don't really like using ZIP as it was originally based on a stolen
copy of the source code to ARC.
Sean Rima wrote to Sean Dennis <=-
I am also a registered user, but don't use it. Not even sure if the keyfile is used under Linux. Never knew that about info-zip
I am also a registered user, but don't use it. Not even sure if
the keyfile is used under Linux. Never knew that about info-zip
Oh, it's the actual ZIP code by Phil Katz. If anything, Info-ZIP is
its original code based on reverse engineering ZIP packets.
Here's one of the videos I watched on YT that explains how ZIP came to
be and how the BBS community embraced it based on Katz's lies: https://www.youtube.com/watch?v=lu7sY1LOWiI
I also did some fact-checking of my own and sadly, the video seems to
be spot on.