Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2006 > Three Debian Security Advisories: 1. DSA 903-2 - New unzip packages fix unauthorised permissions modification 2. DSA 937-1 - New tetex-bin packages fix arbitrary code execution 3. DSA 938-1 - New koffice packages fix arbitrary code execution

January 2006

Three Debian Security Advisories: 1. DSA 903-2 - New unzip packages fix unauthorised permissions modification 2. DSA 937-1 - New tetex-bin packages fix arbitrary code execution 3. DSA 938-1 - New koffice packages fix arbitrary code execution

ID: 00045
Ref: 44/2006
Date: 13 January 2006:14:36:03
Version: 1
Title: Three Debian Security Advisories: 1. DSA 903-2 - New unzip packages fix unauthorised permissions modification 2. DSA 937-1 - New tetex-bin packages fix arbitrary code execution 3. DSA 938-1 - New koffice packages fix arbitrary code execution
Abstract:
Vendors affected: Debian
Operating systems affected: Debian
Applications affected: Debian
Title
=====

Three Debian Security Advisories:

1. DSA 903-2 - New unzip packages fix unauthorised permissions modification

2. DSA 937-1 - New tetex-bin packages fix arbitrary code execution

3. DSA 938-1 - New koffice packages fix arbitrary code execution

Detail
======

1. Imran Ghory discovered a race condition in the permissions setting
code in unzip. When decompressing a file in a directory an
attacker has access to, unzip could be tricked to set the file
permissions to a different file the user has permissions to.

2. "infamous41md" and Chris Evans discovered several heap based buffer
overflows in xpdf, the Portable Document Format (PDF) suite, which is
also present in tetex-bin, the binary files of teTeX, and which can
lead to a denial of service by crashing the application or possibly to
the execution of arbitrary code.

3. "infamous41md" and chris Evans discovered several heap based buffer
overflows in xpdf, the Portable Document Format (PDF) suite, which is
also present in koffice, the KDE Office Suite, and which can lead to a
denial of service by crashing the application or possibly to the
execution of arbitrary code.



1.

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 903-2 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 12th, 2006 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : unzip
Vulnerability : race condition
Problem type : local
Debian-specific: no
CVE ID : CAN-2005-2475
BugTraq ID : 14450
Debian Bugs : 321927 343680

The unzip update in DSA 903 contained a regression so that symbolic
links that are resolved later in a zip archive aren't supported
anymore. This update corrects this behaviour. For completeness,
below plese find the original advisory text:

Imran Ghory discovered a race condition in the permissions setting
code in unzip. When decompressing a file in a directory an
attacker has access to, unzip could be tricked to set the file
permissions to a different file the user has permissions to.

For the old stable distribution (woody) this problem has been fixed in
version 5.50-1woody5.

For the stable distribution (sarge) this problem has been fixed in
version 5.52-1sarge3.

For the unstable distribution (sid) this problem has been fixed in
version 5.52-6.

We recommend that you upgrade your unzip package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5.dsc
Size/MD5 checksum: 571 75e2923b74af607785cbefbbea79d1ab
http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5.diff.gz
Size/MD5 checksum: 6484 73efae47dcd377abb934e36805c16190
http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50.orig.tar.gz
Size/MD5 checksum: 1068379 6d27bcdf9b51d0ad0f78161d0f99582e

Alpha architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_alpha.deb
Size/MD5 checksum: 160482 94b0a5e18d78866d92f375d6b93a22c3

ARM architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_arm.deb
Size/MD5 checksum: 139374 bd8cc4c654c901b5c320b2cdbf09f31b

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_i386.deb
Size/MD5 checksum: 122808 1d5669290431fb7fe83f688447b22d84

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_ia64.deb
Size/MD5 checksum: 191010 1cd02c151f46b5f7872a7de3079ebc2a

HP Precision architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_hppa.deb
Size/MD5 checksum: 146954 ee23ad6e2c40d38e4655be1f2666489d

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_m68k.deb
Size/MD5 checksum: 119578 7765363163750bed7e72472bee09afc4

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_mips.deb
Size/MD5 checksum: 142950 97af77c03fb69936407c86394fb846a5

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_mipsel.deb
Size/MD5 checksum: 143422 98a0ab0fd751c246ebd50e5c62886217

PowerPC architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_powerpc.deb
Size/MD5 checksum: 136368 b2bea065ae91032fe987aaf120e08ad9

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_s390.deb
Size/MD5 checksum: 137044 151da2fddaaca890dbf5166140f23881

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.50-1woody5_sparc.deb
Size/MD5 checksum: 147498 022e8ca1cecf20178edd68296fd973aa


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3.dsc
Size/MD5 checksum: 528 b6e01dbb89f9130fa16650b16f4d4e32
http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3.diff.gz
Size/MD5 checksum: 5387 807b5d9e8efa85e8caab673eff38aff7
http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52.orig.tar.gz
Size/MD5 checksum: 1140291 9d23919999d6eac9217d1f41472034a9

Alpha architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_alpha.deb
Size/MD5 checksum: 175506 90375091fd0c2577518bfd7db2202272

AMD64 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_amd64.deb
Size/MD5 checksum: 154876 7129ee6610e6ec0320141bb7aaa5288e

ARM architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_arm.deb
Size/MD5 checksum: 155430 3fb2c5576d1709c6d7cc1b89d61a50b8

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_i386.deb
Size/MD5 checksum: 144934 0e860597ffe259038f7bb8e1ce2630df

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_ia64.deb
Size/MD5 checksum: 206648 d261bf8a2e3c8fce3d0898355a7420db

HP Precision architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_hppa.deb
Size/MD5 checksum: 162840 91d7d512b915757bf7c7e3e8640efa0c

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_m68k.deb
Size/MD5 checksum: 133734 878d1597bd5ef623a6bc70f6446654a4

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_mips.deb
Size/MD5 checksum: 163396 5cbe0e22136949f240031502ea07d456

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_mipsel.deb
Size/MD5 checksum: 163966 4066fa1e97bad61c47be9b6ffa47179f

PowerPC architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_powerpc.deb
Size/MD5 checksum: 157388 25c3d9d685ec411e5b53cc0e8002ca8e

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_s390.deb
Size/MD5 checksum: 156494 bfeb0b1d801266334e6a46f0818a9e6f

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/u/unzip/unzip_5.52-1sarge3_sparc.deb
Size/MD5 checksum: 154952 e1e42335312202d8b3f0727e9d78fda9


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDxjcDW5ql+IAeqTIRArJQAJ48ZSIEK2BLNM8nw7eF+nYWcAp1SACglvjT
4zYhaiqXeH/DSpRL/YVOouM=
=ZkQw
- -----END PGP SIGNATURE-----


2.

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 937-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 12th, 2006 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : tetex-bin
Vulnerability : buffer overflows
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2005-3191 CVE-2005-3192 CVE-2005-3624 CVE-2005-3625
CVE-2005-3626 CVE-2005-3627 CVE-2005-3628
CERT advisory :
BugTraq ID :
Debian Bug : 342292

"infamous41md" and Chris Evans discovered several heap based buffer
overflows in xpdf, the Portable Document Format (PDF) suite, which is
also present in tetex-bin, the binary files of teTeX, and which can
lead to a denial of service by crashing the application or possibly to
the execution of arbitrary code.

For the old stable distribution (woody) these problems have been fixed in
version 1.0.7+20011202-7.7.

For the stable distribution (sarge) these problems have been fixed in
version 2.0.2-30sarge4.

For the unstable distribution (sid) these problems have been fixed in
version 0.4.3-2 of poppler against which tetex-bin links.

We recommend that you upgrade your tetex-bin package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7.dsc
Size/MD5 checksum: 874 4fe4cb1a4bb2d39afc7f92948bafe6af
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7.tar.gz
Size/MD5 checksum: 10328904 be3ba73c70f6c50637069868c56a7d9e

Alpha architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_alpha.deb
Size/MD5 checksum: 84666 14987fa20077b5ce0a10f64d0df7e25f
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_alpha.deb
Size/MD5 checksum: 53260 7736b2f52cbdd476e8d4b8339b5d8b72
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_alpha.deb
Size/MD5 checksum: 4569310 e5063538a36c4fd7aa514f2e8711aea0

ARM architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_arm.deb
Size/MD5 checksum: 65270 472d8a8a0f9823eab4b57a9a95515c01
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_arm.deb
Size/MD5 checksum: 43782 d2dde880cf11acfdaa89d51dbc3735d5
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_arm.deb
Size/MD5 checksum: 3704454 62ecd37b4548deed4aa633083eda9e3a

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_i386.deb
Size/MD5 checksum: 62610 b019a923fe66e306fe5864373f35e24a
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_i386.deb
Size/MD5 checksum: 40920 f42ec41bd53e2a99315aae7f3dd5657a
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_i386.deb
Size/MD5 checksum: 3137616 24d0d5e485fd32f004aba99607d5b267

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_ia64.deb
Size/MD5 checksum: 89722 3ff4685d8757f3f34f69d1d3038b99ee
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_ia64.deb
Size/MD5 checksum: 63476 2d5255d1a7e38287f68692f0fe5dd171
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_ia64.deb
Size/MD5 checksum: 5599966 6cd21572aad64c291f728cfd8ddf5753

HP Precision architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_hppa.deb
Size/MD5 checksum: 79344 6cd09b3241459a76bc333ec2cca26eb3
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_hppa.deb
Size/MD5 checksum: 49540 042b7d2e4889fbed4165d86e3841c396
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_hppa.deb
Size/MD5 checksum: 4107634 2253868a707890f55508be0a8d2b5084

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_m68k.deb
Size/MD5 checksum: 61938 328fa7a34388dbdd0bf3d77199f46e83
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_m68k.deb
Size/MD5 checksum: 41538 6e3a03abbf8382b2aaed4abc95115e34
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_m68k.deb
Size/MD5 checksum: 2923636 fcd6d90ba74b613de76fd32834c2f250

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_mips.deb
Size/MD5 checksum: 75074 410d60865596a9e67e0dc721b703610e
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_mips.deb
Size/MD5 checksum: 42556 9a09bb7af1668ce16cee128f67d2da50
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_mips.deb
Size/MD5 checksum: 3941504 a6f1b0d37fc2f6dcbfd9d6c245551cf1

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_mipsel.deb
Size/MD5 checksum: 74864 db91b18d0295fd07a1771f0fdc910730
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_mipsel.deb
Size/MD5 checksum: 42760 293b2e9ea53c8664208b4eaa5d7d038b
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_mipsel.deb
Size/MD5 checksum: 3899710 d160c22beba8a431496557b59218ebee

PowerPC architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_powerpc.deb
Size/MD5 checksum: 73944 edc0023d5a5f6c7810e5e39518e9075c
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_powerpc.deb
Size/MD5 checksum: 45460 1fa491c88047f14874e162129943a0f2
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_powerpc.deb
Size/MD5 checksum: 3588892 ec0621101b8f88a8e6886611f476a23b

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_s390.deb
Size/MD5 checksum: 64262 f8383550467d7d3f0dddb35694b4b453
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_s390.deb
Size/MD5 checksum: 43938 dc3005de68ffb1f120af9b98a4138ad7
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_s390.deb
Size/MD5 checksum: 3441798 30d05314a39832a47b3b91f900e78d10

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_1.0.7+20011202-7.7_sparc.deb
Size/MD5 checksum: 70704 dc6dd4572fe8dc8d79d645190dd5b9e8
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_1.0.7+20011202-7.7_sparc.deb
Size/MD5 checksum: 48910 cfe4a6905dbd392494d200a64240604d
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_1.0.7+20011202-7.7_sparc.deb
Size/MD5 checksum: 3599016 000aa70472574b64334c612e8dc6f79b


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4.dsc
Size/MD5 checksum: 1004 983ccc6f8176a0beedda5df8a06e3537
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4.diff.gz
Size/MD5 checksum: 154375 3d72a9201f38d2dde021df25b6e1649c
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2.orig.tar.gz
Size/MD5 checksum: 11677169 8f02d5940bf02072ce5fe05429c90e63

Alpha architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_alpha.deb
Size/MD5 checksum: 89842 6de1e46a20510337254c069cec4d8590
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_alpha.deb
Size/MD5 checksum: 65424 ceb0f7a0bba00d19b0e787d465ccfe2d
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_alpha.deb
Size/MD5 checksum: 5135466 f1ee07be1b52761c5c421252e69b5fec

AMD64 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_amd64.deb
Size/MD5 checksum: 72772 c7912ef834249631873ca38061306b32
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_amd64.deb
Size/MD5 checksum: 61922 7601e110af324ee3cb90aec31c1a2c4b
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_amd64.deb
Size/MD5 checksum: 4356908 4fd1dd53475b92b7d3ded8bc23a84d23

ARM architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_arm.deb
Size/MD5 checksum: 67808 ee9b99d5159d1651f6a29768b4cf0854
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_arm.deb
Size/MD5 checksum: 58142 48e671e8b106b363d8761b3d20acc5ec
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_arm.deb
Size/MD5 checksum: 4300642 c8049249d1904b75c38081129bc5467e

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_i386.deb
Size/MD5 checksum: 66218 d349881df541b5f7383e5a5390ac238a
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_i386.deb
Size/MD5 checksum: 59176 81412a2ee64924929205b718813970bb
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_i386.deb
Size/MD5 checksum: 3939522 fe9e13180506bb76b073be1e289d214e

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_ia64.deb
Size/MD5 checksum: 89822 abc527d1eccb607d0731be6200352e75
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_ia64.deb
Size/MD5 checksum: 73492 b7ba1d9e84583256f33a1c5abe76162e
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_ia64.deb
Size/MD5 checksum: 5909228 984e273287f9d5dbee2e8310ab43ae69

HP Precision architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_hppa.deb
Size/MD5 checksum: 78310 0e86d99930bf65fdc9c3479089a6a20b
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_hppa.deb
Size/MD5 checksum: 66644 21cab5ff1f28857f08b1771de7c3f461
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_hppa.deb
Size/MD5 checksum: 4612710 fdab445f3c33ae90180d3c834044fc40

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_m68k.deb
Size/MD5 checksum: 63502 78c53919dcfe97aedbc80b1fc887e204
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_m68k.deb
Size/MD5 checksum: 58736 69a55de426d9e122adc441b26c9bb062
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_m68k.deb
Size/MD5 checksum: 3600916 b05f9a5118f7028e5c437c5749bfe79f

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_mips.deb
Size/MD5 checksum: 75558 6449710e39b1ebad2c982bcad599e7f0
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_mips.deb
Size/MD5 checksum: 59190 d1fa5b3b77fd4a24d1bc65fb5bce6a90
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_mips.deb
Size/MD5 checksum: 4602728 8454c9ddb3922c981e8d5cc5bf59ad1e

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_mipsel.deb
Size/MD5 checksum: 75546 7bbac980fa4a95d71ebd4de2fe2b2b5b
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_mipsel.deb
Size/MD5 checksum: 59430 ea2fd76fbc73cad63efef3b939c89aa1
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_mipsel.deb
Size/MD5 checksum: 4559108 fc52f040b130e7954230cffdd91d1145

PowerPC architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_powerpc.deb
Size/MD5 checksum: 74904 8a3d0d1292f0978eab3b39d6f96a97e9
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_powerpc.deb
Size/MD5 checksum: 63372 09c6961bbf8e5280ab1f618dd443106c
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_powerpc.deb
Size/MD5 checksum: 4382198 62e8dec6600f7fdcee4e11bc29258766

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_s390.deb
Size/MD5 checksum: 71844 48a4bded5ebdb5719f5b72fc0bb4ea60
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_s390.deb
Size/MD5 checksum: 63614 9fdebe54556dba9bb6fd3cdd5bab2034
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_s390.deb
Size/MD5 checksum: 4269024 36f0cf0d6f8f73f569af231b7b47c53e

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea-dev_2.0.2-30sarge4_sparc.deb
Size/MD5 checksum: 70022 7cfdf14b376e0249ae24bb77fb1ae73a
http://security.debian.org/pool/updates/main/t/tetex-bin/libkpathsea3_2.0.2-30sarge4_sparc.deb
Size/MD5 checksum: 60990 f25104fe0c734c162f75876bdaf797aa
http://security.debian.org/pool/updates/main/t/tetex-bin/tetex-bin_2.0.2-30sarge4_sparc.deb
Size/MD5 checksum: 4156948 a5ae0e1018b2ddc41de89accf9aa10d6


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDxj5FW5ql+IAeqTIRAiSvAJ4nLrbz5mX/YGj988kKJvTyxWjPUACdHocZ
DXgbf2rREWYvVX/u3V1/tEg=
=SKyV
- -----END PGP SIGNATURE-----


3.

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------
Debian Security Advisory DSA 938-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
January 12th, 2006 http://www.debian.org/security/faq
- - --------------------------------------------------------------------------

Package : koffice
Vulnerability : buffer overflows
Problem type : remote
Debian-specific: no
CVE IDs : CVE-2005-3191 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625
CVE-2005-3626 CVE-2005-3627 CVE-2005-3628

"infamous41md" and chris Evans discovered several heap based buffer
overflows in xpdf, the Portable Document Format (PDF) suite, which is
also present in koffice, the KDE Office Suite, and which can lead to a
denial of service by crashing the application or possibly to the
execution of arbitrary code.

The old stable distribution (woody) does not contain koffice packages.

For the stable distribution (sarge) these problems have been fixed in
version 1.3.5-4.sarge.2.

For the unstable distribution (sid) these problems have been fixed in
version 1.4.2-6.

We recommend that you upgrade your koffice package.


Upgrade Instructions
- - --------------------

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.1 alias sarge
- - --------------------------------

Source archives:

http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.2.dsc
Size/MD5 checksum: 975 ef074154b4cd7e051accef81a1863e7f
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.2.diff.gz
Size/MD5 checksum: 21184 5acfea3a4fd7bb6ae0fa62eb6b5d5fcc
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5.orig.tar.gz
Size/MD5 checksum: 13154501 2c9b45ecbf16a8c5d16ce9d2f51c2571

Architecture independent components:

http://security.debian.org/pool/updates/main/k/koffice/kivio-data_1.3.5-4.sarge.2_all.deb
Size/MD5 checksum: 623480 c3e7b054ffeda4460ab07362c0ed6799
http://security.debian.org/pool/updates/main/k/koffice/koffice-data_1.3.5-4.sarge.2_all.deb
Size/MD5 checksum: 692700 0639d1e39d1c80e51501faf027af88f4
http://security.debian.org/pool/updates/main/k/koffice/koffice-doc-html_1.3.5-4.sarge.2_all.deb
Size/MD5 checksum: 295658 65ba876cdc62bf9be0fbdb78609a9821
http://security.debian.org/pool/updates/main/k/koffice/koffice_1.3.5-4.sarge.2_all.deb
Size/MD5 checksum: 21580 5ec8554299872241ae0e644cdaf10ea8

Alpha architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 923214 0cb839cf64bc1b30ed365365081f27d4
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 715420 81a2ad50ff9b43eabfa607842533787e
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 703300 a6075593a65a177b8035a52eff2f4262
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 632936 b7913745d6aa506bbccee699b85ac6a3
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 154634 6bf809320c075fed4aa8322e87ed1647
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 2307026 35dda9781d05aaa690429eaff1776753
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 59686 fc9efd26ef516cbe4900d56f737353ab
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 2603122 8c23a7fd6f33396f3a1f5b0891ee507e
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 1850948 276edd09ce53c8d1559e243d368e5b76
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 566528 1bc0b27459cffe95bbaa48ad48f0d233
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_alpha.deb
Size/MD5 checksum: 3768700 0b237dcc5bf4901cd7ca365008a90a6d

AMD64 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 860270 3e7fcfbfb3a6d7e5d299a28ddd93df59
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 681180 b920b91f6e558d14826e8abb565dc4f8
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 700636 3597c796ca571080874ac6c25c9d4488
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 588084 9f742c2c72cbd1c4e8ae05bb8fea4c26
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 154646 a87e970fa711e990e4c13056a6d0937b
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 2137518 d93213956792cb8e9b545cbaa4b3dcdf
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 58210 161caf23afae40fce7503efd4b45b5e1
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 2539954 9d1ea7870219e8efd5abf9477ca62d49
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 1758924 513f7b3078c4c5ebc771af90952f5b72
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 557912 69091d6c36f8474e85c8be9283520fff
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_amd64.deb
Size/MD5 checksum: 3588500 3838a7554c442a0c636771811d2011d2

ARM architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 763426 30bc86611a35ab8823839257563a2df6
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 641240 1e186c54b59ec20e655dbdb0fae910cb
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 694342 05825c993ea9bcaa7e0b24bfdc1f064b
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 514244 f6a80d7552fdeb06e0a53a1a122779bd
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 154668 566d6c446906bb98f1abcb93d6dd6a42
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 2022784 40d6797135a6004ae928a573ed604062
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 56204 4a0992af20e8ff465b850ad89c78562b
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 2431040 8da8672e5fbe36c073b6c3632ae6a94d
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 1598334 fc9ee6c0ea6408bd2e92e08055a6b758
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 520966 1d0bfe21fab5a1642ff433cf56e7d13a
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_arm.deb
Size/MD5 checksum: 3354762 a7fb7d5fdb70283457034bf6faa4c99b

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 804862 af2f48b1cbb0013a8dc46251ad9855b4
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 680482 34073c8d6b3c06bc6c9f19d02c897a46
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 697954 8619e5105184aad1528c9432722275df
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 561330 3070a93b3eedd38ff7a123e7b2c019da
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 154632 811a229c470508a810112661c52b91d8
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 2058204 8af7ebbfd7b3e4803d594b4fa46a708f
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 56504 99f4e4a60c58d616b22c8d6e08f1c7e1
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 2534664 dc8abc239a8d614ba98899349ae429f0
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 1727088 57eaf358c948812b5f472477bcbdce88
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 547992 7f9e22cc601dbb398ee0464256a4ac99
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_i386.deb
Size/MD5 checksum: 3508274 242ae0457f77eca88faf930da4e9d9f9

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 1050284 d9476a3840c63cd56703540b94b7e1ca
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 800650 561546f07ed6e51958993430cc9219be
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 713374 b80682d35c3a32274db7c0e8733801b0
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 720614 a6d9f8e70ddaea5a3c46e390a5c8a8c9
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 154642 c8acd4348595df5a8f603ef114d590ba
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 2671170 6776cb76db4ffcfe983e1382823bbf84
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 65102 2e2e8b5157127036fae2c5ce07838767
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 2803256 d3f75f9999b5f496ee169b9d7b6b9606
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 2153606 88c4d0507cd713512771750cfb4a41d7
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 616188 893fa81e4b2731d556ce9c408125e5f8
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_ia64.deb
Size/MD5 checksum: 4183042 d5728d1847dd35f0e138e73a7cf4bde3

HP Precision architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 942462 2bb1944927fd9d82f972b4c9dedd11c5
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 716224 164b266dc44c7c8a0d94185fa786337e
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 706922 c2df2eaf10502e7a21eca699a90cc05c
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 645142 aa484fbd8c0d553360ddf7d537fbd86a
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 154640 e0c5a22604a8dfcc789ad199e1fa0fba
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 2444000 452d30faa526d2a26762c828c957d944
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 62074 6d5b62ec8f2e7e80655ca26843d39bf2
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 2637714 574c360d0b3604878bc128b4e4165d88
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 1890156 b17ac210d685650f6b582d1cd0b251a8
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 580798 5aaf19cbb2adaac1850928a36d8b1382
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_hppa.deb
Size/MD5 checksum: 3799064 5da06cec2ae41aae542ca12e8f32a9dc

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 819354 4709910c9c9f5e38bfdebe83e3ea54a1
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 644144 c20e88eec7aa28e66a2f62e58e6bcf8d
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 700368 c955d8ce055dc6394a14f216a1003ec6
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 548610 047743d21ca66ed46c287b101e2df024
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 154670 4f67792f32abb78bc8cede5513a10135
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 2077604 fcb31c2fc6fe8807c567c016d553593c
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 59774 55debcb270b212e5a18bde176dbab10d
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 2469954 89db15884f1d516f1be88618a17cf105
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 1631150 ffb96324182d0b558bb1c416887a78d7
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 539630 8b9f9a2d67b940f70c2f596379b44665
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_m68k.deb
Size/MD5 checksum: 3450930 6312d9fbe92019c9de3f534136b007dc

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 780354 df6ddfb3fdb6946a8d3faa6ae60c0c20
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 629744 14460775cc1f7e66f75d6817d59c4a14
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 693574 42df5d8a5da4fcc265b86903bf267cc3
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 529700 54321e0761f85f16b7bfbbd6a7db0d4a
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 154650 ee8224a354ac5764f38080d973c91176
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 1870288 4d33fa7413d36c3bab0092e33cc825f7
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 56030 5b70b5840e190a560b01295420a94e98
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 2391944 4ad784a4b13f8732c38d728a41e06cdb
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 1489544 15fde5676951d277491dec4b3f484b31
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 499496 937ade0a626032bd54802eb613156bd8
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_mips.deb
Size/MD5 checksum: 3320834 4c793e72b1bdb83d8b309828ed82e9fe

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 772678 54f8b58706358dbb6d5026da456372f8
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 625890 ca5d6cd048e4072ec1fbe1dd910324bb
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 692828 2bb41b4b46974f9fc7dfaef2a242594b
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 520454 c33c12fc8d256a5971d564501553576d
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 154640 94153efb50aeb2a5301333ffd4ec1392
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 1838940 e7aeabeadf76d7264c1130fd1e50982e
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 55784 56214fa57be7a134823217a4f749e31e
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 2377324 fce57b63b935d84a0635b354dcc26af6
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 1477730 e23cda8f7c40660a44a9cb4bf0217c98
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 496690 ec12c7e58e2e6e34ce5df9ba67a41ea7
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_mipsel.deb
Size/MD5 checksum: 3291998 0d1e6faa3dc963cde6d38f5d320bcdee

PowerPC architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 832382 4faf52244ae1c081a8af8a5d65cccd89
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 658788 2e4ded7998e26b7b342051880dbc4150
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 698394 5e218573aa354d275e4329e77190cc45
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 561050 222758ba47fb662286d56fa1958dd7f7
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 154660 30af16272a8261fc7df4d45f59a2cef1
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 2024054 ece369a3582f4afd4a11eea2f681a879
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 58818 5dd4c3943029d18e85a00359ac38b8cc
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 2480338 9673fb007d4036f94892e37e921ec6ba
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 1667284 6ac7e3b368c476dce8a18ea612aa6a35
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 541366 33a37af5562ac341aad2159f3aef632a
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_powerpc.deb
Size/MD5 checksum: 3495556 67315b9bf2e0d963b45edf675815421b

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 856662 6e2775c7fdaa884f50d0f247d1593e9d
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 663668 d35dda002d2412d348764aff87855a9c
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 701510 84fde51e060e7bf3ab0f55b4d62e8077
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 595240 01da4d76201755b0a79756d00e2c0d3c
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 154634 35a585054e536a037e08efed31584eae
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 2079654 b858e376f589f3493eaa3912ef9190ef
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 58792 44045c4858aa53af8014389c56c92be7
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 2496724 c069a2665b9422ae3df3fbd2e29c05e4
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 1667150 c16c1e9dfd38776e63a5847c480db5a3
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 528256 09d5bf6a049197ac3aca5a92a175a6e2
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_s390.deb
Size/MD5 checksum: 3564096 cda84a85b52303f389be78a23f88649d

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/k/koffice/karbon_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 781758 b8071406f31963538cc33b765f093f74
http://security.debian.org/pool/updates/main/k/koffice/kchart_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 654476 5f55eb494fae97b22c5da553c6c3bf8a
http://security.debian.org/pool/updates/main/k/koffice/kformula_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 694550 60ba59f184c5fe403a074595a3b52a7f
http://security.debian.org/pool/updates/main/k/koffice/kivio_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 540772 8394e1a16f36ef43ab98bc9b1be35dab
http://security.debian.org/pool/updates/main/k/koffice/koffice-dev_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 154648 aa7278a0e17ab5a4c631e70189b09bf5
http://security.debian.org/pool/updates/main/k/koffice/koffice-libs_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 1956128 8c82c5495b1955c6ff3e5357cb89cff9
http://security.debian.org/pool/updates/main/k/koffice/koshell_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 55352 49bf2de681b61c77865be854ed8e2292
http://security.debian.org/pool/updates/main/k/koffice/kpresenter_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 2471168 0de69e8fc69990f8706280cd07612301
http://security.debian.org/pool/updates/main/k/koffice/kspread_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 1648972 408cb39e0f73283a0e1f538cca3ccc1e
http://security.debian.org/pool/updates/main/k/koffice/kugar_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 523570 9f20bc1f305fdcbfada8506dfbfc3a64
http://security.debian.org/pool/updates/main/k/koffice/kword_1.3.5-4.sarge.2_sparc.deb
Size/MD5 checksum: 3425860 db425a1a8d6a4b0c19eaf3d50162ec1b


These files will probably be moved into the stable distribution on
its next update.

- - ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show ' and http://packages.debian.org/

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFDxmRxW5ql+IAeqTIRAtWtAKCSfkNQqzIdsjt9xscozJxXpDR+qgCfWSlC
ogITfvnzdALsO99YLCc1FX8=
=Dr80
- -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |