[<prev] [next>] [day] [month] [year] [list]
Message-ID: <E1FH7K4-00055D-KZ@mercury.mandriva.com>
Date: Wed, 8 Mar 2006 15:40:00 -0700
From: security@...driva.com
To: bugtraq@...urityfocus.com
Subject: [ MDKSA-2006:054 ] - Updated kdegraphics packages fixes overflow vulnerabilities
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDKSA-2006:054
http://www.mandriva.com/security/
_______________________________________________________________________
Package : kdegraphics
Date : March 8, 2006
Affected: 2006.0, Corporate 3.0
_______________________________________________________________________
Problem Description:
Marcelo Ricardo Leitner discovered the official published kpdf
patches for several previous xpdf vulnerabilities were lacking some
hunks published by upstream xpdf. As a result, kpdf is still
vulnerable to certain carefully crafted pdf files.
Although previous updates captured most of these changes, this new
update picks up some of the missing patches.
The updated packages have been patched to correct these problems.
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0746
_______________________________________________________________________
Updated Packages:
Mandriva Linux 2006.0:
dc23d7a2c2799b07f8ca1a55e1ca51c3 2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.i586.rpm
95ff255170962f2857421a7d03e73e0d 2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.i586.rpm
474020c1b3d7f2ff0377b7493d4fe015 2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.i586.rpm
3e677eafc18a927eb4b7005ebdc220c4 2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.i586.rpm
10215d111099353bb1029691ec64ecd1 2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.i586.rpm
bc6eed827d7271f6f0893866de8e58fe 2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.i586.rpm
57099b9e0d3984f7270cb651ea1a04e4 2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.i586.rpm
13e05c162914feb2c92919b83d4f87e4 2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.i586.rpm
aae519f69b4a99b8aa6f712db6bdfc8a 2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.i586.rpm
ba4fbb4a4c9681a636a3bf5143d5eb0a 2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.i586.rpm
9ee64f4bb02478bef90f3236891ab21d 2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
5ea03b32b80e136231c29b5b052bf879 2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.i586.rpm
84bc05495dffbdb278b2fe59bb0b0b4c 2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.i586.rpm
323bd1b223e4714dd421aa45f2d5bc15 2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.i586.rpm
88e0c206e28710ce025f1d4b0be51194 2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
cf495fa452779ea71d44b8d08fae9e4a 2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.i586.rpm
84b5fea1f30a37c7b6554d238d9969b8 2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
b96a36a001c57a9e8af8c1e462cc1728 2006.0/RPMS/libkdegraphics0-common-3.4.2-11.6.20060mdk.i586.rpm
0dacf50541280f76239aefc6a85eaea2 2006.0/RPMS/libkdegraphics0-common-devel-3.4.2-11.6.20060mdk.i586.rpm
750c8f0a555b6d78d75cbdfbdbcb99e2 2006.0/RPMS/libkdegraphics0-kghostview-3.4.2-11.6.20060mdk.i586.rpm
fed6e610a76e0a6e07cbe5d3267d2949 2006.0/RPMS/libkdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.i586.rpm
f8a04d9c6ffcd78195a1e01e752014d9 2006.0/RPMS/libkdegraphics0-kooka-3.4.2-11.6.20060mdk.i586.rpm
52efbc50319331d5e60eded62a227293 2006.0/RPMS/libkdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.i586.rpm
0c4ff0dfe710a242c8ca60f991644f4c 2006.0/RPMS/libkdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
019bc2f486450bd63b61f856bbf69867 2006.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.i586.rpm
bd99611424c15e5858475f2103eba259 2006.0/RPMS/libkdegraphics0-ksvg-3.4.2-11.6.20060mdk.i586.rpm
bf7dcc4cd4810b59c93dd528cbcd0007 2006.0/RPMS/libkdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.i586.rpm
6d07da96dc1aa9b47b3836a21c34ba81 2006.0/RPMS/libkdegraphics0-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
df357ed8a9ebeb4bc6b6d643ec3344ee 2006.0/RPMS/libkdegraphics0-kview-3.4.2-11.6.20060mdk.i586.rpm
cfc0e76d0f28b1fda5020844b7310eb3 2006.0/RPMS/libkdegraphics0-kview-devel-3.4.2-11.6.20060mdk.i586.rpm
262df8bca246f0a11f8f48c68d0def2a 2006.0/RPMS/libkdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
490e87860d08949dcfba640aebb64e9e 2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm
Mandriva Linux 2006.0/X86_64:
e451ef694d51102e3ea632ad2acc6275 x86_64/2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.x86_64.rpm
9d7fd55d06f15e42b52e47db83103b81 x86_64/2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.x86_64.rpm
e22588e10d162a4b9ab6f22f394512f1 x86_64/2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.x86_64.rpm
f1a59958e73e439e3484926c5ce8485b x86_64/2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.x86_64.rpm
584190d5ee8feda810cf82b13a5d9b2b x86_64/2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
8c0dbb217f3ec91be0b42ab49e5df624 x86_64/2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.x86_64.rpm
55e7b90d0c134b346d9694219d55d4c3 x86_64/2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.x86_64.rpm
935e8c36e8ee328915bf274df8bba219 x86_64/2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
15b6922841998a8befa0c03d71a9d697 x86_64/2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.x86_64.rpm
d43c63a5a7d972b7fecad3bda9699661 x86_64/2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.x86_64.rpm
73ef99e1c249306c55a0537c387fdf6b x86_64/2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
e1eb7688e3bb5db74e867a48cd1f3fd3 x86_64/2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.x86_64.rpm
f161cc3dda887f10fcf488ead0ff3659 x86_64/2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.x86_64.rpm
129e7bf9db533f7428fa84e5d4d57a40 x86_64/2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
1a315ee0d22be616186a7ff9378d7ccd x86_64/2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
cceffb28070069b6a63b4380ceea13bc x86_64/2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fa6d629d828a564a912f378f6b5fd8ba x86_64/2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
44bcb009f741ba86d85cc7319a51c349 x86_64/2006.0/RPMS/lib64kdegraphics0-common-3.4.2-11.6.20060mdk.x86_64.rpm
232089b2cff996ebfafec428e5b7970d x86_64/2006.0/RPMS/lib64kdegraphics0-common-devel-3.4.2-11.6.20060mdk.x86_64.rpm
1f6ed874be34c557f97296389969b70e x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
84d92f82eb9f22abea7884dd548bcd03 x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
bdf205140076f24147247b06a4cd77b8 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
1d54c3557c2d39347845645dd5b0a494 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.x86_64.rpm
3883f32ec9c35957dbc02bd37af36669 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
10d49dd6216817e421c7f24018bb5f67 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.x86_64.rpm
dcd8aa2cef36a42f1d280c606cbf99b6 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
81b12ebf82ac906e1382d07e56c105f3 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.x86_64.rpm
49524b942ff8d8268bd06a0f0e107085 x86_64/2006.0/RPMS/lib64kdegraphics0-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
dcffebae88d6429403dc7fe63cac6c9d x86_64/2006.0/RPMS/lib64kdegraphics0-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fc74f36474838a66dc5308fe9e02e3f6 x86_64/2006.0/RPMS/lib64kdegraphics0-kview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
01843ddf9e3b76f5cc3e01524cd0286e x86_64/2006.0/RPMS/lib64kdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
490e87860d08949dcfba640aebb64e9e x86_64/2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm
Corporate 3.0:
51e0606ac280e0cc886c72dffe6824d1 corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.i586.rpm
9601ca08dd6eda7c98308182550e8248 corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.i586.rpm
ca58e5e269b245bdc946d9b9360134c9 corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.i586.rpm
9e28cb256b4e12cd3ca3f9bda5c0520a corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.i586.rpm
1b9d8e9f8d628034b4acae94fad7bc7a corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.i586.rpm
6005e3a0c5275657196a896cbc4f303f corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.i586.rpm
6418633ded8703d8414098ab4ae44f42 corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.i586.rpm
27cbec1b107839d628bdd8351e5d7949 corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.i586.rpm
be303920699e02c4222e3dc4c4c4f70f corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.i586.rpm
6c36c9c3c2c1164e082fa21bcb22f898 corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
fd676144c8c91bfa2fc815d74d6d06c4 corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.i586.rpm
c70efb5c20a0210ebadd304ac33084ed corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.i586.rpm
4802c5c4d71c97cb580d1abfa8b53e62 corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.i586.rpm
41c26fcd50da8d743824cbf02f951659 corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.i586.rpm
3eda368d71099e6a8ed7862c1d047cdc corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.i586.rpm
eefc87854e4da33c8e5cc72d1f4247bc corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
7d97dde05898b3c4cc043ce004b99fee corporate/3.0/RPMS/libkdegraphics0-common-3.2-15.11.C30mdk.i586.rpm
a046dae0c8de2befc845bd9b59b90f09 corporate/3.0/RPMS/libkdegraphics0-common-devel-3.2-15.11.C30mdk.i586.rpm
176537ec9600922a7b9139ddeb6079dd corporate/3.0/RPMS/libkdegraphics0-kooka-3.2-15.11.C30mdk.i586.rpm
c431ca440ccda135872614b568f14891 corporate/3.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.11.C30mdk.i586.rpm
2a202d58fa292c12fd1b9930bae61884 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
43731a73ae3cf3907bff942bfdcf4273 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.i586.rpm
e9dfd9364a1ae87e1c693e860fab291e corporate/3.0/RPMS/libkdegraphics0-ksvg-3.2-15.11.C30mdk.i586.rpm
cc01418cec4f0083121b3bc991bdefdf corporate/3.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.11.C30mdk.i586.rpm
cfc7b4529602c70a182b21c54299a2d8 corporate/3.0/RPMS/libkdegraphics0-kuickshow-3.2-15.11.C30mdk.i586.rpm
eba181f9a600f705fc98e60f6f7ac442 corporate/3.0/RPMS/libkdegraphics0-kview-3.2-15.11.C30mdk.i586.rpm
3827091a0c824a380ce0646346187b44 corporate/3.0/RPMS/libkdegraphics0-kview-devel-3.2-15.11.C30mdk.i586.rpm
9a49711ad498f9b75240dae5123cdaef corporate/3.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
8b920b69894838d7d88e94ab5c9b1e2c corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm
Corporate 3.0/X86_64:
5026cabe3d75dd58603ed3802189facf x86_64/corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.x86_64.rpm
01caa05305add9c1c98ec71b0ae47aeb x86_64/corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.x86_64.rpm
e5cfd1891c687c2a21c07e1b13a3a9e7 x86_64/corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.x86_64.rpm
30065589222058a50de2c18ba959c630 x86_64/corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.x86_64.rpm
12f6066eb7232f7c6f31e1b60be92503 x86_64/corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.x86_64.rpm
ee70269eb23ff8847432b598b963eeaa x86_64/corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.x86_64.rpm
aa80daf0b9a45ae487ff2343f801c94a x86_64/corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.x86_64.rpm
fba3494001ca73a2b091f1d97542fe73 x86_64/corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.x86_64.rpm
83595fb2da64f3558b6a42686bb55a50 x86_64/corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.x86_64.rpm
6dd9a9afbc380d8c0d6d90da147bb8d6 x86_64/corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
9df4059d563ca6d5aed4d97174bc4063 x86_64/corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.x86_64.rpm
583ebf769f9b683362b6a761ae6d58bf x86_64/corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.x86_64.rpm
e8cbe2fb6f56f64109de990068090e1f x86_64/corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.x86_64.rpm
c0734112d40ad034d4f8ac3c731abc2e x86_64/corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
860c3df07ce03e3c18f270ad93aec61b x86_64/corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.x86_64.rpm
ca43b8e1a0dab676968862d17497dffb x86_64/corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
ad5d0dcfa14588b362e324e19d2330a7 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-3.2-15.11.C30mdk.x86_64.rpm
fbe466690d4f80aa96dbe69d751f8ac2 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-devel-3.2-15.11.C30mdk.x86_64.rpm
c370cba72fdd6d01f2757088753d2760 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-3.2-15.11.C30mdk.x86_64.rpm
7dbcdbc9aa9818985fbab842bf68cedd x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-devel-3.2-15.11.C30mdk.x86_64.rpm
dabee7aa3c28e3b5831463325204c958 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
69257212b2952f9cefa8612973349329 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.x86_64.rpm
4c25457183c583888000b8752e706715 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-3.2-15.11.C30mdk.x86_64.rpm
be5380637967d4b977b9900939c34cd4 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-devel-3.2-15.11.C30mdk.x86_64.rpm
54a37b14f7939bdc210a28e50ef1211a x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
612d43095d606bf61f5ee11a3bd6976c x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-3.2-15.11.C30mdk.x86_64.rpm
f28f0bd9630345cfb11c6a2004108988 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-devel-3.2-15.11.C30mdk.x86_64.rpm
40a4b7aa13ef681c3498bddb68f9e0f9 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
8b920b69894838d7d88e94ab5c9b1e2c x86_64/corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm
_______________________________________________________________________
To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
_______________________________________________________________________
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFEDzEXmqjQ0CJFipgRAgwtAKDWpac+I0HvICUg/d8xGnG7P+xC6gCgsmwZ
ndzXdc2NM4ccSeUxPnHVHGc=
=ASxO
-----END PGP SIGNATURE-----
Powered by blists - more mailing lists