Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > November 2005 > Mandriva security advisories

November 2005

Mandriva security advisories

ID: 01037
Ref: 972/2005
Date: 22 November 2005:11:18:25
Version: 1
Title: Mandriva security advisories
Abstract: Details of three Mandriva security advisories concerning egroupware, php, gdk-pixbuf
Vendors affected: Mandrake
Operating systems affected: Mandrake
Applications affected: Mandrake
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2005:212
http://www.mandriva.com/security/
_______________________________________________________________________

Package : egroupware
Date : November 16, 2005
Affected: Corporate 3.0
_______________________________________________________________________

Problem Description:

Egroupware contains embedded copies of several php based projects,
including phpldapadmin and phpsysinfo.

Phpldapadmin before 0.9.6c allows remote attackers to gain anonymous
access to the LDAP server, even when disable_anon_bind is set, via an
HTTP request to login.php with the anonymous_bind parameter set.
(CAN-2005-2654)

Directory traversal vulnerability in welcome.php in phpLDAPadmin 0.9.6
and 0.9.7 allows remote attackers to read arbitrary files via a ..
(dot dot) in the custom_welcome_page parameter. (CAN-2005-2792)

PHP remote code injection vulnerability in welcome.php in phpLDAPadmin
0.9.6 and 0.9.7 allows remote attackers to execute arbitrary PHP code
via the custom_welcome_page parameter. (CAN-2005-2793)

Maksymilian Arciemowicz discovered several cross site scripting issues
in phpsysinfo, a PHP based host information application.
(CAN-2005-0869, 0870)

Christopher Kunz discovered that local variables in phpsysinfo get
overwritten unconditionally and are trusted later, which could lead to
the inclusion of arbitrary files. (CAN-2005-3347)

Christopher Kunz discovered that user-supplied input in phpsysinfo is
used unsanitised, causing a HTTP Response splitting problem.
(CAN-2005-3348)

The updated packages have new versions of these subsystems to correct
these issues.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2654
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2792
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2793
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0869
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0870
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3347
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3348
_______________________________________________________________________

Updated Packages:

Corporate 3.0:
ede368f20b1e00144278800d3b6bf468 corporate/3.0/RPMS/egroupware-1.0-0.RC3.1.1.C30mdk.noarch.rpm
8260713a9c28f6f7c7b08630af98b80c corporate/3.0/RPMS/egroupware-addressbook-1.0-0.RC3.1.1.C30mdk.noarch.rpm
053e62d63d08566a51f5a4caed575920 corporate/3.0/RPMS/egroupware-backup-1.0-0.RC3.1.1.C30mdk.noarch.rpm
9d2a654955fd2dc83f965366a2af77a0 corporate/3.0/RPMS/egroupware-bookmarks-1.0-0.RC3.1.1.C30mdk.noarch.rpm
ee1d890db9e37afaa9ddd5caeab02223 corporate/3.0/RPMS/egroupware-calendar-1.0-0.RC3.1.1.C30mdk.noarch.rpm
26ecafedde93c891562ed679f833f1f0 corporate/3.0/RPMS/egroupware-comic-1.0-0.RC3.1.1.C30mdk.noarch.rpm
eecee2ff5e2c5beb36c4592235227d9d corporate/3.0/RPMS/egroupware-developer_tools-1.0-0.RC3.1.1.C30mdk.noarch.rpm
153f3f86f72b627c3f12eb44715a01fd corporate/3.0/RPMS/egroupware-email-1.0-0.RC3.1.1.C30mdk.noarch.rpm
3863031cfccf6ba411ae8965b4e13af0 corporate/3.0/RPMS/egroupware-emailadmin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
260713edaf667a6c0af01afe5cf1276f corporate/3.0/RPMS/egroupware-etemplate-1.0-0.RC3.1.1.C30mdk.noarch.rpm
a3ae6cc7bbbb4fb5191f41a7e602741a corporate/3.0/RPMS/egroupware-felamimail-1.0-0.RC3.1.1.C30mdk.noarch.rpm
a95d31bb108a6126d3187af8c77c2164 corporate/3.0/RPMS/egroupware-filemanager-1.0-0.RC3.1.1.C30mdk.noarch.rpm
772a8690091f509727ef70f6b363d6bf corporate/3.0/RPMS/egroupware-forum-1.0-0.RC3.1.1.C30mdk.noarch.rpm
e97692f7a5c888e4ea1a86236c9bd124 corporate/3.0/RPMS/egroupware-ftp-1.0-0.RC3.1.1.C30mdk.noarch.rpm
c9a5f4a17bf1697e7eb5e1e6421a6ff3 corporate/3.0/RPMS/egroupware-fudforum-1.0-0.RC3.1.1.C30mdk.noarch.rpm
d8a9513798c91e6cbd39667fa04784ff corporate/3.0/RPMS/egroupware-headlines-1.0-0.RC3.1.1.C30mdk.noarch.rpm
87f25244c8af456bf43c66650dbc05e6 corporate/3.0/RPMS/egroupware-infolog-1.0-0.RC3.1.1.C30mdk.noarch.rpm
67fc3ed193d9e5a5b5e3d0ab4b3b21af corporate/3.0/RPMS/egroupware-jinn-1.0-0.RC3.1.1.C30mdk.noarch.rpm
0c4a7125fa56f7e2c62b37c0e9657fda corporate/3.0/RPMS/egroupware-messenger-1.0-0.RC3.1.1.C30mdk.noarch.rpm
7c59389b480bab742b74a7fa3c304e08 corporate/3.0/RPMS/egroupware-news_admin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
ccc1a38a19f371b24014c078fd270640 corporate/3.0/RPMS/egroupware-phpbrain-1.0-0.RC3.1.1.C30mdk.noarch.rpm
4d08c9988a1a8b371dbb8e775f10ead5 corporate/3.0/RPMS/egroupware-phpldapadmin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
49e15a21e9649192aec8a094fbd6ba23 corporate/3.0/RPMS/egroupware-phpsysinfo-1.0-0.RC3.1.1.C30mdk.noarch.rpm
449fc4f64a2684e801026551d10775a6 corporate/3.0/RPMS/egroupware-polls-1.0-0.RC3.1.1.C30mdk.noarch.rpm
84f495032f73864c1ca310a318837f31 corporate/3.0/RPMS/egroupware-projects-1.0-0.RC3.1.1.C30mdk.noarch.rpm
3db5f783dcda18436cbf518033f95be3 corporate/3.0/RPMS/egroupware-registration-1.0-0.RC3.1.1.C30mdk.noarch.rpm
e8113156f031a132f175176465203169 corporate/3.0/RPMS/egroupware-sitemgr-1.0-0.RC3.1.1.C30mdk.noarch.rpm
29d48e4fe5c5d1b94e59e0cc204e0543 corporate/3.0/RPMS/egroupware-skel-1.0-0.RC3.1.1.C30mdk.noarch.rpm
f6289361d472ea1ad5df3d7758f761be corporate/3.0/RPMS/egroupware-stocks-1.0-0.RC3.1.1.C30mdk.noarch.rpm
76a227fd0a41378068f50206988bede3 corporate/3.0/RPMS/egroupware-tts-1.0-0.RC3.1.1.C30mdk.noarch.rpm
ec29184df68cc2b948acab7c5f8aeeb9 corporate/3.0/RPMS/egroupware-wiki-1.0-0.RC3.1.1.C30mdk.noarch.rpm
5384f10de57e45eeb12a9dd327ee9c10 corporate/3.0/SRPMS/egroupware-1.0-0.RC3.1.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
2f1b49e341d8edd6c1932003566ffc58 x86_64/corporate/3.0/RPMS/egroupware-1.0-0.RC3.1.1.C30mdk.noarch.rpm
6ccdd0eb824c3e33ec3d563faab7c3d0 x86_64/corporate/3.0/RPMS/egroupware-addressbook-1.0-0.RC3.1.1.C30mdk.noarch.rpm
d174b44005b42690b63f579fc52f25a5 x86_64/corporate/3.0/RPMS/egroupware-backup-1.0-0.RC3.1.1.C30mdk.noarch.rpm
7a373d4cd1164b9d224d4994660261be x86_64/corporate/3.0/RPMS/egroupware-bookmarks-1.0-0.RC3.1.1.C30mdk.noarch.rpm
c4c7ba83e63d4c020ab727489ca97cf1 x86_64/corporate/3.0/RPMS/egroupware-calendar-1.0-0.RC3.1.1.C30mdk.noarch.rpm
86c6438ad0ba2b49a6cf5ca620029061 x86_64/corporate/3.0/RPMS/egroupware-comic-1.0-0.RC3.1.1.C30mdk.noarch.rpm
d89f1c956c5e2cc42814a20acb290687 x86_64/corporate/3.0/RPMS/egroupware-developer_tools-1.0-0.RC3.1.1.C30mdk.noarch.rpm
adfbb36bfd59ce3a48dc56b921be2a54 x86_64/corporate/3.0/RPMS/egroupware-email-1.0-0.RC3.1.1.C30mdk.noarch.rpm
bfa26dd6790000f2d5ad73aff923a49e x86_64/corporate/3.0/RPMS/egroupware-emailadmin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
413c4f14dab1ec459582e550184642e3 x86_64/corporate/3.0/RPMS/egroupware-etemplate-1.0-0.RC3.1.1.C30mdk.noarch.rpm
ef5067cae004fa45cd7bd7139120b889 x86_64/corporate/3.0/RPMS/egroupware-felamimail-1.0-0.RC3.1.1.C30mdk.noarch.rpm
f3deac45103897da4f179340270e4aad x86_64/corporate/3.0/RPMS/egroupware-filemanager-1.0-0.RC3.1.1.C30mdk.noarch.rpm
8062cb13302d80aa6bd4e88f9d979b1c x86_64/corporate/3.0/RPMS/egroupware-forum-1.0-0.RC3.1.1.C30mdk.noarch.rpm
f7937eb4df7f85c0fe8b379023f2c573 x86_64/corporate/3.0/RPMS/egroupware-ftp-1.0-0.RC3.1.1.C30mdk.noarch.rpm
eb8bbcc4b483e98945ee601b15ec7f7d x86_64/corporate/3.0/RPMS/egroupware-fudforum-1.0-0.RC3.1.1.C30mdk.noarch.rpm
db6def23bc1ff1b53dcadd2ffdd6a3d0 x86_64/corporate/3.0/RPMS/egroupware-headlines-1.0-0.RC3.1.1.C30mdk.noarch.rpm
1e6cc7a656c68a1ca62e31c12e893a3f x86_64/corporate/3.0/RPMS/egroupware-infolog-1.0-0.RC3.1.1.C30mdk.noarch.rpm
71c547730fcc2bc147443bfedee83d67 x86_64/corporate/3.0/RPMS/egroupware-jinn-1.0-0.RC3.1.1.C30mdk.noarch.rpm
c5bec11237069f31df19356273a04630 x86_64/corporate/3.0/RPMS/egroupware-messenger-1.0-0.RC3.1.1.C30mdk.noarch.rpm
447920d7c091917ddf6594748e259d61 x86_64/corporate/3.0/RPMS/egroupware-news_admin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
42c4c60a10da6684116fd3b02015786f x86_64/corporate/3.0/RPMS/egroupware-phpbrain-1.0-0.RC3.1.1.C30mdk.noarch.rpm
cc3d269b9c4e0a9c0ba653d43f5e7b07 x86_64/corporate/3.0/RPMS/egroupware-phpldapadmin-1.0-0.RC3.1.1.C30mdk.noarch.rpm
234151d4addd9cc8d1ec9c8d3de20c19 x86_64/corporate/3.0/RPMS/egroupware-phpsysinfo-1.0-0.RC3.1.1.C30mdk.noarch.rpm
2d1ee394139ac708596205c94e6c7787 x86_64/corporate/3.0/RPMS/egroupware-polls-1.0-0.RC3.1.1.C30mdk.noarch.rpm
46ad113c5567a0eb11c5714b0d40d4af x86_64/corporate/3.0/RPMS/egroupware-projects-1.0-0.RC3.1.1.C30mdk.noarch.rpm
7eb518461ed5e14e30050a0029deff78 x86_64/corporate/3.0/RPMS/egroupware-registration-1.0-0.RC3.1.1.C30mdk.noarch.rpm
064cada6a43dca2b008667279fa49b77 x86_64/corporate/3.0/RPMS/egroupware-sitemgr-1.0-0.RC3.1.1.C30mdk.noarch.rpm
0b7e02fb4f16805917ab5bb38e413f46 x86_64/corporate/3.0/RPMS/egroupware-skel-1.0-0.RC3.1.1.C30mdk.noarch.rpm
e31a1d779b948888b6f8948fd62bf234 x86_64/corporate/3.0/RPMS/egroupware-stocks-1.0-0.RC3.1.1.C30mdk.noarch.rpm
bbbfa22769e23adb399ed087872cee89 x86_64/corporate/3.0/RPMS/egroupware-tts-1.0-0.RC3.1.1.C30mdk.noarch.rpm
98edc1ce7c21635f606c714d97c78501 x86_64/corporate/3.0/RPMS/egroupware-wiki-1.0-0.RC3.1.1.C30mdk.noarch.rpm
5384f10de57e45eeb12a9dd327ee9c10 x86_64/corporate/3.0/SRPMS/egroupware-1.0-0.RC3.1.1.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFDe1tCmqjQ0CJFipgRAtnhAJ0VJ50Jhua84VoTWeZs22jIzi33eACgnwu3
sRQYGhE96iex5ZIahGNH0Ww=
=oEG9
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2005:213
http://www.mandriva.com/security/
_______________________________________________________________________

Package : php
Date : November 16, 2005
Affected: 10.1, 10.2, 2006.0, Corporate 2.1, Corporate 3.0,
Multi Network Firewall 2.0
_______________________________________________________________________

Problem Description:

A number of vulnerabilities were discovered in PHP:

An issue with fopen_wrappers.c would not properly restrict access to
other directories when the open_basedir directive included a trailing
slash (CVE-2005-3054); this issue does not affect Corporate Server 2.1.

An issue with the apache2handler SAPI in mod_php could allow an
attacker to cause a Denial of Service via the session.save_path option
in an .htaccess file or VirtualHost stanza (CVE-2005-3319); this issue
does not affect Corporate Server 2.1.

A Denial of Service vulnerability was discovered in the way that PHP
processes EXIF image data which could allow an attacker to cause PHP
to crash by supplying carefully crafted EXIF image data
(CVE-2005-3353).

A cross-site scripting vulnerability was discovered in the phpinfo()
function which could allow for the injection of javascript or HTML
content onto a page displaying phpinfo() output, or to steal data such
as cookies (CVE-2005-3388).

A flaw in the parse_str() function could allow for the enabling of
register_globals, even if it was disabled in the PHP configuration
file (CVE-2005-3389).

A vulnerability in the way that PHP registers global variables during
a file upload request could allow a remote attacker to overwrite the
$GLOBALS array which could potentially lead the execution of arbitrary
PHP commands. This vulnerability only affects systems with
register_globals enabled (CVE-2005-3390).

The updated packages have been patched to address this issue. Once the
new packages have been installed, you will need to restart your Apache
server using "service httpd restart" in order for the new packages to
take effect ("service httpd2-naat restart" for MNF2).
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3054
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3319
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3353
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3388
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3389
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3390
http://www.hardened-php.net/advisory_202005.79.html
http://www.hardened-php.net/advisory_192005.78.html
http://www.hardened-php.net/advisory_182005.77.html
_______________________________________________________________________

Updated Packages:

Mandriva Linux 10.1:
3966e335bc3a2ae6dffbbc8e83575865 10.1/RPMS/libphp_common432-4.3.8-3.6.101mdk.i586.rpm
199fa9e0baf46bda77e660555626ed4e 10.1/RPMS/php432-devel-4.3.8-3.6.101mdk.i586.rpm
05ef30fa2004ffd60f4519fd41a444e3 10.1/RPMS/php-cgi-4.3.8-3.6.101mdk.i586.rpm
fe48fbbb47b3bcdab5054ffdd2067b6a 10.1/RPMS/php-cli-4.3.8-3.6.101mdk.i586.rpm
90b47f8c1515b5043d513db11d6607ca 10.1/SRPMS/php-4.3.8-3.6.101mdk.src.rpm

Mandriva Linux 10.1/X86_64:
9fe206e55dca158523dab0a85f1a5dec x86_64/10.1/RPMS/lib64php_common432-4.3.8-3.6.101mdk.x86_64.rpm
d36a3e7f90980388196aa58b6dbb94af x86_64/10.1/RPMS/php432-devel-4.3.8-3.6.101mdk.x86_64.rpm
416b3bacf2b57f1a9cae5ca172e39135 x86_64/10.1/RPMS/php-cgi-4.3.8-3.6.101mdk.x86_64.rpm
0c27298aadb7d0a847a93316ce4d9d57 x86_64/10.1/RPMS/php-cli-4.3.8-3.6.101mdk.x86_64.rpm
90b47f8c1515b5043d513db11d6607ca x86_64/10.1/SRPMS/php-4.3.8-3.6.101mdk.src.rpm

Mandriva Linux 10.2:
e972e5e5cadb586a390a39bffa1cb56e 10.2/RPMS/libphp_common432-4.3.10-7.4.102mdk.i586.rpm
c26646613d41a7f3e82b5d2d11c21b7c 10.2/RPMS/php432-devel-4.3.10-7.4.102mdk.i586.rpm
098e0a1e4b8b597bf95461fc085c037a 10.2/RPMS/php-cgi-4.3.10-7.4.102mdk.i586.rpm
99f0eaa02942f7b6753309ca56979100 10.2/RPMS/php-cli-4.3.10-7.4.102mdk.i586.rpm
7df363e2e2309ec26b40c3490a0d75ae 10.2/SRPMS/php-4.3.10-7.4.102mdk.src.rpm

Mandriva Linux 10.2/X86_64:
d9d33311690b0c5f69e3834a5ba6bc10 x86_64/10.2/RPMS/lib64php_common432-4.3.10-7.4.102mdk.x86_64.rpm
f5d2b45ace0ab4208ba911159a47e429 x86_64/10.2/RPMS/php432-devel-4.3.10-7.4.102mdk.x86_64.rpm
0c7e0acb3bd80a9a7220ecf919b3d795 x86_64/10.2/RPMS/php-cgi-4.3.10-7.4.102mdk.x86_64.rpm
7df6f5a5b19c07e9fa3d6851f210f847 x86_64/10.2/RPMS/php-cli-4.3.10-7.4.102mdk.x86_64.rpm
7df363e2e2309ec26b40c3490a0d75ae x86_64/10.2/SRPMS/php-4.3.10-7.4.102mdk.src.rpm

Mandriva Linux 2006.0:
826c36fdb07b7c341a39507b679e31a9 2006.0/RPMS/libphp5_common5-5.0.4-9.1.20060mdk.i586.rpm
2be5d91979fa3c8f77744a86fee8a423 2006.0/RPMS/php-cgi-5.0.4-9.1.20060mdk.i586.rpm
950c43ac1569610fa31b15803fc50d40 2006.0/RPMS/php-cli-5.0.4-9.1.20060mdk.i586.rpm
1a19b2cc5607bf65c3fe7a339f97ce72 2006.0/RPMS/php-devel-5.0.4-9.1.20060mdk.i586.rpm
e8d70f64d363821fe29e7cf39e93cd71 2006.0/RPMS/php-exif-5.0.4-1.1.20060mdk.i586.rpm
fe70481a5316019e303e45e5f0e59adb 2006.0/RPMS/php-fcgi-5.0.4-9.1.20060mdk.i586.rpm
9c6a477d87cebf040cee39b75423c040 2006.0/SRPMS/php-5.0.4-9.1.20060mdk.src.rpm
f2b058c92a3c2107f97a4b07d34dc1c8 2006.0/SRPMS/php-exif-5.0.4-1.1.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
044e1542f327cf7552fa4d4124843f1f x86_64/2006.0/RPMS/lib64php5_common5-5.0.4-9.1.20060mdk.x86_64.rpm
60f4edc9196ea58d9614c3f2ed66a9f6 x86_64/2006.0/RPMS/php-cgi-5.0.4-9.1.20060mdk.x86_64.rpm
9f6c1eb1a1da44518993957d13eb10bf x86_64/2006.0/RPMS/php-cli-5.0.4-9.1.20060mdk.x86_64.rpm
3c5d616931098f198eeb0f41011144aa x86_64/2006.0/RPMS/php-devel-5.0.4-9.1.20060mdk.x86_64.rpm
d16ba71605fc37881443605025534440 x86_64/2006.0/RPMS/php-exif-5.0.4-1.1.20060mdk.x86_64.rpm
0f10f24c8b43317904a79ac66f0405de x86_64/2006.0/RPMS/php-fcgi-5.0.4-9.1.20060mdk.x86_64.rpm
9c6a477d87cebf040cee39b75423c040 x86_64/2006.0/SRPMS/php-5.0.4-9.1.20060mdk.src.rpm
f2b058c92a3c2107f97a4b07d34dc1c8 x86_64/2006.0/SRPMS/php-exif-5.0.4-1.1.20060mdk.src.rpm

Corporate Server 2.1:
18b1c4dab517ae624ee96b7558112d84 corporate/2.1/RPMS/php-4.2.3-4.6.C21mdk.i586.rpm
25e79b0cbb0b1ed8c0915db93efe7863 corporate/2.1/RPMS/php-common-4.2.3-4.6.C21mdk.i586.rpm
c818089e5fe42953da5ca48855c52a39 corporate/2.1/RPMS/php-devel-4.2.3-4.6.C21mdk.i586.rpm
aaafac3f547795f1e4ab50094fb05bb8 corporate/2.1/RPMS/php-pear-4.2.3-4.6.C21mdk.i586.rpm
590fd7d0a4340ac62e443a1c1543fe60 corporate/2.1/SRPMS/php-4.2.3-4.6.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
d3ad20980ced61773e64fc0cd347dbc0 x86_64/corporate/2.1/RPMS/php-4.2.3-4.6.C21mdk.x86_64.rpm
74dc4c2cd5a48ebc77d081ae64fe38cd x86_64/corporate/2.1/RPMS/php-common-4.2.3-4.6.C21mdk.x86_64.rpm
5acad2f71a4e4728a986f08a7966846a x86_64/corporate/2.1/RPMS/php-devel-4.2.3-4.6.C21mdk.x86_64.rpm
39856102ebde84daad4d917cfa94b067 x86_64/corporate/2.1/RPMS/php-pear-4.2.3-4.6.C21mdk.x86_64.rpm
590fd7d0a4340ac62e443a1c1543fe60 x86_64/corporate/2.1/SRPMS/php-4.2.3-4.6.C21mdk.src.rpm

Corporate 3.0:
c2b5c67cd95e5ea7725a98c516b9742f corporate/3.0/RPMS/libphp_common432-4.3.4-4.8.C30mdk.i586.rpm
a8eef95a35ce6916836ee78d1d473939 corporate/3.0/RPMS/php432-devel-4.3.4-4.8.C30mdk.i586.rpm
6c00ce7c4952e9cfcbc654a594d94b18 corporate/3.0/RPMS/php-cgi-4.3.4-4.8.C30mdk.i586.rpm
fad4d2d37aeae89eb52ab10a35b8b3b4 corporate/3.0/RPMS/php-cli-4.3.4-4.8.C30mdk.i586.rpm
97ed320ad4011d18f69f8f957295a7d7 corporate/3.0/SRPMS/php-4.3.4-4.8.C30mdk.src.rpm

Corporate 3.0/X86_64:
db82bf6b28383e687974a6e3ea8ef632 x86_64/corporate/3.0/RPMS/lib64php_common432-4.3.4-4.8.C30mdk.x86_64.rpm
740b5d6160992055e5e84dc03480cf45 x86_64/corporate/3.0/RPMS/php432-devel-4.3.4-4.8.C30mdk.x86_64.rpm
6e2fd52cca98a8b208acaec013cb7630 x86_64/corporate/3.0/RPMS/php-cgi-4.3.4-4.8.C30mdk.x86_64.rpm
679c794a8904940946d8cb52e529413a x86_64/corporate/3.0/RPMS/php-cli-4.3.4-4.8.C30mdk.x86_64.rpm
97ed320ad4011d18f69f8f957295a7d7 x86_64/corporate/3.0/SRPMS/php-4.3.4-4.8.C30mdk.src.rpm

Multi Network Firewall 2.0:
82bae104a4800c62bf0a007d5af84941 mnf/2.0/RPMS/libphp_common432-4.3.4-4.8.M20mdk.i586.rpm
b64e2f00d014aa894d94271351b1cef0 mnf/2.0/RPMS/php432-devel-4.3.4-4.8.M20mdk.i586.rpm
c306907caa4c66c77653a2f264fdcdbe mnf/2.0/RPMS/php-cgi-4.3.4-4.8.M20mdk.i586.rpm
46b577275216cfc259a6caba5d4b82f3 mnf/2.0/RPMS/php-cli-4.3.4-4.8.M20mdk.i586.rpm
c528b16fd83ddd8732609863ffe0a16a mnf/2.0/SRPMS/php-4.3.4-4.8.M20mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFDe9IImqjQ0CJFipgRAm1aAJ4lHTfZ0FX+0LkLxE2UZ+3U90NQlgCfW8XP
GDuewXy9EIzNQOsJzWNByRY=
=UcRs
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2005:214
http://www.mandriva.com/security/
_______________________________________________________________________

Package : gdk-pixbuf
Date : November 18, 2005
Affected: 10.2, 2006.0, Corporate 2.1, Corporate 3.0
_______________________________________________________________________

Problem Description:

A heap overflow vulnerability in the GTK+ gdk-pixbuf XPM image
rendering library could allow for arbitrary code execution. This allows
an attacker to provide a carefully crafted XPM image which could
possibly allow for arbitrary code execution in the context of the user
viewing the image. (CVE-2005-3186)

Ludwig Nussel discovered an integer overflow bug in the way gdk-pixbuf
processes XPM images. An attacker could create a carefully crafted XPM
file in such a way that it could cause an application linked with
gdk-pixbuf to execute arbitrary code or crash when the file was opened
by a victim. (CVE-2005-2976)

Ludwig Nussel also discovered an infinite-loop denial of service bug
in the way gdk-pixbuf processes XPM images. An attacker could create a
carefully crafted XPM file in such a way that it could cause an
application linked with gdk-pixbuf to stop responding when the file was
opened by a victim. (CVE-2005-2975)

The gtk+2.0 library also contains the same gdk-pixbuf code with the
same vulnerability.

The Corporate Server 2.1 packages have additional patches to address
CAN-2004-0782,0783,0788 (additional XPM/ICO image issues),
CAN-2004-0753 (BMP image issues) and CAN-2005-0891 (additional BMP
issues). These were overlooked on this platform with earlier updates.

The updated packages have been patched to correct these issues.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2975
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2976
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0782
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0783
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0753
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0891
_______________________________________________________________________

Updated Packages:

Mandriva Linux 10.2:
35a6ddec557dd5aa4e92adbf7bb87fb0 10.2/RPMS/gdk-pixbuf-loaders-0.22.0-8.2.102mdk.i586.rpm
7eb7bdd86ed24c78bd98002bec1f09c5 10.2/RPMS/gtk+2.0-2.6.4-2.2.102mdk.i586.rpm
b458e6e17be27fe37f3431a5811c4f4a 10.2/RPMS/libgdk_pixbuf2.0_0-2.6.4-2.2.102mdk.i586.rpm
8163bcf88fffcfb6c60bdc7859d61668 10.2/RPMS/libgdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk.i586.rpm
626388ea3348c8f636faba350dae3e1f 10.2/RPMS/libgdk-pixbuf2-0.22.0-8.2.102mdk.i586.rpm
c84174a9da4885e9258c9e8e8c30a2cf 10.2/RPMS/libgdk-pixbuf2-devel-0.22.0-8.2.102mdk.i586.rpm
8be5808a34211ccbc5fa8800ea5c6704 10.2/RPMS/libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk.i586.rpm
b4f9403db413ba0e9be2d344f969a7b3 10.2/RPMS/libgdk-pixbuf-xlib2-0.22.0-8.2.102mdk.i586.rpm
49be259e05e3ee1f28c4998fb8a802a1 10.2/RPMS/libgtk+2.0_0-2.6.4-2.2.102mdk.i586.rpm
0e552b9db6b79ede9353266e49df6b79 10.2/RPMS/libgtk+2.0_0-devel-2.6.4-2.2.102mdk.i586.rpm
c35542864bd265aa20ec4a02b15a7d02 10.2/RPMS/libgtk+-x11-2.0_0-2.6.4-2.2.102mdk.i586.rpm
12372f097bb4fe44d6a2e8ca49eca044 10.2/SRPMS/gdk-pixbuf-0.22.0-8.2.102mdk.src.rpm
20b3573192370e17bb3412c0bf6bf4bb 10.2/SRPMS/gtk+2.0-2.6.4-2.2.102mdk.src.rpm

Mandriva Linux 10.2/X86_64:
03d62e4d17df48d30441f0ac23132aca x86_64/10.2/RPMS/gdk-pixbuf-loaders-0.22.0-8.2.102mdk.x86_64.rpm
d016e3f9541b1c357fdb6b5c5e82c3a8 x86_64/10.2/RPMS/gtk+2.0-2.6.4-2.2.102mdk.x86_64.rpm
f32e03ce28f88f6ce7e7441c71ce4544 x86_64/10.2/RPMS/lib64gdk_pixbuf2.0_0-2.6.4-2.2.102mdk.x86_64.rpm
b76c5415637970eea7d11fed98856dfb x86_64/10.2/RPMS/lib64gdk_pixbuf2.0_0-devel-2.6.4-2.2.102mdk.x86_64.rpm
9a6b58e3a653f7df35c893f87fdbe962 x86_64/10.2/RPMS/lib64gdk-pixbuf2-0.22.0-8.2.102mdk.x86_64.rpm
615ce62271ee01aa3d6b7b06c56887e6 x86_64/10.2/RPMS/lib64gdk-pixbuf2-devel-0.22.0-8.2.102mdk.x86_64.rpm
6eab0ae1c4b22ec6d7248cb20caff223 x86_64/10.2/RPMS/lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.102mdk.x86_64.rpm
93bd3152d9f2e66a8b4670ca4b530114 x86_64/10.2/RPMS/lib64gdk-pixbuf-xlib2-0.22.0-8.2.102mdk.x86_64.rpm
fc34af6805471d36e50e8f2b0474c9ab x86_64/10.2/RPMS/lib64gtk+2.0_0-2.6.4-2.2.102mdk.x86_64.rpm
af379d377d8570a4d8f4b2d37a8c63de x86_64/10.2/RPMS/lib64gtk+2.0_0-devel-2.6.4-2.2.102mdk.x86_64.rpm
04bef7f1423c2c92c097c2a1f27bf385 x86_64/10.2/RPMS/lib64gtk+-x11-2.0_0-2.6.4-2.2.102mdk.x86_64.rpm
12372f097bb4fe44d6a2e8ca49eca044 x86_64/10.2/SRPMS/gdk-pixbuf-0.22.0-8.2.102mdk.src.rpm
20b3573192370e17bb3412c0bf6bf4bb x86_64/10.2/SRPMS/gtk+2.0-2.6.4-2.2.102mdk.src.rpm

Mandriva Linux 2006.0:
d9d0be9e0592ba8d76c0c26e5d386a6b 2006.0/RPMS/gdk-pixbuf-loaders-0.22.0-8.2.20060mdk.i586.rpm
6ccbf44dd9ee47a6955808b410a2d9f0 2006.0/RPMS/gtk+2.0-2.8.3-4.2.20060mdk.i586.rpm
901d47bb921b11cd44aba20d4e16fed5 2006.0/RPMS/libgdk_pixbuf2.0_0-2.8.3-4.2.20060mdk.i586.rpm
ed29f729ede5797e86b991c819fb4cfc 2006.0/RPMS/libgdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk.i586.rpm
5fd4a4e798edbd0b2946a726f5be61c0 2006.0/RPMS/libgdk-pixbuf2-0.22.0-8.2.20060mdk.i586.rpm
7aaff9eeeb8837319966742deb2221c8 2006.0/RPMS/libgdk-pixbuf2-devel-0.22.0-8.2.20060mdk.i586.rpm
3581c3dc40fd94c3c230e944c5dc233d 2006.0/RPMS/libgdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk.i586.rpm
abfec1845b2331b6fa8e8c8ae7fd6ea8 2006.0/RPMS/libgdk-pixbuf-xlib2-0.22.0-8.2.20060mdk.i586.rpm
820ea1b736330c4b1bea152f936afa3e 2006.0/RPMS/libgtk+2.0_0-2.8.3-4.2.20060mdk.i586.rpm
308876775580855e3fd995eaa9a88f67 2006.0/RPMS/libgtk+2.0_0-devel-2.8.3-4.2.20060mdk.i586.rpm
e719da9bd860af935298763e4c68e943 2006.0/RPMS/libgtk+-x11-2.0_0-2.8.3-4.2.20060mdk.i586.rpm
1172eb0c384f302a6be7b29d1ac06ad0 2006.0/SRPMS/gdk-pixbuf-0.22.0-8.2.20060mdk.src.rpm
c60412628b14382bd94651ba3b0510ec 2006.0/SRPMS/gtk+2.0-2.8.3-4.2.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
0b0387a3898f25a2141630142a3b8644 x86_64/2006.0/RPMS/gdk-pixbuf-loaders-0.22.0-8.2.20060mdk.x86_64.rpm
551f6613f020971c9d2d04b29a9ae8b1 x86_64/2006.0/RPMS/gtk+2.0-2.8.3-4.2.20060mdk.x86_64.rpm
37eda74125532be96bd1bf3bf8888801 x86_64/2006.0/RPMS/lib64gdk_pixbuf2.0_0-2.8.3-4.2.20060mdk.x86_64.rpm
63e9f0270f024ea3c556d64f10d3a95e x86_64/2006.0/RPMS/lib64gdk_pixbuf2.0_0-devel-2.8.3-4.2.20060mdk.x86_64.rpm
5a9331585e79b29c73db5f78815c7acf x86_64/2006.0/RPMS/lib64gdk-pixbuf2-0.22.0-8.2.20060mdk.x86_64.rpm
5d56a02664af053e3c378b181b58872f x86_64/2006.0/RPMS/lib64gdk-pixbuf2-devel-0.22.0-8.2.20060mdk.x86_64.rpm
83e0b64b4c37f4bd0fb80222e8cbccef x86_64/2006.0/RPMS/lib64gdk-pixbuf-gnomecanvas1-0.22.0-8.2.20060mdk.x86_64.rpm
7ae8fef556571aaebb15800196a78fd8 x86_64/2006.0/RPMS/lib64gdk-pixbuf-xlib2-0.22.0-8.2.20060mdk.x86_64.rpm
8501607d5cec37b9ca9360a65b93016e x86_64/2006.0/RPMS/lib64gtk+2.0_0-2.8.3-4.2.20060mdk.x86_64.rpm
e1decb7355fee5b81bcf352853b3a581 x86_64/2006.0/RPMS/lib64gtk+2.0_0-devel-2.8.3-4.2.20060mdk.x86_64.rpm
56678f5b7f25b32b3e91bf0eb75125d8 x86_64/2006.0/RPMS/lib64gtk+-x11-2.0_0-2.8.3-4.2.20060mdk.x86_64.rpm
1172eb0c384f302a6be7b29d1ac06ad0 x86_64/2006.0/SRPMS/gdk-pixbuf-0.22.0-8.2.20060mdk.src.rpm
c60412628b14382bd94651ba3b0510ec x86_64/2006.0/SRPMS/gtk+2.0-2.8.3-4.2.20060mdk.src.rpm

Corporate Server 2.1:
eb77d6aea246fd1fce30cf70983eef97 corporate/2.1/RPMS/gdk-pixbuf-loaders-0.18.0-3.3.C21mdk.i586.rpm
503674f8eedc566ced07ed37c7b36af1 corporate/2.1/RPMS/gtk+2.0-2.0.6-8.3.C21mdk.i586.rpm
e20d204c0af2e94664dcf19461a7078b corporate/2.1/RPMS/libgdk_pixbuf2.0_0-2.0.6-8.3.C21mdk.i586.rpm
6cb3a7006878c1ec8058036a97e4dc5f corporate/2.1/RPMS/libgdk_pixbuf2.0_0-devel-2.0.6-8.3.C21mdk.i586.rpm
be5904d7656771b395fdd62a55007860 corporate/2.1/RPMS/libgdk-pixbuf2-0.18.0-3.3.C21mdk.i586.rpm
8b972da767957bbab46a014dcdf81af6 corporate/2.1/RPMS/libgdk-pixbuf2-devel-0.18.0-3.3.C21mdk.i586.rpm
ca9b5e51db5fc47eb34239a532b5dcc4 corporate/2.1/RPMS/libgdk-pixbuf-gnomecanvas1-0.18.0-3.3.C21mdk.i586.rpm
c6c3304b330263ca6fce717ff53607e2 corporate/2.1/RPMS/libgdk-pixbuf-xlib2-0.18.0-3.3.C21mdk.i586.rpm
daa31d833094db844bdeb42583d0057f corporate/2.1/RPMS/libgtk+2.0_0-2.0.6-8.3.C21mdk.i586.rpm
e48e36493f66af8c70088f363f8f28c7 corporate/2.1/RPMS/libgtk+2.0_0-devel-2.0.6-8.3.C21mdk.i586.rpm
cfff01a1e83140d221a5103bcb4f4859 corporate/2.1/RPMS/libgtk+-linuxfb-2.0_0-2.0.6-8.3.C21mdk.i586.rpm
abd28ee54616e3e0aac2cb99a47a64cf corporate/2.1/RPMS/libgtk+-linuxfb-2.0_0-devel-2.0.6-8.3.C21mdk.i586.rpm
2a4ac85ef70c4727452f0d0b2a2887df corporate/2.1/RPMS/libgtk+-x11-2.0_0-2.0.6-8.3.C21mdk.i586.rpm
8f2c41c1a3d7c29680d9dece02259268 corporate/2.1/RPMS/libgtk+-x11-2.0_0-devel-2.0.6-8.3.C21mdk.i586.rpm
56d389005198b6d590e677c65ddf3fa8 corporate/2.1/SRPMS/gdk-pixbuf-0.18.0-3.3.C21mdk.src.rpm
c0d4bb29fe970d14be372829fa8bf2f2 corporate/2.1/SRPMS/gtk+2.0-2.0.6-8.3.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
0ddfe5a3fde25c5d7c2ba3b03783098a x86_64/corporate/2.1/RPMS/gdk-pixbuf-loaders-0.18.0-3.3.C21mdk.x86_64.rpm
4ea13c8f5452e16d15d21d82212b985c x86_64/corporate/2.1/RPMS/gtk+2.0-2.0.6-8.3.C21mdk.x86_64.rpm
4bc150dce20f085232af78f7f3fb00e7 x86_64/corporate/2.1/RPMS/libgdk_pixbuf2.0_0-2.0.6-8.3.C21mdk.x86_64.rpm
7d3a41da3d8fe8716278db40b87220ce x86_64/corporate/2.1/RPMS/libgdk_pixbuf2.0_0-devel-2.0.6-8.3.C21mdk.x86_64.rpm
3a07246c63730d57377d4fac05fc7e6a x86_64/corporate/2.1/RPMS/libgdk-pixbuf2-0.18.0-3.3.C21mdk.x86_64.rpm
316a0ca17422ca3258edebf6224a9799 x86_64/corporate/2.1/RPMS/libgdk-pixbuf2-devel-0.18.0-3.3.C21mdk.x86_64.rpm
ee3c011a6dcf6c611190d5f303bc8383 x86_64/corporate/2.1/RPMS/libgdk-pixbuf-gnomecanvas1-0.18.0-3.3.C21mdk.x86_64.rpm
67c47c94032b71f70a5614fb5e8f13cf x86_64/corporate/2.1/RPMS/libgdk-pixbuf-xlib2-0.18.0-3.3.C21mdk.x86_64.rpm
dfa50729815f5fd71d0c4bace65ff883 x86_64/corporate/2.1/RPMS/libgtk+2.0_0-2.0.6-8.3.C21mdk.x86_64.rpm
05899374ee9599ea2c3060c710baaaae x86_64/corporate/2.1/RPMS/libgtk+2.0_0-devel-2.0.6-8.3.C21mdk.x86_64.rpm
84ea25e7270e21e6bf034ee99f607a6e x86_64/corporate/2.1/RPMS/libgtk+-linuxfb-2.0_0-2.0.6-8.3.C21mdk.x86_64.rpm
0a5501fcb376ae58a91f93603d43c854 x86_64/corporate/2.1/RPMS/libgtk+-linuxfb-2.0_0-devel-2.0.6-8.3.C21mdk.x86_64.rpm
8bfff43656ce1b877d6badd647e4228c x86_64/corporate/2.1/RPMS/libgtk+-x11-2.0_0-2.0.6-8.3.C21mdk.x86_64.rpm
02c5afddb719fb1bd96069da728dee51 x86_64/corporate/2.1/RPMS/libgtk+-x11-2.0_0-devel-2.0.6-8.3.C21mdk.x86_64.rpm
56d389005198b6d590e677c65ddf3fa8 x86_64/corporate/2.1/SRPMS/gdk-pixbuf-0.18.0-3.3.C21mdk.src.rpm
c0d4bb29fe970d14be372829fa8bf2f2 x86_64/corporate/2.1/SRPMS/gtk+2.0-2.0.6-8.3.C21mdk.src.rpm

Corporate 3.0:
cab845d33e298257d8d28eae7832d052 corporate/3.0/RPMS/gdk-pixbuf-loaders-0.22.0-2.5.C30mdk.i586.rpm
1fc6c73c26ec00dc3098d6453bd0ef19 corporate/3.0/RPMS/gtk+2.0-2.2.4-10.5.C30mdk.i586.rpm
4e79270734dfdfe712842181bb94c669 corporate/3.0/RPMS/libgdk_pixbuf2.0_0-2.2.4-10.5.C30mdk.i586.rpm
86de0add553195511d92aff267edeec6 corporate/3.0/RPMS/libgdk_pixbuf2.0_0-devel-2.2.4-10.5.C30mdk.i586.rpm
7055f2c41b4517335c2c4d466feef43b corporate/3.0/RPMS/libgdk-pixbuf2-0.22.0-2.5.C30mdk.i586.rpm
f34e1a41a107ca6baaef8b215b861b04 corporate/3.0/RPMS/libgdk-pixbuf2-devel-0.22.0-2.5.C30mdk.i586.rpm
54ca34e11e6ec1ca18fda155d64b77ca corporate/3.0/RPMS/libgdk-pixbuf-gnomecanvas1-0.22.0-2.5.C30mdk.i586.rpm
aa6f1f400222f145d8a2478e27bffc61 corporate/3.0/RPMS/libgdk-pixbuf-xlib2-0.22.0-2.5.C30mdk.i586.rpm
eb8625a04376a66b8e915eb1cff0bfe6 corporate/3.0/RPMS/libgtk+2.0_0-2.2.4-10.5.C30mdk.i586.rpm
77a87c1fa116f932bed11f0359945c02 corporate/3.0/RPMS/libgtk+2.0_0-devel-2.2.4-10.5.C30mdk.i586.rpm
fe25229ee99115542419081eef7c781a corporate/3.0/RPMS/libgtk+-linuxfb-2.0_0-2.2.4-10.5.C30mdk.i586.rpm
441034ec5acb5457ab9a0ea7056b5bad corporate/3.0/RPMS/libgtk+-linuxfb-2.0_0-devel-2.2.4-10.5.C30mdk.i586.rpm
3e401b38c5f473cf141c5fc644061d17 corporate/3.0/RPMS/libgtk+-x11-2.0_0-2.2.4-10.5.C30mdk.i586.rpm
7c8aa1e0b50c0b4c810c009b55ae7199 corporate/3.0/SRPMS/gdk-pixbuf-0.22.0-2.5.C30mdk.src.rpm
edec45f53f6c3ffee49e46734c4ef5a9 corporate/3.0/SRPMS/gtk+2.0-2.2.4-10.5.C30mdk.src.rpm

Corporate 3.0/X86_64:
429118fdbb30b794e29afa5c464828cb x86_64/corporate/3.0/RPMS/gdk-pixbuf-loaders-0.22.0-2.5.C30mdk.x86_64.rpm
46893bdd78f1f384f3e8ef77b03adcfd x86_64/corporate/3.0/RPMS/gtk+2.0-2.2.4-10.5.C30mdk.x86_64.rpm
4f937b2cff87eca1a2f0ee6d40fcdef5 x86_64/corporate/3.0/RPMS/lib64gdk_pixbuf2.0_0-2.2.4-10.5.C30mdk.x86_64.rpm
7185bee3b5b248fd1fd5cf25498b01e6 x86_64/corporate/3.0/RPMS/lib64gdk_pixbuf2.0_0-devel-2.2.4-10.5.C30mdk.x86_64.rpm
7f60d761a707c3b6a6bedf09818a4912 x86_64/corporate/3.0/RPMS/lib64gdk-pixbuf2-0.22.0-2.5.C30mdk.x86_64.rpm
dedc5df1fc294bda996217a031d3f486 x86_64/corporate/3.0/RPMS/lib64gdk-pixbuf2-devel-0.22.0-2.5.C30mdk.x86_64.rpm
f64a9f5316847db31649b860c1840f05 x86_64/corporate/3.0/RPMS/lib64gdk-pixbuf-gnomecanvas1-0.22.0-2.5.C30mdk.x86_64.rpm
01d40f81c3fcc91c82b6e19f4f7271d5 x86_64/corporate/3.0/RPMS/lib64gdk-pixbuf-xlib2-0.22.0-2.5.C30mdk.x86_64.rpm
9315a737c3b94b8564fbb03ef49a0e3e x86_64/corporate/3.0/RPMS/lib64gtk+2.0_0-2.2.4-10.5.C30mdk.x86_64.rpm
b7e6e3abf4687f0aed310c573e37fa24 x86_64/corporate/3.0/RPMS/lib64gtk+2.0_0-devel-2.2.4-10.5.C30mdk.x86_64.rpm
b6a0af06cb21b4f18d1e4045646d5399 x86_64/corporate/3.0/RPMS/lib64gtk+-linuxfb-2.0_0-2.2.4-10.5.C30mdk.x86_64.rpm
81ccb39f993742d2d97d00cdd74ba7c6 x86_64/corporate/3.0/RPMS/lib64gtk+-linuxfb-2.0_0-devel-2.2.4-10.5.C30mdk.x86_64.rpm
3f4881400ba088628c2380037a88f463 x86_64/corporate/3.0/RPMS/lib64gtk+-x11-2.0_0-2.2.4-10.5.C30mdk.x86_64.rpm
7c8aa1e0b50c0b4c810c009b55ae7199 x86_64/corporate/3.0/SRPMS/gdk-pixbuf-0.22.0-2.5.C30mdk.src.rpm
edec45f53f6c3ffee49e46734c4ef5a9 x86_64/corporate/3.0/SRPMS/gtk+2.0-2.2.4-10.5.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFDfjx6mqjQ0CJFipgRAlWhAJ0VYyEAp1ZBQ7JDE7ot4YX6kN6lXwCgoDSB
W0S3AQOeUXu4MQWM8CCQvgw=
=H3jJ
- -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |