:Advisories: March 31, 2005
Advisories: March 31, 2005 0 Talkback[s]
Conectiva Linux
PACKAGE : kernel
DESCRIPTION
The following vulnerabilities are being fixed in this update:
CAN-2005-0767[1][2] CAN-2005-0209[3][4] CAN-2005-0449[5][6] CAN-2005-0210[7][8][9]
These other changes have also been made:
the base kernel has been upgraded to version 2.6.11.
the NVidia driver has been upgraded to version 7167
DRBD has been upgraded to version 0.7.10
the hsfmodem driver has been upgraded to version 7.18.00.03 full
the slmodem driver has been upgraded to version 2.9.10
the ndiswrapper driver has been upgraded to version 1.1
lm_sensors has been upgraded to version 2.9.0[11]
SOLUTION
IMPORTANT: exercise caution and preparation when upgrading the
kernel, since it will require a reboot after the new packages are
installed. More detailed instructions are available in Portuguese at
our Q&A page[10].
REFERENCEShttp://linux.bkbits.net:8080/linux-2.6/cset@42088d17CO1mOAfgW4R46WRTm9gkwA http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0767 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0209 http://linux.bkbits.net:8080/linux-2.6/gnupatch@41f59581p1swNaow4K1aBglV-q2jfQ http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-0449 http://linux.bkbits.net:8080/linux-2.6/gnupatch@41f8843a8ZMCNuP3meYAYnnXd3CO_g http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-0210 http://linux.bkbits.net:8080/linux-2.5/gnupatch@41fd96c39V0t4MxKFxE1aZn2f4b5UA http://linux.bkbits.net:8080/linux-2.5/gnupatch@41fdb84aBJklcjU85o1N1_dsch6HBw http://www.conectiva.com.br/suporte/pr/sistema.kernel.atualizar.html http://bugzilla.conectiva.com.br/show_bug.cgi?id=13716
UPDATED PACKAGESftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-2.6.11-72032U10_16cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/drbd-utils-0.7.10-71689U10_2cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/xfree86-driver-nvidia-1.0.7167-71010U10_2cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/SRPMS/lm_sensors-2.9.0-61067U10_1cl.src.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-2.6.11-72032U10_16cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-2.6.11-72032U10_16cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-2.6.11-72032U10_16cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-2.6.11-72032U10_16cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-2.6.11-72032U10_16cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-2.6.11-72032U10_16cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-doc-2.6.11-72032U10_16cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-2.6.11-72032U10_16cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-2.6.11-72032U10_16cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-2.6.11-72032U10_16cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-2.6.11-72032U10_16cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-2.6.11-72032U10_16cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-2.6.11-72032U10_16cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-2.6.11-72032U10_16cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-2.6.11-72032U10_16cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-2.6.11-72032U10_16cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-2.6.11-72032U10_16cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-2.6.11-72032U10_16cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-2.6.11-72032U10_16cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-2.6.11-72032U10_16cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-2.6.11-72032U10_16cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-source-2.6.11-72032U10_16cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-madwifi-2.6.11.72032U10_16cl.20041216-63166U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-ndiswrapper-2.6.11.72032U10_16cl.1.1-72907U10_3cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-nvidia-2.6.11.72032U10_16cl.1.0.7167-71023U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-slmodem-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-BOOT-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-enterprise-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-highmem-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-drbd-2.6.11.72032U10_16cl.0.7.10-71801U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.pentium4.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.athlon.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i586.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/kernel26-smp-module-hsfmodem-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i686.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/drbd-utils-0.7.10-71689U10_2cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/drbd-utils-heartbeat-0.7.10-71689U10_2cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-sensord-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-tellerstats-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/liblm_sensors3-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-doc-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-devel-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/lm_sensors-devel-static-2.9.0-61067U10_1cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/ndiswrapper-utils-2.6.11.72032U10_16cl.1.1-72907U10_3cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/slmodemd-2.6.11.72032U10_16cl.2.9.10-63168U10_6cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/hsfmodem-progs-2.6.11.72032U10_16cl.7.18.00.03full-63167U10_5cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/libgl1-nvidia-1.0.7167-71010U10_2cl.i386.rpm ftp://atualizacoes.conectiva.com.br/10/RPMS/xfree86-driver-nvidia-1.0.7167-71010U10_2cl.i386.rpm
ADDITIONAL INSTRUCTIONS
run: apt-get update
after that, execute: apt-get upgrade
Detailed instructions regarding the use of apt and upgrade examples
can be found at http://distro.conectiva.com.br/atualizacoes/#apt?idioma=en
http://distro.conectiva.com.br/seguranca/chave/?idioma=en
Instructions on how to check the signatures of the RPM packages can be
found at http://distro.conectiva.com.br/seguranca/politica/?idioma=en
http://distro.conectiva.com.br/atualizacoes/?idioma=en
http://www.conectiva.com
Debian GNU/Linux
Debian Security Advisory DSA 701-1 security@debian.org http://www.debian.org/security/ Martin Schulzehttp://www.debian.org/security/faq
Package : samba
Greg MacManus discovered an integer overflow in the smb daemon from
Samba, a LanManager like file and printer server for GNU/Linux and
Unix-like systems. Requesting a very large number of access control
descriptors from the server could exploit the integer overflow, which
may result in a buffer overflow which could lead to the execution of
arbitrary code with root privileges. Upstream developers have
discovered more possible integer overflows that are fixed with this
update as well.
For the stable distribution (woody) these problems have been fixed in
version 2.2.3a-14.2.
For the unstable distribution (sid) these problems have been fixed in
version 3.0.10-1.
We recommend that you upgrade your samba packages.
Upgrade Instructions
wget url
will fetch the file for you
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 3.0 alias woody
Source archives:
http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2.dsc http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2.diff.gz http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a.orig.tar.gz
Architecture independent components:
http://security.debian.org/pool/updates/main/s/samba/samba-doc_2.2.3a-14.2_all.deb
Alpha architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_alpha.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_alpha.deb
ARM architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_arm.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_arm.deb
Intel IA-32 architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_i386.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_i386.deb
Intel IA-64 architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_ia64.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_ia64.deb
HP Precision architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_hppa.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_hppa.deb
Motorola 680x0 architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_m68k.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_m68k.deb
Big endian MIPS architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_mips.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_mips.deb
Little endian MIPS architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_mipsel.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_mipsel.deb
PowerPC architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_powerpc.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_powerpc.deb
IBM S/390 architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_s390.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_s390.deb
Sun Sparc architecture:
http://security.debian.org/pool/updates/main/s/samba/libpam-smbpass_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/libsmbclient-dev_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/samba_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/samba-common_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/smbclient_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/smbfs_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/swat_2.2.3a-14.2_sparc.deb http://security.debian.org/pool/updates/main/s/samba/winbind_2.2.3a-14.2_sparc.deb
These files will probably be moved into the stable distribution on
its next update.
http://security.debian.org/ stable/updates mainftp://security.debian.org/debian-security dists/stable/updates/maindebian-security-announce@lists.debian.org http://packages.debian.org/<pkg>
Gentoo Linux
http://security.gentoo.org/
Severity: Normal
The netkit-telnetd telnet client is vulnerable to a buffer overflow,
which could allow a malicious telnet server operator to execute
arbitrary code.
netkit-telnetd provides standard Linux telnet client and server.
A buffer overflow has been identified in the slc_add_reply() function
of netkit-telnetd client, where a large number of SLC commands can
overflow a fixed size buffer.
Successful explotation would require a vulnerable user to connect to an
attacker-controlled host using telnet, potentially executing arbitrary
code with the permissions of the telnet user.
There is no known workaround at this time.
All netkit-telnetd users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-misc/netkit-telnetd-0.17-r6"
[ 1 ] CAN-2005-0469
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0469
[ 2 ] iDEFENSE Advisory 03-28-05
http://www.idefense.com/application/poi/display?id=220&type=vulnerabilities
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-200503-36.xml
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org .
Copyright 2005 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.0
http://security.gentoo.org/
Severity: Low
Two vulnerabilities in LimeWire can be exploited to disclose sensitive
information.
LimeWire is a Java peer-to-peer client compatible with the Gnutella
file-sharing protocol.
Two input validation errors were found in the handling of Gnutella GET
requests (CAN-2005-0788) and magnet requests (CAN-2005-0789).
A remote attacker can craft a specific Gnutella GET request or use
directory traversal on magnet requests to read arbitrary files on the
system with the rights of the user running LimeWire.
There is no known workaround at this time.
All LimeWire users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-p2p/limewire-4.8.1"
[ 1 ] CAN-2005-0788
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0788
[ 2 ] CAN-2005-0789
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0789
[ 3 ] Secunia Advisory SA14555
http://secunia.com/advisories/14555/
This GLSA and any updates to it are available for viewing at
the Gentoo Security Website:
http://security.gentoo.org/glsa/glsa-200503-37.xml
Security is a primary focus of Gentoo Linux and ensuring the
confidentiality and security of our users machines is of utmost
importance to us. Any security concerns should be addressed to
security@gentoo.org or alternatively, you may file a bug at
http://bugs.gentoo.org .
Copyright 2005 Gentoo Foundation, Inc; referenced text
belongs to its owner(s).
The contents of this document are licensed under the
Creative Commons - Attribution / Share Alike license.
http://creativecommons.org/licenses/by-sa/2.0
Mandrakelinux
Mandrakelinux Security Update Advisory
Package name: ipsec-tools
Problem Description:
A bug was discovered in the way that the racoon daemon handled incoming
ISAKMP requests. It is possible that an attacker could crash the
racoon daemon by sending a specially crafted ISAKMP packet.
The updated packages have been patched to correct these issues.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0398
Updated Packages:
Mandrakelinux 10.0:
Mandrakelinux 10.0/AMD64:
Mandrakelinux 10.1:
Mandrakelinux 10.1/X86_64:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandrakesoft for security. You can obtain
the GPG public key of the Mandrakelinux Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandrakelinux at:
http://www.mandrakesoft.com/security/advisories
If you want to report vulnerabilities, please contact
security_linux-mandrake.com
Type Bits/KeyID Date User ID
Mandrakelinux Security Update Advisory
Package name: htdig
Problem Description:
A cross-site scripting vulnerability in ht://dig was discovered by
Michael Krax. The updated packages have been patched to correct this
issue.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0085
Updated Packages:
Mandrakelinux 10.0:
Mandrakelinux 10.0/AMD64:
Mandrakelinux 10.1:
Mandrakelinux 10.1/X86_64:
Corporate Server 2.1:
Corporate Server 2.1/X86_64:
Corporate 3.0:
Corporate 3.0/X86_64:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandrakesoft for security. You can obtain
the GPG public key of the Mandrakelinux Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandrakelinux at:
http://www.mandrakesoft.com/security/advisories
If you want to report vulnerabilities, please contact
security_linux-mandrake.com
Type Bits/KeyID Date User ID
Mandrakelinux Security Update Advisory
Package name: libexif
Problem Description:
A buffer overflow was discovered in the way libexif parses EXIF tags.
An attacker could exploit this by creating a special EXIF image file
which could cause image viewers linked against libexif to crash.
The updated packages have been patched to correct these issues.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0664
Updated Packages:
Mandrakelinux 10.0:
Mandrakelinux 10.0/AMD64:
Mandrakelinux 10.1:
Mandrakelinux 10.1/X86_64:
Corporate 3.0:
Corporate 3.0/X86_64:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandrakesoft for security. You can obtain
the GPG public key of the Mandrakelinux Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandrakelinux at:
http://www.mandrakesoft.com/security/advisories
If you want to report vulnerabilities, please contact
security_linux-mandrake.com
Type Bits/KeyID Date User ID
