Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > March 2005 > MandrakeLinux - Four Security Update Advisories

March 2005

MandrakeLinux - Four Security Update Advisories

ID: 00215
Ref: 195/2005
Date: 16 March 2005:14:32:29
Version: 1
Title: MandrakeLinux - Four Security Update Advisories
Abstract:
Vendors affected: MandrakeLinux
Operating systems affected: MandrakeLinux
Applications affected: MandrakeLinux

Title
=====

MandrakeLinux - Four Security Update Advisories:
1. Updated ethereal packages fix multiple vulnerabilities (MDKSA-2005:053)
2. Updated cyrus-sasl packages fix vulnerability (MDKSA-2005:054)
3. Updated openslp packages fix multiple vulnerabilities (MDKSA-2005:055)
4. Updated gnupg packages fix vulnerability (MDKSA-2005:057)

Detail
======

Advisory Summaries:

1. A number of issues were discovered in Ethereal versions prior to
0.10.10, which is provided by this update.

2. A buffer overflow was discovered in cyrus-sasl's digestmd5 code. This
could lead to a remote attacker executing code in the context of the
service using SASL authentication.

3. An audit by the SUSE Security Team of critical parts of the OpenSLP
package revealed various buffer overflow and out of bounds memory
access issues.

4. The OpenPGP protocol is vulnerable to a timing-attack in order to
gain plain text from cipher text. The timing difference appears as a
side effect of the so-called "quick scan" and is only exploitable on
systems that accept an arbitrary amount of cipher text for automatic
decryption.


Advisory content follows:

1.

_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: ethereal
Advisory ID: MDKSA-2005:053
Date: March 15th, 2005

Affected versions: 10.0, 10.1
______________________________________________________________________

Problem Description:

A number of issues were discovered in Ethereal versions prior to 0.10.10, which is provided by this update. Matevz Pustisek discovered a buffer overflow in the Etheric dissector (CAN-2005-0704); the GPRS-LLC dissector could crash if the "ignore cipher bit" was enabled (CAN-2005-0705); Diego Giago found a buffer overflow in the 3GPP2 A11 dissector (CAN-2005-0699); Leon Juranic found a buffer overflow in the IAPP dissector (CAN-2005-0739); and bugs in the JXTA and sFlow dissectors could make Ethereal crash. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0699
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0704
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0705
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0739
http://www.ethereal.com/appnotes/enpa-sa-00018.html
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
fb966151e94dac463d403f350fb00fa7 10.0/RPMS/ethereal-0.10.10-0.1.100mdk.i586.rpm
b7c41bee5ad00b0b404e2981c561c4ec 10.0/SRPMS/ethereal-0.10.10-0.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
7d3efb484e1b370b13d506114bc0407c amd64/10.0/RPMS/ethereal-0.10.10-0.1.100mdk.amd64.rpm
b7c41bee5ad00b0b404e2981c561c4ec amd64/10.0/SRPMS/ethereal-0.10.10-0.1.100mdk.src.rpm

Mandrakelinux 10.1:
6d32ba4fec2e8f9619244c17295ede7e 10.1/RPMS/ethereal-0.10.10-0.1.101mdk.i586.rpm
89a0d8446a64927232a36c2971eef4c8 10.1/RPMS/ethereal-tools-0.10.10-0.1.101mdk.i586.rpm
c11201abc7040579f35b68c2b29edaee 10.1/RPMS/libethereal0-0.10.10-0.1.101mdk.i586.rpm
a867076452de57b9536260e646b27209 10.1/RPMS/tethereal-0.10.10-0.1.101mdk.i586.rpm
383c4e2a2a2fec1574c63a1eaeb658c5 10.1/SRPMS/ethereal-0.10.10-0.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
ca5d62812d64b98898c9582907aee602 x86_64/10.1/RPMS/ethereal-0.10.10-0.1.101mdk.x86_64.rpm
27f88f8e04f78f470ce4579183cbc0c6 x86_64/10.1/RPMS/ethereal-tools-0.10.10-0.1.101mdk.x86_64.rpm
155e92c6ef477eb93132107ef7146083 x86_64/10.1/RPMS/lib64ethereal0-0.10.10-0.1.101mdk.x86_64.rpm
4eb06c4832cc4490ea000e4d0ff60f7b x86_64/10.1/RPMS/tethereal-0.10.10-0.1.101mdk.x86_64.rpm
383c4e2a2a2fec1574c63a1eaeb658c5 x86_64/10.1/SRPMS/ethereal-0.10.10-0.1.101mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCN2zWmqjQ0CJFipgRAsOjAJ9BrJNRzKeIZXuY1vRJXJ1irh0swgCg9V4V
UxCS39TrEtvgt3gdNaRPieE=
=aQDG
- - -----END PGP SIGNATURE-----



2.



_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: cyrus-sasl
Advisory ID: MDKSA-2005:054
Date: March 15th, 2005

Affected versions: 10.0, Corporate 3.0
______________________________________________________________________

Problem Description:

A buffer overflow was discovered in cyrus-sasl's digestmd5 code. This could lead to a remote attacker executing code in the context of the service using SASL authentication. This vulnerability was fixed upstream in version 2.1.19.

The updated packages are patched to deal with this issue. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0373
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
c965657c81701b081fee1a96da4d01a4 10.0/RPMS/cyrus-sasl-2.1.15-10.2.100mdk.i586.rpm
c2933e9b68c42a5496b12812d9899a6c 10.0/RPMS/libsasl2-2.1.15-10.2.100mdk.i586.rpm
a127e8480ad3decc7235cf3a1115abc2 10.0/RPMS/libsasl2-devel-2.1.15-10.2.100mdk.i586.rpm
13846d2883187f58d0d2f8b6b0f38e1d 10.0/RPMS/libsasl2-plug-anonymous-2.1.15-10.2.100mdk.i586.rpm
6de10ba00aade07c66e97c1a4d092a12 10.0/RPMS/libsasl2-plug-crammd5-2.1.15-10.2.100mdk.i586.rpm
bf48f500c3e1620107ae0da33c1bf80d 10.0/RPMS/libsasl2-plug-digestmd5-2.1.15-10.2.100mdk.i586.rpm
397316f4f40bd527023a1b16f84cef79 10.0/RPMS/libsasl2-plug-gssapi-2.1.15-10.2.100mdk.i586.rpm
c319d819b12fa73b0542775eedc3e88e 10.0/RPMS/libsasl2-plug-login-2.1.15-10.2.100mdk.i586.rpm
d952125ee7b241fc4d25278f542208f6 10.0/RPMS/libsasl2-plug-ntlm-2.1.15-10.2.100mdk.i586.rpm
7637c809edf6b7f7d4b2e489a52209e8 10.0/RPMS/libsasl2-plug-otp-2.1.15-10.2.100mdk.i586.rpm
b3a33d07209d28b2059adba1efddcc26 10.0/RPMS/libsasl2-plug-plain-2.1.15-10.2.100mdk.i586.rpm
82f3297fcbe19a766fcdbb445787d400 10.0/RPMS/libsasl2-plug-sasldb-2.1.15-10.2.100mdk.i586.rpm
10436f6c81cf89d6f9cdc8a6b96f35e8 10.0/RPMS/libsasl2-plug-srp-2.1.15-10.2.100mdk.i586.rpm
0ea10d6b7a558b5261643628afe6cb51 10.0/SRPMS/cyrus-sasl-2.1.15-10.2.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
8e9dbf93cb8c802885b66e3239eea41a amd64/10.0/RPMS/cyrus-sasl-2.1.15-10.2.100mdk.amd64.rpm
16f2942eb0b01de2c537074276d187d4 amd64/10.0/RPMS/lib64sasl2-2.1.15-10.2.100mdk.amd64.rpm
d9e2132fcea107e1cb000ff839ba41d7 amd64/10.0/RPMS/lib64sasl2-devel-2.1.15-10.2.100mdk.amd64.rpm
4c98fc6d9e0c5d47fe5579fda042513b amd64/10.0/RPMS/lib64sasl2-plug-anonymous-2.1.15-10.2.100mdk.amd64.rpm
f0ff3fa8911def573fbce23d8a0087b9 amd64/10.0/RPMS/lib64sasl2-plug-crammd5-2.1.15-10.2.100mdk.amd64.rpm
5551007c97bde6ed70669afe2edf6e51 amd64/10.0/RPMS/lib64sasl2-plug-digestmd5-2.1.15-10.2.100mdk.amd64.rpm
76dc167feea4115465df02f994a8c13d amd64/10.0/RPMS/lib64sasl2-plug-gssapi-2.1.15-10.2.100mdk.amd64.rpm
8cca7287a249c57a7df00dcb5f69fe2e amd64/10.0/RPMS/lib64sasl2-plug-login-2.1.15-10.2.100mdk.amd64.rpm
fcc7a47163ec36c74de45c6cef3a8a95 amd64/10.0/RPMS/lib64sasl2-plug-ntlm-2.1.15-10.2.100mdk.amd64.rpm
47a65ffc42afb7bc8ad169e2040037c1 amd64/10.0/RPMS/lib64sasl2-plug-otp-2.1.15-10.2.100mdk.amd64.rpm
86ce6aa9fee0a58e91473fd857780f7d amd64/10.0/RPMS/lib64sasl2-plug-plain-2.1.15-10.2.100mdk.amd64.rpm
097aba79c22d4cf3651715aa81599347 amd64/10.0/RPMS/lib64sasl2-plug-sasldb-2.1.15-10.2.100mdk.amd64.rpm
817b5efbe462906f98417c961fb9ddb4 amd64/10.0/RPMS/lib64sasl2-plug-srp-2.1.15-10.2.100mdk.amd64.rpm
0ea10d6b7a558b5261643628afe6cb51 amd64/10.0/SRPMS/cyrus-sasl-2.1.15-10.2.100mdk.src.rpm

Corporate 3.0:
9430016037f143ccd95783a2ae838b60 corporate/3.0/RPMS/cyrus-sasl-2.1.15-10.2.C30mdk.i586.rpm
f7ba0882813eff2368f961d512cebc05 corporate/3.0/RPMS/libsasl2-2.1.15-10.2.C30mdk.i586.rpm
4962b88c78bd0d587e10d07bf0dce5a8 corporate/3.0/RPMS/libsasl2-devel-2.1.15-10.2.C30mdk.i586.rpm
e4c3b30a807fa116657c63cd6c2384a5 corporate/3.0/RPMS/libsasl2-plug-anonymous-2.1.15-10.2.C30mdk.i586.rpm
b556f8bb89893f2e442002e040aeb2c6 corporate/3.0/RPMS/libsasl2-plug-crammd5-2.1.15-10.2.C30mdk.i586.rpm
c3eda3cc2b77098f192fbd43b5087a3f corporate/3.0/RPMS/libsasl2-plug-digestmd5-2.1.15-10.2.C30mdk.i586.rpm
90b468d8bf576532529a37eaf630a150 corporate/3.0/RPMS/libsasl2-plug-gssapi-2.1.15-10.2.C30mdk.i586.rpm
7bc65bb2eaed577f2faf01b82f0b20e0 corporate/3.0/RPMS/libsasl2-plug-login-2.1.15-10.2.C30mdk.i586.rpm
0250d76b422f047afc3e9613d067cf8b corporate/3.0/RPMS/libsasl2-plug-ntlm-2.1.15-10.2.C30mdk.i586.rpm
cc6a94f26ea6b5351ecd4c389b6abf47 corporate/3.0/RPMS/libsasl2-plug-otp-2.1.15-10.2.C30mdk.i586.rpm
9f81be183209e69059287098c90dd28b corporate/3.0/RPMS/libsasl2-plug-plain-2.1.15-10.2.C30mdk.i586.rpm
51b7cde7664b0f9bc6b7cc71cbddbf9c corporate/3.0/RPMS/libsasl2-plug-sasldb-2.1.15-10.2.C30mdk.i586.rpm
9a799ea09b1b4469bb95d543a661d3ec corporate/3.0/RPMS/libsasl2-plug-srp-2.1.15-10.2.C30mdk.i586.rpm
f34c98de51085359bdaaaea619e7c735 corporate/3.0/SRPMS/cyrus-sasl-2.1.15-10.2.C30mdk.src.rpm

Corporate 3.0/X86_64:
25582eb4340f4b85d82e3d9c0fcc03f7 x86_64/corporate/3.0/RPMS/cyrus-sasl-2.1.15-10.2.C30mdk.x86_64.rpm
d7e42e6022d8f490f9b4d0df80334c05 x86_64/corporate/3.0/RPMS/lib64sasl2-2.1.15-10.2.C30mdk.x86_64.rpm
a7e1ee54704b52a23eb52a5426e669aa x86_64/corporate/3.0/RPMS/lib64sasl2-devel-2.1.15-10.2.C30mdk.x86_64.rpm
d5479403c2e037a61ea2f98ec115f705 x86_64/corporate/3.0/RPMS/lib64sasl2-plug-anonymous-2.1.15-10.2.C30mdk.x86_64.rpm
807df45e6f0940aca1afb8a4f1799649 x86_64/corporate/3.0/RPMS/lib64sasl2-plug-crammd5-2.1.15-10.2.C30mdk.x86_64.rpm
0f8a19b4a3d018d1284361c9d01bc22d x86_64/corporate/3.0/RPMS/lib64sasl2-plug-digestmd5-2.1.15-10.2.C30mdk.x86_64.rpm
96998110c98470af995f3e5bd95c8e1d x86_64/corporate/3.0/RPMS/lib64sasl2-plug-gssapi-2.1.15-10.2.C30mdk.x86_64.rpm
880706198b6af174b944e8d133fcdaad x86_64/corporate/3.0/RPMS/lib64sasl2-plug-login-2.1.15-10.2.C30mdk.x86_64.rpm
00758faa06b98f406d41638e403e3adc x86_64/corporate/3.0/RPMS/lib64sasl2-plug-ntlm-2.1.15-10.2.C30mdk.x86_64.rpm
9cbed477e4af016a6226395a8a74806f x86_64/corporate/3.0/RPMS/lib64sasl2-plug-otp-2.1.15-10.2.C30mdk.x86_64.rpm
9758e8c5fa232f42c5137634bf5111c8 x86_64/corporate/3.0/RPMS/lib64sasl2-plug-plain-2.1.15-10.2.C30mdk.x86_64.rpm
6b39c3d16308992604499b6927d7831f x86_64/corporate/3.0/RPMS/lib64sasl2-plug-sasldb-2.1.15-10.2.C30mdk.x86_64.rpm
e275c19f5d19a4e06ec8982299fef72e x86_64/corporate/3.0/RPMS/lib64sasl2-plug-srp-2.1.15-10.2.C30mdk.x86_64.rpm
f34c98de51085359bdaaaea619e7c735 x86_64/corporate/3.0/SRPMS/cyrus-sasl-2.1.15-10.2.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCN21smqjQ0CJFipgRAp4HAKDv8A/VP0ELYPhjOvIVYz7JvKDPhwCfQrfk
/0SZI6W0Fh2orgdFpUsN0A0=
=5CnM
- - -----END PGP SIGNATURE-----



3.



_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: openslp
Advisory ID: MDKSA-2005:055
Date: March 15th, 2005

Affected versions: 10.0, 10.1, Corporate 3.0
______________________________________________________________________

Problem Description:

An audit by the SUSE Security Team of critical parts of the OpenSLP package revealed various buffer overflow and out of bounds memory access issues. These problems can be triggered by remote attackers by sending malformed SLP packets.

The packages have been patched to prevent these problems. ______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
70754e5bbaa2f90cb24f55fe0be71d11 10.0/RPMS/libopenslp1-1.0.11-5.1.100mdk.i586.rpm
c4dfbc5bb93a8c501145b5954539213c 10.0/RPMS/libopenslp1-devel-1.0.11-5.1.100mdk.i586.rpm
27cec09ca0c2c47dc647a5fc819c3753 10.0/RPMS/openslp-1.0.11-5.1.100mdk.i586.rpm
b389a429b7d028ea959011c78d8f3b78 10.0/SRPMS/openslp-1.0.11-5.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
3225104727c84304b9a54890fa9f6633 amd64/10.0/RPMS/lib64openslp1-1.0.11-5.1.100mdk.amd64.rpm
79fd79d25b32968ba66b44b7c5a1c05c amd64/10.0/RPMS/lib64openslp1-devel-1.0.11-5.1.100mdk.amd64.rpm
a3b38a4a35d8092e77489f38e6ee9e34 amd64/10.0/RPMS/openslp-1.0.11-5.1.100mdk.amd64.rpm
b389a429b7d028ea959011c78d8f3b78 amd64/10.0/SRPMS/openslp-1.0.11-5.1.100mdk.src.rpm

Mandrakelinux 10.1:
337e9078d8a3e785961211d448660e36 10.1/RPMS/libopenslp1-1.0.11-5.1.101mdk.i586.rpm
50044d3325f06597639d7b15e8879808 10.1/RPMS/libopenslp1-devel-1.0.11-5.1.101mdk.i586.rpm
652b0c21b012a64e45659a602ae08cb9 10.1/RPMS/openslp-1.0.11-5.1.101mdk.i586.rpm
ef90e1e6c6d31ea9063c52c0f5ed2ad5 10.1/SRPMS/openslp-1.0.11-5.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
5438857f4e481c13a0980b8163f52099 x86_64/10.1/RPMS/lib64openslp1-1.0.11-5.1.101mdk.x86_64.rpm
e3645d63affad39ee29220020166647d x86_64/10.1/RPMS/lib64openslp1-devel-1.0.11-5.1.101mdk.x86_64.rpm
880d2017dede61625c1656898b16c183 x86_64/10.1/RPMS/openslp-1.0.11-5.1.101mdk.x86_64.rpm
ef90e1e6c6d31ea9063c52c0f5ed2ad5 x86_64/10.1/SRPMS/openslp-1.0.11-5.1.101mdk.src.rpm

Corporate 3.0:
1d15d12b4c4cbcc97bdbb888f45e2014 corporate/3.0/RPMS/libopenslp1-1.0.11-5.1.C30mdk.i586.rpm
e9a8c0d510bb1445310e43a15350e657 corporate/3.0/RPMS/libopenslp1-devel-1.0.11-5.1.C30mdk.i586.rpm
91cd6b119e6ea8518ee90c23f153873d corporate/3.0/SRPMS/openslp-1.0.11-5.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
27a6060a909b74bac143378e6dc3d20d x86_64/corporate/3.0/RPMS/lib64openslp1-1.0.11-5.1.C30mdk.x86_64.rpm
617f52c2630669091c4ab8a728b0b716 x86_64/corporate/3.0/RPMS/lib64openslp1-devel-1.0.11-5.1.C30mdk.x86_64.rpm
91cd6b119e6ea8518ee90c23f153873d x86_64/corporate/3.0/SRPMS/openslp-1.0.11-5.1.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCN240mqjQ0CJFipgRAtUmAJ9eS1lYinOY3WoLAqb7l+7CN7Cr0wCgr9T4
NJIoDz/mBmDzC9IFTq+XkFw=
=+dbG
- - -----END PGP SIGNATURE-----



4.



_______________________________________________________________________

Mandrakelinux Security Update Advisory _______________________________________________________________________

Package name: gnupg
Advisory ID: MDKSA-2005:057
Date: March 15th, 2005

Affected versions: 10.0, 10.1, 9.2, Corporate 3.0,
Corporate Server 2.1 ______________________________________________________________________

Problem Description:

The OpenPGP protocol is vulnerable to a timing-attack in order to gain plain text from cipher text. The timing difference appears as a side effect of the so-called "quick scan" and is only exploitable on systems that accept an arbitrary amount of cipher text for automatic decryption.

The updated packages have been patched to disable the quick check for all public key-encrypted messages and files. _______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0366
http://www.kb.cert.org/vuls/id/303094
http://www.pgp.com/library/ctocorner/openpgp.html
______________________________________________________________________

Updated Packages:

Mandrakelinux 10.0:
e417191838d8efce573d72c1a23985f5 10.0/RPMS/gnupg-1.2.4-1.1.100mdk.i586.rpm
86351de46dfb9269582e3ff077c1cbfd 10.0/SRPMS/gnupg-1.2.4-1.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
df0f82dbd6e158e0ed5147cb39e16d8a amd64/10.0/RPMS/gnupg-1.2.4-1.1.100mdk.amd64.rpm
86351de46dfb9269582e3ff077c1cbfd amd64/10.0/SRPMS/gnupg-1.2.4-1.1.100mdk.src.rpm

Mandrakelinux 10.1:
e5c5e11c18532a11b3f17df2f4a8d0f0 10.1/RPMS/gnupg-1.2.4-1.1.101mdk.i586.rpm
6616d6b33665b0b61b3ba60ea4edb7b7 10.1/SRPMS/gnupg-1.2.4-1.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
0f912bf60b3aa5657f1d70ac1321877c x86_64/10.1/RPMS/gnupg-1.2.4-1.1.101mdk.x86_64.rpm
6616d6b33665b0b61b3ba60ea4edb7b7 x86_64/10.1/SRPMS/gnupg-1.2.4-1.1.101mdk.src.rpm

Corporate Server 2.1:
9a94f8178b38d21436776157a8dc64fa corporate/2.1/RPMS/gnupg-1.0.7-3.3.C21mdk.i586.rpm
7feb5108aab575ca5a236257cb6381bf corporate/2.1/SRPMS/gnupg-1.0.7-3.3.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
54fe5bb44107b7e3e61b36497a911bc3 x86_64/corporate/2.1/RPMS/gnupg-1.0.7-3.3.C21mdk.x86_64.rpm
7feb5108aab575ca5a236257cb6381bf x86_64/corporate/2.1/SRPMS/gnupg-1.0.7-3.3.C21mdk.src.rpm

Corporate 3.0:
e95d4dd1787d1b371c554ac29c840ae4 corporate/3.0/RPMS/gnupg-1.2.4-1.1.C30mdk.i586.rpm
78db8f8ecd2709c17b0700b22d74f227 corporate/3.0/SRPMS/gnupg-1.2.4-1.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
c9fcb2074b56249ccbb1456a4fffea4e x86_64/corporate/3.0/RPMS/gnupg-1.2.4-1.1.C30mdk.x86_64.rpm
78db8f8ecd2709c17b0700b22d74f227 x86_64/corporate/3.0/SRPMS/gnupg-1.2.4-1.1.C30mdk.src.rpm

Mandrakelinux 9.2:
eea8f872b37b44e323121f8f06e055a5 9.2/RPMS/gnupg-1.2.3-3.2.92mdk.i586.rpm
4853be0ffaeb03b0bc78bd361342d5ed 9.2/SRPMS/gnupg-1.2.3-3.2.92mdk.src.rpm

Mandrakelinux 9.2/AMD64:
cd27f63d89d9850c25f3e36968dc120f amd64/9.2/RPMS/gnupg-1.2.3-3.2.92mdk.amd64.rpm
4853be0ffaeb03b0bc78bd361342d5ed amd64/9.2/SRPMS/gnupg-1.2.3-3.2.92mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandrakesoft for security. You can obtain the GPG public key of the Mandrakelinux Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandrakelinux at:

http://www.mandrakesoft.com/security/advisories

If you want to report vulnerabilities, please contact

security_linux-mandrake.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Linux Mandrake Security Team

- - -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFCN2/MmqjQ0CJFipgRAnQ8AKDDOJXi/cExZksGemxFzHjus0BXrgCeNzpX
Tv7Hz224gcpIp+3EVDaW/CU=
=eDXE
- - -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |