Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2005 > Seven Mandrake Security Advisories: 1. MDKSA-2005:016 - gpdf 2. MDKSA-2005:017 - xpdf 3. MDKSA-2005:018 - cups 4. MDKSA-2005:019 - koffice 5. MDKSA-2005:020 - kdegraphics 6. MDKSA-2005:021 - tetex 7. MDKSA-2005:022 - kernel

January 2005

Seven Mandrake Security Advisories: 1. MDKSA-2005:016 - gpdf 2. MDKSA-2005:017 - xpdf 3. MDKSA-2005:018 - cups 4. MDKSA-2005:019 - koffice 5. MDKSA-2005:020 - kdegraphics 6. MDKSA-2005:021 - tetex 7. MDKSA-2005:022 - kernel

ID: 00079
Ref: 65/2005
Date: 28 January 2005:12:54:12
Version: 1
Title: Seven Mandrake Security Advisories: 1. MDKSA-2005:016 - gpdf 2. MDKSA-2005:017 - xpdf 3. MDKSA-2005:018 - cups 4. MDKSA-2005:019 - koffice 5. MDKSA-2005:020 - kdegraphics 6. MDKSA-2005:021 - tetex 7. MDKSA-2005:022 - kernel
Abstract:
Vendors affected: Mandrake
Operating systems affected: Mandrake
Applications affected: Mandrake


Title
=====

Seven Mandrake Security Advisories:

1. MDKSA-2005:016 - gpdf

2. MDKSA-2005:017 - xpdf

3. MDKSA-2005:018 - cups

4. MDKSA-2005:019 - koffice

5. MDKSA-2005:020 - kdegraphics

6. MDKSA-2005:021 - tetex

7. MDKSA-2005:022 - kernel


Detail
======

1. A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient Bounds checking while processing a PDF file that provides malicious
values in the /Encrypt /Length tag. Gpdf uses xpdf code and is
susceptible to the same vulnerability.

2. A buffer overflow vulnerability was discovered in the xpdf PDF
viewer, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag.

3. A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Cups uses xpdf code and is susceptible to the same vulnerability.

4. A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in the /Encrypt /Length tag. Koffice uses xpdf code and is susceptible to
the same vulnerability.

5. A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Kdegraphics uses xpdf code and is susceptible
to the same vulnerability.

6. A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Tetex uses xpdf code and is susceptible to the same vulnerability.

7. A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with this advisory





1. _______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: gpdf
Advisory ID: MDKSA-2005:016
Date: January 25th, 2005

Affected versions: 10.0, 10.1, Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Gpdf uses xpdf code and is susceptible to the
same vulnerability.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
fa03ef1a1d5a1784298d890e8cf09bd2 10.0/RPMS/gpdf-0.112-2.5.100mdk.i586.rpm
dc1ff1ca81d1148e7524b3a53fe68197 10.0/SRPMS/gpdf-0.112-2.5.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
76dcd6cc6c50b284371ae17eef7112e1 amd64/10.0/RPMS/gpdf-0.112-2.5.100mdk.amd64.rpm
dc1ff1ca81d1148e7524b3a53fe68197 amd64/10.0/SRPMS/gpdf-0.112-2.5.100mdk.src.rpm

Mandrakelinux 10.1:
56154e1310488f9ba89004a979ee3393 10.1/RPMS/gpdf-0.132-3.4.101mdk.i586.rpm
391b99e6a4f37385493acde18209f85c 10.1/SRPMS/gpdf-0.132-3.4.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
e1ddd99a172f76393693e25f1a302a17 x86_64/10.1/RPMS/gpdf-0.132-3.4.101mdk.x86_64.rpm
391b99e6a4f37385493acde18209f85c x86_64/10.1/SRPMS/gpdf-0.132-3.4.101mdk.src.rpm

Corporate Server 3.0:
14b33a6547cf218481ba22a1ebd21b16 corporate/3.0/RPMS/gpdf-0.112-2.5.C30mdk.i586.rpm
9fc41a46a4398ece01b369547aac6125 corporate/3.0/SRPMS/gpdf-0.112-2.5.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums
and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team




2. ____________________________________________________________________
Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: xpdf
Advisory ID: MDKSA-2005:017
Date: January 25th, 2005

Affected versions: 10.0, 10.1, Corporate Server 2.1,
Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
viewer, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
8fe688c70f2d61ff8750e21f75eebeb3 10.0/RPMS/xpdf-3.00-5.4.100mdk.i586.rpm
1990c8a678ea40233f5dc12c3a503fa2 10.0/SRPMS/xpdf-3.00-5.4.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
661d716961ace2071ec87bedb51811da amd64/10.0/RPMS/xpdf-3.00-5.4.100mdk.amd64.rpm
1990c8a678ea40233f5dc12c3a503fa2 amd64/10.0/SRPMS/xpdf-3.00-5.4.100mdk.src.rpm

Mandrakelinux 10.1:
5eb526adbcae9193ce09fa06724215c3 10.1/RPMS/xpdf-3.00-7.3.101mdk.i586.rpm
5eb526adbcae9193ce09fa06724215c3 10.1/SRPMS/xpdf-3.00-7.3.101mdk.i586.rpm

Mandrakelinux 10.1/X86_64:
62c8956238470dde55e328c2d397e276 x86_64/10.1/RPMS/xpdf-3.00-7.3.101mdk.x86_64.rpm
5eb526adbcae9193ce09fa06724215c3 x86_64/10.1/SRPMS/xpdf-3.00-7.3.101mdk.i586.rpm

Corporate Server 2.1:
e890707f2e00fd17a06ff2fb6545b5dd corporate/2.1/RPMS/xpdf-1.01-4.8.C21mdk.i586.rpm
b3a3a37961c14abe80eda3d170ab3550 corporate/2.1/SRPMS/xpdf-1.01-4.8.C21mdk.src.rpm

Corporate Server 2.1/x86_64:
2d48f20adea08eb27f25469cf66d4be8 x86_64/corporate/2.1/RPMS/xpdf-1.01-4.8.C21mdk.x86_64.rpm
b3a3a37961c14abe80eda3d170ab3550 x86_64/corporate/2.1/SRPMS/xpdf-1.01-4.8.C21mdk.src.rpm

Corporate Server 3.0:
681b0e2029b8d4e468e4e94d9f76d0f7 corporate/3.0/RPMS/xpdf-3.00-5.4.C30mdk.i586.rpm
ab09023403f50e92c11ea277e9819f8a corporate/3.0/SRPMS/xpdf-3.00-5.4.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key
of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team




3.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: cups
Advisory ID: MDKSA-2005:018
Date: January 25th, 2005

Affected versions: 10.0, 10.1, 9.2, Corporate Server 2.1,
Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Cups uses xpdf code and is susceptible to the same vulnerability.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
379232c587543df84bed0b06a1b4a544 10.0/RPMS/cups-1.1.20-5.6.100mdk.i586.rpm
9c603dd7eb08e5a5f80f2a3aff85c9a5 10.0/RPMS/cups-common-1.1.20-5.6.100mdk.i586.rpm
f998f6e5f406cc6ae2c740886dd1863d 10.0/RPMS/cups-serial-1.1.20-5.6.100mdk.i586.rpm
6d1d399ec3f3d416569ba9cda9e2382b 10.0/RPMS/libcups2-1.1.20-5.6.100mdk.i586.rpm
c3c84379002347e69b41b8796f2145f2 10.0/RPMS/libcups2-devel-1.1.20-5.6.100mdk.i586.rpm
7f6775df4063e8def8ea89e1463f7880 10.0/SRPMS/cups-1.1.20-5.6.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
440f9f99bc8c14e1155247f0ffb4e371 amd64/10.0/RPMS/cups-1.1.20-5.6.100mdk.amd64.rpm
9600924bc1877079fe9a1a2c1efe1b8d amd64/10.0/RPMS/cups-common-1.1.20-5.6.100mdk.amd64.rpm
08da5c993bfa65d0ecffb33f97323fb6 amd64/10.0/RPMS/cups-serial-1.1.20-5.6.100mdk.amd64.rpm
d128d93e19aad698576ba74357c61249 amd64/10.0/RPMS/lib64cups2-1.1.20-5.6.100mdk.amd64.rpm
537aacfb916e98b56a01ea690a7f38b7 amd64/10.0/RPMS/lib64cups2-devel-1.1.20-5.6.100mdk.amd64.rpm
7f6775df4063e8def8ea89e1463f7880 amd64/10.0/SRPMS/cups-1.1.20-5.6.100mdk.src.rpm

Mandrakelinux 10.1:
c571a912d5ab00c3ab06bca8c36cdf5a 10.1/RPMS/cups-1.1.21-0.rc1.7.4.101mdk.i586.rpm
6a9d5fa3966f0f443328457eb960477e 10.1/RPMS/cups-common-1.1.21-0.rc1.7.4.101mdk.i586.rpm
3ceefe3537ad2c211e45d580f2e90795 10.1/RPMS/cups-serial-1.1.21-0.rc1.7.4.101mdk.i586.rpm
51662e88bd9fdadfc18bfa88d3ca4511 10.1/RPMS/libcups2-1.1.21-0.rc1.7.4.101mdk.i586.rpm
f5ab7e3002e41b1d54975df2bbdc9592 10.1/RPMS/libcups2-devel-1.1.21-0.rc1.7.4.101mdk.i586.rpm
17445e2b920e8a912be47f3935e5f095 10.1/SRPMS/cups-1.1.21-0.rc1.7.4.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
12f13a1e2cf6d610de3cb4133a25e7a7 x86_64/10.1/RPMS/cups-1.1.21-0.rc1.7.4.101mdk.x86_64.rpm
cf2a20b744f80c1701dfc63659729c04 x86_64/10.1/RPMS/cups-common-1.1.21-0.rc1.7.4.101mdk.x86_64.rpm
e6ec0c5b6cc7eef042c91f697cb82e46 x86_64/10.1/RPMS/cups-serial-1.1.21-0.rc1.7.4.101mdk.x86_64.rpm
572e2a932e6c6154d1f2e2dcb908c679 x86_64/10.1/RPMS/lib64cups2-1.1.21-0.rc1.7.4.101mdk.x86_64.rpm
c24f5dc070481662f9a7005b37f61fd4 x86_64/10.1/RPMS/lib64cups2-devel-1.1.21-0.rc1.7.4.101mdk.x86_64.rpm
17445e2b920e8a912be47f3935e5f095 x86_64/10.1/SRPMS/cups-1.1.21-0.rc1.7.4.101mdk.src.rpm

Corporate Server 2.1:
162a5512b876caf7b74f5de35b91ff54 corporate/2.1/RPMS/cups-1.1.18-2.8.C21mdk.i586.rpm
132911f013b0319957f9b10955af7f63 corporate/2.1/RPMS/cups-common-1.1.18-2.8.C21mdk.i586.rpm
f31f529cdd22e863426e3ae4eb842bb6 corporate/2.1/RPMS/cups-serial-1.1.18-2.8.C21mdk.i586.rpm
f433cc5ba9e84d7f079bb31d4fd34e9e corporate/2.1/RPMS/libcups1-1.1.18-2.8.C21mdk.i586.rpm
e1e4e4c6a3007ff868e32a1001e9765d corporate/2.1/RPMS/libcups1-devel-1.1.18-2.8.C21mdk.i586.rpm
c944a0c30ff89ef18d382e7a3d0a70d1 corporate/2.1/SRPMS/cups-1.1.18-2.8.C21mdk.src.rpm

Corporate Server 2.1/x86_64:
ef0e81ff6ac37918d2f8a354a772bf88 x86_64/corporate/2.1/RPMS/cups-1.1.18-2.8.C21mdk.x86_64.rpm
1d939abecc9d566ae118d800bae5a123 x86_64/corporate/2.1/RPMS/cups-common-1.1.18-2.8.C21mdk.x86_64.rpm
24c1656d01b527c8e17cc03fc9700b62 x86_64/corporate/2.1/RPMS/cups-serial-1.1.18-2.8.C21mdk.x86_64.rpm
a2fa8c5e2efd2a955447bda6a1bce11b x86_64/corporate/2.1/RPMS/libcups1-1.1.18-2.8.C21mdk.x86_64.rpm
98e04e33a3446ea8a8e5cd0be0aaa6b8 x86_64/corporate/2.1/RPMS/libcups1-devel-1.1.18-2.8.C21mdk.x86_64.rpm
c944a0c30ff89ef18d382e7a3d0a70d1 x86_64/corporate/2.1/SRPMS/cups-1.1.18-2.8.C21mdk.src.rpm

Corporate Server 3.0:
74c49860c8ff85cce34862c6e21eb903 corporate/3.0/RPMS/cups-1.1.20-5.6.C30mdk.i586.rpm
6b350b1e9e52e8bbfec81c36aaf065a1 corporate/3.0/RPMS/cups-common-1.1.20-5.6.C30mdk.i586.rpm
30f4ac447f36cb119a6756ca2013c951 corporate/3.0/RPMS/cups-serial-1.1.20-5.6.C30mdk.i586.rpm
718182b8dc9b53839bbc5b1b36293d57 corporate/3.0/RPMS/libcups2-1.1.20-5.6.C30mdk.i586.rpm
3683688596297bdaa4178307fd8db128 corporate/3.0/RPMS/libcups2-devel-1.1.20-5.6.C30mdk.i586.rpm
d00bea70d267fe48ea33af6c19942b21 corporate/3.0/SRPMS/cups-1.1.20-5.6.C30mdk.src.rpm

Mandrakelinux 9.2:
3c29059ab729243b945dea6f8bbf03ca 9.2/RPMS/cups-1.1.19-10.6.92mdk.i586.rpm
d8082f721bf90fbdfa5024ca078c8ac1 9.2/RPMS/cups-common-1.1.19-10.6.92mdk.i586.rpm
4465bc3ec5474678300c47248e51385c 9.2/RPMS/cups-serial-1.1.19-10.6.92mdk.i586.rpm
4ba9bbe5ca67248bef02befff75951f4 9.2/RPMS/libcups2-1.1.19-10.6.92mdk.i586.rpm
1abbf2cf8c5cd14dd80b6004bdeb4525 9.2/RPMS/libcups2-devel-1.1.19-10.6.92mdk.i586.rpm
b7f7a802fb70f4e4c07f904feb3b645a 9.2/SRPMS/cups-1.1.19-10.6.92mdk.src.rpm

Mandrakelinux 9.2/AMD64:
1103866f68f4460ab504990315f7979a amd64/9.2/RPMS/cups-1.1.19-10.6.92mdk.amd64.rpm
ea567af43ac8d9b3393e9dfe89fc4417 amd64/9.2/RPMS/cups-common-1.1.19-10.6.92mdk.amd64.rpm
b6233f53c363a5824f28029763b6f2b9 amd64/9.2/RPMS/cups-serial-1.1.19-10.6.92mdk.amd64.rpm
cfe9d1a90f713e5de59dca46728284a5 amd64/9.2/RPMS/lib64cups2-1.1.19-10.6.92mdk.amd64.rpm
133935512ad4bc0b59dfa06ea15b22c7 amd64/9.2/RPMS/lib64cups2-devel-1.1.19-10.6.92mdk.amd64.rpm
b7f7a802fb70f4e4c07f904feb3b645a amd64/9.2/SRPMS/cups-1.1.19-10.6.92mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team




4.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: koffice
Advisory ID: MDKSA-2005:019
Date: January 25th, 2005

Affected versions: 10.0, 10.1, Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Koffice uses xpdf code and is susceptible to the
same vulnerability.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
d620ab0db67c4e25f755ee62cf1a474a 10.0/RPMS/koffice-1.3-12.2.100mdk.i586.rpm
ade52f0ac258267ae8614502fabc8ab2 10.0/RPMS/libkoffice2-1.3-12.2.100mdk.i586.rpm
280135355e26e3baab14f63628c97dc2 10.0/RPMS/libkoffice2-devel-1.3-12.2.100mdk.i586.rpm
d46d3a868900d7ab94aeaa34deea1018 10.0/SRPMS/koffice-1.3-12.2.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
04bf5f31e92516f1c0458ba12c930a48 amd64/10.0/RPMS/koffice-1.3-12.2.100mdk.amd64.rpm
eec5070100e0ddbc03d4e0c55dfe1be3 amd64/10.0/RPMS/lib64koffice2-1.3-12.2.100mdk.amd64.rpm
065702b188f8ea68df6493da6cdbd660 amd64/10.0/RPMS/lib64koffice2-devel-1.3-12.2.100mdk.amd64.rpm
d46d3a868900d7ab94aeaa34deea1018 amd64/10.0/SRPMS/koffice-1.3-12.2.100mdk.src.rpm

Mandrakelinux 10.1:
c0530b7a5fa5542752b8998c31acce9e 10.1/RPMS/koffice-1.3.3-2.2.101mdk.i586.rpm
7d18d56f064133b241d2c454e817eb38 10.1/RPMS/koffice-karbon-1.3.3-2.2.101mdk.i586.rpm
9622c8c9f7876aa3d159532486117c5d 10.1/RPMS/koffice-kformula-1.3.3-2.2.101mdk.i586.rpm
4389b3cd90e57052424417f7a8dd4ceb 10.1/RPMS/koffice-kivio-1.3.3-2.2.101mdk.i586.rpm
361459b34c382e1c1382b483a92a6756 10.1/RPMS/koffice-koshell-1.3.3-2.2.101mdk.i586.rpm
15e865d609a58ac2783e8d25fde0418e 10.1/RPMS/koffice-kpresenter-1.3.3-2.2.101mdk.i586.rpm
65a868b881015cfd2376748526902fc8 10.1/RPMS/koffice-kspread-1.3.3-2.2.101mdk.i586.rpm
6587cc22182a858158cd8aea2afcba64 10.1/RPMS/koffice-kugar-1.3.3-2.2.101mdk.i586.rpm
caf4007f0343e29a69d10a057af99c83 10.1/RPMS/koffice-kword-1.3.3-2.2.101mdk.i586.rpm
da30f2308d7158089c383ca4a99d72ea 10.1/RPMS/koffice-progs-1.3.3-2.2.101mdk.i586.rpm
5784ad20ba835bd54cd95dc24d713253 10.1/RPMS/libkoffice2-karbon-1.3.3-2.2.101mdk.i586.rpm
8eda23533d992bb34d12c7bac00030be 10.1/RPMS/libkoffice2-kformula-1.3.3-2.2.101mdk.i586.rpm
a7923dede9bb79346bab697142346ec1 10.1/RPMS/libkoffice2-kivio-1.3.3-2.2.101mdk.i586.rpm
5cc52af39aa57938d7edae0d640fc968 10.1/RPMS/libkoffice2-koshell-1.3.3-2.2.101mdk.i586.rpm
e4bec26f95e1f55ced770cafd320e335 10.1/RPMS/libkoffice2-kpresenter-1.3.3-2.2.101mdk.i586.rpm
a8e1b736a8a3924cc39495a32b6ad223 10.1/RPMS/libkoffice2-kspread-1.3.3-2.2.101mdk.i586.rpm
5d1e64e28d69771aa4709791547f3802 10.1/RPMS/libkoffice2-kspread-devel-1.3.3-2.2.101mdk.i586.rpm
81bbf226aca53b9ad14c7522f3302191 10.1/RPMS/libkoffice2-kugar-1.3.3-2.2.101mdk.i586.rpm
e0c51ed40247b0d0715c6a67e9c0dfdc 10.1/RPMS/libkoffice2-kugar-devel-1.3.3-2.2.101mdk.i586.rpm
1403e58e5586b3dc41d874fb7f76992f 10.1/RPMS/libkoffice2-kword-1.3.3-2.2.101mdk.i586.rpm
77afbcf9c3603ec9cfae784e0d2ed43b 10.1/RPMS/libkoffice2-kword-devel-1.3.3-2.2.101mdk.i586.rpm
37a4b0ca89f95d47850392303f6774a1 10.1/RPMS/libkoffice2-progs-1.3.3-2.2.101mdk.i586.rpm
2219d9fdc81fcf660d60e15319e9943d 10.1/RPMS/libkoffice2-progs-devel-1.3.3-2.2.101mdk.i586.rpm
618a562fb56d40e4ecfd730d2b1be49b 10.1/SRPMS/koffice-1.3.3-2.2.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
d9cf8ecb69c8d7ccc2f0168ee078b3d3 x86_64/10.1/RPMS/koffice-1.3.3-2.2.101mdk.x86_64.rpm
460dd9a91e6e82323e110bf052371a52 x86_64/10.1/RPMS/koffice-karbon-1.3.3-2.2.101mdk.x86_64.rpm
3ae887f0ac3679219721611c1f05697d x86_64/10.1/RPMS/koffice-kformula-1.3.3-2.2.101mdk.x86_64.rpm
49efb5347574454645adca560a81f911 x86_64/10.1/RPMS/koffice-kivio-1.3.3-2.2.101mdk.x86_64.rpm
6f4a57a3d88a88ea7a179b4a1a113de9 x86_64/10.1/RPMS/koffice-koshell-1.3.3-2.2.101mdk.x86_64.rpm
d5be06b78eb1a0d2606be0deaa45a4a8 x86_64/10.1/RPMS/koffice-kpresenter-1.3.3-2.2.101mdk.x86_64.rpm
96ed4e467d93797e925f09c3ca150a0b x86_64/10.1/RPMS/koffice-kspread-1.3.3-2.2.101mdk.x86_64.rpm
41c1e39c0766d9ed0a823d8d5fa7499b x86_64/10.1/RPMS/koffice-kugar-1.3.3-2.2.101mdk.x86_64.rpm
cc48202eb30adf7625464def2461901c x86_64/10.1/RPMS/koffice-kword-1.3.3-2.2.101mdk.x86_64.rpm
7b672b3f77fe1d16ba22fe266695ffa9 x86_64/10.1/RPMS/koffice-progs-1.3.3-2.2.101mdk.x86_64.rpm
3d73eb1169a9a1055c06e134bb366b9f x86_64/10.1/RPMS/lib64koffice2-karbon-1.3.3-2.2.101mdk.x86_64.rpm
c31083fa21030ae3270b6623ae6cb29c x86_64/10.1/RPMS/lib64koffice2-kformula-1.3.3-2.2.101mdk.x86_64.rpm
228b5a7e9a0f71b59b00d89f79dd627b x86_64/10.1/RPMS/lib64koffice2-kivio-1.3.3-2.2.101mdk.x86_64.rpm
9ecf703ab3f988fb9cd914c46387bd21 x86_64/10.1/RPMS/lib64koffice2-koshell-1.3.3-2.2.101mdk.x86_64.rpm
456dea35aba11bdfbf3fe253939289b9 x86_64/10.1/RPMS/lib64koffice2-kpresenter-1.3.3-2.2.101mdk.x86_64.rpm
75e1f65af93ef7fb4f5a754b0c7bec31 x86_64/10.1/RPMS/lib64koffice2-kspread-1.3.3-2.2.101mdk.x86_64.rpm
9c44cfeb5ddf24bf0a7cb0f7cb2aab0a x86_64/10.1/RPMS/lib64koffice2-kspread-devel-1.3.3-2.2.101mdk.x86_64.rpm
7b18675837a38c393747a6dd4b6ccf4e x86_64/10.1/RPMS/lib64koffice2-kugar-1.3.3-2.2.101mdk.x86_64.rpm
f570ef6a23fa7afc2fb4379329853999 x86_64/10.1/RPMS/lib64koffice2-kugar-devel-1.3.3-2.2.101mdk.x86_64.rpm
4a558d84ab7a2d547c35801aca5d3dbb x86_64/10.1/RPMS/lib64koffice2-kword-1.3.3-2.2.101mdk.x86_64.rpm
ea2261303599a4c9d465304e27201f64 x86_64/10.1/RPMS/lib64koffice2-kword-devel-1.3.3-2.2.101mdk.x86_64.rpm
77ade17c9ac8c20c9cf55478dd12aff7 x86_64/10.1/RPMS/lib64koffice2-progs-1.3.3-2.2.101mdk.x86_64.rpm
996b4496c415ffdc41c56e5d0dba97b5 x86_64/10.1/RPMS/lib64koffice2-progs-devel-1.3.3-2.2.101mdk.x86_64.rpm
618a562fb56d40e4ecfd730d2b1be49b x86_64/10.1/SRPMS/koffice-1.3.3-2.2.101mdk.src.rpm

Corporate Server 3.0:
b487481d69017027aa30d300768f077e corporate/3.0/RPMS/koffice-1.3-12.2.C30mdk.i586.rpm
8b4d331f0944c61fb8e5077bca050c2f corporate/3.0/RPMS/libkoffice2-1.3-12.2.C30mdk.i586.rpm
4d1dae4b305ff73a186b3eaf41ab89bb corporate/3.0/RPMS/libkoffice2-devel-1.3-12.2.C30mdk.i586.rpm
4ce907e44911ae3797f7746e2b73188f corporate/3.0/SRPMS/koffice-1.3-12.2.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team




5.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: kdegraphics
Advisory ID: MDKSA-2005:020
Date: January 25th, 2005

Affected versions: 10.0, 10.1, Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Kdegraphics uses xpdf code and is susceptible
to the same vulnerability.

10.1 packages also include a fix for ksvg kde bug #74457.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
9a7dcb9af3a883258f4ae6dfc515c240 10.0/RPMS/kdegraphics-3.2-15.5.100mdk.i586.rpm
99f9a64d9091cfad4afb59fb5c5b4943 10.0/RPMS/kdegraphics-common-3.2-15.5.100mdk.i586.rpm
7dc20d612ece55cb6766af4777047bc0 10.0/RPMS/kdegraphics-kdvi-3.2-15.5.100mdk.i586.rpm
c54af2cff83ab872eb34d5f2b516d160 10.0/RPMS/kdegraphics-kfax-3.2-15.5.100mdk.i586.rpm
fc7d3033e1b8cd5f89f63511e048d95d 10.0/RPMS/kdegraphics-kghostview-3.2-15.5.100mdk.i586.rpm
b5f8551a47d1001d2c738007b409b34b 10.0/RPMS/kdegraphics-kiconedit-3.2-15.5.100mdk.i586.rpm
c3d62b26a96dfc6424b97d954622154a 10.0/RPMS/kdegraphics-kooka-3.2-15.5.100mdk.i586.rpm
12ac431a66fd59fc090b39aa711ebb6d 10.0/RPMS/kdegraphics-kpaint-3.2-15.5.100mdk.i586.rpm
923d120ee4bc8b6b0b6bcf10122e55a5 10.0/RPMS/kdegraphics-kpdf-3.2-15.5.100mdk.i586.rpm
8d8b042da57285234c91551656b384b7 10.0/RPMS/kdegraphics-kpovmodeler-3.2-15.5.100mdk.i586.rpm
b398984700951d117b77f9a7d16988d4 10.0/RPMS/kdegraphics-kruler-3.2-15.5.100mdk.i586.rpm
4ffc8a63fd179b333e4dce71b478f358 10.0/RPMS/kdegraphics-ksnapshot-3.2-15.5.100mdk.i586.rpm
f84119c08c325f47b6f0c41890e805b3 10.0/RPMS/kdegraphics-ksvg-3.2-15.5.100mdk.i586.rpm
70b2c9895feac7292ac2ead089b3680e 10.0/RPMS/kdegraphics-kuickshow-3.2-15.5.100mdk.i586.rpm
ae70ec34786dfb8d6ac59f87a3d275f7 10.0/RPMS/kdegraphics-kview-3.2-15.5.100mdk.i586.rpm
a1deaf4ca51625f0c64d919429c67765 10.0/RPMS/kdegraphics-mrmlsearch-3.2-15.5.100mdk.i586.rpm
646ceb5feb37709883b130bd48c3ee03 10.0/RPMS/libkdegraphics0-common-3.2-15.5.100mdk.i586.rpm
e8925100efb3c0142141e070733f028f 10.0/RPMS/libkdegraphics0-common-devel-3.2-15.5.100mdk.i586.rpm
e5431076c47352cd209b9bcf75c3e4eb 10.0/RPMS/libkdegraphics0-kooka-3.2-15.5.100mdk.i586.rpm
af48014f2f3dde8cf37fd24242ea5a46 10.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.5.100mdk.i586.rpm
2dffb54b41c94ae87ceec3247a99943e 10.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.5.100mdk.i586.rpm
3ee3e1a270cace82b397a99cb2a6cde9 10.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.5.100mdk.i586.rpm
d6d896a5a5adf3c061391d2d72b14fff 10.0/RPMS/libkdegraphics0-ksvg-3.2-15.5.100mdk.i586.rpm
bacdd1bbecdce2058be8220e1cd1952c 10.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.5.100mdk.i586.rpm
d3713212a0a60e552c2b8cdeea243f28 10.0/RPMS/libkdegraphics0-kuickshow-3.2-15.5.100mdk.i586.rpm
e155e0f97fee455bfc7d08c7aa147d16 10.0/RPMS/libkdegraphics0-kview-3.2-15.5.100mdk.i586.rpm
c6bc7bd0fdf292316e1676bf18ae25d2 10.0/RPMS/libkdegraphics0-kview-devel-3.2-15.5.100mdk.i586.rpm
f00f79af88ed366a4b0f9abf90f6e068 10.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.5.100mdk.i586.rpm
ed3a146ca54fe687b3ed307bfcdeed85 10.0/SRPMS/kdegraphics-3.2-15.5.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
cc4b491315f12ec1d7337c04e8f6f102 amd64/10.0/RPMS/kdegraphics-3.2-15.5.100mdk.amd64.rpm
b8a311512bda484c2bc288413aa297c2 amd64/10.0/RPMS/kdegraphics-common-3.2-15.5.100mdk.amd64.rpm
4d8bd265dc2a6bf0d4fcab1e43faa5f0 amd64/10.0/RPMS/kdegraphics-kdvi-3.2-15.5.100mdk.amd64.rpm
5b021b91e11fca4645caa9abd6314f5f amd64/10.0/RPMS/kdegraphics-kfax-3.2-15.5.100mdk.amd64.rpm
7b7fb9c73b2fc9989c3077913ef029ce amd64/10.0/RPMS/kdegraphics-kghostview-3.2-15.5.100mdk.amd64.rpm
024446cc0b88c4b388a6af4ca943e6a7 amd64/10.0/RPMS/kdegraphics-kiconedit-3.2-15.5.100mdk.amd64.rpm
ee14199581830c6f395f6e65b618dc62 amd64/10.0/RPMS/kdegraphics-kooka-3.2-15.5.100mdk.amd64.rpm
140724cb660e8d7333081d29dced4f7d amd64/10.0/RPMS/kdegraphics-kpaint-3.2-15.5.100mdk.amd64.rpm
0e7e078461ed0a556ff9b3c727e37d7a amd64/10.0/RPMS/kdegraphics-kpdf-3.2-15.5.100mdk.amd64.rpm
880882849f8133f0748fcaf97bd33614 amd64/10.0/RPMS/kdegraphics-kpovmodeler-3.2-15.5.100mdk.amd64.rpm
823cd25430b1c7d887bf85f0f14d93e1 amd64/10.0/RPMS/kdegraphics-kruler-3.2-15.5.100mdk.amd64.rpm
e7c7fd8f50960a83c127020b084b9578 amd64/10.0/RPMS/kdegraphics-ksnapshot-3.2-15.5.100mdk.amd64.rpm
179d3f4f65a1eba4d8429b7400b3dbda amd64/10.0/RPMS/kdegraphics-ksvg-3.2-15.5.100mdk.amd64.rpm
d201b9692c9e3e67c65caf4486036f6f amd64/10.0/RPMS/kdegraphics-kuickshow-3.2-15.5.100mdk.amd64.rpm
8b225eebcf3782321f6819ce14201c17 amd64/10.0/RPMS/kdegraphics-kview-3.2-15.5.100mdk.amd64.rpm
174d53919fe6bd3950dffe7363af8ebd amd64/10.0/RPMS/kdegraphics-mrmlsearch-3.2-15.5.100mdk.amd64.rpm
0b124a9961e10f77b0aa1719d4248df1 amd64/10.0/RPMS/lib64kdegraphics0-common-3.2-15.5.100mdk.amd64.rpm
30a82e5787d0dceb9dca5bd9fe33f4cd amd64/10.0/RPMS/lib64kdegraphics0-common-devel-3.2-15.5.100mdk.amd64.rpm
dbcf9cb9d551d5336bee057eeb5248f1 amd64/10.0/RPMS/lib64kdegraphics0-kooka-3.2-15.5.100mdk.amd64.rpm
dc34e14d6e018d6dd1ebaf557df74ca8 amd64/10.0/RPMS/lib64kdegraphics0-kooka-devel-3.2-15.5.100mdk.amd64.rpm
e6767e0b97fd2c3f576f5720d4828232 amd64/10.0/RPMS/lib64kdegraphics0-kpovmodeler-3.2-15.5.100mdk.amd64.rpm
9deddb7f37b20a5160d6d426c43e679e amd64/10.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2-15.5.100mdk.amd64.rpm
be9f659cf436a49b15030acf2e0a96fe amd64/10.0/RPMS/lib64kdegraphics0-ksvg-3.2-15.5.100mdk.amd64.rpm
074c2078f629b963f2b9537bae175b53 amd64/10.0/RPMS/lib64kdegraphics0-ksvg-devel-3.2-15.5.100mdk.amd64.rpm
72d3907f849391ecf13e32415deac6b3 amd64/10.0/RPMS/lib64kdegraphics0-kuickshow-3.2-15.5.100mdk.amd64.rpm
dd0a21ae1b36edfcfb204c9c474667b7 amd64/10.0/RPMS/lib64kdegraphics0-kview-3.2-15.5.100mdk.amd64.rpm
1b130ada5ad9b87f6f4e8198067d6572 amd64/10.0/RPMS/lib64kdegraphics0-kview-devel-3.2-15.5.100mdk.amd64.rpm
6c784ecbe23c1d39909034ebd14d3513 amd64/10.0/RPMS/lib64kdegraphics0-mrmlsearch-3.2-15.5.100mdk.amd64.rpm
ed3a146ca54fe687b3ed307bfcdeed85 amd64/10.0/SRPMS/kdegraphics-3.2-15.5.100mdk.src.rpm

Mandrakelinux 10.1:
65da2307d48e0456ea81d5162f505e4f 10.1/RPMS/kdegraphics-3.2.3-17.4.101mdk.i586.rpm
02865c06fd0cb9636f73ea410242dfd6 10.1/RPMS/kdegraphics-common-3.2.3-17.4.101mdk.i586.rpm
9a17fc9356c8a6110a6c8e65268d86f0 10.1/RPMS/kdegraphics-kdvi-3.2.3-17.4.101mdk.i586.rpm
e61b2460a2cd7115ff56f5fbb6f319af 10.1/RPMS/kdegraphics-kfax-3.2.3-17.4.101mdk.i586.rpm
4ade07b3cf9cb8aae02b9d36d1464aed 10.1/RPMS/kdegraphics-kghostview-3.2.3-17.4.101mdk.i586.rpm
e692e095b104d2238c72e3a91c15d8fd 10.1/RPMS/kdegraphics-kiconedit-3.2.3-17.4.101mdk.i586.rpm
fa1ddea1ab81962c7a5d454cce7d5d64 10.1/RPMS/kdegraphics-kooka-3.2.3-17.4.101mdk.i586.rpm
fa2f4facbb72992b2d06d4385d25a242 10.1/RPMS/kdegraphics-kpaint-3.2.3-17.4.101mdk.i586.rpm
1c3857f276c202b1a2bff72b70e2ea35 10.1/RPMS/kdegraphics-kpdf-3.2.3-17.4.101mdk.i586.rpm
e6f5a175209241828e43686b478d4d5a 10.1/RPMS/kdegraphics-kpovmodeler-3.2.3-17.4.101mdk.i586.rpm
52407fec78b3be0440a7e327efe96a5a 10.1/RPMS/kdegraphics-kruler-3.2.3-17.4.101mdk.i586.rpm
9310d897e44d921e0526598f3699286e 10.1/RPMS/kdegraphics-ksnapshot-3.2.3-17.4.101mdk.i586.rpm
2480a1380d909b5c1ff671ad75a5029e 10.1/RPMS/kdegraphics-ksvg-3.2.3-17.4.101mdk.i586.rpm
182f0766dc4e335b2b64961c6ec33d83 10.1/RPMS/kdegraphics-kuickshow-3.2.3-17.4.101mdk.i586.rpm
1f5401feab408ff6e89b62b8c019801b 10.1/RPMS/kdegraphics-kview-3.2.3-17.4.101mdk.i586.rpm
5e8a2dd1677695f5cf62bffa1c66bd67 10.1/RPMS/kdegraphics-mrmlsearch-3.2.3-17.4.101mdk.i586.rpm
202646df1dec8c5161e47ab1fba80835 10.1/RPMS/libkdegraphics0-common-3.2.3-17.4.101mdk.i586.rpm
6551868638ea06be784c5f3a3083704d 10.1/RPMS/libkdegraphics0-common-devel-3.2.3-17.4.101mdk.i586.rpm
7e4517077652c2a75eb3abe9cd235ea6 10.1/RPMS/libkdegraphics0-kghostview-3.2.3-17.4.101mdk.i586.rpm
e5c5e4e0a15d19d6598feeac0b709347 10.1/RPMS/libkdegraphics0-kghostview-devel-3.2.3-17.4.101mdk.i586.rpm
5d4287f5772b3e0750512fed41ce1d24 10.1/RPMS/libkdegraphics0-kooka-3.2.3-17.4.101mdk.i586.rpm
2006d0fd3339e776ec2907acd97c7019 10.1/RPMS/libkdegraphics0-kooka-devel-3.2.3-17.4.101mdk.i586.rpm
5b46feba29bf7c3a4ed7745ab219cfe2 10.1/RPMS/libkdegraphics0-kpovmodeler-3.2.3-17.4.101mdk.i586.rpm
9a9fc316112cc5c5de7a102cd382b395 10.1/RPMS/libkdegraphics0-kpovmodeler-devel-3.2.3-17.4.101mdk.i586.rpm
ab3d909913657f882d9708e7aadd8f59 10.1/RPMS/libkdegraphics0-ksvg-3.2.3-17.4.101mdk.i586.rpm
f48673088a976f39811e726e24bf2dd8 10.1/RPMS/libkdegraphics0-ksvg-devel-3.2.3-17.4.101mdk.i586.rpm
e47a7a83e191d6b0e495f7c7edd29844 10.1/RPMS/libkdegraphics0-kuickshow-3.2.3-17.4.101mdk.i586.rpm
2fe70e7e2f82b5cd24eff1eda655d183 10.1/RPMS/libkdegraphics0-kview-3.2.3-17.4.101mdk.i586.rpm
4d3f99e500292f68f2f94cb43c959177 10.1/RPMS/libkdegraphics0-kview-devel-3.2.3-17.4.101mdk.i586.rpm
2e99917cbd90b57e6e341986f11f5fe8 10.1/RPMS/libkdegraphics0-mrmlsearch-3.2.3-17.4.101mdk.i586.rpm
ca802ced9824501790a28f39f6d86543 10.1/SRPMS/kdegraphics-3.2.3-17.4.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
6ec2bb413e709d4be27a948cff82ad44 x86_64/10.1/RPMS/kdegraphics-3.2.3-17.4.101mdk.x86_64.rpm
b52a75346df22d213a3c681fc01996f7 x86_64/10.1/RPMS/kdegraphics-common-3.2.3-17.4.101mdk.x86_64.rpm
f0a758b1f6677a6dbc2720be12938c58 x86_64/10.1/RPMS/kdegraphics-kdvi-3.2.3-17.4.101mdk.x86_64.rpm
538b0675b06a9175f6f05529408ced58 x86_64/10.1/RPMS/kdegraphics-kfax-3.2.3-17.4.101mdk.x86_64.rpm
cd346f9caa2daa5b743da380a90398ee x86_64/10.1/RPMS/kdegraphics-kghostview-3.2.3-17.4.101mdk.x86_64.rpm
180f28bad724a7c5a82197024ee2e72e x86_64/10.1/RPMS/kdegraphics-kiconedit-3.2.3-17.4.101mdk.x86_64.rpm
865abc55d59f76bb8031ec5f40475138 x86_64/10.1/RPMS/kdegraphics-kooka-3.2.3-17.4.101mdk.x86_64.rpm
863ef60f3dbf0c84b8715e8db25cc65c x86_64/10.1/RPMS/kdegraphics-kpaint-3.2.3-17.4.101mdk.x86_64.rpm
3f86f599521d76b7259b262ae864b9e5 x86_64/10.1/RPMS/kdegraphics-kpdf-3.2.3-17.4.101mdk.x86_64.rpm
d109f39c8aa03cbbc95583fa871745d8 x86_64/10.1/RPMS/kdegraphics-kpovmodeler-3.2.3-17.4.101mdk.x86_64.rpm
28407a6efa3d3a043fe260bc42ad9f9a x86_64/10.1/RPMS/kdegraphics-kruler-3.2.3-17.4.101mdk.x86_64.rpm
75fcae9f28a7dbb5581e543b18270b87 x86_64/10.1/RPMS/kdegraphics-ksnapshot-3.2.3-17.4.101mdk.x86_64.rpm
8719e1b7dd182a79a0dac6b2c056adeb x86_64/10.1/RPMS/kdegraphics-ksvg-3.2.3-17.4.101mdk.x86_64.rpm
def53a7c4ae32ffb2349cd0e9a851706 x86_64/10.1/RPMS/kdegraphics-kuickshow-3.2.3-17.4.101mdk.x86_64.rpm
34363c42a1f2a3be07d50359c9c3c881 x86_64/10.1/RPMS/kdegraphics-kview-3.2.3-17.4.101mdk.x86_64.rpm
2ba507c7233d5735904d99ac2fed6b17 x86_64/10.1/RPMS/kdegraphics-mrmlsearch-3.2.3-17.4.101mdk.x86_64.rpm
ab18b5cf2ccaeb9e9d53f8d514cf1892 x86_64/10.1/RPMS/lib64kdegraphics0-common-3.2.3-17.4.101mdk.x86_64.rpm
257b8709d19bb9c2b4494f19eb32e1e8 x86_64/10.1/RPMS/lib64kdegraphics0-common-devel-3.2.3-17.4.101mdk.x86_64.rpm
4eef35d07d6e006f77df3ee11d3a9560 x86_64/10.1/RPMS/lib64kdegraphics0-kghostview-3.2.3-17.4.101mdk.x86_64.rpm
c38d981ea22fc6cadabdef02e9e1cc07 x86_64/10.1/RPMS/lib64kdegraphics0-kghostview-devel-3.2.3-17.4.101mdk.x86_64.rpm
351f5d27919f18cb668c23dc280b73f0 x86_64/10.1/RPMS/lib64kdegraphics0-kooka-3.2.3-17.4.101mdk.x86_64.rpm
bdb74186c31ca2b412fad50778c57121 x86_64/10.1/RPMS/lib64kdegraphics0-kooka-devel-3.2.3-17.4.101mdk.x86_64.rpm
55114dc8d5f800f715417dbd335374c3 x86_64/10.1/RPMS/lib64kdegraphics0-kpovmodeler-3.2.3-17.4.101mdk.x86_64.rpm
7e6b4855ed0fdb66490e2a8a39fcef83 x86_64/10.1/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2.3-17.4.101mdk.x86_64.rpm
cd81e2024ba8297ca591635424862a57 x86_64/10.1/RPMS/lib64kdegraphics0-ksvg-3.2.3-17.4.101mdk.x86_64.rpm
a65cc4467ad6cc76875ff7af3c5dabe1 x86_64/10.1/RPMS/lib64kdegraphics0-ksvg-devel-3.2.3-17.4.101mdk.x86_64.rpm
f392ab2c87026dcecf59192c33fa8893 x86_64/10.1/RPMS/lib64kdegraphics0-kuickshow-3.2.3-17.4.101mdk.x86_64.rpm
f6a172d99788762c9ae4a629e28272ac x86_64/10.1/RPMS/lib64kdegraphics0-kview-3.2.3-17.4.101mdk.x86_64.rpm
e74204d00991a1d7ae92b58a0c8b1b5f x86_64/10.1/RPMS/lib64kdegraphics0-kview-devel-3.2.3-17.4.101mdk.x86_64.rpm
ebfb764b8f9507e1ebde21d1bb26d131 x86_64/10.1/RPMS/lib64kdegraphics0-mrmlsearch-3.2.3-17.4.101mdk.x86_64.rpm
ca802ced9824501790a28f39f6d86543 x86_64/10.1/SRPMS/kdegraphics-3.2.3-17.4.101mdk.src.rpm

Corporate Server 3.0:
dfff49798c7876a734412030d8c8f88d corporate/3.0/RPMS/kdegraphics-3.2-15.5.C30mdk.i586.rpm
6e0aa658d7d9295ad1abe02774d086e0 corporate/3.0/RPMS/kdegraphics-common-3.2-15.5.C30mdk.i586.rpm
3d1fadfca4a5d6ca4da5b8c365437114 corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.5.C30mdk.i586.rpm
d217719226d15bedd0a2b72ff71d72bc corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.5.C30mdk.i586.rpm
6c7b51e7df01bc33f14257f164b78559 corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.5.C30mdk.i586.rpm
840b1425201f0cbf20243f448d7bb742 corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.5.C30mdk.i586.rpm
7974758345224e012e7b4ae5324545ac corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.5.C30mdk.i586.rpm
12a32d9cc423f2eb45abdd52c881711d corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.5.C30mdk.i586.rpm
c487a477f371f6542ca59f2dfbfc2c24 corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.5.C30mdk.i586.rpm
4447ee0d9e42179cf65c1f3d1c6469d7 corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.5.C30mdk.i586.rpm
1da8e75381e6d72936c9a5b84ccc1593 corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.5.C30mdk.i586.rpm
3bcce0e613fa286cbc2b9155b980f52b corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.5.C30mdk.i586.rpm
98b038ffdccedc575bcc4bf0f96c0005 corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.5.C30mdk.i586.rpm
574bff0e60eaa9bca31ff73eaa0ef7ef corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.5.C30mdk.i586.rpm
5cbc51081a126cac7d1b5f7117736241 corporate/3.0/RPMS/kdegraphics-kview-3.2-15.5.C30mdk.i586.rpm
e1463ecc8bd9acd4f42053c1299e5dd9 corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.5.C30mdk.i586.rpm
3dfcdef860008ef41d7a5d6592ea3401 corporate/3.0/RPMS/libkdegraphics0-common-3.2-15.5.C30mdk.i586.rpm
270bdd4bbb2e39ec4452cfd3c63e1619 corporate/3.0/RPMS/libkdegraphics0-common-devel-3.2-15.5.C30mdk.i586.rpm
24c23d69a75cf83ec0bb38d134cb79dc corporate/3.0/RPMS/libkdegraphics0-kooka-3.2-15.5.C30mdk.i586.rpm
567155478eecd49b28eb8d45555dafd4 corporate/3.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.5.C30mdk.i586.rpm
f414d912828b30c3404b5a9e67b5b411 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.5.C30mdk.i586.rpm
81696425936929a238e374a4cf83b411 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.5.C30mdk.i586.rpm
3798ce2366de6ad53684371bd2ad236e corporate/3.0/RPMS/libkdegraphics0-ksvg-3.2-15.5.C30mdk.i586.rpm
0f5143b66eff6662ddaa25b55f5f4383 corporate/3.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.5.C30mdk.i586.rpm
8b316e388190a78d9dbf7ed3b947b7f4 corporate/3.0/RPMS/libkdegraphics0-kuickshow-3.2-15.5.C30mdk.i586.rpm
8762fe66cf0061cea7b9ae584a16e9ca corporate/3.0/RPMS/libkdegraphics0-kview-3.2-15.5.C30mdk.i586.rpm
ca9c544d53c1080ed3af1cbabf816fba corporate/3.0/RPMS/libkdegraphics0-kview-devel-3.2-15.5.C30mdk.i586.rpm
5faeb92f67ec30c27c145b70d7820bb5 corporate/3.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.5.C30mdk.i586.rpm
108d530befa5254155c17368884326c2 corporate/3.0/SRPMS/kdegraphics-3.2-15.5.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team




6.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: tetex
Advisory ID: MDKSA-2005:021
Date: January 25th, 2005

Affected versions: 10.0, 10.1, Corporate Server 3.0
______________________________________________________________________

Problem Description:

A buffer overflow vulnerability was discovered in the xpdf PDF
code, which could allow for arbitrary code execution as the user
viewing a PDF file. The vulnerability exists due to insufficient bounds
checking while processing a PDF file that provides malicious values in
the /Encrypt /Length tag. Tetex uses xpdf code and is susceptible to the same vulnerability.

The updated packages have been patched to prevent these problems. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0064
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
40d6aebb8d91f7b04d502c13c0c7988d 10.0/RPMS/jadetex-3.12-93.2.100mdk.i586.rpm
41f2fa1c103e0f52d928082df6092702 10.0/RPMS/tetex-2.0.2-14.2.100mdk.i586.rpm
af3e3902dbb7b92bd17d75266ab19f55 10.0/RPMS/tetex-afm-2.0.2-14.2.100mdk.i586.rpm
f5c0808347d158d73c538e33bb16f4eb 10.0/RPMS/tetex-context-2.0.2-14.2.100mdk.i586.rpm
b241d5b5d6642c208c55b25d139ea3db 10.0/RPMS/tetex-devel-2.0.2-14.2.100mdk.i586.rpm
ea189c41518751ec76c34892d51fe6fa 10.0/RPMS/tetex-doc-2.0.2-14.2.100mdk.i586.rpm
f7c4338ad2fa1577a61f3c9e6d171e78 10.0/RPMS/tetex-dvilj-2.0.2-14.2.100mdk.i586.rpm
2ab382ddc6314e39697703d41287bb85 10.0/RPMS/tetex-dvipdfm-2.0.2-14.2.100mdk.i586.rpm
0f271b4912b99e8f78b756e28b79e3b7 10.0/RPMS/tetex-dvips-2.0.2-14.2.100mdk.i586.rpm
e9537b9c894f25be502dd30f8cbb9093 10.0/RPMS/tetex-latex-2.0.2-14.2.100mdk.i586.rpm
457cf9e27e637f2af71b3f318bced378 10.0/RPMS/tetex-mfwin-2.0.2-14.2.100mdk.i586.rpm
d589c6473932773c2dae23507b6f8da3 10.0/RPMS/tetex-texi2html-2.0.2-14.2.100mdk.i586.rpm
519f7e12dd92391036eae21474b1f7ea 10.0/RPMS/tetex-xdvi-2.0.2-14.2.100mdk.i586.rpm
7b9f14eefca1f88d17177b326377ae48 10.0/RPMS/xmltex-1.9-41.2.100mdk.i586.rpm
6c10db8e7c4b28f137e925830e0209be 10.0/SRPMS/tetex-2.0.2-14.2.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
3baa5126a4177a234774aff259885dee amd64/10.0/RPMS/jadetex-3.12-93.2.100mdk.amd64.rpm
8e7f1561dee9f3c7c340c3a0bce0748a amd64/10.0/RPMS/tetex-2.0.2-14.2.100mdk.amd64.rpm
df30facae4620505899124645b3c8d4e amd64/10.0/RPMS/tetex-afm-2.0.2-14.2.100mdk.amd64.rpm
f12bb795148163d2bb95d004d4362337 amd64/10.0/RPMS/tetex-context-2.0.2-14.2.100mdk.amd64.rpm
61cdcd9359db5ff35f6544e4d5275798 amd64/10.0/RPMS/tetex-devel-2.0.2-14.2.100mdk.amd64.rpm
d211b65dd282fd9bf4fe96bf5b179c20 amd64/10.0/RPMS/tetex-doc-2.0.2-14.2.100mdk.amd64.rpm
8e80407a7cd67d10b5530397e0c84825 amd64/10.0/RPMS/tetex-dvilj-2.0.2-14.2.100mdk.amd64.rpm
f380ff2dc335c076d83ec4c7a04296ae amd64/10.0/RPMS/tetex-dvipdfm-2.0.2-14.2.100mdk.amd64.rpm
725702ea717f0aee358a3f6f8215b44f amd64/10.0/RPMS/tetex-dvips-2.0.2-14.2.100mdk.amd64.rpm
7823c3937b223d32ca4564d3f89783cc amd64/10.0/RPMS/tetex-latex-2.0.2-14.2.100mdk.amd64.rpm
9f2b8571f6aae75f01f5550453a663bd amd64/10.0/RPMS/tetex-mfwin-2.0.2-14.2.100mdk.amd64.rpm
e4e2f03a4175dc115b61835a7d46e730 amd64/10.0/RPMS/tetex-texi2html-2.0.2-14.2.100mdk.amd64.rpm
bf6544e25d3b3814332fed95f503318a amd64/10.0/RPMS/tetex-xdvi-2.0.2-14.2.100mdk.amd64.rpm
e30a3d2c064ac446c630e082e632b4ff amd64/10.0/RPMS/xmltex-1.9-41.2.100mdk.amd64.rpm
6c10db8e7c4b28f137e925830e0209be amd64/10.0/SRPMS/tetex-2.0.2-14.2.100mdk.src.rpm

Mandrakelinux 10.1:
eca5fcbe65ed5c3797e06ed9ff1a7f13 10.1/RPMS/jadetex-3.12-98.2.101mdk.i586.rpm
c77f7180326a753e16b32432802a54d4 10.1/RPMS/tetex-2.0.2-19.2.101mdk.i586.rpm
2b911077426596c3fdc2d0f0b001e3d9 10.1/RPMS/tetex-afm-2.0.2-19.2.101mdk.i586.rpm
7fc9384f549a69836ceb0a313231cd2f 10.1/RPMS/tetex-context-2.0.2-19.2.101mdk.i586.rpm
ab251e5f024fa5f68418d0ec93ac69c1 10.1/RPMS/tetex-devel-2.0.2-19.2.101mdk.i586.rpm
1178eba7e1977da9f2030c8988d952b9 10.1/RPMS/tetex-doc-2.0.2-19.2.101mdk.i586.rpm
532aed1e7b7b86d06e920ce7607878f3 10.1/RPMS/tetex-dvilj-2.0.2-19.2.101mdk.i586.rpm
839b4a857a67530927ff53e3ae8d86dc 10.1/RPMS/tetex-dvipdfm-2.0.2-19.2.101mdk.i586.rpm
9beb5ef910f48934f5502c2dc98213bc 10.1/RPMS/tetex-dvips-2.0.2-19.2.101mdk.i586.rpm
18cbe96e3029686d99e88b236572a62b 10.1/RPMS/tetex-latex-2.0.2-19.2.101mdk.i586.rpm
12ed83277f18fa2bb01335f3e0b010c4 10.1/RPMS/tetex-mfwin-2.0.2-19.2.101mdk.i586.rpm
7a8027ae68b579e471b368c46f3c32ed 10.1/RPMS/tetex-texi2html-2.0.2-19.2.101mdk.i586.rpm
2d37ee84d4f0cde89e4886de9df078b9 10.1/RPMS/tetex-xdvi-2.0.2-19.2.101mdk.i586.rpm
85e3c674ccc6902c03cbc282ed4aa66e 10.1/RPMS/xmltex-1.9-46.2.101mdk.i586.rpm
dde980ea4d7c444ef0d522984fd87633 10.1/SRPMS/tetex-2.0.2-19.2.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
a62b9a7e1371a93b530985284198e7dd x86_64/10.1/RPMS/jadetex-3.12-98.2.101mdk.x86_64.rpm
64c7cf3a6a022fa496055553405a7c34 x86_64/10.1/RPMS/tetex-2.0.2-19.2.101mdk.x86_64.rpm
6085e92f336de0eda7e285d00a075286 x86_64/10.1/RPMS/tetex-afm-2.0.2-19.2.101mdk.x86_64.rpm
d64f00f92cdda49926df9b834b3ba325 x86_64/10.1/RPMS/tetex-context-2.0.2-19.2.101mdk.x86_64.rpm
c28cec8afde1d2f08fe6c43eb3a27811 x86_64/10.1/RPMS/tetex-devel-2.0.2-19.2.101mdk.x86_64.rpm
568739e6b166790afbf3de9624a2b8f2 x86_64/10.1/RPMS/tetex-doc-2.0.2-19.2.101mdk.x86_64.rpm
7f8b83210a2694d10b4066190cb34a0e x86_64/10.1/RPMS/tetex-dvilj-2.0.2-19.2.101mdk.x86_64.rpm
1ac663acf2c915376a9ce8fd2626a3e1 x86_64/10.1/RPMS/tetex-dvipdfm-2.0.2-19.2.101mdk.x86_64.rpm
32cb8f7149cf6f886b50fbbc5a9e4377 x86_64/10.1/RPMS/tetex-dvips-2.0.2-19.2.101mdk.x86_64.rpm
528ec8126e736bd3a21b72ff2d147a20 x86_64/10.1/RPMS/tetex-latex-2.0.2-19.2.101mdk.x86_64.rpm
10ebdf7f419cc91c7ab10552e5003e9d x86_64/10.1/RPMS/tetex-mfwin-2.0.2-19.2.101mdk.x86_64.rpm
b13e174640ea86a7da131625812f1003 x86_64/10.1/RPMS/tetex-texi2html-2.0.2-19.2.101mdk.x86_64.rpm
c79803217976d09397864afea0206965 x86_64/10.1/RPMS/tetex-xdvi-2.0.2-19.2.101mdk.x86_64.rpm
adb9f1d3b3bca4d4880578abb39dde1d x86_64/10.1/RPMS/xmltex-1.9-46.2.101mdk.x86_64.rpm
dde980ea4d7c444ef0d522984fd87633 x86_64/10.1/SRPMS/tetex-2.0.2-19.2.101mdk.src.rpm

Corporate Server 3.0:
9c2b33053456652155f02b6d03195f15 corporate/3.0/RPMS/jadetex-3.12-93.2.C30mdk.i586.rpm
31297608c24b9a17ad09da551b502f62 corporate/3.0/RPMS/tetex-2.0.2-14.2.C30mdk.i586.rpm
5194001eb838de6d57b4117fc4022bb6 corporate/3.0/RPMS/tetex-afm-2.0.2-14.2.C30mdk.i586.rpm
1384feb89e678fcb1d453a3b58ff2398 corporate/3.0/RPMS/tetex-context-2.0.2-14.2.C30mdk.i586.rpm
9dd1376bed60d332d73678b419974fbb corporate/3.0/RPMS/tetex-devel-2.0.2-14.2.C30mdk.i586.rpm
44040f05b2e7102bbd1a380f664a5467 corporate/3.0/RPMS/tetex-doc-2.0.2-14.2.C30mdk.i586.rpm
a12fcd0d1d32333f3b35db8ed26f700c corporate/3.0/RPMS/tetex-dvilj-2.0.2-14.2.C30mdk.i586.rpm
be5e8c23a2ae789add263c27f5436ee0 corporate/3.0/RPMS/tetex-dvipdfm-2.0.2-14.2.C30mdk.i586.rpm
c860bf20a37e24e3d033b30dec262d47 corporate/3.0/RPMS/tetex-dvips-2.0.2-14.2.C30mdk.i586.rpm
3998ef51524aac72b036a6125b4914a2 corporate/3.0/RPMS/tetex-latex-2.0.2-14.2.C30mdk.i586.rpm
95d5aa79cfcc4b86f0fe675587f0886e corporate/3.0/RPMS/tetex-mfwin-2.0.2-14.2.C30mdk.i586.rpm
15649bafe0fe99d73a3ea76c42de20f3 corporate/3.0/RPMS/tetex-texi2html-2.0.2-14.2.C30mdk.i586.rpm
4316a252663322c106375779825cc04f corporate/3.0/RPMS/tetex-xdvi-2.0.2-14.2.C30mdk.i586.rpm
472b4f90c8c97796a90c8c9f602dbe93 corporate/3.0/RPMS/xmltex-1.9-41.2.C30mdk.i586.rpm
25a861bbcc9bd9b119b022d95b3fa8d0 corporate/3.0/SRPMS/tetex-2.0.2-14.2.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team



7.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: kernel
Advisory ID: MDKSA-2005:022
Date: January 25th, 2005

Affected versions: 10.0, 10.1, 9.2, Corporate Server 2.1,
Corporate Server 3.0,
Multi Network Firewall 8.2 ______________________________________________________________________

Problem Description:

A number of vulnerabilities are fixed in the 2.4 and 2.6 kernels with this advisory:

- Multiple race conditions in the terminal layer of 2.4 and 2.6
kernels (prior to 2.6.9) can allow a local attacker to obtain
portions of kernel data or allow remote attackers to cause a kernel
panic by switching from console to PPP line discipline, then quickly
sending data that is received during the switch (CAN-2004-0814)

- Richard Hart found an integer underflow problem in the iptables
firewall logging rules that can allow a remote attacker to crash the
machine by using a specially crafted IP packet. This is only
possible, however, if firewalling is enabled. The problem only
affects 2.6 kernels and was fixed upstream in 2.6.8 (CAN-2004-0816)

- Stefan Esser found several remote DoS confitions in the smbfs file
system. This could be exploited by a hostile SMB server (or an
attacker injecting packets into the network) to crash the client
systems (CAN-2004-0883 and CAN-2004-0949)

- Paul Starzetz and Georgi Guninski reported, independantly, that bad
argument handling and bad integer arithmetics in the IPv4 sendmsg
handling of control messages could lead to a local attacker crashing
the machine. The fixes were done by Herbert Xu (CAN-2004-1016)

- Rob Landley discovered a race condition in the handling of
/proc/.../cmdline where, under rare circumstances, a user could read
the environment variables of another process that was still spawning
leading to the potential disclosure of sensitive information such as
passwords (CAN-2004-1058)

- Paul Starzetz reported that the missing serialization in
unix_dgram_recvmsg() which was added to kernel 2.4.28 can be used by
a local attacker to gain elevated (root) privileges (CAN-2004-1068)

- Ross Kendall Axe discovered a possible kernel panic (DoS) while
sending AF_UNIX network packets if certain SELinux-related kernel
options were enabled. By default the CONFIG_SECURITY_NETWORK and
CONFIG_SECURITY_SELINUX options are not enabled (CAN-2004-1069)

- Paul Starzetz of isec.pl discovered several issues with the error
handling of the ELF loader routines in the kernel. The fixes were
provided by Chris Wright (CAN-2004-1070, CAN-2004-1071,
CAN-2004-1072, CAN-2004-1073)

- It was discovered that hand-crafted a.out binaries could be used to
trigger a local DoS condition in both the 2.4 and 2.6 kernels. The
fixes were done by Chris Wright (CAN-2004-1074)

- Paul Starzetz found bad handling in the IGMP code which could lead
to a local attacker being able to crash the machine. The fix was
done by Chris Wright (CAN-2004-1137)

- Jeremy Fitzhardinge discovered two buffer overflows in the
sys32_ni_syscall() and sys32_vm86_warning() functions that could be
used to overwrite kernel memory with attacker-supplied code resulting
in privilege escalation (CAN-2004-1151)

- Paul Starzetz found locally exploitable flaws in the binary format
loader's uselib() function that could be abused to allow a local
user to obtain root privileges (CAN-2004-1235)

- Paul Starzetz found an exploitable flaw in the page fault handler
when running on SMP machines (CAN-2005-0001)

- A vulnerability in insert_vm_struct could allow a locla user to
trigger BUG() when the user created a large vma that overlapped with
arg pages during exec (CAN-2005-0003)

- Paul Starzetz also found a number of vulnerabilities in the kernel
binfmt_elf loader that could lead a local user to obtain elevated
(root) privileges (isec-0017-binfmt_elf)

The provided packages are patched to fix these vulnerabilities. All users are encouraged to upgrade to these updated kernels.

To update your kernel, please follow the directions located at:

http://www.mandrakesoft.com/security/kernelupdate

PLEASE NOTE: Mandrakelinux 10.0 users will need to upgrade to the latest module-init-tools package prior to upgrading their kernel. Likewise, MNF8.2 users will need to upgrade to the latest modutils package prior to upgrading their kernel. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0883
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0949
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1016
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1070
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1071
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1072
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1073
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1074
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1137
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1151
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1235
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0003
http://www.isec.pl/vulnerabilities/isec-0017-binfmt_elf.txt
http://www.ussg.iu.edu/hypermail/linux/kernel/0411.1/1222.html
http://www.isec.pl/vulnerabilities/isec-0022-pagefault.txt
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
3d615b76ac136595a7458135e1f839c6 10.0/RPMS/kernel-2.4.25.13mdk-1-1mdk.i586.rpm
8872bc542fb173ebe7b3ab99d9fa0a78 10.0/RPMS/kernel-2.6.3.25mdk-1-1mdk.i586.rpm
c2324dc5344bf65b4c32b7aaef8ce854 10.0/RPMS/kernel-enterprise-2.4.25.13mdk-1-1mdk.i586.rpm
df49e87e645dff4a94552e15e8943c19 10.0/RPMS/kernel-enterprise-2.6.3.25mdk-1-1mdk.i586.rpm
ca8d699e0e20a337a5eebf79ec85706a 10.0/RPMS/kernel-i686-up-4GB-2.4.25.13mdk-1-1mdk.i586.rpm
e07ade9d7d022da3fba9e13257bb7f15 10.0/RPMS/kernel-i686-up-4GB-2.6.3.25mdk-1-1mdk.i586.rpm
916707e9d3fe3c8328db6c6e18473abe 10.0/RPMS/kernel-p3-smp-64GB-2.4.25.13mdk-1-1mdk.i586.rpm
3372a66fbafd98d091b1d3d577d50221 10.0/RPMS/kernel-p3-smp-64GB-2.6.3.25mdk-1-1mdk.i586.rpm
f4684d50ded00cd05eaf47753b7564c8 10.0/RPMS/kernel-secure-2.6.3.25mdk-1-1mdk.i586.rpm
03688dfd221d3b4a6fda80ef5784bab6 10.0/RPMS/kernel-smp-2.4.25.13mdk-1-1mdk.i586.rpm
120a2b5101fcb5ade30f58c66faa8622 10.0/RPMS/kernel-smp-2.6.3.25mdk-1-1mdk.i586.rpm
d865abbec938cee8c258bfed331e49b3 10.0/RPMS/kernel-source-2.4.25-13mdk.i586.rpm
6537b8b610d93a06a3b5e7fbed060d7d 10.0/RPMS/kernel-source-2.6.3-25mdk.i586.rpm
2b80606da918944b7d9a3947fe9261f4 10.0/RPMS/kernel-source-stripped-2.6.3-25mdk.i586.rpm
66014de2087370161cc488cbd2459caa 10.0/RPMS/module-init-tools-3.0-1.2.1.100mdk.i586.rpm
9b808108f4839905f98821a72e01ed9b 10.0/SRPMS/kernel-2.4.25.13mdk-1-1mdk.src.rpm
cbd99bedcf3e86bbe76cfc7483d3655a 10.0/SRPMS/kernel-2.6.3.25mdk-1-1mdk.src.rpm
5ee85d63733b93e1629a9f5c44cb634c 10.0/SRPMS/module-init-tools-3.0-1.2.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
c8609f9d078f225fdc78047f338df99a amd64/10.0/RPMS/kernel-2.4.25.13mdk-1-1mdk.amd64.rpm
b89b86305d44c25e7c79bff4a9f2ebe6 amd64/10.0/RPMS/kernel-2.6.3.25mdk-1-1mdk.amd64.rpm
0acfd0fcc2e4a792054970f796485a7b amd64/10.0/RPMS/kernel-secure-2.6.3.25mdk-1-1mdk.amd64.rpm
90400428327d20e8e6d7a3c6bbd95304 amd64/10.0/RPMS/kernel-smp-2.4.25.13mdk-1-1mdk.amd64.rpm
a5723d6b9ac757d83eb46ea25de3f270 amd64/10.0/RPMS/kernel-smp-2.6.3.25mdk-1-1mdk.amd64.rpm
69e309596c73922539f7771a0a8473c6 amd64/10.0/RPMS/kernel-source-2.4.25-13mdk.amd64.rpm
4bf67528554bddac99214a873a16cb9f amd64/10.0/RPMS/kernel-source-2.6.3-25mdk.amd64.rpm
4628048ff5e631b48127cbbf1b7715b7 amd64/10.0/RPMS/kernel-source-stripped-2.6.3-25mdk.amd64.rpm
91593c8eb6877c70f16c274254cbad2b amd64/10.0/RPMS/module-init-tools-3.0-1.2.1.100mdk.amd64.rpm
9b808108f4839905f98821a72e01ed9b amd64/10.0/SRPMS/kernel-2.4.25.13mdk-1-1mdk.src.rpm
cbd99bedcf3e86bbe76cfc7483d3655a amd64/10.0/SRPMS/kernel-2.6.3.25mdk-1-1mdk.src.rpm
5ee85d63733b93e1629a9f5c44cb634c amd64/10.0/SRPMS/module-init-tools-3.0-1.2.1.100mdk.src.rpm

Mandrakelinux 10.1:
0f696c0c5320ec25d05ef5bd350f9985 10.1/RPMS/kernel-2.4.28.0.rc1.5mdk-1-1mdk.i586.rpm
d1af1c436a5abba25b8f08775da71db7 10.1/RPMS/kernel-2.6.8.1.24mdk-1-1mdk.i586.rpm
0dcb79ef492718dee540f7d41e80058a 10.1/RPMS/kernel-enterprise-2.4.28.0.rc1.5mdk-1-1mdk.i586.rpm
40284c8cc69455994b3d4d1f4ca00f83 10.1/RPMS/kernel-enterprise-2.6.8.1.24mdk-1-1mdk.i586.rpm
9ea23249f97f8ee30cdac0e330112aab 10.1/RPMS/kernel-i586-up-1GB-2.4.28.0.rc1.5mdk-1-1mdk.i586.rpm
7b30e9fcc1726f729fb553cbe2c6e1c0 10.1/RPMS/kernel-i586-up-1GB-2.6.8.1.24mdk-1-1mdk.i586.rpm
871192ed017f9d5cf41182cf603ee186 10.1/RPMS/kernel-i686-up-64GB-2.6.8.1.24mdk-1-1mdk.i586.rpm
c3cdd1c9aa5f109fc2c666496df04381 10.1/RPMS/kernel-secure-2.6.8.1.24mdk-1-1mdk.i586.rpm
b9c94c3ddd5c96a6408cb2ae3c65cac4 10.1/RPMS/kernel-smp-2.4.28.0.rc1.5mdk-1-1mdk.i586.rpm
d70bdcfaf79cf6209e9c7d4842f9c630 10.1/RPMS/kernel-smp-2.6.8.1.24mdk-1-1mdk.i586.rpm
d6d6df17dbd538a472f1715ed5085069 10.1/RPMS/kernel-source-2.4-2.4.28-0.rc1.5mdk.i586.rpm
290f135dd67a321a54d1115a0e322114 10.1/RPMS/kernel-source-2.6-2.6.8.1-24mdk.i586.rpm
a77254188fa582e1dc6507684b6350e0 10.1/RPMS/kernel-source-stripped-2.6-2.6.8.1-24mdk.i586.rpm
ac1ff7f73b6ff5ef0d848835aa439f5b 10.1/SRPMS/kernel-2.4.28.0.rc1.5mdk-1-1mdk.src.rpm
7b0f95d89253bfab3456919d06e70039 10.1/SRPMS/kernel-2.6.8.1.24mdk-1-1mdk.src.rpm

Mandrakelinux 10.1/X86_64:
960b9e64607f387c5bcd4a437981a6fa x86_64/10.1/RPMS/kernel-2.4.28.0.rc1.5mdk-1-1mdk.x86_64.rpm
04b7bd7f2fe22aa39f023a0a962b0aad x86_64/10.1/RPMS/kernel-2.6.8.1.24mdk-1-1mdk.x86_64.rpm
6bb79b4942fcaf55f503bdcbbf22f0b5 x86_64/10.1/RPMS/kernel-secure-2.6.8.1.24mdk-1-1mdk.x86_64.rpm
0d2340a40d9b712f0462f73297248700 x86_64/10.1/RPMS/kernel-smp-2.4.28.0.rc1.5mdk-1-1mdk.x86_64.rpm
10c716e96824f09ed8db7d8f83729b90 x86_64/10.1/RPMS/kernel-smp-2.6.8.1.24mdk-1-1mdk.x86_64.rpm
7b963dda4b2be54640f9ca9413c07b53 x86_64/10.1/RPMS/kernel-source-2.4-2.4.28-0.rc1.5mdk.x86_64.rpm
75c6e3ff75915b3d300a2c8cec0f9431 x86_64/10.1/RPMS/kernel-source-2.6-2.6.8.1-24mdk.x86_64.rpm
796c7f2163d63e46e129fb165ea21e25 x86_64/10.1/RPMS/kernel-source-stripped-2.6-2.6.8.1-24mdk.x86_64.rpm
ac1ff7f73b6ff5ef0d848835aa439f5b x86_64/10.1/SRPMS/kernel-2.4.28.0.rc1.5mdk-1-1mdk.src.rpm
7b0f95d89253bfab3456919d06e70039 x86_64/10.1/SRPMS/kernel-2.6.8.1.24mdk-1-1mdk.src.rpm

Corporate Server 2.1:
b6169281f854088c070fa44ec931958d corporate/2.1/RPMS/kernel-2.4.19.48mdk-1-1mdk.i586.rpm
98dba27afd4cd5457d7f14159ed9ab5c corporate/2.1/RPMS/kernel-enterprise-2.4.19.48mdk-1-1mdk.i586.rpm
889972abd61cb4c36ed1dcbb47b3f60e corporate/2.1/RPMS/kernel-secure-2.4.19.48mdk-1-1mdk.i586.rpm
41ba99dbf81769dcb1ef6770a47de649 corporate/2.1/RPMS/kernel-smp-2.4.19.48mdk-1-1mdk.i586.rpm
6a16729a1b05c13884bd4922749c2ef3 corporate/2.1/RPMS/kernel-source-2.4.19-48mdk.i586.rpm
ba431d79d61432149d88b19f7edbdaf7 corporate/2.1/SRPMS/kernel-2.4.19.48mdk-1-1mdk.src.rpm

Corporate Server 2.1/x86_64:
a3ee6a051ea79aadaefaaf67f19023d7 x86_64/corporate/2.1/RPMS/kernel-2.4.19.48mdk-1-1mdk.x86_64.rpm
33c6cac5db86011dc231686086b63798 x86_64/corporate/2.1/RPMS/kernel-secure-2.4.19.48mdk-1-1mdk.x86_64.rpm
d39c2680a53cacf01e1c768c06239660 x86_64/corporate/2.1/RPMS/kernel-smp-2.4.19.48mdk-1-1mdk.x86_64.rpm
7c17e24855523fd5f5d6bf819a6f198b x86_64/corporate/2.1/RPMS/kernel-source-2.4.19-48mdk.x86_64.rpm
ba431d79d61432149d88b19f7edbdaf7 x86_64/corporate/2.1/SRPMS/kernel-2.4.19.48mdk-1-1mdk.src.rpm

Corporate Server 3.0:
3d615b76ac136595a7458135e1f839c6 corporate/3.0/RPMS/kernel-2.4.25.13mdk-1-1mdk.i586.rpm
8872bc542fb173ebe7b3ab99d9fa0a78 corporate/3.0/RPMS/kernel-2.6.3.25mdk-1-1mdk.i586.rpm
c2324dc5344bf65b4c32b7aaef8ce854 corporate/3.0/RPMS/kernel-enterprise-2.4.25.13mdk-1-1mdk.i586.rpm
df49e87e645dff4a94552e15e8943c19 corporate/3.0/RPMS/kernel-enterprise-2.6.3.25mdk-1-1mdk.i586.rpm
ca8d699e0e20a337a5eebf79ec85706a corporate/3.0/RPMS/kernel-i686-up-4GB-2.4.25.13mdk-1-1mdk.i586.rpm
e07ade9d7d022da3fba9e13257bb7f15 corporate/3.0/RPMS/kernel-i686-up-4GB-2.6.3.25mdk-1-1mdk.i586.rpm
916707e9d3fe3c8328db6c6e18473abe corporate/3.0/RPMS/kernel-p3-smp-64GB-2.4.25.13mdk-1-1mdk.i586.rpm
3372a66fbafd98d091b1d3d577d50221 corporate/3.0/RPMS/kernel-p3-smp-64GB-2.6.3.25mdk-1-1mdk.i586.rpm
f4684d50ded00cd05eaf47753b7564c8 corporate/3.0/RPMS/kernel-secure-2.6.3.25mdk-1-1mdk.i586.rpm
03688dfd221d3b4a6fda80ef5784bab6 corporate/3.0/RPMS/kernel-smp-2.4.25.13mdk-1-1mdk.i586.rpm
120a2b5101fcb5ade30f58c66faa8622 corporate/3.0/RPMS/kernel-smp-2.6.3.25mdk-1-1mdk.i586.rpm
d865abbec938cee8c258bfed331e49b3 corporate/3.0/RPMS/kernel-source-2.4.25-13mdk.i586.rpm
6537b8b610d93a06a3b5e7fbed060d7d corporate/3.0/RPMS/kernel-source-2.6.3-25mdk.i586.rpm
2b80606da918944b7d9a3947fe9261f4 corporate/3.0/RPMS/kernel-source-stripped-2.6.3-25mdk.i586.rpm
9b808108f4839905f98821a72e01ed9b corporate/3.0/SRPMS/kernel-2.4.25.13mdk-1-1mdk.src.rpm
cbd99bedcf3e86bbe76cfc7483d3655a corporate/3.0/SRPMS/kernel-2.6.3.25mdk-1-1mdk.src.rpm

Mandrakelinux 9.2:
df22e4dffb539874c2ad36bc8893718b 9.2/RPMS/kernel-2.4.22.41mdk-1-1mdk.i586.rpm
58303975f994e50b440a46aa10b3c0a4 9.2/RPMS/kernel-enterprise-2.4.22.41mdk-1-1mdk.i586.rpm
6548386b7fab601d507950a3b658b454 9.2/RPMS/kernel-i686-up-4GB-2.4.22.41mdk-1-1mdk.i586.rpm
a5eeba7c971e7fe09d4b42ef183b97f9 9.2/RPMS/kernel-p3-smp-64GB-2.4.22.41mdk-1-1mdk.i586.rpm
c19bbca55e615a7eec5f26aebea3a675 9.2/RPMS/kernel-secure-2.4.22.41mdk-1-1mdk.i586.rpm
a4b44486653dd2d4822ba26c2debb769 9.2/RPMS/kernel-smp-2.4.22.41mdk-1-1mdk.i586.rpm
941029c6b6e57f5083a48cbb2481a41e 9.2/RPMS/kernel-source-2.4.22-41mdk.i586.rpm
7a5a16618d1fb3c92a3b2c8abcb8f6e6 9.2/SRPMS/kernel-2.4.22.41mdk-1-1mdk.src.rpm

Mandrakelinux 9.2/AMD64:
b20216a4273d7c261e08e0aa4c7411ce amd64/9.2/RPMS/kernel-2.4.22.41mdk-1-1mdk.amd64.rpm
adf9ba1fdd2b3be5de83f327fe35d932 amd64/9.2/RPMS/kernel-secure-2.4.22.41mdk-1-1mdk.amd64.rpm
df3a1629ebbf44e8e57d5b6ba4c95149 amd64/9.2/RPMS/kernel-smp-2.4.22.41mdk-1-1mdk.amd64.rpm
17b4902f4d569c2f208fe4c455b20b6f amd64/9.2/RPMS/kernel-source-2.4.22-41mdk.amd64.rpm
7a5a16618d1fb3c92a3b2c8abcb8f6e6 amd64/9.2/SRPMS/kernel-2.4.22.41mdk-1-1mdk.src.rpm

Multi Network Firewall 8.2:
a08867762d937e0890a7efe79439c844 mnf8.2/RPMS/kernel-secure-2.4.19.48mdk-1-1mdk.i586.rpm
6fb3c0a0ab8d44e031f1c309f67b4dbc mnf8.2/RPMS/modutils-2.4.19-5mdk.i586.rpm
ba431d79d61432149d88b19f7edbdaf7 mnf8.2/SRPMS/kernel-2.4.19.48mdk-1-1mdk.src.rpm
296ea31d1338fe4ca0c1eba4ff652376 mnf8.2/SRPMS/modutils-2.4.19-5mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team



______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email
______________________________________________________________________



- ----------------------------------------------------------------------------------

For additional information or assistance, please contact the HELP Desk by
telephone or Not Protectively Marked information may be sent via
EMail to: uniras@niscc.gov.uk

Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 870 487 0748 Ext 4511
Fax: +44 (0) 870 487 0749

Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 870 487 0748 and follow the prompts

- ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Mandrake for the information
contained in this Briefing.
- ----------------------------------------------------------------------------------
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |