August 2006
Three Red Hat Security Advisories: RHSA-2006:0615-01; RHSA-2006:0609-01; RHSA-2006:0603-01
ID: 00535
Ref: 514/2006
Date: 04 August 2006:11:07:17
Version: 1
Title: Three Red Hat Security Advisories: RHSA-2006:0615-01; RHSA-2006:0609-01; RHSA-2006:0603-01
Abstract: Updated GnuPG, libtiff, and seamonkey packages are now available.
Vendors affected: Red Hat
Operating systems affected: Red Hat
Applications affected: Red Hat
1.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Moderate: gnupg security update
Advisory ID: RHSA-2006:0615-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0615.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-3746
- - ---------------------------------------------------------------------
1. Summary:
Updated GnuPG packages that fix a security issue is now available.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64
3. Problem description:
GnuPG is a utility for encrypting data and creating digital signatures.
An integer overflow flaw was found in GnuPG. An attacker could create a
carefully crafted message packet with a large length that could cause GnuPG
to crash or possibly overwrite memory when opened. (CVE-2006-3746)
All users of GnuPG are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
5. Bug IDs fixed (http://bugzilla.redhat.com/):
200502 - CVE-2006-3746 GnuPG Parse_Comment Remote Buffer Overflow
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm
i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm
ia64:
0eae4ff0de57c02ed733997444eaf7bc gnupg-1.0.7-18.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm
ia64:
0eae4ff0de57c02ed733997444eaf7bc gnupg-1.0.7-18.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm
i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/gnupg-1.0.7-18.src.rpm
7b3112bfc84dafe30c00070c8cb09700 gnupg-1.0.7-18.src.rpm
i386:
958a64d9ec82066ab08da445199f6e75 gnupg-1.0.7-18.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm
i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm
ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm
ppc:
ce9d270a17b85a449bd6edc71ca6e10b gnupg-1.2.1-17.ppc.rpm
c4913dbb57e4c66d788420f3cb0a0382 gnupg-debuginfo-1.2.1-17.ppc.rpm
s390:
580852ff5bbef0d3a7c24abca0e3610c gnupg-1.2.1-17.s390.rpm
7583e08411dc1ab071a011a131331250 gnupg-debuginfo-1.2.1-17.s390.rpm
s390x:
e9d583a9471b453ce627e84dca5a9ccc gnupg-1.2.1-17.s390x.rpm
1a976fb4dc5cb4f5a5fee40e4e258b0a gnupg-debuginfo-1.2.1-17.s390x.rpm
x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm
Red Hat Desktop version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm
i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm
x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm
i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm
ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm
x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/gnupg-1.2.1-17.src.rpm
698a43061ce89f27bcd46eabd6f51230 gnupg-1.2.1-17.src.rpm
i386:
65fee1a3a471eb6c8e214ccef7bfe3fe gnupg-1.2.1-17.i386.rpm
bf6baa7dc4770b8888cc72076e3b4e90 gnupg-debuginfo-1.2.1-17.i386.rpm
ia64:
c1191a75f9ae45290f1c4524f2496a6c gnupg-1.2.1-17.ia64.rpm
c010ba3562713a56b6206f16a4414dbb gnupg-debuginfo-1.2.1-17.ia64.rpm
x86_64:
258bae860c6fb917cf800fd3c1a18478 gnupg-1.2.1-17.x86_64.rpm
fe7381706fbf8de0796e40d63a3ea7f5 gnupg-debuginfo-1.2.1-17.x86_64.rpm
Red Hat Enterprise Linux AS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm
i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm
ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm
ppc:
8aa392d26563d4b4654e7a379503614a gnupg-1.2.6-6.ppc.rpm
49a168e70b1207bcf611cb78fb652709 gnupg-debuginfo-1.2.6-6.ppc.rpm
s390:
db61ab7f02568b32b6cc898f09f02276 gnupg-1.2.6-6.s390.rpm
5955670bfc5e3c30d6f4fb66ea230430 gnupg-debuginfo-1.2.6-6.s390.rpm
s390x:
cc2f486af4a032b4aa8663f2b66f5dcd gnupg-1.2.6-6.s390x.rpm
a1c0388758e97ba28a24e885acb9e498 gnupg-debuginfo-1.2.6-6.s390x.rpm
x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm
i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm
x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm
i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm
ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm
x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/gnupg-1.2.6-6.src.rpm
55db2b04516f48422fe35be762cfbe80 gnupg-1.2.6-6.src.rpm
i386:
41a2ad79f2fe8507b66405400735211a gnupg-1.2.6-6.i386.rpm
1770ee4a1c053b67abf3786d9d9ba439 gnupg-debuginfo-1.2.6-6.i386.rpm
ia64:
bd78ca4648898a9d78ac79fc81a0b604 gnupg-1.2.6-6.ia64.rpm
de3ee6ff3e0d5d2af24bf35a98616ee6 gnupg-debuginfo-1.2.6-6.ia64.rpm
x86_64:
2df9a26aa1f740d903a223973d815306 gnupg-1.2.6-6.x86_64.rpm
f97142aaca22b2f64c89b0c9bcf1d535 gnupg-debuginfo-1.2.6-6.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3746
http://www.redhat.com/security/updates/classification/#moderate
8. Contact:
The Red Hat security contact is . More contact
details at https://www.redhat.com/security/team/contact/
Copyright 2006 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFE0IBfXlSAg2UNWIIRAsDKAJ41oNJeLBDft0IQOJwC6kWRml229ACgplpG
nomjA47cAVu/zCLzpyWrsrU=
=kjbk
- -----END PGP SIGNATURE-----
2.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Critical: seamonkey security update
Advisory ID: RHSA-2006:0609-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0609.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-2779 CVE-2006-2780 CVE-2006-2781
CVE-2006-2783 CVE-2006-2782 CVE-2006-2778
CVE-2006-2776 CVE-2006-2784 CVE-2006-2785
CVE-2006-2786 CVE-2006-2787 CVE-2006-2788
CVE-2006-3801 CVE-2006-3677 CVE-2006-3113
CVE-2006-3802 CVE-2006-3803 CVE-2006-3804
CVE-2006-3805 CVE-2006-3806 CVE-2006-3807
CVE-2006-3808 CVE-2006-3809 CVE-2006-3810
CVE-2006-3811 CVE-2006-3812
- - ---------------------------------------------------------------------
1. Summary:
Updated seamonkey packages that fix several security bugs in the mozilla
package are now available for Red Hat Enterprise Linux 4.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64
3. Problem description:
Seamonkey is an open source Web browser, advanced email and newsgroup
client, IRC chat client, and HTML editor.
The Mozilla Foundation has discontinued support for the Mozilla Suite. This
update deprecates the Mozilla Suite in Red Hat Enterprise Linux 4 in
favor of the supported Seamonkey Suite.
This update also resolves a number of outstanding Mozilla security issues:
Several flaws were found in the way Seamonkey processed certain javascript
actions. A malicious web page could execute arbitrary javascript
instructions with the permissions of "chrome", allowing the page to steal
sensitive information or install browser malware. (CVE-2006-2776,
CVE-2006-2784, CVE-2006-2785, CVE-2006-2787, CVE-2006-3807, CVE-2006-3809,
CVE-2006-3812)
Several denial of service flaws were found in the way Seamonkey processed
certain web content. A malicious web page could crash the browser or
possibly execute arbitrary code as the user running Seamonkey.
(CVE-2006-2779, CVE-2006-2780, CVE-2006-3801, CVE-2006-3677, CVE-2006-3113,
CVE-2006-3803, CVE-2006-3805, CVE-2006-3806, CVE-2006-3811)
Two flaws were found in the way Seamonkey-mail displayed malformed
inline vcard attachments. If a victim viewed an email message containing
a carefully crafted vcard it was possible to execute arbitrary code as the
user running Mozilla-mail. (CVE-2006-2781, CVE-2006-3804)
A cross-site scripting flaw was found in the way Seamonkey processed
Unicode Byte-Order-Mark (BOM) markers in UTF-8 web pages. A malicious web
page could execute a script within the browser that a web input sanitizer
could miss due to a malformed "script" tag. (CVE-2006-2783)
Several flaws were found in the way Seamonkey processed certain javascript
actions. A malicious web page could conduct a cross-site scripting attack
or steal sensitive information (such as cookies owned by other domains).
(CVE-2006-3802, CVE-2006-3810)
A form file upload flaw was found in the way Seamonkey handled javascript
input object mutation. A malicious web page could upload an arbitrary local
file at form submission time without user interaction. (CVE-2006-2782)
A denial of service flaw was found in the way Seamonkey called the
crypto.signText() javascript function. A malicious web page could crash the
browser if the victim had a client certificate loaded. (CVE-2006-2778)
Two HTTP response smuggling flaws were found in the way Seamonkey processed
certain invalid HTTP response headers. A malicious web site could return
specially crafted HTTP response headers which may bypass HTTP proxy
restrictions. (CVE-2006-2786)
A flaw was found in the way Seamonkey processed Proxy AutoConfig scripts. A
malicious Proxy AutoConfig server could execute arbitrary javascript
instructions with the permissions of "chrome", allowing the page to steal
sensitive information or install browser malware. (CVE-2006-3808)
A double free flaw was found in the way the nsIX509::getRawDER method was
called. If a victim visited a carefully crafted web page, it was possible
to execute arbitrary code as the user running Mozilla. (CVE-2006-2788)
Users of Mozilla are advised to upgrade to this update, which contains
Seamonkey version 1.0.3 that corrects these issues.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Multilib systems may experience difficulty if trying to specify the package
by name to the Update Agent via a command line argument. This can be
solved by executing the following commands:
up2date seamonkey; up2date seamonkey-nss seamonkey-nspr
5. Bug IDs fixed (http://bugzilla.redhat.com/):
193906 - CVE-2006-2779 Multiple Mozilla issues (CVE-2006-2780, CVE-2006-2781)
196969 - CVE-2006-2783 multiple Seamonkey issues (CVE-2006-2782,CVE-2006-2778,CVE-2006-2776,CVE-2006-2784,CVE-2006-2785,CVE-2006-2786,CVE-2006-2787,CVE-2006-2788)
200161 - CVE-2006-3801 Multiple Seamonkey issues (CVE-2006-3677, CVE-2006-3113, CVE-2006-3802, CVE-2006-3803, CVE-2006-3804, CVE-2006-3805, CVE-2006-3806, CVE-2006-3807, CVE-2006-3808, CVE-2006-3809, CVE-2006-3810, CVE-2006-3811, CVE-2006-3812)
6. RPMs required:
Red Hat Enterprise Linux AS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm
i386:
2b610d66be90a961df9576b730fe0dd5 devhelp-0.10-0.2.el4.i386.rpm
beebf37ed274d1249fd83b04a46a3cbc devhelp-debuginfo-0.10-0.2.el4.i386.rpm
8f140663a5fc3619fe0947c3e337d258 devhelp-devel-0.10-0.2.el4.i386.rpm
aa9b4a1459c06af74b9be48aeba05fbf seamonkey-1.0.3-0.el4.1.i386.rpm
9231e7136155bcd36ed71d5022658a05 seamonkey-chat-1.0.3-0.el4.1.i386.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
80cdfafeb48488cbdc69a2164f98e576 seamonkey-devel-1.0.3-0.el4.1.i386.rpm
d3c23f42ae4873b9a41324f28e968eb0 seamonkey-dom-inspector-1.0.3-0.el4.1.i386.rpm
e3dfbb1638d500f38699bc5c2caee973 seamonkey-js-debugger-1.0.3-0.el4.1.i386.rpm
2a24919342ceb4b57e81da4eacb3836f seamonkey-mail-1.0.3-0.el4.1.i386.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
633ec311338de310000fc1e101813def seamonkey-nspr-devel-1.0.3-0.el4.1.i386.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
9d3859b3751793e0c561b5f6a68223f1 seamonkey-nss-devel-1.0.3-0.el4.1.i386.rpm
ia64:
6e3be4099ed89be727c51b58600cc199 seamonkey-1.0.3-0.el4.1.ia64.rpm
58fcc24b253d6c99c961b44483ae754a seamonkey-chat-1.0.3-0.el4.1.ia64.rpm
2e1a636b9ca516eba06fa2913fdb37ac seamonkey-debuginfo-1.0.3-0.el4.1.ia64.rpm
69ddcf96eca8905e23d7ea9879b581f5 seamonkey-devel-1.0.3-0.el4.1.ia64.rpm
10e4e1281e64d05009713111260aa051 seamonkey-dom-inspector-1.0.3-0.el4.1.ia64.rpm
153e5eea8a4b6a25dbf5184b4978c4cc seamonkey-js-debugger-1.0.3-0.el4.1.ia64.rpm
e7a4a10521d2d49854fba136ebbd24a6 seamonkey-mail-1.0.3-0.el4.1.ia64.rpm
3e90039c4b98c3392a474fe61463cefb seamonkey-nspr-1.0.3-0.el4.1.ia64.rpm
0b2bb28deed316aa166ec75f4b8a368f seamonkey-nspr-devel-1.0.3-0.el4.1.ia64.rpm
69a89266358ed2575daffe261e5b6228 seamonkey-nss-1.0.3-0.el4.1.ia64.rpm
198e4c7c9046aa8127d02bf48dd7d41a seamonkey-nss-devel-1.0.3-0.el4.1.ia64.rpm
ppc:
ecbc0bf8ebd4955de0bc17df53df3a77 devhelp-0.10-0.2.el4.ppc.rpm
1bbfe2cfeea5d915c9ff63934a3e72ce devhelp-debuginfo-0.10-0.2.el4.ppc.rpm
4bf5630fbc87766640ef255c7de9f1c8 devhelp-devel-0.10-0.2.el4.ppc.rpm
9fa4c907f81d3be0776e232bd0e78802 seamonkey-1.0.3-0.el4.1.ppc.rpm
77b514da18394d60fd1c245308fe10fb seamonkey-chat-1.0.3-0.el4.1.ppc.rpm
16f3b358054a7a0f46ed5d51c8b0a71e seamonkey-debuginfo-1.0.3-0.el4.1.ppc.rpm
12f70a1ac7e3b5d0ef48db778eae9035 seamonkey-devel-1.0.3-0.el4.1.ppc.rpm
3e4a0728bcb94a50a7568b0aad860d7e seamonkey-dom-inspector-1.0.3-0.el4.1.ppc.rpm
7309fb85809c20a4c5aef8df9d543186 seamonkey-js-debugger-1.0.3-0.el4.1.ppc.rpm
8c552b2bd18356805687854876a69b49 seamonkey-mail-1.0.3-0.el4.1.ppc.rpm
c8e9a6a8cd022f4a00cd9a4b0bc34cbb seamonkey-nspr-1.0.3-0.el4.1.ppc.rpm
9ee1d7458ce34620f37c0aa54b97fb93 seamonkey-nspr-devel-1.0.3-0.el4.1.ppc.rpm
61034fd7c95adbcfee3827c3804d9039 seamonkey-nss-1.0.3-0.el4.1.ppc.rpm
96ea8c56e45687e59cc02ac32c509c56 seamonkey-nss-devel-1.0.3-0.el4.1.ppc.rpm
s390:
5abc6a7650eb7c49e1f385e9dbcb56b6 seamonkey-1.0.3-0.el4.1.s390.rpm
2e0cd5ff34ee4606f1515ab6bba576c8 seamonkey-chat-1.0.3-0.el4.1.s390.rpm
a349e9c67457e8c63f98c72b5b47e4a3 seamonkey-debuginfo-1.0.3-0.el4.1.s390.rpm
3b4b987775aa7300e95a2a9bbf81fe0d seamonkey-devel-1.0.3-0.el4.1.s390.rpm
ec39d60608ad39db085a5fbc17bddf24 seamonkey-dom-inspector-1.0.3-0.el4.1.s390.rpm
d343b26ae94a66c2fd3a68b1676b294e seamonkey-js-debugger-1.0.3-0.el4.1.s390.rpm
9c46acbfdd75a005e77547f8635ee6ac seamonkey-mail-1.0.3-0.el4.1.s390.rpm
64c81ebb81a71028aeee1e205244c389 seamonkey-nspr-1.0.3-0.el4.1.s390.rpm
05f4801adb155a509f38cd8c3420cf27 seamonkey-nspr-devel-1.0.3-0.el4.1.s390.rpm
0f56e9682f6009136f46c292e0b5b223 seamonkey-nss-1.0.3-0.el4.1.s390.rpm
133f662802d718c7e0b1abe4f1dae342 seamonkey-nss-devel-1.0.3-0.el4.1.s390.rpm
s390x:
240b06512673c5cd9e37a05bae44f291 seamonkey-1.0.3-0.el4.1.s390x.rpm
36617a7b7729706bc9c46abe3c1185d2 seamonkey-chat-1.0.3-0.el4.1.s390x.rpm
a349e9c67457e8c63f98c72b5b47e4a3 seamonkey-debuginfo-1.0.3-0.el4.1.s390.rpm
b127426cffea40673708ceac5d33a717 seamonkey-debuginfo-1.0.3-0.el4.1.s390x.rpm
3917277ef13bfd2d2a0d685f111337de seamonkey-devel-1.0.3-0.el4.1.s390x.rpm
b17497777d709c6b3660585f85fa78f0 seamonkey-dom-inspector-1.0.3-0.el4.1.s390x.rpm
5ba8f6d12e4d363b4d3995c252593c96 seamonkey-js-debugger-1.0.3-0.el4.1.s390x.rpm
7e6a97f1944ef2c92023e93cddcb2929 seamonkey-mail-1.0.3-0.el4.1.s390x.rpm
64c81ebb81a71028aeee1e205244c389 seamonkey-nspr-1.0.3-0.el4.1.s390.rpm
e41ebbbd54a454c831c3d15898484a79 seamonkey-nspr-1.0.3-0.el4.1.s390x.rpm
5fa0cff491049a643f331ef8c84c87f2 seamonkey-nspr-devel-1.0.3-0.el4.1.s390x.rpm
0f56e9682f6009136f46c292e0b5b223 seamonkey-nss-1.0.3-0.el4.1.s390.rpm
5239a9be25545af9b1bec84785909be7 seamonkey-nss-1.0.3-0.el4.1.s390x.rpm
450ec553de39365848969de31cf29aa8 seamonkey-nss-devel-1.0.3-0.el4.1.s390x.rpm
x86_64:
59d454bf49b46fdb008807197d9a21c6 devhelp-0.10-0.2.el4.x86_64.rpm
2ac3cbb65d5b4f02c167b7dc78f95283 devhelp-debuginfo-0.10-0.2.el4.x86_64.rpm
c6b70818592db069d0030996b1934ce2 devhelp-devel-0.10-0.2.el4.x86_64.rpm
923f63ff635f39f3dec84d6ce147cf4f seamonkey-1.0.3-0.el4.1.x86_64.rpm
ffc2f853ccca20da31cae100ce7daba0 seamonkey-chat-1.0.3-0.el4.1.x86_64.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
fc96228d4eca44a1afd6700047f263c1 seamonkey-debuginfo-1.0.3-0.el4.1.x86_64.rpm
101d537bac1b81447399b02441f2475a seamonkey-devel-1.0.3-0.el4.1.x86_64.rpm
40669632cd547920031c8f8808273857 seamonkey-dom-inspector-1.0.3-0.el4.1.x86_64.rpm
abbe20af3b0060d004639d62851f0c4b seamonkey-js-debugger-1.0.3-0.el4.1.x86_64.rpm
0102ab137a0b007cf4e04de241c35ea6 seamonkey-mail-1.0.3-0.el4.1.x86_64.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
051573bd008f1b0760cdc697deef9bfa seamonkey-nspr-1.0.3-0.el4.1.x86_64.rpm
f277f96c3241c4e966087f16c8c76787 seamonkey-nspr-devel-1.0.3-0.el4.1.x86_64.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
4b784207b9a7e27d8cab465e7950f664 seamonkey-nss-1.0.3-0.el4.1.x86_64.rpm
7b2f9b3ed7c6740116d65d3531171644 seamonkey-nss-devel-1.0.3-0.el4.1.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm
i386:
2b610d66be90a961df9576b730fe0dd5 devhelp-0.10-0.2.el4.i386.rpm
beebf37ed274d1249fd83b04a46a3cbc devhelp-debuginfo-0.10-0.2.el4.i386.rpm
8f140663a5fc3619fe0947c3e337d258 devhelp-devel-0.10-0.2.el4.i386.rpm
aa9b4a1459c06af74b9be48aeba05fbf seamonkey-1.0.3-0.el4.1.i386.rpm
9231e7136155bcd36ed71d5022658a05 seamonkey-chat-1.0.3-0.el4.1.i386.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
80cdfafeb48488cbdc69a2164f98e576 seamonkey-devel-1.0.3-0.el4.1.i386.rpm
d3c23f42ae4873b9a41324f28e968eb0 seamonkey-dom-inspector-1.0.3-0.el4.1.i386.rpm
e3dfbb1638d500f38699bc5c2caee973 seamonkey-js-debugger-1.0.3-0.el4.1.i386.rpm
2a24919342ceb4b57e81da4eacb3836f seamonkey-mail-1.0.3-0.el4.1.i386.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
633ec311338de310000fc1e101813def seamonkey-nspr-devel-1.0.3-0.el4.1.i386.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
9d3859b3751793e0c561b5f6a68223f1 seamonkey-nss-devel-1.0.3-0.el4.1.i386.rpm
x86_64:
59d454bf49b46fdb008807197d9a21c6 devhelp-0.10-0.2.el4.x86_64.rpm
2ac3cbb65d5b4f02c167b7dc78f95283 devhelp-debuginfo-0.10-0.2.el4.x86_64.rpm
c6b70818592db069d0030996b1934ce2 devhelp-devel-0.10-0.2.el4.x86_64.rpm
923f63ff635f39f3dec84d6ce147cf4f seamonkey-1.0.3-0.el4.1.x86_64.rpm
ffc2f853ccca20da31cae100ce7daba0 seamonkey-chat-1.0.3-0.el4.1.x86_64.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
fc96228d4eca44a1afd6700047f263c1 seamonkey-debuginfo-1.0.3-0.el4.1.x86_64.rpm
101d537bac1b81447399b02441f2475a seamonkey-devel-1.0.3-0.el4.1.x86_64.rpm
40669632cd547920031c8f8808273857 seamonkey-dom-inspector-1.0.3-0.el4.1.x86_64.rpm
abbe20af3b0060d004639d62851f0c4b seamonkey-js-debugger-1.0.3-0.el4.1.x86_64.rpm
0102ab137a0b007cf4e04de241c35ea6 seamonkey-mail-1.0.3-0.el4.1.x86_64.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
051573bd008f1b0760cdc697deef9bfa seamonkey-nspr-1.0.3-0.el4.1.x86_64.rpm
f277f96c3241c4e966087f16c8c76787 seamonkey-nspr-devel-1.0.3-0.el4.1.x86_64.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
4b784207b9a7e27d8cab465e7950f664 seamonkey-nss-1.0.3-0.el4.1.x86_64.rpm
7b2f9b3ed7c6740116d65d3531171644 seamonkey-nss-devel-1.0.3-0.el4.1.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm
i386:
2b610d66be90a961df9576b730fe0dd5 devhelp-0.10-0.2.el4.i386.rpm
beebf37ed274d1249fd83b04a46a3cbc devhelp-debuginfo-0.10-0.2.el4.i386.rpm
8f140663a5fc3619fe0947c3e337d258 devhelp-devel-0.10-0.2.el4.i386.rpm
aa9b4a1459c06af74b9be48aeba05fbf seamonkey-1.0.3-0.el4.1.i386.rpm
9231e7136155bcd36ed71d5022658a05 seamonkey-chat-1.0.3-0.el4.1.i386.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
80cdfafeb48488cbdc69a2164f98e576 seamonkey-devel-1.0.3-0.el4.1.i386.rpm
d3c23f42ae4873b9a41324f28e968eb0 seamonkey-dom-inspector-1.0.3-0.el4.1.i386.rpm
e3dfbb1638d500f38699bc5c2caee973 seamonkey-js-debugger-1.0.3-0.el4.1.i386.rpm
2a24919342ceb4b57e81da4eacb3836f seamonkey-mail-1.0.3-0.el4.1.i386.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
633ec311338de310000fc1e101813def seamonkey-nspr-devel-1.0.3-0.el4.1.i386.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
9d3859b3751793e0c561b5f6a68223f1 seamonkey-nss-devel-1.0.3-0.el4.1.i386.rpm
ia64:
6e3be4099ed89be727c51b58600cc199 seamonkey-1.0.3-0.el4.1.ia64.rpm
58fcc24b253d6c99c961b44483ae754a seamonkey-chat-1.0.3-0.el4.1.ia64.rpm
2e1a636b9ca516eba06fa2913fdb37ac seamonkey-debuginfo-1.0.3-0.el4.1.ia64.rpm
69ddcf96eca8905e23d7ea9879b581f5 seamonkey-devel-1.0.3-0.el4.1.ia64.rpm
10e4e1281e64d05009713111260aa051 seamonkey-dom-inspector-1.0.3-0.el4.1.ia64.rpm
153e5eea8a4b6a25dbf5184b4978c4cc seamonkey-js-debugger-1.0.3-0.el4.1.ia64.rpm
e7a4a10521d2d49854fba136ebbd24a6 seamonkey-mail-1.0.3-0.el4.1.ia64.rpm
3e90039c4b98c3392a474fe61463cefb seamonkey-nspr-1.0.3-0.el4.1.ia64.rpm
0b2bb28deed316aa166ec75f4b8a368f seamonkey-nspr-devel-1.0.3-0.el4.1.ia64.rpm
69a89266358ed2575daffe261e5b6228 seamonkey-nss-1.0.3-0.el4.1.ia64.rpm
198e4c7c9046aa8127d02bf48dd7d41a seamonkey-nss-devel-1.0.3-0.el4.1.ia64.rpm
x86_64:
59d454bf49b46fdb008807197d9a21c6 devhelp-0.10-0.2.el4.x86_64.rpm
2ac3cbb65d5b4f02c167b7dc78f95283 devhelp-debuginfo-0.10-0.2.el4.x86_64.rpm
c6b70818592db069d0030996b1934ce2 devhelp-devel-0.10-0.2.el4.x86_64.rpm
923f63ff635f39f3dec84d6ce147cf4f seamonkey-1.0.3-0.el4.1.x86_64.rpm
ffc2f853ccca20da31cae100ce7daba0 seamonkey-chat-1.0.3-0.el4.1.x86_64.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
fc96228d4eca44a1afd6700047f263c1 seamonkey-debuginfo-1.0.3-0.el4.1.x86_64.rpm
101d537bac1b81447399b02441f2475a seamonkey-devel-1.0.3-0.el4.1.x86_64.rpm
40669632cd547920031c8f8808273857 seamonkey-dom-inspector-1.0.3-0.el4.1.x86_64.rpm
abbe20af3b0060d004639d62851f0c4b seamonkey-js-debugger-1.0.3-0.el4.1.x86_64.rpm
0102ab137a0b007cf4e04de241c35ea6 seamonkey-mail-1.0.3-0.el4.1.x86_64.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
051573bd008f1b0760cdc697deef9bfa seamonkey-nspr-1.0.3-0.el4.1.x86_64.rpm
f277f96c3241c4e966087f16c8c76787 seamonkey-nspr-devel-1.0.3-0.el4.1.x86_64.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
4b784207b9a7e27d8cab465e7950f664 seamonkey-nss-1.0.3-0.el4.1.x86_64.rpm
7b2f9b3ed7c6740116d65d3531171644 seamonkey-nss-devel-1.0.3-0.el4.1.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/devhelp-0.10-0.2.el4.src.rpm
c680c741b7cc8005590383479faed9b4 devhelp-0.10-0.2.el4.src.rpm
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/seamonkey-1.0.3-0.el4.1.src.rpm
0d78c33a7a3c0fbbec3b5fad15b32a5b seamonkey-1.0.3-0.el4.1.src.rpm
i386:
2b610d66be90a961df9576b730fe0dd5 devhelp-0.10-0.2.el4.i386.rpm
beebf37ed274d1249fd83b04a46a3cbc devhelp-debuginfo-0.10-0.2.el4.i386.rpm
8f140663a5fc3619fe0947c3e337d258 devhelp-devel-0.10-0.2.el4.i386.rpm
aa9b4a1459c06af74b9be48aeba05fbf seamonkey-1.0.3-0.el4.1.i386.rpm
9231e7136155bcd36ed71d5022658a05 seamonkey-chat-1.0.3-0.el4.1.i386.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
80cdfafeb48488cbdc69a2164f98e576 seamonkey-devel-1.0.3-0.el4.1.i386.rpm
d3c23f42ae4873b9a41324f28e968eb0 seamonkey-dom-inspector-1.0.3-0.el4.1.i386.rpm
e3dfbb1638d500f38699bc5c2caee973 seamonkey-js-debugger-1.0.3-0.el4.1.i386.rpm
2a24919342ceb4b57e81da4eacb3836f seamonkey-mail-1.0.3-0.el4.1.i386.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
633ec311338de310000fc1e101813def seamonkey-nspr-devel-1.0.3-0.el4.1.i386.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
9d3859b3751793e0c561b5f6a68223f1 seamonkey-nss-devel-1.0.3-0.el4.1.i386.rpm
ia64:
6e3be4099ed89be727c51b58600cc199 seamonkey-1.0.3-0.el4.1.ia64.rpm
58fcc24b253d6c99c961b44483ae754a seamonkey-chat-1.0.3-0.el4.1.ia64.rpm
2e1a636b9ca516eba06fa2913fdb37ac seamonkey-debuginfo-1.0.3-0.el4.1.ia64.rpm
69ddcf96eca8905e23d7ea9879b581f5 seamonkey-devel-1.0.3-0.el4.1.ia64.rpm
10e4e1281e64d05009713111260aa051 seamonkey-dom-inspector-1.0.3-0.el4.1.ia64.rpm
153e5eea8a4b6a25dbf5184b4978c4cc seamonkey-js-debugger-1.0.3-0.el4.1.ia64.rpm
e7a4a10521d2d49854fba136ebbd24a6 seamonkey-mail-1.0.3-0.el4.1.ia64.rpm
3e90039c4b98c3392a474fe61463cefb seamonkey-nspr-1.0.3-0.el4.1.ia64.rpm
0b2bb28deed316aa166ec75f4b8a368f seamonkey-nspr-devel-1.0.3-0.el4.1.ia64.rpm
69a89266358ed2575daffe261e5b6228 seamonkey-nss-1.0.3-0.el4.1.ia64.rpm
198e4c7c9046aa8127d02bf48dd7d41a seamonkey-nss-devel-1.0.3-0.el4.1.ia64.rpm
x86_64:
59d454bf49b46fdb008807197d9a21c6 devhelp-0.10-0.2.el4.x86_64.rpm
2ac3cbb65d5b4f02c167b7dc78f95283 devhelp-debuginfo-0.10-0.2.el4.x86_64.rpm
c6b70818592db069d0030996b1934ce2 devhelp-devel-0.10-0.2.el4.x86_64.rpm
923f63ff635f39f3dec84d6ce147cf4f seamonkey-1.0.3-0.el4.1.x86_64.rpm
ffc2f853ccca20da31cae100ce7daba0 seamonkey-chat-1.0.3-0.el4.1.x86_64.rpm
930b79a5d6d23a9a1d395284945f4e7d seamonkey-debuginfo-1.0.3-0.el4.1.i386.rpm
fc96228d4eca44a1afd6700047f263c1 seamonkey-debuginfo-1.0.3-0.el4.1.x86_64.rpm
101d537bac1b81447399b02441f2475a seamonkey-devel-1.0.3-0.el4.1.x86_64.rpm
40669632cd547920031c8f8808273857 seamonkey-dom-inspector-1.0.3-0.el4.1.x86_64.rpm
abbe20af3b0060d004639d62851f0c4b seamonkey-js-debugger-1.0.3-0.el4.1.x86_64.rpm
0102ab137a0b007cf4e04de241c35ea6 seamonkey-mail-1.0.3-0.el4.1.x86_64.rpm
badf4579aec71e1216a7dea4f3225dd8 seamonkey-nspr-1.0.3-0.el4.1.i386.rpm
051573bd008f1b0760cdc697deef9bfa seamonkey-nspr-1.0.3-0.el4.1.x86_64.rpm
f277f96c3241c4e966087f16c8c76787 seamonkey-nspr-devel-1.0.3-0.el4.1.x86_64.rpm
e1da531258c215ba19c9fac2bade1a8d seamonkey-nss-1.0.3-0.el4.1.i386.rpm
4b784207b9a7e27d8cab465e7950f664 seamonkey-nss-1.0.3-0.el4.1.x86_64.rpm
7b2f9b3ed7c6740116d65d3531171644 seamonkey-nss-devel-1.0.3-0.el4.1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2779
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2780
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2783
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2782
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2778
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2776
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2785
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2786
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2787
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3801
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3677
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3113
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3802
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3805
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3809
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3811
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3812
http://www.redhat.com/security/updates/classification/#critical
8. Contact:
The Red Hat security contact is . More contact
details at https://www.redhat.com/security/team/contact/
Copyright 2006 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFE0PRRXlSAg2UNWIIRAqJ+AJ0WdmIA+wXJqxGH3/NJ/3h3nKA1FACgvsKf
lwQs38sqqiFYkjrsIzXLtaM=
=UHZO
- -----END PGP SIGNATURE-----
3.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Important: libtiff security update
Advisory ID: RHSA-2006:0603-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0603.html
Issue date: 2006-08-02
Updated on: 2006-08-02
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-3459 CVE-2006-3460 CVE-2006-3461
CVE-2006-3462 CVE-2006-3463 CVE-2006-3464
CVE-2006-3465
- - ---------------------------------------------------------------------
1. Summary:
Updated libtiff packages that fix several security flaws are now available
for Red Hat Enterprise Linux.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64
3. Problem description:
The libtiff package contains a library of functions for manipulating TIFF
(Tagged Image File Format) files.
Tavis Ormandy of Google discovered a number of flaws in libtiff during a
security audit. An attacker could create a carefully crafted TIFF file in
such a way that it was possible to cause an application linked with libtiff
to crash or possibly execute arbitrary code. (CVE-2006-3459, CVE-2006-3460,
CVE-2006-3461, CVE-2006-3462, CVE-2006-3463, CVE-2006-3464, CVE-2006-3465)
All users are advised to upgrade to these updated packages, which contain
backported fixes for these issues.
4. Solution:
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
5. Bug IDs fixed (http://bugzilla.redhat.com/):
199111 - CVE-2006-3459 Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm
i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm
ia64:
89aee29ffeb8f01f46d075d95d9c037f libtiff-3.5.7-30.el2.4.ia64.rpm
7cb1055972485ec20f3f22fd692e4470 libtiff-devel-3.5.7-30.el2.4.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm
ia64:
89aee29ffeb8f01f46d075d95d9c037f libtiff-3.5.7-30.el2.4.ia64.rpm
7cb1055972485ec20f3f22fd692e4470 libtiff-devel-3.5.7-30.el2.4.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm
i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/libtiff-3.5.7-30.el2.4.src.rpm
bbd9b2d79dae52a61ed0d3bbfd58a40e libtiff-3.5.7-30.el2.4.src.rpm
i386:
fd18e7afff71986361c764ecc81c7c65 libtiff-3.5.7-30.el2.4.i386.rpm
695cf1d089bf708f20a437c45601cba1 libtiff-devel-3.5.7-30.el2.4.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm
i386:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
2471e687beeb7038052d51a1c4e40f87 libtiff-devel-3.5.7-25.el3.4.i386.rpm
ia64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
02ddd1a83bb2f0a8691b96760e6ba4b5 libtiff-3.5.7-25.el3.4.ia64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
6316332164384ac52fcb4384d5bb0e8a libtiff-debuginfo-3.5.7-25.el3.4.ia64.rpm
d45b2607d761ce1cbe208b9651bf9998 libtiff-devel-3.5.7-25.el3.4.ia64.rpm
ppc:
752ea524221856fc14ecac4000a8f62d libtiff-3.5.7-25.el3.4.ppc.rpm
e70c6cd29c3953bf9edaad4ec1d36efe libtiff-3.5.7-25.el3.4.ppc64.rpm
c23ceb19e3acefc1d5594d85bddcaddc libtiff-debuginfo-3.5.7-25.el3.4.ppc.rpm
d36110c5f1b0fe63cbfd580aae5e4ed9 libtiff-debuginfo-3.5.7-25.el3.4.ppc64.rpm
81d42bbe59c35d4e5b1585d68f5e8dfa libtiff-devel-3.5.7-25.el3.4.ppc.rpm
s390:
1a4543a796c634a68672ecfb77bc3dc0 libtiff-3.5.7-25.el3.4.s390.rpm
85cb88727f6fd57b9b4884cf8a84bab6 libtiff-debuginfo-3.5.7-25.el3.4.s390.rpm
d8dae409df03c8fad402aa8da201c4ca libtiff-devel-3.5.7-25.el3.4.s390.rpm
s390x:
1a4543a796c634a68672ecfb77bc3dc0 libtiff-3.5.7-25.el3.4.s390.rpm
72051ad4342379c027c1ea1b4278d6cd libtiff-3.5.7-25.el3.4.s390x.rpm
85cb88727f6fd57b9b4884cf8a84bab6 libtiff-debuginfo-3.5.7-25.el3.4.s390.rpm
af79ccfb5adf54e27b2616095f8fe001 libtiff-debuginfo-3.5.7-25.el3.4.s390x.rpm
2dfd8da8d4e8c4cbb4d806f0400f287f libtiff-devel-3.5.7-25.el3.4.s390x.rpm
x86_64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
a6018c9e9da37e13838a5b8e87293456 libtiff-3.5.7-25.el3.4.x86_64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
9ad3dd5a544d31f1f80c48ed0d4ab033 libtiff-debuginfo-3.5.7-25.el3.4.x86_64.rpm
b5faaf4d4d2d58c065153b67d6bf5d03 libtiff-devel-3.5.7-25.el3.4.x86_64.rpm
Red Hat Desktop version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm
i386:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
2471e687beeb7038052d51a1c4e40f87 libtiff-devel-3.5.7-25.el3.4.i386.rpm
x86_64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
a6018c9e9da37e13838a5b8e87293456 libtiff-3.5.7-25.el3.4.x86_64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
9ad3dd5a544d31f1f80c48ed0d4ab033 libtiff-debuginfo-3.5.7-25.el3.4.x86_64.rpm
b5faaf4d4d2d58c065153b67d6bf5d03 libtiff-devel-3.5.7-25.el3.4.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm
i386:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
2471e687beeb7038052d51a1c4e40f87 libtiff-devel-3.5.7-25.el3.4.i386.rpm
ia64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
02ddd1a83bb2f0a8691b96760e6ba4b5 libtiff-3.5.7-25.el3.4.ia64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
6316332164384ac52fcb4384d5bb0e8a libtiff-debuginfo-3.5.7-25.el3.4.ia64.rpm
d45b2607d761ce1cbe208b9651bf9998 libtiff-devel-3.5.7-25.el3.4.ia64.rpm
x86_64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
a6018c9e9da37e13838a5b8e87293456 libtiff-3.5.7-25.el3.4.x86_64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
9ad3dd5a544d31f1f80c48ed0d4ab033 libtiff-debuginfo-3.5.7-25.el3.4.x86_64.rpm
b5faaf4d4d2d58c065153b67d6bf5d03 libtiff-devel-3.5.7-25.el3.4.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/libtiff-3.5.7-25.el3.4.src.rpm
da967cad3ae8551ab986a4819e7bc767 libtiff-3.5.7-25.el3.4.src.rpm
i386:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
2471e687beeb7038052d51a1c4e40f87 libtiff-devel-3.5.7-25.el3.4.i386.rpm
ia64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
02ddd1a83bb2f0a8691b96760e6ba4b5 libtiff-3.5.7-25.el3.4.ia64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
6316332164384ac52fcb4384d5bb0e8a libtiff-debuginfo-3.5.7-25.el3.4.ia64.rpm
d45b2607d761ce1cbe208b9651bf9998 libtiff-devel-3.5.7-25.el3.4.ia64.rpm
x86_64:
bf90cc5661af248a0d2a184f83e973d8 libtiff-3.5.7-25.el3.4.i386.rpm
a6018c9e9da37e13838a5b8e87293456 libtiff-3.5.7-25.el3.4.x86_64.rpm
2f37a335992f7b8cc60ee75de4ce3deb libtiff-debuginfo-3.5.7-25.el3.4.i386.rpm
9ad3dd5a544d31f1f80c48ed0d4ab033 libtiff-debuginfo-3.5.7-25.el3.4.x86_64.rpm
b5faaf4d4d2d58c065153b67d6bf5d03 libtiff-devel-3.5.7-25.el3.4.x86_64.rpm
Red Hat Enterprise Linux AS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm
i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm
ia64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
083162bc4c811ba7d60dcbeb76497723 libtiff-3.6.1-12.ia64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
a66fa24c0cf4a93f61f71283f7a4c436 libtiff-debuginfo-3.6.1-12.ia64.rpm
17c3f9699fa0862fb2dbc0af01d87d0c libtiff-devel-3.6.1-12.ia64.rpm
ppc:
34f50710c254ddb30bfcf93cdb940af5 libtiff-3.6.1-12.ppc.rpm
bed1101c785a09bc59edff1fdaeabd7c libtiff-3.6.1-12.ppc64.rpm
7c70a88957c1f8587cdae2b200145708 libtiff-debuginfo-3.6.1-12.ppc.rpm
04ecd0dc7f60186444aebcc7b8c130b5 libtiff-debuginfo-3.6.1-12.ppc64.rpm
6eff7700a2e61c6c3dd015e904973880 libtiff-devel-3.6.1-12.ppc.rpm
s390:
d40c639eeb99b95d40510edd4a0f241c libtiff-3.6.1-12.s390.rpm
9b6d4acbeb7673ed5b1fb637720b1e7d libtiff-debuginfo-3.6.1-12.s390.rpm
dd7c9c20d518a596b9ac1495660e5047 libtiff-devel-3.6.1-12.s390.rpm
s390x:
d40c639eeb99b95d40510edd4a0f241c libtiff-3.6.1-12.s390.rpm
94edaeb3446a3652564e66fd7fc4c1cb libtiff-3.6.1-12.s390x.rpm
9b6d4acbeb7673ed5b1fb637720b1e7d libtiff-debuginfo-3.6.1-12.s390.rpm
be21c80053945f36324b412943650e7e libtiff-debuginfo-3.6.1-12.s390x.rpm
776099b77a423d1de778da634aef219f libtiff-devel-3.6.1-12.s390x.rpm
x86_64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
4478b8733a33ff74d0c778a708a7402c libtiff-3.6.1-12.x86_64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
8e12c14d3de0e9872a4501d3b32751c7 libtiff-debuginfo-3.6.1-12.x86_64.rpm
3979f1422ee25b898976b32088aafb6c libtiff-devel-3.6.1-12.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm
i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm
x86_64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
4478b8733a33ff74d0c778a708a7402c libtiff-3.6.1-12.x86_64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
8e12c14d3de0e9872a4501d3b32751c7 libtiff-debuginfo-3.6.1-12.x86_64.rpm
3979f1422ee25b898976b32088aafb6c libtiff-devel-3.6.1-12.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm
i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm
ia64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
083162bc4c811ba7d60dcbeb76497723 libtiff-3.6.1-12.ia64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
a66fa24c0cf4a93f61f71283f7a4c436 libtiff-debuginfo-3.6.1-12.ia64.rpm
17c3f9699fa0862fb2dbc0af01d87d0c libtiff-devel-3.6.1-12.ia64.rpm
x86_64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
4478b8733a33ff74d0c778a708a7402c libtiff-3.6.1-12.x86_64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
8e12c14d3de0e9872a4501d3b32751c7 libtiff-debuginfo-3.6.1-12.x86_64.rpm
3979f1422ee25b898976b32088aafb6c libtiff-devel-3.6.1-12.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/libtiff-3.6.1-12.src.rpm
df56363d0b95f5ad923e099b623ce688 libtiff-3.6.1-12.src.rpm
i386:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
25276600930d93f27fb15a4de7a8aaf9 libtiff-devel-3.6.1-12.i386.rpm
ia64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
083162bc4c811ba7d60dcbeb76497723 libtiff-3.6.1-12.ia64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
a66fa24c0cf4a93f61f71283f7a4c436 libtiff-debuginfo-3.6.1-12.ia64.rpm
17c3f9699fa0862fb2dbc0af01d87d0c libtiff-devel-3.6.1-12.ia64.rpm
x86_64:
1d4f6e28d506038d48457bca69ef3b9f libtiff-3.6.1-12.i386.rpm
4478b8733a33ff74d0c778a708a7402c libtiff-3.6.1-12.x86_64.rpm
f77f23e1a0067ec56ee04bc3a8f20273 libtiff-debuginfo-3.6.1-12.i386.rpm
8e12c14d3de0e9872a4501d3b32751c7 libtiff-debuginfo-3.6.1-12.x86_64.rpm
3979f1422ee25b898976b32088aafb6c libtiff-devel-3.6.1-12.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3459
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3460
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3461
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3462
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3463
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3464
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3465
http://www.redhat.com/security/updates/classification/#important
8. Contact:
The Red Hat security contact is . More contact
details at https://www.redhat.com/security/team/contact/
Copyright 2006 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFE0IBRXlSAg2UNWIIRAjXTAJ4+Di8TgjixAC3SZVtKAqxWzl1SGQCfcY1U
44qYilmHdr9Fj6qoO+WUpK8=
=YeSc
- -----END PGP SIGNATURE-----