Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > October 2005 > Debian - Four Security Advisories

October 2005

Debian - Four Security Advisories

ID: 00951
Ref: 889/05
Date: 27 October 2005:11:07:12
Version: 1
Title: Debian - Four Security Advisories
Abstract:
Vendors affected: Debian
Operating systems affected: Debian
Applications affected: Debian

Title
=====

Debian - Four Security Advisories:
1. New koffice packages fix arbitrary code execution [DSA 872-1]
2. New net-snmp packages fix denial of service [DSA 873-1]
3. New lynx packages fix arbitrary code execution [DSA 874-1]
4. New OpenSSL packages fix cryptographic weakness [DSA 875-1]


Detail
======

Security advisory summaries:

1. Chris Evans discovered a buffer overflow in the RTF importer of kword,
a word processor for the KDE Office Suite that can lead to the
execution of arbitrary code.

2. A security vulnerability has been found in Net-SNMP releases that
could allow a denial of service attack against Net-SNMP agent's that
have opened a stream based protocol (eg TCP but not UDP). By default,
Net-SNMP does not open a TCP port.

3. Ulf Härnhammar discovered a buffer overflow in lynx, a text-mode
browser for the WWW that can be remotely exploited. During the
handling of Asian characters when connecting to an NNTP server lynx
can be tricked to write past the boundary of a buffer which can lead
to the execution of arbitrary code.

4. Yutaka Oiwa discovered a vulnerability in the Open Secure Socket Layer
(OpenSSL) library that can allow an attacker to perform active
protocol-version rollback attacks that could lead to the use of the
weaker SSL 2.0 protocol even though both ends support SSL 3.0 or TLS
1.0.


Security advisory content follows:


1.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 872-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
October 26th, 2005 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : koffice
Vulnerability : buffer overflow
Problem type : local (remote)
Debian-specific: no
CVE ID : CAN-2005-2971
BugTraq ID : 15060
Debian Bug : 333497

Chris Evans discovered a buffer overflow in the RTF importer of kword,
a word processor for the KDE Office Suite that can lead to the
execution of arbitrary code.

The old stable distribution (woody) does not contain a kword package.

For the stable distribution (sarge) this problem has been fixed in
version 1.3.5-4.sarge.1.

For the unstable distribution (sid) this problem has been fixed in
version 1.3.5-5.

We recommend that you upgrade your kword package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.1.dsc
Size/MD5 checksum: 975 4b2ec31e755b6a4ef32176ceda6b950c
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.1.diff.gz
Size/MD5 checksum: 19092 517c5592b5143e011e65898a3896de24
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5.orig.tar.gz
Size/MD5 checksum: 13154501 2c9b45ecbf16a8c5d16ce9d2f51c2571

Architecture independent components:

http://security.debian.org/pool/updates/main/k/koffice/kivio-data_1.3.5-4.sarge.1_all.deb
Size/MD5 checksum: 623252 b885ad3d0f986431b56902d32b0fc96a
http://security.debian.org/pool/updates/main/k/koffice/koffice-data_1.3.5-4.sarge.1_all.deb
Size/MD5 checksum: 692468 2506e01a4518d875ff62579f217de69b
http://security.debian.org/pool/updates/main/k/koffice/koffice-doc-html_1.3.5-4.sarge.1_all.deb
Size/MD5 checksum: 295178 61adb8beff6ed6b1e7764a6c08ddcf68
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.1_all.deb
Size/MD5 checksum: 21378 aa73ed9954994461f6c15a3dfeb45021

Alpha architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 923074 71fe0d843ab5298477511b68a990f7b8
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 715268 0c6c93c5944be0cfdfa55ef8272db25a
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 703160 0ad19a0801e1367ddbd5a15a764d41a9
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 632758 b8d68fe9a9b6a1e8539604dbcbdb4bdd
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 154466 577a74fe1998b494a6df2a638251cca6
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 2306826 030d9a9e7c54beec5edf7ae992265031
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 59504 25aaf3235a84b589ddeb66a0cacaa449
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 2602910 e70aa6161e0a685a67a9d5780ee81d0a
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 1850724 027808cfc12971784359911e9c8cce4a
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 566386 22497039a7fda01944f411f55f3fd343
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_alpha.deb
Size/MD5 checksum: 3768572 3a36987236b9aba51ba5333c321b9345

AMD64 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 860098 2b84083a675208a339a17ba75e813ecd
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 680990 ad3aee540c79a07fb1de2369dc2a12a7
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 700452 bf0e2d2ad2653598d1fe425f18e98653
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 587954 72673faa7739abf6b1095203dfbb72e0
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 154452 a82c3cffa7bd2adf7469bce3f5a1d83b
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 2137366 448983dfdbc2828c6b0a24ff899d88e0
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 58028 e8643dfce3e1bbfd7f38da591de589fd
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 2539742 39388b1532fdafea21b2a0e33d2a930f
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 1758710 ea40fb1e0081e0a18ecc6f9d127020b7
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 557738 773e7f8eb9078481994ed12af36ab938
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_amd64.deb
Size/MD5 checksum: 3588362 31ecbe9da5f7c8c87a12e9486d32be50

ARM architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 763256 c6beab816558924a587e36a4d08f4d75
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 641094 4730b4a3c3170b4a9c159f3c391616c5
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 694164 23d89dcb83ffdae57669959afaa0e761
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 514042 131bf53ee0f4e44ec7447f22a112ef30
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 154478 46c5371a52c8ebbfda803900e075e78c
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 2022582 c1a82bf8c6472472321c0ba04fa96aee
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 56024 9dd3edfc4d54640d18774d2f226dc6be
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 2430876 1ffebb5528af8754ebe59e041b4c8ea5
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 1598162 8e78dcc8acbf417c3654400cf02c3c44
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 520776 091188b5552465a30f117a9cacadee21
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_arm.deb
Size/MD5 checksum: 3354660 80ecf0b9279b245b6a010ec867872257

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 804728 c68dfcbef06ae1a9b32b3a91b2d07a18
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 680838 09566a8d82557ff33883e9f9afcd8418
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 698374 8a5c11172b22c5bf52cce56885b35091
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 562046 2970f81d83ee784f286041e31734b8d7
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 154452 3546b20daab3c62c7c1c075b206d317c
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 2058098 b0d4b013d98d77350bf902e7a119720a
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 56756 ba3841bdc2bd88ea5f74f1352b3e6b22
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 2535242 6e0d787a96fad5ef3c7fc5ee77d9beaf
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 1727260 f9397862761c1427b47b9efc74e78efd
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 548198 9a9e7df3265c0594a50df39e12a40148
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_i386.deb
Size/MD5 checksum: 3515634 6b4d8492870ec3d06158252ed05a598e

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 1050056 76280bd7e2e63d93862ec958f93b59d1
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 800452 160ac39b3c3393987eec901a0bc487b1
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 713198 c4b6032cf84118e50b0f6c574c8b7d1b
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 720402 7708ee2c85cde5b6afe1152b6b43067b
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 154462 edcdff446272b6ab52aba523958c3d1c
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 2670964 b404bbf0f7b9ae0b9fd5479270de45ad
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 64902 7e470676bf4b3f9cfd9abf73e3b5ab13
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 2803034 1aba4972cd6ef3b96d509d0bff1c6e0e
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 2153402 b5941ca0c0cd1c011539d9db9bb2d587
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 616024 42231a14c9be5331c5ae0b648aeac189
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_ia64.deb
Size/MD5 checksum: 4182838 4211a4233bea71f69167938d75289e9e

HP Precision architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 942306 712dd61ea922308d4e69286e7e9c2888
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 716066 1020cfc975da45096654763bcf3f594e
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 706742 ff8aa2c5743550abdc776971988a531d
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 644950 f7946998d3b28e5b0dcf7414c9504cb2
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 154470 234584820c3ad1755e37d402ca0606a1
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 2443804 0e09cf7a0521f9aa14e874a32764ac15
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 61892 4d89589a2938acbfed9e555376e94626
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 2637534 71ae90269396851dddafc566b65fa4b3
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 1890026 5b6abc3ad581f0adb59b75292a8e6f26
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 580650 e4cf7d648b9a4dc36a2ed301add84933
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_hppa.deb
Size/MD5 checksum: 3798844 6827160d9a43662e8ca75583d82cad6b

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 819154 db3aa228cfe44b1921391d9d889f6a31
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 643968 f46fb9b19c17e146a9726dd0c1afca29
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 700166 9796cfcbe4db3103702fdb3d8d5879dc
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 548436 581d4db2042a15e3f61540b3cb662598
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 154492 ddf40856fcafe9e8782e6a6780c747e3
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 2077376 b11c30b34aed486b0cbd768d71ef6e61
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 59590 911919ae0a82a526825a98d66c8b3d65
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 2469776 524a3675d912b0464b94c475fe6eb70c
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 1630936 897e4ed72fd85b930473bd50c0fa1779
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 539460 5a46c77b5095fef6b43af62d42ec608b
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_m68k.deb
Size/MD5 checksum: 3450772 698e9457194212f165fe29c459f3ee68

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 780140 e40753dbf1ba99567ba3581126c68c07
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 629558 c68c23dcefe47b4d242e2c6a10004746
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 693378 11248954bd90b0f8eb8ba2029d453131
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 529530 8756e66d43f576259159bd95827112e2
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 154458 77340975e57f02dfa6f507af539a9a05
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 1870072 159acf4013b5559ef0f2fbf3d524fdea
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 55858 ab47d7d823ef2f6eff1b25726372f189
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 2391752 41db31561065feae8f951a40ade602a6
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 1489338 bfb3807d06ddc65e7fee59702de52797
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 499312 86180332ce376e1f365a8dd5cba554c1
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_mips.deb
Size/MD5 checksum: 3320602 1529eb7974c6602a05dbc479472871a4

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 772480 a24432704ca54979c11e6e751fde9b85
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 625720 a78f3d9b47cce7c059d1e070321c2597
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 692626 9dfddfc099a5b56447d984846debba43
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 520278 cf0687863325f5e503381fca23e06120
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 154484 2b67aa5879278efa82c1c8d391460f90
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 1838710 2c3897777653efe0f599f0879fe4cc9c
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 55614 7fd964d4340b44933c3bbe5c9137c6b5
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 2377166 aa0ec90242823ee228aa0797229e8d0d
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 1477560 fc602127c18fba2b44edf076e5866989
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 496480 54fdaeccdb35b3af14be424370e93f95
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_mipsel.deb
Size/MD5 checksum: 3291754 2d2c412796e886c29cfe0104d7e76235

PowerPC architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 832112 1d4f8ce8d3ea698c67ecda33ad1a0a02
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 658244 c78b3f06754f56ad91a957395ea62859
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 697614 f012ed2d597424ba28fbe7b4dd37cfe0
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 560296 ada2965286da4a63e87de71d8d8ab40f
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 154456 5da5c24f1d1a5ba2357e9ad6942add61
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 2023854 2f52940e8b290ac788287b7d8423a243
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 58234 3e75024a7824faba72c8038024aaff41
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 2479658 c7feb773e21589e7a4f255388810e11a
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 1666100 3c1ad1beb22bd850fe08042da9b2672a
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 540268 d6f97cc8ef916d996156c6b3e5d49d50
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_powerpc.deb
Size/MD5 checksum: 3490090 b4ec09f97f898f90c4a4da42cb8840c3

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 856500 ba8ba04933ba6bd40f97d4f8270cf374
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 663492 cf8099e9481c7897e1ea1c70f5c3f3ed
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 701312 8c58199956979fa72818016da3312de9
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 595074 04322dd7b0e34535d035ad691d95cbc5
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 154462 0fde489e3208562e665073a11337f28e
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 2079446 e84545c2d03b73011d53b5d948821578
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 58612 96c99347879a11c1cba35afedbac2298
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 2496530 e362d46597502625e10387e943c1e3c8
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 1666974 2252116e1ffc0cd974f3f224d70825c4
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 528094 625da898ed2e355f830fffb8153a7b2f
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_s390.deb
Size/MD5 checksum: 3563882 fbb368fd1608258fb7d2d589a9ee7240

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 781606 5780b2d7ac458161ae42ebf4a7d8e152
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 654290 aede118ea847442fcd6d69b1503bec36
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 694356 60299e2c0faaa957c155c83144596a5a
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 540582 4a8a1e7c093e2188976fe261329ebeb7
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 154472 a4f1d71735e79fd806cdc930825da651
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 1955960 66acbc37236a65f3e27b6b4747740f0a
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 55178 2fdda0ebc060c760a0500651085b9e5f
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 2470972 c38f3166b13c58dfed53f5a3ff48b76f
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 1648824 1e01015b4c289a551517c353af693fef
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 523378 02e588eb89e9cf59d6ebfe7eaa3fb963
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.1_sparc.deb
Size/MD5 checksum: 3425738 28b89bcf4db5472d7dceb6834f733f90


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDX09wW5ql+IAeqTIRAglbAJ0Y+Zj3ZfI7bg/B0WxI555E8QQF/wCfVtPq
KB5r7gUNule1xhq1Qm2Io8Q=
=5Gx6
- -----END PGP SIGNATURE-----




2.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 873-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
October 26th, 2005 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : net-snmp
Vulnerability : programming error
Problem type : remote
Debian-specific: no
CVE ID : CAN-2005-2177
BugTraq ID : 14168

A security vulnerability has been found in Net-SNMP releases that
could allow a denial of service attack against Net-SNMP agent's that
have opened a stream based protocol (eg TCP but not UDP). By default,
Net-SNMP does not open a TCP port.

The old stable distribution (woody) does not contain a net-snmp package.

For the stable distribution (sarge) this problem has been fixed in
version 5.1.2-6.2.

For the unstable distribution (sid) this problem has been fixed in
version 5.2.1.2-1.

We recommend that you upgrade your net-snmp package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/n/net-snmp/net-snmp_5.1.2-6.2.dsc
Size/MD5 checksum: 794 0aa985327e01703ee88e9c9fc63dcccb
http://security.debian.org/pool/updates/main/n/net-snmp/net-snmp_5.1.2-6.2.diff.gz
Size/MD5 checksum: 67941 80b50ece9798c3634843213632ea8b53
http://security.debian.org/pool/updates/main/n/net-snmp/net-snmp_5.1.2.orig.tar.gz
Size/MD5 checksum: 3253579 8080555ab3f90011f25d5122042d9a8d

Architecture independent components:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-base_5.1.2-6.2_all.deb
Size/MD5 checksum: 1005346 9f09bd5325ecb399a6b8b8b4c74e409e
http://security.debian.org/pool/updates/main/n/net-snmp/tkmib_5.1.2-6.2_all.deb
Size/MD5 checksum: 754688 5c84a39f4fb06e9ffae0c693b4e6c1fe

Alpha architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_alpha.deb
Size/MD5 checksum: 818316 c130066a195f6061032c039dbb70f4c6
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_alpha.deb
Size/MD5 checksum: 1579716 b35f6363a539100eb8a32cdee143c4b5
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_alpha.deb
Size/MD5 checksum: 1647842 99a7926ca98e85e3f8742dfc7a46b880
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_alpha.deb
Size/MD5 checksum: 820826 8645dbb814fee32fd4dba772806b4e7d
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_alpha.deb
Size/MD5 checksum: 733324 0d1113f65055b9802b1f0db33bf8566c

AMD64 architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_amd64.deb
Size/MD5 checksum: 815302 8b739d0e928cbed3d4e5fc30df4dd26d
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_amd64.deb
Size/MD5 checksum: 1553650 907b6ad8b395b2167ed07331d9ae88b1
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_amd64.deb
Size/MD5 checksum: 1184882 fd9f8a3c36a0573737d2856e70be4b55
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_amd64.deb
Size/MD5 checksum: 815620 073e011929c866ea6793852c48822f38
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_amd64.deb
Size/MD5 checksum: 731774 aa783fcf78888d5379c80cadfecba92f

ARM architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_arm.deb
Size/MD5 checksum: 811116 7c0db64010705b24094b04cb697c21ae
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_arm.deb
Size/MD5 checksum: 1477848 0072b62e6a873a7bca251a5a7b1a4ac6
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_arm.deb
Size/MD5 checksum: 1120060 5d51cd366d5497c549c95d81233820cb
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_arm.deb
Size/MD5 checksum: 810168 1e2aaa41d86cbf1d3455cc3ad1e9246e
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_arm.deb
Size/MD5 checksum: 730678 4da842f3e4c7820b6994dbaa4ce9464c

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_i386.deb
Size/MD5 checksum: 818878 b3b728436c0d24dd71cae4c745d78d69
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_i386.deb
Size/MD5 checksum: 1531948 64e0d4d60e1ec437c0693cd80ab5652d
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_i386.deb
Size/MD5 checksum: 1100052 a86f8867983efe3eaf2ae2c0a529fcd7
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_i386.deb
Size/MD5 checksum: 811618 6939d4e93c77a9da325a1558d0b1c492
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_i386.deb
Size/MD5 checksum: 730514 a31ff071dc8dc2406f60d8c9fc4f8a74

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_ia64.deb
Size/MD5 checksum: 846348 9902935d551e5eec1aaefdb2689bc1ba
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_ia64.deb
Size/MD5 checksum: 1780724 eb6b2eb4ba43a0a0bcb99cdd51b2e4e8
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_ia64.deb
Size/MD5 checksum: 1584452 caa05c744a6ce901def3aefa11347302
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_ia64.deb
Size/MD5 checksum: 838818 a59fd105fb8b839031eacc1faf3410a4
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_ia64.deb
Size/MD5 checksum: 737976 22069dd21aab422a67ca368dc7537aa4

HP Precision architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_hppa.deb
Size/MD5 checksum: 829624 8d8d43de36f2846f0f4c689eafc239d1
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_hppa.deb
Size/MD5 checksum: 1604876 1f5fc833c478b0e737d89a86b69bf6a0
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_hppa.deb
Size/MD5 checksum: 1368226 d77ce1656b2f5f1c09bd98aeb17bb354
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_hppa.deb
Size/MD5 checksum: 824466 8a1f5d695a218655932180b3f8e3b49c
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_hppa.deb
Size/MD5 checksum: 733168 1c894d59e8d8cad67210b22049c55338

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_m68k.deb
Size/MD5 checksum: 811308 675071b60bf7604029d3b9bb7f9d7fa7
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_m68k.deb
Size/MD5 checksum: 1437126 f72bf3101dff7666764144e067c222b4
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_m68k.deb
Size/MD5 checksum: 996514 d65a43ee4d13f7d8b2e60fcd79bc1a46
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_m68k.deb
Size/MD5 checksum: 804982 c401927b09c0ee5c79727bebefcbb026
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_m68k.deb
Size/MD5 checksum: 730252 1c91b25ab5926d6da868aa9b4bf84fd4

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_mips.deb
Size/MD5 checksum: 784884 fa5d5b971d96c5188aed859eba805eb4
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_mips.deb
Size/MD5 checksum: 1413338 1232a5281e48c703c99cabc5ea8777a5
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_mips.deb
Size/MD5 checksum: 1312878 d3dd3cd33fef646b53c1e5f5e93ee788
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_mips.deb
Size/MD5 checksum: 832678 3eda8f1830383293eba823cf984d15d5
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_mips.deb
Size/MD5 checksum: 731444 3c50ceaea9bd62bce4eb4c5fb2bb0678

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_mipsel.deb
Size/MD5 checksum: 784866 a2bab5ddee0ec91f396422f0fd0133ee
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_mipsel.deb
Size/MD5 checksum: 1418510 ba607a78662d2294d82c7425e804f3d1
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_mipsel.deb
Size/MD5 checksum: 1273102 66daf0e381d18f91ddfd738243339b85
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_mipsel.deb
Size/MD5 checksum: 832708 3f4362c2c82fea024e2b14c3722b2351
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_mipsel.deb
Size/MD5 checksum: 731292 5c06ed6b9b380e2cf88e14f900f0d634

PowerPC architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_powerpc.deb
Size/MD5 checksum: 832410 367a1322826f11ef9dcbdc0c2a555a4b
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_powerpc.deb
Size/MD5 checksum: 1484164 0489fb05721749be8a77c3b6be7b6814
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_powerpc.deb
Size/MD5 checksum: 1322578 4c3972bc7d19a25863efd7fc20447363
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_powerpc.deb
Size/MD5 checksum: 824460 80aa5fe58c0d357bfcdea1e6568889d1
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_powerpc.deb
Size/MD5 checksum: 731674 94282339ba881ba28c2f06a84dab01e9

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_s390.deb
Size/MD5 checksum: 793848 a76fffb4dcb478b9ab2a6a304dce5667
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_s390.deb
Size/MD5 checksum: 1480932 a81f9fbb32fc486ba92bac8ed84f3abd
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_s390.deb
Size/MD5 checksum: 1077868 fcf7d1957102b26ea3a8fa9c70b305e5
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_s390.deb
Size/MD5 checksum: 814068 cee89d4ce9dce6cb508e608ad8718796
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_s390.deb
Size/MD5 checksum: 731410 9f59b5a7ce92d38560b5c529fd134473

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp-perl_5.1.2-6.2_sparc.deb
Size/MD5 checksum: 813492 8a2bcbc7c3ac29a7de6ab08f1e23a554
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5_5.1.2-6.2_sparc.deb
Size/MD5 checksum: 1484394 4386034ab461611e28beaefa2acc237c
http://security.debian.org/pool/updates/main/n/net-snmp/libsnmp5-dev_5.1.2-6.2_sparc.deb
Size/MD5 checksum: 1198292 460d4253893dfd4e87a015427a95cb08
http://security.debian.org/pool/updates/main/n/net-snmp/snmp_5.1.2-6.2_sparc.deb
Size/MD5 checksum: 809826 d1b38721fae2ebc880cef0703d7d4d68
http://security.debian.org/pool/updates/main/n/net-snmp/snmpd_5.1.2-6.2_sparc.deb
Size/MD5 checksum: 730608 26961f57a7aa5fed6a04813b7627531f


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDX8bHW5ql+IAeqTIRAv8EAJ9dOXX+SuYPVnHQbUQhd176V5DGewCglfyJ
pHyXmMzmExE5Fn3NIYf+vuw=
=mtjW
- -----END PGP SIGNATURE-----




3.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 874-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
October 27th, 2005 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : lynx
Vulnerability : buffer overflow
Problem type : remote
Debian-specific: no
CVE ID : CVE-2005-3120

Ulf Härnhammar discovered a buffer overflow in lynx, a text-mode
browser for the WWW that can be remotely exploited. During the
handling of Asian characters when connecting to an NNTP server lynx
can be tricked to write past the boundary of a buffer which can lead
to the execution of arbitrary code.

For the old stable distribution (woody) this problem has been fixed in
version 2.8.4.1b-3.3.

For the stable distribution (sarge) this problem has been fixed in
version 2.8.5-2sarge1.

For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your lynx package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3.dsc
Size/MD5 checksum: 579 117f4e3d95a601741dc672012719042c
http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3.diff.gz
Size/MD5 checksum: 14448 5e5d819520415baa0d91f75f0ee4f0af
http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b.orig.tar.gz
Size/MD5 checksum: 2557510 053a10f76b871e3944c11c7776da7f7a

Alpha architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_alpha.deb
Size/MD5 checksum: 1610266 c887b1d0598b99fe1e3f45fedaaf3321

ARM architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_arm.deb
Size/MD5 checksum: 1487698 fb290d8440ef3b2b59f10e270b1d7bb6

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_i386.deb
Size/MD5 checksum: 1442878 31da62cb1f065acc2f65f2fd4481d530

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_ia64.deb
Size/MD5 checksum: 1762578 e57e52ed11ea52b55d6a5ede09b466a8

HP Precision architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_hppa.deb
Size/MD5 checksum: 1555440 4beb62a33cc2c0f00a45e69bed8b5591

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_m68k.deb
Size/MD5 checksum: 1405626 7f8d46f3d143781364337b666a55fa42

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_mips.deb
Size/MD5 checksum: 1507782 ae2ce1ddbe4855967d050a3e64e42e26

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_mipsel.deb
Size/MD5 checksum: 1503970 08e80c500a4d57a4e47fc45dbf0ebfe3

PowerPC architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_powerpc.deb
Size/MD5 checksum: 1491262 2b58dece4ae0a8a98b31e2f8eba40d13

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_s390.deb
Size/MD5 checksum: 1463360 1e5419b8db89374ea1c96f1219fe6e15

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.4.1b-3.3_sparc.deb
Size/MD5 checksum: 1492728 f4da20fe1ac83ee9adf37d49bb896c63


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1.dsc
Size/MD5 checksum: 614 e7d5a14aafd2e9775c3175e44e3f9964
http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1.diff.gz
Size/MD5 checksum: 14891 59cf146b8defbfa1b78df4306b951441
http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5.orig.tar.gz
Size/MD5 checksum: 2984352 5f516a10596bd52c677f9bfd9579bc28

Alpha architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_alpha.deb
Size/MD5 checksum: 1994554 8a9eb6cd8ee34ad17aa06b912b588659

AMD64 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_amd64.deb
Size/MD5 checksum: 1881684 5afcd53828326a0cb056681047bd48e6

ARM architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_arm.deb
Size/MD5 checksum: 1852912 de530d45ce98e68932ec4624abd67201

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_i386.deb
Size/MD5 checksum: 1852488 ba9125c2da9c21a8bcd173ff82948a28

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_ia64.deb
Size/MD5 checksum: 2128374 156c023772481f6e9f8629c44082c94d

HP Precision architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_hppa.deb
Size/MD5 checksum: 1909574 24bbbc72ab025249a3adaa7717b316ff

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_m68k.deb
Size/MD5 checksum: 1780590 449249ca3e257a33a5a9d7da16379076

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_mips.deb
Size/MD5 checksum: 1894006 f30b06596b5ed9d881e1f3ba767aca2a

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_mipsel.deb
Size/MD5 checksum: 1889486 0b650edf6ca51547aedd7c7754bbda99

PowerPC architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_powerpc.deb
Size/MD5 checksum: 1878284 d90c1dc3fb2d5be179b827c32c14e222

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_s390.deb
Size/MD5 checksum: 1866758 60f30f0ebd7556799e565b4411a8d429

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/l/lynx/lynx_2.8.5-2sarge1_sparc.deb
Size/MD5 checksum: 1861536 85c12b7bd67f9800b49ab4b6b97a1dfd


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDYIifW5ql+IAeqTIRAtcXAJ9M3xJh6sypyxujf2lLUPpprsMw7ACgnzU3
faJgn6sAKnC3FOgrps21jeY=
=pCOX
- -----END PGP SIGNATURE-----




4.


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 875-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
October 27th, 2005 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : openssl094
Vulnerability : cryptographic weakness
Problem type : remote
Debian-specific: no
CVE ID : CVE-2005-2969

Yutaka Oiwa discovered a vulnerability in the Open Secure Socket Layer
(OpenSSL) library that can allow an attacker to perform active
protocol-version rollback attacks that could lead to the use of the
weaker SSL 2.0 protocol even though both ends support SSL 3.0 or TLS
1.0.

The following matrix explains which version in which distribution has
this problem corrected.

oldstable (woody) stable (sarge) unstable (sid)
openssl 0.9.6c-2.woody.8 0.9.7e-3sarge1 0.9.8-3
openssl 094 0.9.4-6.woody.4 n/a n/a
openssl 095 0.9.5a-6.woody.6 n/a n/a
openssl 096 n/a 0.9.6m-1sarge1 n/a
openssl 097 n/a n/a 0.9.7g-5

We recommend that you upgrade your libssl packages.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/o/openssl094/openssl094_0.9.4-6.woody.4.dsc
Size/MD5 checksum: 624 2989b7b16a146a2f9a6ca52887bb2c3f
http://security.debian.org/pool/updates/main/o/openssl094/openssl094_0.9.4-6.woody.4.diff.gz
Size/MD5 checksum: 47116 a4db6a4e53d8f8703da86774768cb21c
http://security.debian.org/pool/updates/main/o/openssl094/openssl094_0.9.4.orig.tar.gz
Size/MD5 checksum: 1570392 72544daea16d6c99d656b95f77b01b2d

Alpha architecture:

http://security.debian.org/pool/updates/main/o/openssl094/libssl09_0.9.4-6.woody.4_alpha.deb
Size/MD5 checksum: 445816 1eaa00c5cee084727d23a8169acdb705

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/o/openssl094/libssl09_0.9.4-6.woody.4_i386.deb
Size/MD5 checksum: 358626 2d3f09ec2222ac497180a01facea470c

PowerPC architecture:

http://security.debian.org/pool/updates/main/o/openssl094/libssl09_0.9.4-6.woody.4_powerpc.deb
Size/MD5 checksum: 378870 58d0d41fa2005b5d05f49c557023c466


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDYJZpW5ql+IAeqTIRAu8zAKCZKeTsbp18kD+6dpno+xAvlT0D6gCguh3H
DQcg5cxf+sHJbhk4pT5uzBg=
=znal
- -----END PGP SIGNATURE-----



  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |