COMMAND

	lpd

SYSTEMS AFFECTED

	OpenBSD 3.0 and prior versions

PROBLEM

	Todd C. Miller reported following, initialy found by  Sebastian  Krahmer
	of SuSE :
	

	A security issue exists with lpd (the  line  printer  daemon)  that  may
	allow an attacker to create arbitrary new files in the  root  directory.
	Only  machines  with  line  printer  access  (ie:   listed   in   either
	/etc/hosts.lpd or /etc/hosts.equiv) may be used to mount an  attack  and
	the attacker must have root access on  the  machine.  OpenBSD  does  not
	start lpd in the default installation.

SOLUTION

	A patch exists to fix the problem:
	

	For OpenBSD-2.9 (as well as OpenBSD-2.8):
	

	    ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.9/common/017_lpd.patch

	

	

	For OpenBSD-3.0
	

	    ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.0/common/008_lpd.patch