Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > February 2005 > Mandrakelinux

February 2005

Mandrakelinux

ID: 00152
Ref: 136/2005
Date: 22 February 2005:11:25:02
Version: 1
Title: Mandrakelinux
Abstract: Various Security Advisories
Vendors affected: Mandrake
Operating systems affected: Mandrake
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: mailman
Advisory ID: MDKSA-2005:037
Date: February 14th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0, Corporate Server 2.1 ______________________________________________________________________

Problem Description:

A vulnerability was discovered in Mailman, which allows
a remote directory traversal exploit using URLs of the form ".../....///" to access private Mailman configuration data.

The vulnerability lies in the Mailman/Cgi/private.py file.

Updated packages correct this issue.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0202
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
2962bcf8974ad0f4f0e47fa957a8a276 10.0/RPMS/mailman-2.1.4-2.3.100mdk.i586.rpm
6e1afd0483efcc74c780dd2a7533263a 10.0/SRPMS/mailman-2.1.4-2.3.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
7b2ba12c273fd6f39b2a98a533fe1029 amd64/10.0/RPMS/mailman-2.1.4-2.3.100mdk.amd64.rpm
6e1afd0483efcc74c780dd2a7533263a amd64/10.0/SRPMS/mailman-2.1.4-2.3.100mdk.src.rpm

Mandrakelinux 10.1:
d2382f8a1d35bbf90ac29729d67f5508 10.1/RPMS/mailman-2.1.5-7.3.101mdk.i586.rpm
d2382f8a1d35bbf90ac29729d67f5508 10.1/SRPMS/mailman-2.1.5-7.3.101mdk.i586.rpm

Mandrakelinux 10.1/X86_64:
d4e2e15b0e16b4cb4db4e31c01ea71a9 x86_64/10.1/RPMS/mailman-2.1.5-7.3.101mdk.x86_64.rpm
d2382f8a1d35bbf90ac29729d67f5508 x86_64/10.1/SRPMS/mailman-2.1.5-7.3.101mdk.i586.rpm

Corporate Server 2.1:
eb01c4300056aec9ed25b79906ba564a corporate/2.1/RPMS/mailman-2.0.14-1.3.C21mdk.i586.rpm
f5bdc329649f114e49d8346406a34957 corporate/2.1/SRPMS/mailman-2.0.14-1.3.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
eb01c4300056aec9ed25b79906ba564a x86_64/corporate/2.1/RPMS/mailman-2.0.14-1.3.C21mdk.i586.rpm
f5bdc329649f114e49d8346406a34957 x86_64/corporate/2.1/SRPMS/mailman-2.0.14-1.3.C21mdk.src.rpm

Corporate 3.0:
e6df81bf7b44a9a02a9fc44910be76b0 corporate/3.0/RPMS/mailman-2.1.4-2.3.C30mdk.i586.rpm
d2642df15ee5a3e0bf965cf23563157c corporate/3.0/SRPMS/mailman-2.1.4-2.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
5c8a3cb930e10b38fbd8639ca942f329 x86_64/corporate/3.0/RPMS/mailman-2.1.4-2.3.C30mdk.x86_64.rpm
d2642df15ee5a3e0bf965cf23563157c x86_64/corporate/3.0/SRPMS/mailman-2.1.4-2.3.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCEUtamqjQ0CJFipgRAoRFAKCCVroAPga6BMXMclWtqE6lWS1xrwCg7rb4
fYywXYxwt/7kpyKR8zrWpYE=
=5476
- -----END PGP SIGNATURE-----


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: emacs
Advisory ID: MDKSA-2005:038
Date: February 15th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0,
Corporate Server 2.1
______________________________________________________________________

Problem Description:

Max Vozeler discovered several format string vulnerabilities in the movemail utility in Emacs. If a user connects to a malicious POP server, an attacker can execute arbitrary code as the user running emacs.

The updated packages have been patched to correct the problem. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0100
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
d899f99f2f9bb60ae5a2c971847716a5 10.0/RPMS/emacs-21.3-9.1.100mdk.i586.rpm
e2ed618fc3b58636c13ce1f2dd2629b5 10.0/RPMS/emacs-X11-21.3-9.1.100mdk.i586.rpm
47482022f0e1e9f08a57edc6a2a966b4 10.0/RPMS/emacs-el-21.3-9.1.100mdk.i586.rpm
0cb3957408fa485c6253ab49bc2c5d39 10.0/RPMS/emacs-leim-21.3-9.1.100mdk.i586.rpm
0bfd90f125f1fe7d2e30379e9c5fd758 10.0/RPMS/emacs-nox-21.3-9.1.100mdk.i586.rpm
ae8043548a6141945b258da8ff862d77 10.0/RPMS/xemacs-21.4.15-5.1.100mdk.i586.rpm
d5506dea73c144ed9eed8983dcb6da22 10.0/RPMS/xemacs-devel-21.4.15-5.1.100mdk.i586.rpm
c4afe7ac526849fa58a46a0471e62807 10.0/RPMS/xemacs-el-21.4.15-5.1.100mdk.i586.rpm
7a9d63715dac250e04a264cbd6824dd3 10.0/RPMS/xemacs-extras-21.4.15-5.1.100mdk.i586.rpm
abe2a1e425b5bb7de659790fc6b4a8d4 10.0/RPMS/xemacs-packages-21.4.15-5.1.100mdk.i586.rpm
8f922b04d409cdde24764d42ee4d4494 10.0/SRPMS/emacs-21.3-9.1.100mdk.src.rpm
224bff664582a98701e8e60937754b78 10.0/SRPMS/xemacs-21.4.15-5.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
39bdb29b6f715318429bc9c36107fb52 amd64/10.0/RPMS/emacs-21.3-9.1.100mdk.amd64.rpm
f39ad2589bf356ee45938a478c279f73 amd64/10.0/RPMS/emacs-X11-21.3-9.1.100mdk.amd64.rpm
b1f1000d1fb5f75d98927927f47ea775 amd64/10.0/RPMS/emacs-el-21.3-9.1.100mdk.amd64.rpm
05c33e8f7aa98340f7797990d4f579c1 amd64/10.0/RPMS/emacs-leim-21.3-9.1.100mdk.amd64.rpm
e24061e2624d554a9c7829b3d4064198 amd64/10.0/RPMS/emacs-nox-21.3-9.1.100mdk.amd64.rpm
5b26030da09890fcfb853b6d389cae5c amd64/10.0/RPMS/xemacs-21.4.15-5.1.100mdk.amd64.rpm
66ad72d0cfa33776b60dcba27e85f82c amd64/10.0/RPMS/xemacs-devel-21.4.15-5.1.100mdk.amd64.rpm
22f2cc825813c7af4ffd7db6876b2520 amd64/10.0/RPMS/xemacs-el-21.4.15-5.1.100mdk.amd64.rpm
43ed8bc15bfb534b4a656eca1d4e3856 amd64/10.0/RPMS/xemacs-extras-21.4.15-5.1.100mdk.amd64.rpm
7a1861cf7c35dd3b7dae7e40e7a025ac amd64/10.0/RPMS/xemacs-packages-21.4.15-5.1.100mdk.amd64.rpm
8f922b04d409cdde24764d42ee4d4494 amd64/10.0/SRPMS/emacs-21.3-9.1.100mdk.src.rpm
224bff664582a98701e8e60937754b78 amd64/10.0/SRPMS/xemacs-21.4.15-5.1.100mdk.src.rpm

Mandrakelinux 10.1:
0d692ad6a7755ca8e5c5bb4e369f1b63 10.1/RPMS/emacs-21.3-15.1.101mdk.i586.rpm
cb30a19b78c3937c648fde0773315f20 10.1/RPMS/emacs-X11-21.3-15.1.101mdk.i586.rpm
df15b087897e5ba4387b7ca00dfd30f2 10.1/RPMS/emacs-doc-21.3-15.1.101mdk.i586.rpm
508e2b25436cc4f4479d4a94499ff860 10.1/RPMS/emacs-el-21.3-15.1.101mdk.i586.rpm
ad52f11f12c175bfa9c9c76321c1dc11 10.1/RPMS/emacs-leim-21.3-15.1.101mdk.i586.rpm
baa34b4dbcacbe21a2cead9e6861897c 10.1/RPMS/emacs-nox-21.3-15.1.101mdk.i586.rpm
50c7a2f467f3f65dccacf70c271efceb 10.1/RPMS/xemacs-21.4.15-5.1.101mdk.i586.rpm
d8b7c4406cc7d2e15e476fa97b31e410 10.1/RPMS/xemacs-devel-21.4.15-5.1.101mdk.i586.rpm
86006c9193091c644ad60bae7199f92f 10.1/RPMS/xemacs-el-21.4.15-5.1.101mdk.i586.rpm
abf3b9fe922e0a6aaee9acf608b75e83 10.1/RPMS/xemacs-extras-21.4.15-5.1.101mdk.i586.rpm
08a6008f56496ab50c9e1ee9ce7d52df 10.1/RPMS/xemacs-packages-21.4.15-5.1.101mdk.i586.rpm
ea1441d81a090fe3149de67e25baa2de 10.1/SRPMS/emacs-21.3-15.1.101mdk.src.rpm
1d00033bd68ed26125f43fd775d656dc 10.1/SRPMS/xemacs-21.4.15-5.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
915928a48253a24c117bcfeb0b22f6f0 x86_64/10.1/RPMS/emacs-21.3-15.1.101mdk.x86_64.rpm
86751c4bcb83f90c0234c63c419ce0bf x86_64/10.1/RPMS/emacs-X11-21.3-15.1.101mdk.x86_64.rpm
36328fe14abeb3b4d15d0dba9b0723e1 x86_64/10.1/RPMS/emacs-doc-21.3-15.1.101mdk.x86_64.rpm
f670aa11153b610d36e08aff9283b5ba x86_64/10.1/RPMS/emacs-el-21.3-15.1.101mdk.x86_64.rpm
58acf0a5ed5af18e36fe121bf9150202 x86_64/10.1/RPMS/emacs-leim-21.3-15.1.101mdk.x86_64.rpm
ca3e0fbebbffa845fa06058c128366bb x86_64/10.1/RPMS/emacs-nox-21.3-15.1.101mdk.x86_64.rpm
bf905f9ff5e06e8cf9e4d197335c4afa x86_64/10.1/RPMS/xemacs-21.4.15-5.1.101mdk.x86_64.rpm
7c0522c6d6b7a87a0cbe3a8a01828195 x86_64/10.1/RPMS/xemacs-devel-21.4.15-5.1.101mdk.x86_64.rpm
47627a15c5894e30e601881b1a43936c x86_64/10.1/RPMS/xemacs-el-21.4.15-5.1.101mdk.x86_64.rpm
389929e05d4fd19815c4364d32da41c3 x86_64/10.1/RPMS/xemacs-extras-21.4.15-5.1.101mdk.x86_64.rpm
43f9afb527af33220c2b51466bcfae22 x86_64/10.1/RPMS/xemacs-packages-21.4.15-5.1.101mdk.x86_64.rpm
ea1441d81a090fe3149de67e25baa2de x86_64/10.1/SRPMS/emacs-21.3-15.1.101mdk.src.rpm
1d00033bd68ed26125f43fd775d656dc x86_64/10.1/SRPMS/xemacs-21.4.15-5.1.101mdk.src.rpm

Corporate Server 2.1:
49983c7829ca7f656b4ba5fbcdf6d36a corporate/2.1/RPMS/emacs-21.2-13.1.C21mdk.i586.rpm
8a692a2c7570ddfde54fd27c63b774f8 corporate/2.1/RPMS/emacs-X11-21.2-13.1.C21mdk.i586.rpm
7e31c44cedfc38f33b1782eb8fd623d8 corporate/2.1/RPMS/emacs-el-21.2-13.1.C21mdk.i586.rpm
d2169eb2989ace9478e443c792d18b95 corporate/2.1/RPMS/emacs-leim-21.2-13.1.C21mdk.i586.rpm
4f20a07d5e1fae991afddf35d0c76338 corporate/2.1/RPMS/emacs-nox-21.2-13.1.C21mdk.i586.rpm
999701ba8835d2d437ad9890fda51a7e corporate/2.1/SRPMS/emacs-21.2-13.1.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
d3204501404baa00d11851560e1cf5b7 x86_64/corporate/2.1/RPMS/emacs-21.2-13.1.C21mdk.x86_64.rpm
217b508c0228983a2f4aec94f4693c19 x86_64/corporate/2.1/RPMS/emacs-X11-21.2-13.1.C21mdk.x86_64.rpm
b98b25b4273bc33bed9c59b26501fe11 x86_64/corporate/2.1/RPMS/emacs-el-21.2-13.1.C21mdk.x86_64.rpm
a18907ebcadc62f8862a8a27c7528483 x86_64/corporate/2.1/RPMS/emacs-leim-21.2-13.1.C21mdk.x86_64.rpm
669897c96706fc032bb4daac4560cc96 x86_64/corporate/2.1/RPMS/emacs-nox-21.2-13.1.C21mdk.x86_64.rpm
999701ba8835d2d437ad9890fda51a7e x86_64/corporate/2.1/SRPMS/emacs-21.2-13.1.C21mdk.src.rpm

Corporate 3.0:
760a753ef94d4f2f2e9b9e29a5255a99 corporate/3.0/RPMS/emacs-21.3-9.1.C30mdk.i586.rpm
99f55f5783219bfbae02c090981b0fcb corporate/3.0/RPMS/emacs-X11-21.3-9.1.C30mdk.i586.rpm
d29235e9a395e19275fab69c4d2c0847 corporate/3.0/RPMS/emacs-el-21.3-9.1.C30mdk.i586.rpm
f04f6f557c078ea69b7c3c85ae0ed81e corporate/3.0/RPMS/emacs-leim-21.3-9.1.C30mdk.i586.rpm
1f6cc7a9cd482fdcf94e363be19971cc corporate/3.0/RPMS/emacs-nox-21.3-9.1.C30mdk.i586.rpm
60791ad7067aa9eefa898a16abaeef36 corporate/3.0/RPMS/xemacs-21.4.15-5.1.C30mdk.i586.rpm
7ef7705a3c28e59f06e903b370156634 corporate/3.0/RPMS/xemacs-devel-21.4.15-5.1.C30mdk.i586.rpm
2881216e5033ade3c2b88cd8b150a823 corporate/3.0/RPMS/xemacs-el-21.4.15-5.1.C30mdk.i586.rpm
85d8a6b42d6a5c35422b626a87d4b8f9 corporate/3.0/RPMS/xemacs-extras-21.4.15-5.1.C30mdk.i586.rpm
1cfd46ac57260629b45442947c24d6e2 corporate/3.0/RPMS/xemacs-packages-21.4.15-5.1.C30mdk.i586.rpm
f679f5be8fe5327fab82ac3be4b5a9e1 corporate/3.0/SRPMS/emacs-21.3-9.1.C30mdk.src.rpm
878e3175c95c3dce2ac60f4047d4a581 corporate/3.0/SRPMS/xemacs-21.4.15-5.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
380a6ccf8fae12dd3a946f275764514e x86_64/corporate/3.0/RPMS/emacs-21.3-9.1.C30mdk.x86_64.rpm
ac591e07f79ba5e4baeb99c3411de1b6 x86_64/corporate/3.0/RPMS/emacs-X11-21.3-9.1.C30mdk.x86_64.rpm
a1a2b98ca97e23ccd76eb96503253d60 x86_64/corporate/3.0/RPMS/emacs-el-21.3-9.1.C30mdk.x86_64.rpm
f13680befb62bf0aa45cd8b10f30aa0a x86_64/corporate/3.0/RPMS/emacs-leim-21.3-9.1.C30mdk.x86_64.rpm
52243d02b273663c55ce9f887cb9f463 x86_64/corporate/3.0/RPMS/emacs-nox-21.3-9.1.C30mdk.x86_64.rpm
2ba9a9462da41ddeaa478a777d4131af x86_64/corporate/3.0/RPMS/xemacs-21.4.15-5.1.C30mdk.x86_64.rpm
a0f7211071c4c1bbb00c5fa3066e2fa4 x86_64/corporate/3.0/RPMS/xemacs-devel-21.4.15-5.1.C30mdk.x86_64.rpm
54a4db0c72b97925b40f9c4befab6c18 x86_64/corporate/3.0/RPMS/xemacs-el-21.4.15-5.1.C30mdk.x86_64.rpm
202c404c96f8da70edb79a57bdccb130 x86_64/corporate/3.0/RPMS/xemacs-extras-21.4.15-5.1.C30mdk.x86_64.rpm
9af99d022d0becc7600722612afb43f1 x86_64/corporate/3.0/RPMS/xemacs-packages-21.4.15-5.1.C30mdk.x86_64.rpm
f679f5be8fe5327fab82ac3be4b5a9e1 x86_64/corporate/3.0/SRPMS/emacs-21.3-9.1.C30mdk.src.rpm
878e3175c95c3dce2ac60f4047d4a581 x86_64/corporate/3.0/SRPMS/xemacs-21.4.15-5.1.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCEpyomqjQ0CJFipgRAiqmAJ9cdLT+Dx+QBNKHWe2H0WK014aJLQCgj7Vb
fX1vCMYtJ3Zs46rSGqU6Ga0=
=2xuP
- -----END PGP SIGNATURE-----


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: rwho
Advisory ID: MDKSA-2005:039
Date: February 16th, 2005

Affected versions: 10.0, 10.1, Corporate Server 2.1
______________________________________________________________________

Problem Description:

A vulnerability in rwhod was discovered by "Vlad902" that can be abused to crash the listening process (the broadcasting process is not affected). This vulnerability only affects little endian architectures.

The updated packages have been patched to correct the problem. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1180
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
18b7485196ee830d220d87509d5db5bf 10.0/RPMS/rwho-0.17-10.2.100mdk.i586.rpm
7f29f3444e1222185ac98ccafb9f6ce3 10.0/SRPMS/rwho-0.17-10.2.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
00cffaf8b934d65f651a4affa09fcff6 amd64/10.0/RPMS/rwho-0.17-10.2.100mdk.amd64.rpm
7f29f3444e1222185ac98ccafb9f6ce3 amd64/10.0/SRPMS/rwho-0.17-10.2.100mdk.src.rpm

Mandrakelinux 10.1:
64dfcb4ab0f4f2d88063055f6367bf60 10.1/RPMS/rwho-0.17-10.2.101mdk.i586.rpm
f3da6dddbf0045178e666630925095d1 10.1/SRPMS/rwho-0.17-10.2.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
96606943b5edd78862046acca588b909 x86_64/10.1/RPMS/rwho-0.17-10.2.101mdk.x86_64.rpm
f3da6dddbf0045178e666630925095d1 x86_64/10.1/SRPMS/rwho-0.17-10.2.101mdk.src.rpm

Corporate Server 2.1:
aa4d4139705d1513e5fbc44591bcedf3 corporate/2.1/RPMS/rwho-0.17-10.2.C21mdk.i586.rpm
ec5576d4079b2d8ae11ff331bef6f293 corporate/2.1/SRPMS/rwho-0.17-10.2.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
498e9d7ad664790ea5e74ff43c31cb8d x86_64/corporate/2.1/RPMS/rwho-0.17-10.2.C21mdk.x86_64.rpm
ec5576d4079b2d8ae11ff331bef6f293 x86_64/corporate/2.1/SRPMS/rwho-0.17-10.2.C21mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFANAmqjQ0CJFipgRAnQAAJ9OVLN0/gttYA93VoeU5meykNpQYgCeIrVd
hwVl6TK+uVleQpHXU75g99o=
=OU+s
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: postgresql
Advisory ID: MDKSA-2005:040
Date: February 17th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0,
Corporate Server 2.1 ______________________________________________________________________

Problem Description:

A number of vulnerabilities were found and corrected in the PostgreSQL
DBMS:

A flaw in the LOAD command could be abused by a local user to load arbitrary shared libraries and as a result execute arbitrary code with the privileges of the user running the postgresql server (CAN-2005-0227).

A permission checking flaw was found where a local user could bypass the EXECUTE permission check for functions using the CREATE AGGREGATE command (CAN-2005-0244).

Multiple bufffer overflows were discovered in PL/PgSQL. A database user with permission to create plpgsql functions could trigger these flaws which could then lead to arbitrary code execution with the privileges of the user running the postgresql server (CAN-2005-0245 and CAN-2005-0247).

Finally, a flaw in the integer aggregator (intagg) contrib module was found. A user could create carefully crafted arrays and crash the server, causing a Denial of Service (CAN-2005-0246).

The updated packages have been patched to correct these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0227
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0244
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0246
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0247
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
16ffc8828537cc68c3677e847bba3423 10.0/RPMS/libecpg3-7.4.1-2.3.100mdk.i586.rpm
4020d5d5f6f3f54e4d25f84a75ab691d 10.0/RPMS/libecpg3-devel-7.4.1-2.3.100mdk.i586.rpm
9232db8cc28358e2d4a3a9edd7a87187 10.0/RPMS/libpgtcl2-7.4.1-2.3.100mdk.i586.rpm
520b86f7d74d29146e55f74330b1a552 10.0/RPMS/libpgtcl2-devel-7.4.1-2.3.100mdk.i586.rpm
d72e9063c841bd43e9242034f474244b 10.0/RPMS/libpq3-7.4.1-2.3.100mdk.i586.rpm
6419d8bec8b95e4ecaeedebd52c93738 10.0/RPMS/libpq3-devel-7.4.1-2.3.100mdk.i586.rpm
7c280a56ab05ea690c766e539c719f99 10.0/RPMS/postgresql-7.4.1-2.3.100mdk.i586.rpm
2001b4acc4f4d47b0416a67ef41981fd 10.0/RPMS/postgresql-contrib-7.4.1-2.3.100mdk.i586.rpm
4dcc1389b8057ff8200c639ad5a3f4ec 10.0/RPMS/postgresql-devel-7.4.1-2.3.100mdk.i586.rpm
453e7a73a7b9dc82ae934cb1e577dc01 10.0/RPMS/postgresql-docs-7.4.1-2.3.100mdk.i586.rpm
2e75916c1fba4577305ac550035e4743 10.0/RPMS/postgresql-jdbc-7.4.1-2.3.100mdk.i586.rpm
afd194432b0e32084ba5fa8a65f998e2 10.0/RPMS/postgresql-pl-7.4.1-2.3.100mdk.i586.rpm
a44ff8f4b5fc39031001e4a9229d572a 10.0/RPMS/postgresql-server-7.4.1-2.3.100mdk.i586.rpm
43bc338135c44b923e1fe2a4f8daf2d8 10.0/RPMS/postgresql-tcl-7.4.1-2.3.100mdk.i586.rpm
a4b5edb7b50fb00d506f269539291052 10.0/RPMS/postgresql-test-7.4.1-2.3.100mdk.i586.rpm
5a2668b9715dff828032beb884f1c13a 10.0/SRPMS/postgresql-7.4.1-2.3.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
ba8ac7fb475e2458d418a9d28f7a6bdd amd64/10.0/RPMS/lib64ecpg3-7.4.1-2.3.100mdk.amd64.rpm
9aa82839d8707bba9a3f381e541e9eaa amd64/10.0/RPMS/lib64ecpg3-devel-7.4.1-2.3.100mdk.amd64.rpm
e0eea0ccee8fc51fda4b275cee2861d6 amd64/10.0/RPMS/lib64pgtcl2-7.4.1-2.3.100mdk.amd64.rpm
f0bfa9d336643270dd80995662af9434 amd64/10.0/RPMS/lib64pgtcl2-devel-7.4.1-2.3.100mdk.amd64.rpm
d83ff9d9e546b24091d76aca353d35e2 amd64/10.0/RPMS/lib64pq3-7.4.1-2.3.100mdk.amd64.rpm
13dc44f2b9561e42d2a8056fbb699bbb amd64/10.0/RPMS/lib64pq3-devel-7.4.1-2.3.100mdk.amd64.rpm
7d271112bbab112b1fb28b303eb9e0a7 amd64/10.0/RPMS/postgresql-7.4.1-2.3.100mdk.amd64.rpm
67a2bb9406e042bea5688d642c337caa amd64/10.0/RPMS/postgresql-contrib-7.4.1-2.3.100mdk.amd64.rpm
56a76464a238ff294c003d28a8200140 amd64/10.0/RPMS/postgresql-devel-7.4.1-2.3.100mdk.amd64.rpm
91a14f0eed85c582b631203c1e4f06ac amd64/10.0/RPMS/postgresql-docs-7.4.1-2.3.100mdk.amd64.rpm
fa85691eb7a9324566c4fee3f10076b8 amd64/10.0/RPMS/postgresql-jdbc-7.4.1-2.3.100mdk.amd64.rpm
78fd692dc47840cda2bfe8026da94a9e amd64/10.0/RPMS/postgresql-pl-7.4.1-2.3.100mdk.amd64.rpm
803e9e42a9520e987eebc84f2b6775b5 amd64/10.0/RPMS/postgresql-server-7.4.1-2.3.100mdk.amd64.rpm
f81990aaf4864f7ff90d6ade4b0e8dc2 amd64/10.0/RPMS/postgresql-tcl-7.4.1-2.3.100mdk.amd64.rpm
8c1313adf68fd74632aa90de56206e59 amd64/10.0/RPMS/postgresql-test-7.4.1-2.3.100mdk.amd64.rpm
5a2668b9715dff828032beb884f1c13a amd64/10.0/SRPMS/postgresql-7.4.1-2.3.100mdk.src.rpm

Mandrakelinux 10.1:
cfbf2d0416581890cb92ffbfe85f3148 10.1/RPMS/libecpg3-7.4.5-4.2.101mdk.i586.rpm
5d06b5ce19f406df2c59c7700aef56b6 10.1/RPMS/libecpg3-devel-7.4.5-4.2.101mdk.i586.rpm
fce660063ea19318bb1e3b3ff7a3c3f1 10.1/RPMS/libpgtcl2-7.4.5-4.2.101mdk.i586.rpm
fa13708a3ce7b8972f6c102409196115 10.1/RPMS/libpgtcl2-devel-7.4.5-4.2.101mdk.i586.rpm
d4dbb5f29b2453127e20814c166749a2 10.1/RPMS/libpq3-7.4.5-4.2.101mdk.i586.rpm
e1c0fb23f3244c0f41e36a24bbd54879 10.1/RPMS/libpq3-devel-7.4.5-4.2.101mdk.i586.rpm
26fa14f28369a12a1b94be68ae502429 10.1/RPMS/postgresql-7.4.5-4.2.101mdk.i586.rpm
21461b1fcec94edd17d105817664d8d9 10.1/RPMS/postgresql-contrib-7.4.5-4.2.101mdk.i586.rpm
7692813ddccb5a365463d0f9644ff4ca 10.1/RPMS/postgresql-devel-7.4.5-4.2.101mdk.i586.rpm
8e2040db7835bcce566574da3e7d6cd4 10.1/RPMS/postgresql-docs-7.4.5-4.2.101mdk.i586.rpm
b92bfdc895060d4d0802508632105035 10.1/RPMS/postgresql-jdbc-7.4.5-4.2.101mdk.i586.rpm
db2c90c7c39c013c013d2d3d9d113765 10.1/RPMS/postgresql-pl-7.4.5-4.2.101mdk.i586.rpm
c7613cdabf7e94505eaf7c87184a16f9 10.1/RPMS/postgresql-server-7.4.5-4.2.101mdk.i586.rpm
41f893da26544b0fa198e6279c170f07 10.1/RPMS/postgresql-tcl-7.4.5-4.2.101mdk.i586.rpm
0454c551cfc2d85561973ccd67c2b91d 10.1/RPMS/postgresql-test-7.4.5-4.2.101mdk.i586.rpm
eb44e6b640cda424b0b07a68f1a52dec 10.1/SRPMS/postgresql-7.4.5-4.2.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
c3d7002d1791bfd467201e1e3ec45813 x86_64/10.1/RPMS/lib64ecpg3-7.4.5-4.2.101mdk.x86_64.rpm
3588072e4ac37d48ce17b19af768ff53 x86_64/10.1/RPMS/lib64ecpg3-devel-7.4.5-4.2.101mdk.x86_64.rpm
944c52672e0a156a063e4b9d23be5434 x86_64/10.1/RPMS/lib64pgtcl2-7.4.5-4.2.101mdk.x86_64.rpm
3392f7f1bb345198e7db0c5ecda9614e x86_64/10.1/RPMS/lib64pgtcl2-devel-7.4.5-4.2.101mdk.x86_64.rpm
91c6169bc0c6a30d2ca6c3081e7531d3 x86_64/10.1/RPMS/lib64pq3-7.4.5-4.2.101mdk.x86_64.rpm
0006b0af52c0f07140ad62f2551a2b75 x86_64/10.1/RPMS/lib64pq3-devel-7.4.5-4.2.101mdk.x86_64.rpm
84e54857dd38ceb0331cf7d6afa873f2 x86_64/10.1/RPMS/postgresql-7.4.5-4.2.101mdk.x86_64.rpm
d53d51c03e9cf6b2111aec6c2bbecce4 x86_64/10.1/RPMS/postgresql-contrib-7.4.5-4.2.101mdk.x86_64.rpm
0a367e8f05859e51fc9c7aa43a77c196 x86_64/10.1/RPMS/postgresql-devel-7.4.5-4.2.101mdk.x86_64.rpm
f02047b426694df93a3995251f210e51 x86_64/10.1/RPMS/postgresql-docs-7.4.5-4.2.101mdk.x86_64.rpm
441f29064e398dfcb81344c2ab1c97df x86_64/10.1/RPMS/postgresql-jdbc-7.4.5-4.2.101mdk.x86_64.rpm
d0009a4a3e40bd4dbb366cbbd209b75f x86_64/10.1/RPMS/postgresql-pl-7.4.5-4.2.101mdk.x86_64.rpm
ad7747cd7531512f4137ec3fc53bb678 x86_64/10.1/RPMS/postgresql-server-7.4.5-4.2.101mdk.x86_64.rpm
a8e723d3059d6464b9543781bac73b13 x86_64/10.1/RPMS/postgresql-tcl-7.4.5-4.2.101mdk.x86_64.rpm
8f5bfc4b116ab384a51f5d4f3898a87a x86_64/10.1/RPMS/postgresql-test-7.4.5-4.2.101mdk.x86_64.rpm
eb44e6b640cda424b0b07a68f1a52dec x86_64/10.1/SRPMS/postgresql-7.4.5-4.2.101mdk.src.rpm

Corporate Server 2.1:
07828dc552fa6bb7ec317629506bbaec corporate/2.1/RPMS/libecpg3-7.2.2-1.6.C21mdk.i586.rpm
1b22046007724c7f2d53daa27bf6aa97 corporate/2.1/RPMS/libpgperl-7.2.2-1.6.C21mdk.i586.rpm
543c329b9a40d115fc4cbed5a960f5d8 corporate/2.1/RPMS/libpgsql2-7.2.2-1.6.C21mdk.i586.rpm
aa6041f4e4ca1a5e1bc16f1d977940b1 corporate/2.1/RPMS/libpgsqlodbc0-7.2.2-1.6.C21mdk.i586.rpm
3cb3c7a6d281dc612df295c2bdb9f0c2 corporate/2.1/RPMS/libpgtcl2-7.2.2-1.6.C21mdk.i586.rpm
3e2f09fa209071e921e3d8e0e5b1351c corporate/2.1/RPMS/postgresql-7.2.2-1.6.C21mdk.i586.rpm
d3d7ef771756c8e84e159601a4b10866 corporate/2.1/RPMS/postgresql-contrib-7.2.2-1.6.C21mdk.i586.rpm
a443fa9d365d6d9a14078868697fd67e corporate/2.1/RPMS/postgresql-devel-7.2.2-1.6.C21mdk.i586.rpm
f03e1880bcf194e0acbfddb5a6448ec7 corporate/2.1/RPMS/postgresql-docs-7.2.2-1.6.C21mdk.i586.rpm
0987e784211fdc488ec199543deba1db corporate/2.1/RPMS/postgresql-jdbc-7.2.2-1.6.C21mdk.i586.rpm
99e748cea890e06a38c5313a7cd92672 corporate/2.1/RPMS/postgresql-python-7.2.2-1.6.C21mdk.i586.rpm
ff9096291b65bd3df3b2d54b9f0cd33d corporate/2.1/RPMS/postgresql-server-7.2.2-1.6.C21mdk.i586.rpm
228bc6d5a908e93c916d125ee0f05ae0 corporate/2.1/RPMS/postgresql-tcl-7.2.2-1.6.C21mdk.i586.rpm
308a1ec1153ee10773198a55eab564a2 corporate/2.1/RPMS/postgresql-test-7.2.2-1.6.C21mdk.i586.rpm
c8b5f9daf5cab602786e1b1a860a9618 corporate/2.1/RPMS/postgresql-tk-7.2.2-1.6.C21mdk.i586.rpm
7796f01877c9b9d9b8e3820525cab446 corporate/2.1/SRPMS/postgresql-7.2.2-1.6.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
967ecc436c88f3d2f608f785ecae7fdf x86_64/corporate/2.1/RPMS/libecpg3-7.2.2-1.6.C21mdk.x86_64.rpm
e05af552003ffd68fbcb272cb2612392 x86_64/corporate/2.1/RPMS/libpgperl-7.2.2-1.6.C21mdk.x86_64.rpm
621c6fd539691fba7c17ea952834a9e0 x86_64/corporate/2.1/RPMS/libpgsql2-7.2.2-1.6.C21mdk.x86_64.rpm
126c387736352aa517d2d1b0192d68c7 x86_64/corporate/2.1/RPMS/libpgsqlodbc0-7.2.2-1.6.C21mdk.x86_64.rpm
93971eeef37a3240cf2230252fe4f102 x86_64/corporate/2.1/RPMS/libpgtcl2-7.2.2-1.6.C21mdk.x86_64.rpm
9987aec07e00da4b080be380ffaeda06 x86_64/corporate/2.1/RPMS/postgresql-7.2.2-1.6.C21mdk.x86_64.rpm
bc534eb525ace51b90a7242006c1d8d1 x86_64/corporate/2.1/RPMS/postgresql-contrib-7.2.2-1.6.C21mdk.x86_64.rpm
797ef3bd86d8f6c124fe31f6d954dc45 x86_64/corporate/2.1/RPMS/postgresql-devel-7.2.2-1.6.C21mdk.x86_64.rpm
1ac00353ef746416c66c9f9f5342566a x86_64/corporate/2.1/RPMS/postgresql-docs-7.2.2-1.6.C21mdk.x86_64.rpm
70abda3fd5a1b1fc7a120452e6a357be x86_64/corporate/2.1/RPMS/postgresql-jdbc-7.2.2-1.6.C21mdk.x86_64.rpm
228e3a15542579e652bd0011a18d0a33 x86_64/corporate/2.1/RPMS/postgresql-python-7.2.2-1.6.C21mdk.x86_64.rpm
40a38bfcfdbdbb89a3f545be7a38cc02 x86_64/corporate/2.1/RPMS/postgresql-server-7.2.2-1.6.C21mdk.x86_64.rpm
d656d3014fab927f6ed576c2f2b0fab2 x86_64/corporate/2.1/RPMS/postgresql-tcl-7.2.2-1.6.C21mdk.x86_64.rpm
35fab1227bfc8714b8b3adb906934f4f x86_64/corporate/2.1/RPMS/postgresql-test-7.2.2-1.6.C21mdk.x86_64.rpm
a3e17c5b1e601651125753d743ddbdf2 x86_64/corporate/2.1/RPMS/postgresql-tk-7.2.2-1.6.C21mdk.x86_64.rpm
7796f01877c9b9d9b8e3820525cab446 x86_64/corporate/2.1/SRPMS/postgresql-7.2.2-1.6.C21mdk.src.rpm

Corporate 3.0:
703f412b51e8a67f4fe730001fff869a corporate/3.0/RPMS/libecpg3-7.4.1-2.3.C30mdk.i586.rpm
9f110cf2987d1640aad133466a370ac9 corporate/3.0/RPMS/libecpg3-devel-7.4.1-2.3.C30mdk.i586.rpm
15faf2e314a2f58576bc767873f38dd5 corporate/3.0/RPMS/libpgtcl2-7.4.1-2.3.C30mdk.i586.rpm
453a316a93ed80391c90d7d5f1f3a6a2 corporate/3.0/RPMS/libpgtcl2-devel-7.4.1-2.3.C30mdk.i586.rpm
f1cdf3eb4c3c2de0258da3aa96f28b51 corporate/3.0/RPMS/libpq3-7.4.1-2.3.C30mdk.i586.rpm
b812a36bcfbfa5ff5e1277916427fed4 corporate/3.0/RPMS/libpq3-devel-7.4.1-2.3.C30mdk.i586.rpm
c14ee05bd18670aa32daadf7874058ea corporate/3.0/RPMS/postgresql-7.4.1-2.3.C30mdk.i586.rpm
480c6b12fd9f67b461565150990d94dd corporate/3.0/RPMS/postgresql-contrib-7.4.1-2.3.C30mdk.i586.rpm
3eeddc76a7a76e27f182ba4cb1b17e42 corporate/3.0/RPMS/postgresql-devel-7.4.1-2.3.C30mdk.i586.rpm
485b6c829446ea045279be079e1fa072 corporate/3.0/RPMS/postgresql-docs-7.4.1-2.3.C30mdk.i586.rpm
8bd2d6305f5251ba836c18f75d988227 corporate/3.0/RPMS/postgresql-jdbc-7.4.1-2.3.C30mdk.i586.rpm
641f0a542a38f4c11ab4dc3ef4342276 corporate/3.0/RPMS/postgresql-pl-7.4.1-2.3.C30mdk.i586.rpm
c3159ed459277846c1039bba90311b95 corporate/3.0/RPMS/postgresql-server-7.4.1-2.3.C30mdk.i586.rpm
b21d6d84e624db0392e574a169502061 corporate/3.0/RPMS/postgresql-tcl-7.4.1-2.3.C30mdk.i586.rpm
cdb56ad60e5873d9352e368f38e0ff4d corporate/3.0/RPMS/postgresql-test-7.4.1-2.3.C30mdk.i586.rpm
9b08dd32f213eb5d72eefdb1180d4e07 corporate/3.0/SRPMS/postgresql-7.4.1-2.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
1fea9bc21a5abc4f82b8d7daaa303536 x86_64/corporate/3.0/RPMS/lib64ecpg3-7.4.1-2.3.C30mdk.x86_64.rpm
551d09da754f2df20149be16bb6db2d4 x86_64/corporate/3.0/RPMS/lib64ecpg3-devel-7.4.1-2.3.C30mdk.x86_64.rpm
47fa740b136759bc2994ae7ec835a94f x86_64/corporate/3.0/RPMS/lib64pgtcl2-7.4.1-2.3.C30mdk.x86_64.rpm
de25619797d5158ced82900075b3936d x86_64/corporate/3.0/RPMS/lib64pgtcl2-devel-7.4.1-2.3.C30mdk.x86_64.rpm
d91013404c9707cd0ae118a463ff0c6f x86_64/corporate/3.0/RPMS/lib64pq3-7.4.1-2.3.C30mdk.x86_64.rpm
71dcfe4eb96aba1530434daa07fd6eed x86_64/corporate/3.0/RPMS/lib64pq3-devel-7.4.1-2.3.C30mdk.x86_64.rpm
3f168888bf5efd05ef6fd719d9c01917 x86_64/corporate/3.0/RPMS/postgresql-7.4.1-2.3.C30mdk.x86_64.rpm
6c8dd16779bc40266cd64f1f412d2102 x86_64/corporate/3.0/RPMS/postgresql-contrib-7.4.1-2.3.C30mdk.x86_64.rpm
75c1a72e9cbb770c1a236ab6ddb2ab76 x86_64/corporate/3.0/RPMS/postgresql-devel-7.4.1-2.3.C30mdk.x86_64.rpm
f0025782e729ec6b411fdf8571c77144 x86_64/corporate/3.0/RPMS/postgresql-docs-7.4.1-2.3.C30mdk.x86_64.rpm
49f9232aecedb50ad4aa2d1dcfa701a5 x86_64/corporate/3.0/RPMS/postgresql-jdbc-7.4.1-2.3.C30mdk.x86_64.rpm
7c26529d41d00b88ea641d93bf1a52b7 x86_64/corporate/3.0/RPMS/postgresql-pl-7.4.1-2.3.C30mdk.x86_64.rpm
e329a502d793ac88c26b378558cd8578 x86_64/corporate/3.0/RPMS/postgresql-server-7.4.1-2.3.C30mdk.x86_64.rpm
c0864e32bdd125df52263916125bad7b x86_64/corporate/3.0/RPMS/postgresql-tcl-7.4.1-2.3.C30mdk.x86_64.rpm
e8f6a709d4809fd20f2b0842cbfac96a x86_64/corporate/3.0/RPMS/postgresql-test-7.4.1-2.3.C30mdk.x86_64.rpm
9b08dd32f213eb5d72eefdb1180d4e07 x86_64/corporate/3.0/SRPMS/postgresql-7.4.1-2.3.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVV1mqjQ0CJFipgRAuyjAJ4xpmPIrl4D+T/KF1VaE3l3wP642QCgzk0x
fMnuQu4mRw4/d6UuU5cykDQ=
=Fyd+
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: cups
Advisory ID: MDKSA-2005:041
Date: February 17th, 2005

Affected versions: 9.2, 10.0, 10.1, Corporate 3.0,
Corporate Server 2.1 ______________________________________________________________________

Problem Description:

Previous updates to correct integer overflow issues affecting xpdf overlooked certain conditions when built for a 64 bit platform. (formerly CAN-2004-0888). This also affects applications like cups,
that use embedded versions of xpdf.

The updated packages are patched to deal with these issues. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0206
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0/AMD64:
0863a33d5e67873f53c0b8fa1d2f4384 amd64/10.0/RPMS/cups-1.1.20-5.7.100mdk.amd64.rpm
3822cee8837630a96f78a33d3bf1bd4a amd64/10.0/RPMS/cups-common-1.1.20-5.7.100mdk.amd64.rpm
931290407a940ff87909496292ac8912 amd64/10.0/RPMS/cups-serial-1.1.20-5.7.100mdk.amd64.rpm
929258c3e29a676e5a91393412105271 amd64/10.0/RPMS/lib64cups2-1.1.20-5.7.100mdk.amd64.rpm
91a2b0e5dbf46c66147297a9896d2d6d amd64/10.0/RPMS/lib64cups2-devel-1.1.20-5.7.100mdk.amd64.rpm
d814596362f8e2d01855161ec94bea9e amd64/10.0/SRPMS/cups-1.1.20-5.7.100mdk.src.rpm

Mandrakelinux 10.1/X86_64:
4907f2fb60a614b25f326c54f6937acf x86_64/10.1/RPMS/cups-1.1.21-0.rc1.7.5.101mdk.x86_64.rpm
6cdb17b703326feb5a831329b0e7f1eb x86_64/10.1/RPMS/cups-common-1.1.21-0.rc1.7.5.101mdk.x86_64.rpm
81080d7ceb102050b663d5eacdbed61a x86_64/10.1/RPMS/cups-serial-1.1.21-0.rc1.7.5.101mdk.x86_64.rpm
40c653a1689810a0555f19a88a7bf7ca x86_64/10.1/RPMS/lib64cups2-1.1.21-0.rc1.7.5.101mdk.x86_64.rpm
7abd4f4d3194e874aa54d66a32e5cd8d x86_64/10.1/RPMS/lib64cups2-devel-1.1.21-0.rc1.7.5.101mdk.x86_64.rpm
75dc2c7fad73b6a86b2991ec9374a6fc x86_64/10.1/SRPMS/cups-1.1.21-0.rc1.7.5.101mdk.src.rpm

Corporate Server 2.1/X86_64:
91e06052bb835506724d476eba84fd40 x86_64/corporate/2.1/RPMS/cups-1.1.18-2.9.C21mdk.x86_64.rpm
4f5c7d6820f07b71e6a68e6aa6d38eec x86_64/corporate/2.1/RPMS/cups-common-1.1.18-2.9.C21mdk.x86_64.rpm
4dfedb90e3f6249ea662bb47df938d16 x86_64/corporate/2.1/RPMS/cups-serial-1.1.18-2.9.C21mdk.x86_64.rpm
94e043c2439c13e3b829298982fe1f42 x86_64/corporate/2.1/RPMS/libcups1-1.1.18-2.9.C21mdk.x86_64.rpm
ff21acb50be45d2fba6b47fc65747db6 x86_64/corporate/2.1/RPMS/libcups1-devel-1.1.18-2.9.C21mdk.x86_64.rpm
ef9b4b42e7d425fb1994a14c59a6b783 x86_64/corporate/2.1/SRPMS/cups-1.1.18-2.9.C21mdk.src.rpm

Corporate 3.0/X86_64:
d37f68dc8e316d66534b9e8c1271ac28 x86_64/corporate/3.0/RPMS/cups-1.1.20-5.7.C30mdk.x86_64.rpm
5e2b3dfd3f0bd5c5663a941f8249eacb x86_64/corporate/3.0/RPMS/cups-common-1.1.20-5.7.C30mdk.x86_64.rpm
c3f4bfde26c351d68e69f08e32cab55e x86_64/corporate/3.0/RPMS/cups-serial-1.1.20-5.7.C30mdk.x86_64.rpm
66689b4a41a53463a7257add19dcee1b x86_64/corporate/3.0/RPMS/lib64cups2-1.1.20-5.7.C30mdk.x86_64.rpm
5b11a94570f61bf3c783cb9b3474e2c9 x86_64/corporate/3.0/RPMS/lib64cups2-devel-1.1.20-5.7.C30mdk.x86_64.rpm
b1e5fe6870130ab6478dfa0becc16e74 x86_64/corporate/3.0/SRPMS/cups-1.1.20-5.7.C30mdk.src.rpm

Mandrakelinux 9.2/AMD64:
82d2b5794f51069b2e23aa0b2a451205 amd64/9.2/RPMS/cups-1.1.19-10.7.92mdk.amd64.rpm
6fbc82f6e69736e2fca7c947c3f2e2ba amd64/9.2/RPMS/cups-common-1.1.19-10.7.92mdk.amd64.rpm
64452fd2b22d176811d43a4fad4704b5 amd64/9.2/RPMS/cups-serial-1.1.19-10.7.92mdk.amd64.rpm
d317fdcd91d9c1974903025d6eb55da3 amd64/9.2/RPMS/lib64cups2-1.1.19-10.7.92mdk.amd64.rpm
c52af110fdb57c8164e0efedc8074bbe amd64/9.2/RPMS/lib64cups2-devel-1.1.19-10.7.92mdk.amd64.rpm
8ed5be0556fac198f872fd7a160b8bf5 amd64/9.2/SRPMS/cups-1.1.19-10.7.92mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVehmqjQ0CJFipgRAk41AJ9fEpaiA3ngelDouyMU41C5du1JKgCgy0nU
2r55cl20pwVkb5TATTiRZsU=
=E6Fu
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: gpdf
Advisory ID: MDKSA-2005:042
Date: February 17th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0
______________________________________________________________________

Problem Description:

Previous updates to correct integer overflow issues affecting xpdf overlooked certain conditions when built for a 64 bit platform. (formerly CAN-2004-0888). This also affects applications like gpdf, that use embedded versions of xpdf.

The updated packages are patched to deal with these issues. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0206
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0/AMD64:
d06514c07d91079c76b120d1331d479a amd64/10.0/RPMS/gpdf-0.112-2.6.100mdk.amd64.rpm
e89f8e696edbe10cd00741acca0a75c7 amd64/10.0/SRPMS/gpdf-0.112-2.6.100mdk.src.rpm

Mandrakelinux 10.1/X86_64:
4e492af8918055d5d636de1bc32fa982 x86_64/10.1/RPMS/gpdf-0.132-3.5.101mdk.x86_64.rpm
bd941e699cb9694b94ebae550a462684 x86_64/10.1/SRPMS/gpdf-0.132-3.5.101mdk.src.rpm

Corporate 3.0/X86_64:
6e385cc821332dde1b9c216424eadbbe x86_64/corporate/3.0/RPMS/gpdf-0.112-2.6.C30mdk.x86_64.rpm
44600333f205ef33c9250302fc277c1b x86_64/corporate/3.0/SRPMS/gpdf-0.112-2.6.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVjJmqjQ0CJFipgRAlvQAKCiXo+1Qfxoz1/jl75xUzNAm7e7SACgpTQK
cFJhrL6hdYF6CzKePVrLXpU=
=P/Tv
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: xpdf
Advisory ID: MDKSA-2005:043
Date: February 17th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0,
Corporate Server 2.1 ______________________________________________________________________

Problem Description:

Previous updates to correct integer overflow issues affecting xpdf overlooked certain conditions when built for a 64 bit platform. (formerly CAN-2004-0888). This also affects applications that use
embedded versions of xpdf.

The updated packages are patched to deal with these issues. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0206
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0/AMD64:
6dfa3bb16bc3505df4a3611578dbd6dc amd64/10.0/RPMS/xpdf-3.00-5.5.100mdk.amd64.rpm
37c95383532c1e8d1e189cd1aa18f356 amd64/10.0/SRPMS/xpdf-3.00-5.5.100mdk.src.rpm

Mandrakelinux 10.1/X86_64:
79d6c0f92cf1e00da8d62adfd0968009 x86_64/10.1/RPMS/xpdf-3.00-7.4.101mdk.x86_64.rpm
65a16347a285c376355f4dc4b7fcdc2f x86_64/10.1/SRPMS/xpdf-3.00-7.4.101mdk.src.rpm

Corporate Server 2.1/X86_64:
22405ca391960b74c2dad5cbe372f9cd x86_64/corporate/2.1/RPMS/xpdf-1.01-4.9.C21mdk.x86_64.rpm
00044a02e6689ecdd8af09ed7ec3f1c5 x86_64/corporate/2.1/SRPMS/xpdf-1.01-4.9.C21mdk.src.rpm

Corporate 3.0/X86_64:
eb4a5ff36fb13a17cd2508d9c3cbfb3d x86_64/corporate/3.0/RPMS/xpdf-3.00-5.5.C30mdk.x86_64.rpm
7be80ea54ba1dc2278557d3475b0a0f4 x86_64/corporate/3.0/SRPMS/xpdf-3.00-5.5.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVmSmqjQ0CJFipgRAplaAJ9wY5ij3JnBatDV7VZI8miOJQlI1ACfepWZ
xS6rG+6GsfMrqHfl6gQNSas=
=2pCf
- -----END PGP SIGNATURE-----


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: tetex
Advisory ID: MDKSA-2005:044
Date: February 17th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0
______________________________________________________________________

Problem Description:

Previous updates to correct integer overflow issues affecting xpdf overlooked certain conditions when built for a 64 bit platform. (formerly CAN-2004-0888). This also affects applications like tetex, that use embedded versions of xpdf.

The updated packages are patched to deal with these issues. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0206
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0/AMD64:
7904e61de2adfb46c0514694665d7520 amd64/10.0/RPMS/jadetex-3.12-93.3.100mdk.amd64.rpm
b77419e254a189a998bc4af1bb4bcc41 amd64/10.0/RPMS/tetex-2.0.2-14.3.100mdk.amd64.rpm
15340e9b5ce0fc9acd6a918014d7d983 amd64/10.0/RPMS/tetex-afm-2.0.2-14.3.100mdk.amd64.rpm
6f559cd5ce0fadd8d9ea197d3865def9 amd64/10.0/RPMS/tetex-context-2.0.2-14.3.100mdk.amd64.rpm
badfbeb12ae0ee66d3880d6bad3f3ac8 amd64/10.0/RPMS/tetex-devel-2.0.2-14.3.100mdk.amd64.rpm
a73fff7110e04210b5d1497bbb67190c amd64/10.0/RPMS/tetex-doc-2.0.2-14.3.100mdk.amd64.rpm
23fe63b3cd2f1e407dd39fe200c6177c amd64/10.0/RPMS/tetex-dvilj-2.0.2-14.3.100mdk.amd64.rpm
6db7086515806d3c5ab1992f6c3d46d8 amd64/10.0/RPMS/tetex-dvipdfm-2.0.2-14.3.100mdk.amd64.rpm
a9ed5f29318bef12a6a2b5584e42c2b3 amd64/10.0/RPMS/tetex-dvips-2.0.2-14.3.100mdk.amd64.rpm
0a1cc940d7e04ec64bacd0cea638c2d8 amd64/10.0/RPMS/tetex-latex-2.0.2-14.3.100mdk.amd64.rpm
c5ab2762088c1bf423268331655ad1d5 amd64/10.0/RPMS/tetex-mfwin-2.0.2-14.3.100mdk.amd64.rpm
20510f5e4bdf59e2774e83e2fdac9435 amd64/10.0/RPMS/tetex-texi2html-2.0.2-14.3.100mdk.amd64.rpm
48c61b9ca9739f8d6b41af2410989b3f amd64/10.0/RPMS/tetex-xdvi-2.0.2-14.3.100mdk.amd64.rpm
68a6f4c328a7f5af293f57a6dffa4d05 amd64/10.0/RPMS/xmltex-1.9-41.3.100mdk.amd64.rpm
2c4377cb66660ff7dff819e710dd8a89 amd64/10.0/SRPMS/tetex-2.0.2-14.3.100mdk.src.rpm

Mandrakelinux 10.1/X86_64:
b07c920a82350d42755aad9a113b7969 x86_64/10.1/RPMS/jadetex-3.12-98.3.101mdk.x86_64.rpm
0a1534342231f820d293a090ab3f92ad x86_64/10.1/RPMS/tetex-2.0.2-19.3.101mdk.x86_64.rpm
a02ef1ee5e0a6b4401e59e8f8dfd5b6f x86_64/10.1/RPMS/tetex-afm-2.0.2-19.3.101mdk.x86_64.rpm
147a4d6a42dddcd1cc1dd48c901daa12 x86_64/10.1/RPMS/tetex-context-2.0.2-19.3.101mdk.x86_64.rpm
5fba6fac6aca4edae230a233fa4bd620 x86_64/10.1/RPMS/tetex-devel-2.0.2-19.3.101mdk.x86_64.rpm
acdafd26562f0f3e000ec5ba9957c267 x86_64/10.1/RPMS/tetex-doc-2.0.2-19.3.101mdk.x86_64.rpm
74a918434e40337a25b56c8825621e4f x86_64/10.1/RPMS/tetex-dvilj-2.0.2-19.3.101mdk.x86_64.rpm
e7364fd1c6319a8a893ae955815809d0 x86_64/10.1/RPMS/tetex-dvipdfm-2.0.2-19.3.101mdk.x86_64.rpm
ba0504ad78c3993ca869a5817fd14a64 x86_64/10.1/RPMS/tetex-dvips-2.0.2-19.3.101mdk.x86_64.rpm
9df18edbde9939e5a08753f9ddd03ff5 x86_64/10.1/RPMS/tetex-latex-2.0.2-19.3.101mdk.x86_64.rpm
f853e04a96be68603b0e9de0fcdc467e x86_64/10.1/RPMS/tetex-mfwin-2.0.2-19.3.101mdk.x86_64.rpm
528d7e6dc5b04bb8199f06e2a66d26f1 x86_64/10.1/RPMS/tetex-texi2html-2.0.2-19.3.101mdk.x86_64.rpm
c1cdcd4d8f75cf56420810b19096f170 x86_64/10.1/RPMS/tetex-xdvi-2.0.2-19.3.101mdk.x86_64.rpm
3c97fd419cd300507e4966f125ad40f2 x86_64/10.1/RPMS/xmltex-1.9-46.3.101mdk.x86_64.rpm
c995a628710c48cef314240d77b3b730 x86_64/10.1/SRPMS/tetex-2.0.2-19.3.101mdk.src.rpm

Corporate 3.0/X86_64:
1b326633a0e3185b752b8327d207cb0c x86_64/corporate/3.0/RPMS/jadetex-3.12-93.3.C30mdk.x86_64.rpm
242f4b039dfd35eb30ab9cc847b19cda x86_64/corporate/3.0/RPMS/tetex-2.0.2-14.3.C30mdk.x86_64.rpm
c9301ce4391d97800a76977e22a46026 x86_64/corporate/3.0/RPMS/tetex-afm-2.0.2-14.3.C30mdk.x86_64.rpm
42ee4dd0ae86099d70f6601840ede0b5 x86_64/corporate/3.0/RPMS/tetex-context-2.0.2-14.3.C30mdk.x86_64.rpm
7ef157d37e1310690e6248a9063a1214 x86_64/corporate/3.0/RPMS/tetex-devel-2.0.2-14.3.C30mdk.x86_64.rpm
d81b13fbe15b08c8d413cedc521da6fd x86_64/corporate/3.0/RPMS/tetex-doc-2.0.2-14.3.C30mdk.x86_64.rpm
5e7d13863a5fe4492983e57b60139f98 x86_64/corporate/3.0/RPMS/tetex-dvilj-2.0.2-14.3.C30mdk.x86_64.rpm
0c0cb885351fa4489970cbb2c487de95 x86_64/corporate/3.0/RPMS/tetex-dvipdfm-2.0.2-14.3.C30mdk.x86_64.rpm
67dd8bed1b557479cdc8d3c6be86027a x86_64/corporate/3.0/RPMS/tetex-dvips-2.0.2-14.3.C30mdk.x86_64.rpm
eacce2587b7dafc0b15f3ff291c2ce3c x86_64/corporate/3.0/RPMS/tetex-latex-2.0.2-14.3.C30mdk.x86_64.rpm
40bad1da0c94de878127a32e32bfc8d1 x86_64/corporate/3.0/RPMS/tetex-mfwin-2.0.2-14.3.C30mdk.x86_64.rpm
68016ddd82ef662b8024fc705c79d7c2 x86_64/corporate/3.0/RPMS/tetex-texi2html-2.0.2-14.3.C30mdk.x86_64.rpm
f1d8401b93dfdd0768632bdae0cd12b9 x86_64/corporate/3.0/RPMS/tetex-xdvi-2.0.2-14.3.C30mdk.x86_64.rpm
e94cde92b9473c0ddad2742a0c45b248 x86_64/corporate/3.0/RPMS/xmltex-1.9-41.3.C30mdk.x86_64.rpm
26a8a6d2e01d0239d8f9f8dde35344af x86_64/corporate/3.0/SRPMS/tetex-2.0.2-14.3.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVp/mqjQ0CJFipgRAmMkAJ9hFIa/TVrZXeIxPXx7RtcP6xosogCglT1b
VzFPNr8PkLOW7iDOsBcdY7Y=
=yrYe
- -----END PGP SIGNATURE-----

- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: kdelibs
Advisory ID: MDKSA-2005:045
Date: February 17th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0
______________________________________________________________________

Problem Description:

A bug in the way kioslave handles URL-encoded newline ( ) characters before the FTP command was discovered. Because of this, it is possible that a specially crafted URL could be used to execute any ftp command on a remote server, or even send unsolicited email.

As well, Davide Madrisan discovered that dcopidlng created temporary files in an insecure manner.

The updated packages are patched to deal with these issues. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1165
http://www.kde.org/info/security/advisory-20050101-1.txt
http://bugs.kde.org/show_bug.cgi?id=97608
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
36c26678038288bba80c3d72c9a1e20a 10.0/RPMS/kdelibs-common-3.2-36.10.100mdk.i586.rpm
3db366da3e09c4237e2a88732faca7a7 10.0/RPMS/libkdecore4-3.2-36.10.100mdk.i586.rpm
38c354234f316a456b9ff82c9535546e 10.0/RPMS/libkdecore4-devel-3.2-36.10.100mdk.i586.rpm
6912a08ee5359a4fdb48cac88b1a038b 10.0/SRPMS/kdelibs-3.2-36.10.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
dd9a0f3b2adcb7b59831e8f0edd73cce amd64/10.0/RPMS/kdelibs-common-3.2-36.10.100mdk.amd64.rpm
7a20989e14ff56ac7dbabca376bfba12 amd64/10.0/RPMS/lib64kdecore4-3.2-36.10.100mdk.amd64.rpm
071d26aa2f356d2dcc2bff274425531b amd64/10.0/RPMS/lib64kdecore4-devel-3.2-36.10.100mdk.amd64.rpm
6912a08ee5359a4fdb48cac88b1a038b amd64/10.0/SRPMS/kdelibs-3.2-36.10.100mdk.src.rpm

Mandrakelinux 10.1:
0cfe09de4cb942b4368cd1de240b17fa 10.1/RPMS/kdelibs-common-3.2.3-103.1.101mdk.i586.rpm
d8022d4320136b4112c23341c1312af5 10.1/RPMS/libkdecore4-3.2.3-103.1.101mdk.i586.rpm
41a707aab07bf9638c03103d40bca306 10.1/RPMS/libkdecore4-devel-3.2.3-103.1.101mdk.i586.rpm
8a24af1c667e03470cf4528dbd86a164 10.1/SRPMS/kdelibs-3.2.3-103.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
0ddace363e075b7715ddf481e530eaa7 x86_64/10.1/RPMS/kdelibs-common-3.2.3-103.1.101mdk.x86_64.rpm
b22c35e586b9a26c85998b77904a7340 x86_64/10.1/RPMS/lib64kdecore4-3.2.3-103.1.101mdk.x86_64.rpm
3550dbe6d2c956442ecbda70fa71d9dd x86_64/10.1/RPMS/lib64kdecore4-devel-3.2.3-103.1.101mdk.x86_64.rpm
d8022d4320136b4112c23341c1312af5 x86_64/10.1/RPMS/libkdecore4-3.2.3-103.1.101mdk.i586.rpm
8a24af1c667e03470cf4528dbd86a164 x86_64/10.1/SRPMS/kdelibs-3.2.3-103.1.101mdk.src.rpm

Corporate 3.0:
d93acd6d0050a6a5b0abddb91a791db5 corporate/3.0/RPMS/kdelibs-common-3.2-36.10.C30mdk.i586.rpm
6e3073f7f0ac52b6fcf38d43261cb7c3 corporate/3.0/RPMS/libkdecore4-3.2-36.10.C30mdk.i586.rpm
c753a66a47496ee4f765384afafa88d0 corporate/3.0/RPMS/libkdecore4-devel-3.2-36.10.C30mdk.i586.rpm
f057bf8b85687559e57527247cdc1de7 corporate/3.0/SRPMS/kdelibs-3.2-36.10.C30mdk.src.rpm

Corporate 3.0/X86_64:
04adc6e0b68e461c0b8bf5c3d07e4cbc x86_64/corporate/3.0/RPMS/kdelibs-common-3.2-36.10.C30mdk.x86_64.rpm
71202f8a27e9fdb2846cd14c339b87fa x86_64/corporate/3.0/RPMS/lib64kdecore4-3.2-36.10.C30mdk.x86_64.rpm
01d20ae725a9127ca492b9f447f189c0 x86_64/corporate/3.0/RPMS/lib64kdecore4-devel-3.2-36.10.C30mdk.x86_64.rpm
f057bf8b85687559e57527247cdc1de7 x86_64/corporate/3.0/SRPMS/kdelibs-3.2-36.10.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCFVuMmqjQ0CJFipgRAj2uAKDypzAdIDIK3cDnfGlN1QZJrnyWTgCeLjwZ
WyFMDq1yWBQ1kRWTFdLApo8=
=oTms
- -----END PGP SIGNATURE-----

  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |