Linux Today - Advisories: July 12, 2005

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices

Technology Jobs

LinuxToday Newsletters

Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com

Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

Current Newswire:

20 popular Ubuntu Linux apps you may want to try

A Selection of the Very Best Open Source Tutorials and Tools

Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks

SECURITY: Google Chrome 17 Improves Security

How to read a CSV file in Perl?

Red Hat Brings Gluster to Amazon Cloud

New Linux kernel fixes power-saving issues

Using Wii remote with Android Device- Taking Gaming to the Next Level

Commercial Support now available for the open-source NGINX Web server

Linux Top 5: Linux's New Fellow

Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Post A Job | Post A Resume

:Advisories: July 12, 2005

Advisories: July 12, 2005
Jul 13, 2005, 04 :45 UTC (0 Talkback[s]) (3344 reads)

Debian GNU/Linux

Debian Security Advisory DSA 745-1 security@debian.org
http://www.debian.org/security/ Michael Stone
July 10, 2005 http://www.debian.org/security/faq

Package : drupal
Vulnerability : arbitrary command execution
Problem type : input validation errors
Debian-specific: no
CVE Id(s) : CAN-2005-1921, CAN-2005-2106, CAN-2005-2116

Two input validation errors were discovered in drupal and its bundled xmlrpc module. These errors can lead to the execution of arbitrary commands on the web server running drupal.

drupal was not included in the old stable distribution (woody).

For the current stable distribution (sarge), these problems have been fixed in version 4.5.3-3.

For the unstable distribution (sid), these problems have been fixed in version 4.5.4-1.

We recommend that you upgrade your drupal package.

Upgrade instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian 3.1 (sarge)

sarge was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/d/drupal/drupal_4.5.3-3.dsc
Size/MD5 checksum: 609 0eb3f7233e0c83f4524784381338ddda
http://security.debian.org/pool/updates/main/d/drupal/drupal_4.5.3.orig.tar.gz
Size/MD5 checksum: 471540 bf093c4c8aca7bba62833ea1df35702f
http://security.debian.org/pool/updates/main/d/drupal/drupal_4.5.3-3.diff.gz
Size/MD5 checksum: 43573 42582f8972fd4adb5d7e08712f80912c

Architecture independent packages:

http://security.debian.org/pool/updates/main/d/drupal/drupal_4.5.3-3_all.deb
Size/MD5 checksum: 487404 0af9a174268a7bfb83b523b452076e7b

Debian Security Advisory DSA 747-1 security@debian.org
http://www.debian.org/security/ Michael Stone
July 10, 2005 http://www.debian.org/security/faq

Package : egroupware
Vulnerability : remote command execution
Problem type : input validation error
Debian-specific: no
CVE Id(s) : CAN-2005-1921

A vulernability has been identified in the xmlrpc library included in the egroupware package. This vulnerability could lead to the execution of arbitrary commands on the server running egroupware.

The old stable distribution (woody) did not include egroupware.

For the current stable distribution (sarge), this problem is fixed in version 1.0.0.007-2.dfsg-2sarge1.

For the unstable distribution (sid), this problem is fixed in version 1.0.0.007-3.dfsg-1.

We recommend that you upgrade your egroupware package.

Upgrade instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian 3.1 (sarge)

sarge was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/e/egroupware/egroupware_1.0.0.007-2.dfsg.orig.tar.gz
Size/MD5 checksum: 12699187 462f5ea377c4d0c04f16ffe8037b9d6a
http://security.debian.org/pool/updates/main/e/egroupware/egroupware_1.0.0.007-2.dfsg-2sarge1.diff.gz
Size/MD5 checksum: 33321 2ae91aca7f89d1f3d5f725fa09384ed8
http://security.debian.org/pool/updates/main/e/egroupware/egroupware_1.0.0.007-2.dfsg-2sarge1.dsc
Size/MD5 checksum: 1285 1849e8a4639068df7ac9f8f72272ef86

Architecture independent packages:

Debian Security Advisory DSA 748-1 security@debian.org
http://www.debian.org/security/ Michael Stone
July 10, 2005 http://www.debian.org/security/faq

Package : ruby1.8
Vulnerability : arbitrary command execution
Problem type : bad default value
Debian-specific: no
CVE ID : CAN-2005-1992

A vulnerability has been discovered in ruby1.8 that could allow arbitrary command execution on a server running the ruby xmlrpc server.

The old stable distribution (woody) did not include ruby1.8.

This problem is fixed for the current stable distribution (sarge) in version 1.8.2-7sarge1.

This problem is fixed for the unstable distribution in version 1.8.2-8.

We recommend that you upgrade your ruby1.8 package.

Upgrade instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian 3.1 (sarge)

sarge was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge1.dsc
Size/MD5 checksum: 1024 d14377473cdeb0a26538b6137faa5c66
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge1.diff.gz
Size/MD5 checksum: 529167 25de3bdf1775f90246f76e50a6aba24a
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2.orig.tar.gz
Size/MD5 checksum: 3623780 4bc5254bec262d18cf1ceef03aae8bdf

Architecture independent packages:

http://security.debian.org/pool/updates/main/r/ruby1.8/ri1.8_1.8.2-7sarge1_all.deb
Size/MD5 checksum: 704400 f9004f2fedac63615c50bf6dab046fda
http://security.debian.org/pool/updates/main/r/ruby1.8/irb1.8_1.8.2-7sarge1_all.deb
Size/MD5 checksum: 166072 60511fe4d9427eaf5a1d8df2ecba2e36
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-examples_1.8.2-7sarge1_all.deb
Size/MD5 checksum: 216196 b08d57bed7996624c1a601e866329fc0
http://security.debian.org/pool/updates/main/r/ruby1.8/rdoc1.8_1.8.2-7sarge1_all.deb
Size/MD5 checksum: 234004 47a6c5a62e9f73f4a34d04824874bc99
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-elisp_1.8.2-7sarge1_all.deb
Size/MD5 checksum: 142196 bcf34b40ab001265127728099452f800

alpha architecture (DEC Alpha)

arm architecture (ARM)

http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 743330 564d6353a5d64d77417f5a6ffcf9a9e7
http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 1440694 24737b7854ab18b09bb9e6b4f303c2a3
http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 1347836 8f79580b86d089a5b43236c756dd471e
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 151074 7846a4af8f3038d0b54c9e31979ddaa8
http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 131352 69bccef101a65da4e60f46fc7cdebc3d
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 659604 ed60810b767dbac00807c055dffb077c
http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 133974 03f175228880f3e67884278964af9c44
http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 135070 f0c48c0fcded7fad805d52c9ba11a374
http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge1_arm.deb
Size/MD5 checksum: 221986 59fea0388c3f8d69e5665d67686e419f

hppa architecture (HP PA RISC)

i386 architecture (Intel ia32)

ia64 architecture (Intel ia64)

m68k architecture (Motorola Mc680x0)

mips architecture (MIPS (Big Endian))

mipsel architecture (MIPS (Little Endian))

powerpc architecture (PowerPC)

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8-dev_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 674136 1c8f6d61b5c1a5b64f739356cab851b1
http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 1430890 391dc5d38b4296d1d130a7e3180fcb8b
http://security.debian.org/pool/updates/main/r/ruby1.8/libgdbm-ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 136752 afca1f7aad665e4ef2eaf575063568df
http://security.debian.org/pool/updates/main/r/ruby1.8/libopenssl-ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 239460 31b887aab09ddcd2e4c73b59a763e9f7
http://security.debian.org/pool/updates/main/r/ruby1.8/libtcltk-ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 1446898 c68eebe3a5aefd2481c5f2be11d1b288
http://security.debian.org/pool/updates/main/r/ruby1.8/libruby1.8-dbg_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 907170 ef7a778b5c3ff7d7018249d12ed1cc42
http://security.debian.org/pool/updates/main/r/ruby1.8/ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 151324 7b6eef790b8521af70caccc2222648b1
http://security.debian.org/pool/updates/main/r/ruby1.8/libreadline-ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 132744 9ad294790e0671a9554f51e9e98dcfae
http://security.debian.org/pool/updates/main/r/ruby1.8/libdbm-ruby1.8_1.8.2-7sarge1_s390.deb
Size/MD5 checksum: 135400 9316718a838de0e4eb70d2219f62deda

sparc architecture (Sun SPARC/UltraSPARC)

Debian Security Advisory DSA 749-1 security@debian.org
http://www.debian.org/security/ Michael Stone
July 10, 2005 http://www.debian.org/security/faq

Package : ettercap
Vulnerability : arbitrary code execution
Problem type : format string error
Debian-specific: no
CVE Id(s) : CAN-2005-1796

A vulnerability was discovered in the ettercap package which could allow a remote attacker to execute arbitrary code on the system running ettercap.

The old stable distribution (woody) did not include ettercap.

For the stable distribution (sarge), this problem has been fixed in version 0.7.1-1sarge1.

For the unstable distribution (sid), this problem has been fixed in version 0.7.3-1.

We recommend that you upgrade your ettercap package.

Upgrade instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian 3.1 (sarge)

sarge was released for alpha, arm, hppa, i386, ia64, m68k, mips, mipsel, powerpc, s390 and sparc.

Source archives:

http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1.orig.tar.gz
Size/MD5 checksum: 1121758 f769039e0e967e9e09d0365fe358d683
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1.diff.gz
Size/MD5 checksum: 4027 409603f119d07401bf7671b317e8ccef
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1.dsc
Size/MD5 checksum: 746 12b96cbc18bdb3bd7b431efbbfa73c34

alpha architecture (DEC Alpha)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_alpha.deb
Size/MD5 checksum: 262674 3360122f7ee141aa6f2d410f4f834933
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_alpha.deb
Size/MD5 checksum: 318266 4b09b93eba161a30b2f6cd28c33d0f1d
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_alpha.deb
Size/MD5 checksum: 221836 dbe0a871072bcd8d90318b271af1952b

arm architecture (ARM)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_arm.deb
Size/MD5 checksum: 202390 6feb651f0b27a18e36612804388356e8
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_arm.deb
Size/MD5 checksum: 288022 062a0e8b4fdc2985a5bf9f5a0bc14fc4
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_arm.deb
Size/MD5 checksum: 169426 b08226c852071b61b66c16fd012412ec

hppa architecture (HP PA RISC)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_hppa.deb
Size/MD5 checksum: 304744 59be8a0479f3b0c9512e5193865c6bc2
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_hppa.deb
Size/MD5 checksum: 227462 c364ecfec15360338b93176d45d759f3
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_hppa.deb
Size/MD5 checksum: 190422 abbb689c039c829ab4358c4983c96c96

i386 architecture (Intel ia32)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_i386.deb
Size/MD5 checksum: 208398 91059e61c393851e8edb3b841450b46d
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_i386.deb
Size/MD5 checksum: 286292 be3fff62821300e02ee004deb7a3bf91
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_i386.deb
Size/MD5 checksum: 173010 cba1a300d2d2add3c7c8720c287a7d10

ia64 architecture (Intel ia64)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_ia64.deb
Size/MD5 checksum: 331966 f316f4df7dfc6ea666288f7aa1ef955b
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_ia64.deb
Size/MD5 checksum: 256862 64f34b09f95832daa6de66f4e5a9be0b
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_ia64.deb
Size/MD5 checksum: 304328 6781371e63adcedd74db7a9435f77a64

m68k architecture (Motorola Mc680x0)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_m68k.deb
Size/MD5 checksum: 153950 310081b9ca119d2ce58c4cc779ea93c9
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_m68k.deb
Size/MD5 checksum: 182234 6cea01aa78d8ab57b7365bcf1977f26a
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_m68k.deb
Size/MD5 checksum: 284704 9fb2cbc636754bc116bb92136cd662c2

mips architecture (MIPS (Big Endian))

http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_mips.deb
Size/MD5 checksum: 180014 430dad7d762ab3d21ffdf5452d038a6f
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_mips.deb
Size/MD5 checksum: 296628 9dceaed8c2623ddb45a82b95f3c44480
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_mips.deb
Size/MD5 checksum: 210476 53c398ef40193a1fc5eede9f8b6d5e76

mipsel architecture (MIPS (Little Endian))

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_mipsel.deb
Size/MD5 checksum: 298032 f599e9ca6ecf52622ccfcb3ac6f20bf3
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_mipsel.deb
Size/MD5 checksum: 182216 1ea0f7044b6b65c56b0d7ebd23842705
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_mipsel.deb
Size/MD5 checksum: 212338 c8e0734ab8090a77c84d63b57086dc06

powerpc architecture (PowerPC)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_powerpc.deb
Size/MD5 checksum: 322336 e7ab6f5e567b2cc271f180cb16f70476
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_powerpc.deb
Size/MD5 checksum: 179370 b1f750e38e742030932ab076d4e62eac
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_powerpc.deb
Size/MD5 checksum: 212186 96860165bf4e4e796eeaaea7d8ea4e51

s390 architecture (IBM S/390)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_s390.deb
Size/MD5 checksum: 296358 e2d6fac489aaca1da105b103dcf3c84c
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_s390.deb
Size/MD5 checksum: 183506 d181a9d198e471ad6634c9b7b3fb6b18
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_s390.deb
Size/MD5 checksum: 216164 f480772db37197c2ed364b61185e90f6

sparc architecture (Sun SPARC/UltraSPARC)

http://security.debian.org/pool/updates/main/e/ettercap/ettercap-common_0.7.1-1sarge1_sparc.deb
Size/MD5 checksum: 289156 f3de4592a6ec6678c36499fe6ed59915
http://security.debian.org/pool/updates/main/e/ettercap/ettercap_0.7.1-1sarge1_sparc.deb
Size/MD5 checksum: 169062 880af57dc7c562dbd0a668878115b5f4
http://security.debian.org/pool/updates/main/e/ettercap/ettercap-gtk_0.7.1-1sarge1_sparc.deb
Size/MD5 checksum: 201582 08f5653424161a44534bb0c5346cab53

Debian Security Advisory DSA 750-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
July 11th, 2005 http://www.debian.org/security/faq

Package : dhcpcd
Vulnerability : out-of-bound memory access Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1848

"infamous42md" discovered that dhcpcd, a DHCP client for automatically configuring IPv4 networking, can be tricked into reading past the end of the supplied DHCP buffer which could lead to the daemon crashing.

The old stable distribution (woody) is not affected by this problem.

For the stable distribution (sarge) this problem has been fixed in version 1.3.22pl4-21sarge1.

For the unstable distribution (sid) this problem has been fixed in version 1.3.22pl4-22.

We recommend that you upgrade your dhcpcd package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1.dsc
Size/MD5 checksum: 592 b6f08de07c771dfa88ee4c2da213c8ef
http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1.diff.gz
Size/MD5 checksum: 44718 bde490fd50bea65991eff869db8cb947
http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4.orig.tar.gz
Size/MD5 checksum: 148273 59669a4110a2061f05c1c6fa6171bed2

Alpha architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_alpha.deb
Size/MD5 checksum: 70610 6bd6b7a893cee910bdb9cc146382f042

ARM architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_arm.deb
Size/MD5 checksum: 61322 066e0c5510629d03a56261c60e3ffeda

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_i386.deb
Size/MD5 checksum: 57394 1b376dc7cc9db55598fa231e848576e0

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_ia64.deb
Size/MD5 checksum: 78624 31cc80567333e8538ec516cdb3986e1d

HP Precision architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_hppa.deb
Size/MD5 checksum: 64312 f3558fc2bfdc41d27596f5c02aab4765

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_m68k.deb
Size/MD5 checksum: 55526 36c9b163754358f111d340b150d46f7a

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_mips.deb
Size/MD5 checksum: 62664 e624f951d018d069ef84757985f4c33e

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_mipsel.deb
Size/MD5 checksum: 62868 0c20a5f40098c62423c21ec50bb054de

PowerPC architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_powerpc.deb
Size/MD5 checksum: 59848 f2763a581130fec32fe15f37aabe0168

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_s390.deb
Size/MD5 checksum: 59668 1549b23d2e50886cbaa5848961c64745

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/d/dhcpcd/dhcpcd_1.3.22pl4-21sarge1_sparc.deb
Size/MD5 checksum: 61234 ff9565a968d5d57f8ece62fcadfeeca7

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 752-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
July 11th, 2005 http://www.debian.org/security/faq

Package : gzip
Vulnerability : several
Problem-Type : local (remote)
Debian-specific: no

CVE ID : CAN-2005-0988 CAN-2005-1228 Debian Bug : 305255

Two problems have been discovered in gzip, the GNU compression utility. The Common Vulnerabilities and Exposures project identifies the following problems.

CAN-2005-0988

Imran Ghory discovered a race condition in the permissions setting code in gzip. When decompressing a file in a directory an attacker has access to, gunzip could be tricked to set the file permissions to a different file the user has permissions to.

CAN-2005-1228

Ulf HÃ¤rnhammar discovered a path traversal vulnerability in gunzip. When gunzip is used with the -N option an attacker could this vulnerability to create files in an arbitrary directory with the permissions of the user.

For the oldstable distribution (woody) these problems have been fixed in version 1.3.2-3woody5.

For the stable distribution (sarge) these problems have been fixed in version 1.3.5-10.

For the unstable distribution (sid) these problems have been fixed in version 1.3.5-10.

We recommend that you upgrade your gzip package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5.dsc
Size/MD5 checksum: 577 b948bd1c9e50578a4a9109eed8090d20
http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5.diff.gz
Size/MD5 checksum: 7146 59a0d39e9d98109bc698c22d6803516f
http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2.orig.tar.gz
Size/MD5 checksum: 311011 57bff96b6b4bcbb060566bdbed29485d

Alpha architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_alpha.deb
Size/MD5 checksum: 76648 53d463707426c9f84d7d0cb7a6a1d742

ARM architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_arm.deb
Size/MD5 checksum: 68946 2610eba8ec765b72a82e8ff1c5e8efc1

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_i386.deb
Size/MD5 checksum: 62238 c323f08a1c1c30e10800f36eed4ec3d4

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_ia64.deb
Size/MD5 checksum: 87028 3c295aefd208e38f523d9719322f3bb4

HP Precision architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_hppa.deb
Size/MD5 checksum: 72788 41c9211dce59753260d83635e8212ce1

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_m68k.deb
Size/MD5 checksum: 61456 67ed89c721455f23c26735dc322c53a3

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_mips.deb
Size/MD5 checksum: 71896 3907341326822557d0e2c8ed87af77e5

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_mipsel.deb
Size/MD5 checksum: 71742 4ced896d0887f2a2a81c339ffff7544b

PowerPC architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_powerpc.deb
Size/MD5 checksum: 69550 06f8ffd3e7bb5709b0c1e5854bd0c1d8

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_s390.deb
Size/MD5 checksum: 66936 5ad01afb6c4c6f79785c18ea1d84d28e

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/g/gzip/gzip_1.3.2-3woody5_sparc.deb
Size/MD5 checksum: 70416 ec2acb3ddfa0a6086665136ee4056e6e

These files will probably be moved into the stable distribution on its next update.

Debian Security Advisory DSA 753-1 security@debian.org
http://www.debian.org/security/ Martin Schulze
July 12th, 2005 http://www.debian.org/security/faq

Package : gedit
Vulnerability : format string
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2005-1686

A format string vulnerability has been discovered in gedit, a light-weight text editor for GNOME, that may allow attackers to cause a denial of service (application crash) via a binary file with format string specifiers in the filename. Since gedit supports opening files via "http://" URLs (through GNOME vfs) and other schemes, this might be a remotely exploitable vulnerability.

The old stable distribution (woody) is not vulnerable to this problem.

For the stable distribution (sarge) this problem has been fixed in version 2.8.3-4sarge1.

For the unstable distribution (sid) this problem has been fixed in version 2.10.3-1.

We recommend that you upgrade your gedit package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Source archives:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1.dsc
Size/MD5 checksum: 1848 99c4beadcf902ee5857c7a3150f4d0ad http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1.diff.gz
Size/MD5 checksum: 54443 96de2c7d0d757d867f46d36490e0ee92 http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3.orig.tar.gz
Size/MD5 checksum: 4051445 cbbd5999141d6de932a0afdd55f1aa35

Architecture independent components:

http://security.debian.org/pool/updates/main/g/gedit/gedit-common_2.8.3-4sarge1_all.deb
Size/MD5 checksum: 1826070 d8519b91f1a8aeba351b1eca19c17712 http://security.debian.org/pool/updates/main/g/gedit/gedit-dev_2.8.3-4sarge1_all.deb
Size/MD5 checksum: 44346 01d42b323e7ffdd2a6aba454996a5a48

Alpha architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_alpha.deb
Size/MD5 checksum: 523608 1f183dc0960c8e9405953fb0946a1f8b

ARM architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_arm.deb
Size/MD5 checksum: 457332 476fc39b828ffcd2224f4ce65e71afcc

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_i386.deb
Size/MD5 checksum: 470122 7162c0ac1f1a7ccd2a315d5b4f01f5d2

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_ia64.deb
Size/MD5 checksum: 578896 85c408b6b41585ddb5d366a3d8ea8aea

HP Precision architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_hppa.deb
Size/MD5 checksum: 505246 2436f36b3b10b36e3af1688e420de02f

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_m68k.deb
Size/MD5 checksum: 459142 d475046c385f0ebd06912d89671f89ef

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_mips.deb
Size/MD5 checksum: 456504 4e3dbf6cf317c281cd5ddfd379bfa6c1

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_mipsel.deb
Size/MD5 checksum: 455104 c466bd51b370e0bfe4a0133e9f31e87c

PowerPC architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_powerpc.deb
Size/MD5 checksum: 473552 7f15b8f11abb2cb017bdc8a9069f1940

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_s390.deb
Size/MD5 checksum: 492994 d86d79670ebad24391213d3449db0dee

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/g/gedit/gedit_2.8.3-4sarge1_sparc.deb
Size/MD5 checksum: 462362 f24856c85dd4f7782a7377423392db70

These files will probably be moved into the stable distribution on its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

Fedora Core

Fedora Update Notification
FEDORA-2005-552
2005-07-12

Product : Fedora Core 3
Name : krb5
Version : 1.3.6
Release : 7
Summary : The Kerberos network authentication system.

Description :
Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartext passwords.

Update Information:

A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Fedora Core 3 contains checks within glibc that detect double-free flaws. Therefore, on Fedora Core 3, successful exploitation of this issue can only lead to a denial of service (KDC crash). The Common Vulnerabilities and Exposures project assigned the name CAN-2005-1689 to this issue.

Daniel Wachdorf discovered a single byte heap overflow in the krb5_unparse_name() function, part of krb5-libs. Successful exploitation of this flaw would lead to a denial of service (crash). To trigger this flaw remotely, an attacker would need to have control of a kerberos realm that shares a cross-realm key with the target, making exploitation of this flaw unlikely. (CAN-2005-1175).

Daniel Wachdorf also discovered that in error conditions that may occur in response to correctly-formatted client requests, the Kerberos 5 KDC may attempt to free uninitialized memory. This could allow a remote attacker to cause a denial of service (KDC crash) (CAN-2005-1174).

Gaël Delalleau discovered an information disclosure issue in the way some telnet clients handle messages from a server. An attacker could construct a malicious telnet server that collects information from the environment of any victim who connects to it using the Kerberos-aware telnet client (CAN-2005-0488).

The rcp protocol allows a server to instruct a client to write to arbitrary files outside of the current directory. This could potentially cause a security issue if a user uses the Kerberos-aware rcp to copy files from a malicious server (CAN-2004-0175).

Wed Jun 29 2005 Nalin Dahyabhai <nalin@redhat.com> 1.3.6-7
- fix telnet client environment variable disclosure the same way NetKit's telnet client did (CAN-2005-0488) (#159305)
- keep apps which call krb5_principal_compare() or krb5_realm_compare() with malformed or NULL principal structures from crashing outright (Thomas Biege) (#161475)
Tue Jun 28 2005 Nalin Dahyabhai <nalin@redhat.com>
- apply fixes from draft of MIT-KRB5-SA-2005-002 (CAN-2005-1174,CAN-2005-1175) (#157104)
- apply fixes from draft of MIT-KRB5-SA-2005-003 (CAN-2005-1689) (#159755)
Fri Jun 24 2005 Nalin Dahyabhai <nalin@redhat.com> 1.3.6-6
- fix double-close in keytab handling
- add port of fixes for CAN-2004-0175 to krb5-aware rcp (#151612)

This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

bbda806f94b4d1833d9fd884844f43da SRPMS/krb5-1.3.6-7.src.rpm
1d9290dc2b92c62cebdd46ff27ed26f4 x86_64/krb5-devel-1.3.6-7.x86_64.rpm
1ee1d026aabc242677f91dccdf94558b x86_64/krb5-libs-1.3.6-7.x86_64.rpm
a31aad264eeecd22a73e5dc1ddc9ed77 x86_64/krb5-server-1.3.6-7.x86_64.rpm
87f60cb9bf65e7aeaa766ae33ff6a83c x86_64/krb5-workstation-1.3.6-7.x86_64.rpm
1a8bc195545e1bd5d9de79efae04fb38 x86_64/debug/krb5-debuginfo-1.3.6-7.x86_64.rpm
efa02df806c2730d4aadf47ea9502dfc x86_64/krb5-libs-1.3.6-7.i386.rpm
6c8f97b7bd66f752f60ee3e974613424 i386/krb5-devel-1.3.6-7.i386.rpm
efa02df806c2730d4aadf47ea9502dfc i386/krb5-libs-1.3.6-7.i386.rpm
681ebd995cce6cf33adcafc6c8d2f1f7 i386/krb5-server-1.3.6-7.i386.rpm
2f999eff92ca4885ba38dfc6b00286c9 i386/krb5-workstation-1.3.6-7.i386.rpm
a32f85ca5a135626840d0034f407b39d i386/debug/krb5-debuginfo-1.3.6-7.i386.rpm

This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command.

Fedora Update Notification
FEDORA-2005-553
2005-07-12

Product : Fedora Core 4
Name : krb5
Version : 1.4.1
Release : 5
Summary : The Kerberos network authentication system.

Description :
Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartext passwords.

Update Information:

A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Fedora Core 4 contains checks within glibc that detect double-free flaws. Therefore, on Fedora Core 4, successful exploitation of this issue can only lead to a denial of service (KDC crash). The Common Vulnerabilities and Exposures project assigned the name CAN-2005-1689 to this issue.

Wed Jun 29 2005 Nalin Dahyabhai <nalin@redhat.com> 1.4.1-5
- fix telnet client environment variable disclosure the same way NetKit's telnet client did (CAN-2005-0488) (#159305)
- keep apps which call krb5_principal_compare() or krb5_realm_compare() with malformed or NULL principal structures from crashing outright (Thomas Biege) (#161475)
Tue Jun 28 2005 Nalin Dahyabhai <nalin@redhat.com>
- apply fixes from draft of MIT-KRB5-SA-2005-002 (CAN-2005-1174,CAN-2005-1175) (#157104)
- apply fixes from draft of MIT-KRB5-SA-2005-003 (CAN-2005-1689) (#159755)
Fri Jun 24 2005 Nalin Dahyabhai <nalin@redhat.com> 1.4.1-4
- fix double-close in keytab handling
- add port of fixes for CAN-2004-0175 to krb5-aware rcp (#151612)
Fri May 13 2005 Nalin Dahyabhai <nalin@redhat.com> 1.4.1-3
- prevent spurious EBADF in krshd when stdin is closed by the client while the command is running (#151111)
Fri May 13 2005 Martin Stransky <stransky@redhat.com> 1.4.1-2
- add deadlock patch, removed old patch
Fri May 6 2005 Nalin Dahyabhai <nalin@redhat.com> 1.4.1-1
- update to 1.4.1, incorporating fixes for CAN-2005-0468 and CAN-2005-0469
- when starting the KDC or kadmind, if KRB5REALM is set via the /etc/sysconfig file for the service, pass it as an argument for the -r flag

This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

e04410b41cb3e1ca5c5de361932d4f43 SRPMS/krb5-1.4.1-5.src.rpm
84ec58abea3e00d6ce09d9fa17bdec44 ppc/krb5-devel-1.4.1-5.ppc.rpm
3b036b4aebe92579c7b0553c6a943c9c ppc/krb5-libs-1.4.1-5.ppc.rpm
4ef4aae46285b2cc7ec2123175dc65d3 ppc/krb5-server-1.4.1-5.ppc.rpm
236c23aa99713ffbcd375be4418a629c ppc/krb5-workstation-1.4.1-5.ppc.rpm
72a70fe522d9945d62acff3b6d62e9c4 ppc/debug/krb5-debuginfo-1.4.1-5.ppc.rpm
819d79e1b3fbd06de75cae397f00c80e ppc/krb5-libs-1.4.1-5.ppc64.rpm
41a16309bae5f43caf50a9c34493c2a9 x86_64/krb5-devel-1.4.1-5.x86_64.rpm
5a733f5e5d35045e4efd44106d36fb5f x86_64/krb5-libs-1.4.1-5.x86_64.rpm
5da17e3e77e3a73ddbb9d68516cf084e x86_64/krb5-server-1.4.1-5.x86_64.rpm
53738638e418c3aba25c0a344e67d0d2 x86_64/krb5-workstation-1.4.1-5.x86_64.rpm
4f7310c5758bd32432db538f5008577d x86_64/debug/krb5-debuginfo-1.4.1-5.x86_64.rpm
e35d87893a9b3b22eb15246a4cc88046 x86_64/krb5-libs-1.4.1-5.i386.rpm
2a5f503e74207349f137d1aaf039879c i386/krb5-devel-1.4.1-5.i386.rpm
e35d87893a9b3b22eb15246a4cc88046 i386/krb5-libs-1.4.1-5.i386.rpm
c6578a1a24fbaf3da0b7724445fdb675 i386/krb5-server-1.4.1-5.i386.rpm
0317f834d5795dbaf9f531ef747d181b i386/krb5-workstation-1.4.1-5.i386.rpm
ec1e81cad1d4365febcff9df32be2375 i386/debug/krb5-debuginfo-1.4.1-5.i386.rpm

This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command.

Fedora Legacy

Fedora Legacy Update Advisory

Synopsis: Updated openssh packages fix a security issue
Advisory ID: FLSA:123014
Issue date: 2005-07-11
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2004-0175

1. Topic:

Updated openssh packages that fix a potential security vulnerability are now available.

OpenSSH is OpenBSD's SSH (Secure SHell) protocol implementation. SSH replaces rlogin and rsh, and provides secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forwarded over a secure channel. Public key authentication can be used for "passwordless" access to servers.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386
Fedora Core 2 - i386

3. Problem description:

The scp protocol allows a server to instruct a client to write to arbitrary files outside of the current directory. This could potentially cause a security issue if a user uses scp to copy files from a malicious server. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2004-0175 to this issue.

These updated packages also correct the following bug: On systems where direct ssh access for the root user was disabled by configuration (setting "PermitRootLogin no"), attempts to guess the root password could be judged as sucessful or unsucessful by observing a delay.

Users of openssh should upgrade to these updated packages, which contain backported patches to resolve these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory only contains the desired RPMs.

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. This assumes that you have yum or apt-get configured for obtaining Fedora Legacy content. Please visit http://www.fedoralegacy.org/docs for directions on how to configure yum and apt-get.

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=123014

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/openssh-3.1p1-14.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/openssh-3.1p1-14.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/openssh-askpass-3.1p1-14.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/openssh-askpass-gnome-3.1p1-14.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/openssh-clients-3.1p1-14.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/openssh-server-3.1p1-14.2.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/openssh-3.5p1-11.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/openssh-3.5p1-11.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/openssh-askpass-3.5p1-11.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/openssh-askpass-gnome-3.5p1-11.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/openssh-clients-3.5p1-11.2.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/openssh-server-3.5p1-11.2.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/openssh-3.6.1p2-19.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/openssh-3.6.1p2-19.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/openssh-askpass-3.6.1p2-19.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/openssh-askpass-gnome-3.6.1p2-19.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/openssh-clients-3.6.1p2-19.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/openssh-server-3.6.1p2-19.2.legacy.i386.rpm

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/openssh-3.6.1p2-34.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/2/updates/i386/openssh-3.6.1p2-34.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/2/updates/i386/openssh-askpass-3.6.1p2-34.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/2/updates/i386/openssh-askpass-gnome-3.6.1p2-34.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/2/updates/i386/openssh-clients-3.6.1p2-34.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/2/updates/i386/openssh-server-3.6.1p2-34.2.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

8bd4e4daf209249160c1d7f170c63b0d0f43bb54 redhat/7.3/updates/i386/openssh-3.1p1-14.2.legacy.i386.rpm
d24556ae238b448fe37d0ce1afa032a743b7339b redhat/7.3/updates/i386/openssh-askpass-3.1p1-14.2.legacy.i386.rpm
d7034dde021d188bbfff57b9287ea0f8dea162b0 redhat/7.3/updates/i386/openssh-askpass-gnome-3.1p1-14.2.legacy.i386.rpm
b24fa1844c81632719b0ee10c5aba27e72b1ef11 redhat/7.3/updates/i386/openssh-clients-3.1p1-14.2.legacy.i386.rpm
7567b5a4c4f49ee9d247b30ae35741d3e0885f59 redhat/7.3/updates/i386/openssh-server-3.1p1-14.2.legacy.i386.rpm
93591a2b6fd1d4be2796be09e108ff301bab9baf redhat/7.3/updates/SRPMS/openssh-3.1p1-14.2.legacy.src.rpm
35820cc8261fffa5e1bbce4b22abb6075966418a redhat/9/updates/i386/openssh-3.5p1-11.2.legacy.i386.rpm
b006d5c937b482b30835d4a5283683f039d2c963 redhat/9/updates/i386/openssh-askpass-3.5p1-11.2.legacy.i386.rpm
75f2303826649634880245fa13935c74bf76b8df redhat/9/updates/i386/openssh-askpass-gnome-3.5p1-11.2.legacy.i386.rpm
598d2940ce65b82de88a7e563b0450752d679d50 redhat/9/updates/i386/openssh-clients-3.5p1-11.2.legacy.i386.rpm
d23f5da5bae703ee28a1de84999ce8fb4945ba20 redhat/9/updates/i386/openssh-server-3.5p1-11.2.legacy.i386.rpm
67ac403b9057d01c5bbfc0ac0d7334955086f080 redhat/9/updates/SRPMS/openssh-3.5p1-11.2.legacy.src.rpm
09ba397b8a3cdee453ab44af50470f392b1a1d9a fedora/1/updates/i386/openssh-3.6.1p2-19.2.legacy.i386.rpm
a59fbcbe89778e212b4ccaa397f298ad35291020 fedora/1/updates/i386/openssh-askpass-3.6.1p2-19.2.legacy.i386.rpm
d026e18b3d16d4b05d204de3aa1de9cf5e9ae756 fedora/1/updates/i386/openssh-askpass-gnome-3.6.1p2-19.2.legacy.i386.rpm
70ebb446b1cc50bb2e242af4ec04cee53aa71713 fedora/1/updates/i386/openssh-clients-3.6.1p2-19.2.legacy.i386.rpm
1af3ab8e0b843f6bf72c9061f3399ce09f674c98 fedora/1/updates/i386/openssh-server-3.6.1p2-19.2.legacy.i386.rpm
cee2cbca4b9fde1534bf76c9cb46d1ddd7a30fc7 fedora/1/updates/SRPMS/openssh-3.6.1p2-19.2.legacy.src.rpm
42a086b1508853dd44be7d88e562613764c359cb fedora/2/updates/i386/openssh-3.6.1p2-34.2.legacy.i386.rpm
f39c8fc529c50d0a67eedb89abb04015970a5ec2 fedora/2/updates/i386/openssh-askpass-3.6.1p2-34.2.legacy.i386.rpm
30c087e45ae7a3c6abcff83d8608d1c8d881458c fedora/2/updates/i386/openssh-askpass-gnome-3.6.1p2-34.2.legacy.i386.rpm
53851fd533168707f6f250d66506dc51769c9348 fedora/2/updates/i386/openssh-clients-3.6.1p2-34.2.legacy.i386.rpm
833ce8cf4f100a2b5b48aa77cb9d67fecba93366 fedora/2/updates/i386/openssh-server-3.6.1p2-34.2.legacy.i386.rpm
c7584c616f01c21264e912e77892ebc8bbd8be29 fedora/2/updates/SRPMS/openssh-3.6.1p2-34.2.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0175

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated dhcp package fixes security issue
Advisory ID: FLSA:152835
Issue date: 2005-07-10
Product: Red Hat Linux
Keywords: Bugfix
CVE Names: CAN-2004-1006

1. Topic:

Updated dhcp packages that fix a security issue are now available.

dhcp is a DHCP (Dynamic Host Configuration Protocol) server and relay agent.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386

3. Problem description:

"infamous41md" noticed that the log functions in dhcp 2.x pass parameters to a function that uses format strings. One use seems to be exploitable in connection with a malicious DNS server. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2004-1006 to this issue.

Users of dhcp are advised to upgrade to this errata package, which contains backported patches correcting this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152835

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/dhcp-2.0pl5-8.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/dhcp-2.0pl5-8.2.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

e134b4118edc63c20b1227d3b199edf55e9c6411 redhat/7.3/updates/i386/dhcp-2.0pl5-8.2.legacy.i386.rpm
873fe4bb121b857436cc044cf379597f78bc0e4b redhat/7.3/updates/SRPMS/dhcp-2.0pl5-8.2.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1006

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated telnet packages fix security issues
Advisory ID: FLSA:152583
Issue date: 2005-07-11
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2005-0468 CAN-2005-0469

1. Topic:

Updated telnet packages that fix two buffer overflow vulnerabilities are now available.

The telnet package provides a command line telnet client. The telnetserver package includes a telnet daemon, telnetd, that supports remote login to the host machine.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386

3. Problem description:

Two buffer overflow flaws were discovered in the way the telnet client handles messages from a server. An attacker may be able to execute arbitrary code on a victim's machine if the victim can be tricked into connecting to a malicious telnet server. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the names CAN-2005-0468 and CAN-2005-0469 to these issues.

Users of telnet should upgrade to this updated package, which contains backported patches to correct these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152583

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/telnet-0.17-20.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/telnet-0.17-20.1.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/telnet-server-0.17-20.1.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/telnet-0.17-25.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/telnet-0.17-25.1.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/telnet-server-0.17-25.1.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/telnet-0.17-26.2.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/telnet-0.17-26.2.1.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/telnet-server-0.17-26.2.1.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

eb72994dc7fa63672d461f1b80189e450b7dc7ab redhat/7.3/updates/i386/telnet-0.17-20.1.legacy.i386.rpm
ae27914b4039594609d14d209c466f78b09649d4 redhat/7.3/updates/i386/telnet-server-0.17-20.1.legacy.i386.rpm
3e426f9573240179fb31d5407ef9a25b82b836ec redhat/7.3/updates/SRPMS/telnet-0.17-20.1.legacy.src.rpm
114ead8f946fd9f50f88ed017f03a2302647ebd1 redhat/9/updates/i386/telnet-0.17-25.1.legacy.i386.rpm
e5c31fdc2b08cd4a5614101be249a4888d87ded0 redhat/9/updates/i386/telnet-server-0.17-25.1.legacy.i386.rpm
acf5dc1ab3bbe1d704963eefe79fb66521a012da redhat/9/updates/SRPMS/telnet-0.17-25.1.legacy.src.rpm
3298baa93d57f2caa2110bc83ae45731fc8c41e7 fedora/1/updates/i386/telnet-0.17-26.2.1.legacy.i386.rpm
208769de63330b46785dbe0b23502c37307dfa65 fedora/1/updates/i386/telnet-server-0.17-26.2.1.legacy.i386.rpm
58836e7c8741f08c5da712f6dc7cbd3d7a5581e8 fedora/1/updates/SRPMS/telnet-0.17-26.2.1.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0468
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0469

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated mailman package fixes security issue
Advisory ID: FLSA:152895
Issue date: 2005-07-10
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2005-0202

1. Topic:

Updated mailman packages that correct a mailman security issue are now available.

Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386

3. Problem description:

A flaw in the true_path function of Mailman was discovered. A remote attacker who is a member of a private mailman list could use a carefully crafted URL and gain access to arbitrary files on the server. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-0202 to this issue.

Note: Mailman installations running on Apache 2.0-based servers are not vulnerable to this issue.

Users of mailman should update to these erratum packages that contain a patch and are not vulnerable to this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152895

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/mailman-2.0.13-7.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/mailman-2.0.13-7.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/mailman-2.1.1-8.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/mailman-2.1.1-8.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/mailman-2.1.5-8.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/mailman-2.1.5-8.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

c6ee495537e89fed3deb68810404c4786200861c redhat/7.3/updates/SRPMS/mailman-2.0.13-7.legacy.src.rpm
defb763778aab1f04de4f76164afe8d71611e99a redhat/7.3/updates/i386/mailman-2.0.13-7.legacy.i386.rpm
25326c2d67924ff669ec8577e1f3da8090c7a94c redhat/9/updates/SRPMS/mailman-2.1.1-8.legacy.src.rpm
df9db43206a4d4394d2ca9a0ebf473b4520df5ec redhat/9/updates/i386/mailman-2.1.1-8.legacy.i386.rpm
ae868e1bf44d1e3fa94b00e91b7df385643daa37 fedora/1/updates/SRPMS/mailman-2.1.5-8.legacy.src.rpm
556f7cd0bf69c4d72c6a5630523d0609f9b85aba fedora/1/updates/i386/mailman-2.1.5-8.legacy.i386.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0202

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated gftp package fixes security issue
Advisory ID: FLSA:152908
Issue date: 2005-07-10
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2005-0372

1. Topic:

Updated gftp packages that fix a security issue are now available.

gFTP is a multi-threaded FTP client for the X Window System.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386

3. Problem description:

A directory traversal vulnerability was discovered in gftp. A remote malicious FTP server could read, overwrite or create arbitrary files via .. (dot dot) sequences in the filenames returned from a LIST command. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-0372 to this issue.

Users of gftp are advised to upgrade to these errata packages, which contain a backported patch correcting this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=152908

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/gftp-2.0.11-2.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/gftp-2.0.11-2.2.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/gftp-2.0.14-2.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/gftp-2.0.14-2.2.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/gftp-2.0.17-0.FC1.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/gftp-2.0.17-0.FC1.1.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

49e794d3f8b144e55560c79960cedc487d737bb6 redhat/7.3/updates/i386/gftp-2.0.11-2.2.legacy.i386.rpm
428080cb2efba4e5ad3df31150fc244f13f6b02c redhat/7.3/updates/SRPMS/gftp-2.0.11-2.2.legacy.src.rpm
3c1812e77892b5a00167a3894983398dc467e262 redhat/9/updates/i386/gftp-2.0.14-2.2.legacy.i386.rpm
ddf0ebe73fa8410ac213f6141ca97b3b75e34d5f redhat/9/updates/SRPMS/gftp-2.0.14-2.2.legacy.src.rpm
93823674913c4796c06d8f4e37895e3573ea17fe fedora/1/updates/i386/gftp-2.0.17-0.FC1.1.legacy.i386.rpm
6d5276c8e90ebf111e907e04602fac5e45624737 fedora/1/updates/SRPMS/gftp-2.0.17-0.FC1.1.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0372

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated sharutils package fixes security issue
Advisory ID: FLSA:154991
Issue date: 2005-07-10
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2005-0990

1. Topic:

Updated packages for sharutils which fix a security vulnerability are now available.

The sharutils package contains a set of tools for encoding and decoding packages of files in binary or text format.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386
Fedora Core 2 - i386

3. Problem description:

A bug was found in the way unshar creates temporary files. A local user could use symlinks to overwrite arbitrary files the victim running unshar has write access to. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-0990 to this issue.

All users of sharutils should upgrade to these packages, which resolve this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=154991

6. RPMs required:

Red Hat Linux 7.3:

SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/sharutils-4.2.1-12.8.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/sharutils-4.2.1-12.8.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/sharutils-4.2.1-16.9.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/sharutils-4.2.1-16.9.2.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/sharutils-4.2.1-17.3.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/sharutils-4.2.1-17.3.legacy.i386.rpm

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/sharutils-4.2.1-18.3.FC2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/2/updates/i386/sharutils-4.2.1-18.3.FC2.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

b7bc64c53c9352cd872da7d6b05087a403eeb342 redhat/7.3/updates/i386/sharutils-4.2.1-12.8.legacy.i386.rpm
ecd2c836c88cd4deee0f421695cf69c59dbd6895 redhat/7.3/updates/SRPMS/sharutils-4.2.1-12.8.legacy.src.rpm
00132d8850d0db03c6adae00ecece7c99de20223 redhat/9/updates/i386/sharutils-4.2.1-16.9.2.legacy.i386.rpm
715cf1cc13d0a99c379466299d67a0028bbc29c8 redhat/9/updates/SRPMS/sharutils-4.2.1-16.9.2.legacy.src.rpm
000778eae9c2f079a98f5579669eecf841fba6c7 fedora/1/updates/i386/sharutils-4.2.1-17.3.legacy.i386.rpm
3e2f5b5babcd978e4d1ef96af504f8ee6eb50fdc fedora/1/updates/SRPMS/sharutils-4.2.1-17.3.legacy.src.rpm
1211acde10ecca361e1ac19e72a82fd6dcda10f4 fedora/2/updates/i386/sharutils-4.2.1-18.3.FC2.legacy.i386.rpm
08292d722a234c43a4fd9f0c24c33e36da8a35ed fedora/2/updates/SRPMS/sharutils-4.2.1-18.3.FC2.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0990

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated php packages fix security issues
Advisory ID: FLSA:155505
Issue date: 2005-07-10
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CAN-2005-0524 CAN-2005-0525 CAN-2005-1042 CAN-2005-1043

1. Topic:

Updated php packages that fix various security issues are now available.

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386
Fedora Core 2 - i386

3. Problem description:

A bug was found in the way PHP processes IFF and JPEG images. It is possible to cause PHP to consume CPU resources for a short period of time by supplying a carefully crafted IFF or JPEG image. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the names CAN-2005-0524 and CAN-2005-0525 to these issues.

A buffer overflow bug was also found in the way PHP processes EXIF image headers. It is possible for an attacker to construct an image file in such a way that it could execute arbitrary instructions when processed by PHP. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-1042 to this issue.

A denial of service bug was found in the way PHP processes EXIF image headers. It is possible for an attacker to cause PHP to enter an infinite loop for a short period of time by supplying a carefully crafted image file to PHP for processing. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CAN-2005-1043 to this issue.

The security fixes to the "unserializer" code in the previous release introduced some performance issues. A bug fix for that issue is also included in this update.

Users of PHP should upgrade to these updated packages, which contain backported fixes for these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=155505

6. RPMs required:

Red Hat Linux 7.3:

SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/php-4.1.2-7.3.17.legacy.src.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/php-4.2.2-17.14.legacy.src.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/php-4.3.11-1.fc1.1.legacy.src.rpm

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/php-4.3.11-1.fc1.1.legacy.src.rpm

7. Verification:

SHA1 sum Package Name

422f8a972c62b1aa1d79e9f96cc39446852eb589 redhat/7.3/updates/i386/php-4.1.2-7.3.17.legacy.i386.rpm
7c6d48ebbfb96004baee8515ae9517dcf500f43c redhat/7.3/updates/i386/php-devel-4.1.2-7.3.17.legacy.i386.rpm
8f1837ee66212ede899189e09edf25d903a7e133 redhat/7.3/updates/i386/php-imap-4.1.2-7.3.17.legacy.i386.rpm
79d4f45a887ce9df8232911f5aab6bf5bd77369d redhat/7.3/updates/i386/php-ldap-4.1.2-7.3.17.legacy.i386.rpm
63edb9b27730ad5c782484cf4757905140ece1c2 redhat/7.3/updates/i386/php-manual-4.1.2-7.3.17.legacy.i386.rpm
39b40cb4bae1374335cf7f82fbfa02501a4ed630 redhat/7.3/updates/i386/php-mysql-4.1.2-7.3.17.legacy.i386.rpm
51d4baf10b3bc132ba9205aa6cd35615041c33bd redhat/7.3/updates/i386/php-odbc-4.1.2-7.3.17.legacy.i386.rpm
42a557e7f68f290a6cf21de4c2ad1f7fe97cf763 redhat/7.3/updates/i386/php-pgsql-4.1.2-7.3.17.legacy.i386.rpm
5753d915ad5d32c14cbbaea33a7f35a3b5b908d3 redhat/7.3/updates/i386/php-snmp-4.1.2-7.3.17.legacy.i386.rpm
576f29104b946e3773d4c7b77de5b80a942a0678 redhat/7.3/updates/SRPMS/php-4.1.2-7.3.17.legacy.src.rpm
bd793f717cca20745ab9c67cb6a7b4bcebe46d93 redhat/9/updates/i386/php-4.2.2-17.14.legacy.i386.rpm
8df50f63c5d3525a4359a72587c6b902d8a3325f redhat/9/updates/i386/php-devel-4.2.2-17.14.legacy.i386.rpm
665060794635ded7a76eaccb46cd09ffd04900ea redhat/9/updates/i386/php-imap-4.2.2-17.14.legacy.i386.rpm
8b34f184aba7260a8eac2708e12e906c877c10cd redhat/9/updates/i386/php-ldap-4.2.2-17.14.legacy.i386.rpm
1450f499aeac4db7d0d8c258b72d2f4c31747012 redhat/9/updates/i386/php-manual-4.2.2-17.14.legacy.i386.rpm
37cb28e9531af331954903f6b8df8509aa962a5c redhat/9/updates/i386/php-mysql-4.2.2-17.14.legacy.i386.rpm
aa0378307ef06cd7f3464e59f4153d11d1d372f5 redhat/9/updates/i386/php-odbc-4.2.2-17.14.legacy.i386.rpm
00b4e55c27460abaa6d02019d7b40a73d5bdd913 redhat/9/updates/i386/php-pgsql-4.2.2-17.14.legacy.i386.rpm
8b9cf1cdafdf8f1afa9587c1f180d685632c1c65 redhat/9/updates/i386/php-snmp-4.2.2-17.14.legacy.i386.rpm
7bf7cf164de61276adf952694ee7c7d2fb86ea2e redhat/9/updates/SRPMS/php-4.2.2-17.14.legacy.src.rpm
ca0fa574e713f27e91548a2e3e4dc2e8b087ff47 fedora/1/updates/i386/php-4.3.11-1.fc1.1.legacy.i386.rpm
53c419397f8f3f7625503afd8ab1a8ca0d65a197 fedora/1/updates/i386/php-devel-4.3.11-1.fc1.1.legacy.i386.rpm
72d65111cbaf7fb56ed879ee4278602e84868540 fedora/1/updates/i386/php-domxml-4.3.11-1.fc1.1.legacy.i386.rpm
fe8216746096b3a6070d43659944c158df23d1a9 fedora/1/updates/i386/php-imap-4.3.11-1.fc1.1.legacy.i386.rpm
fb6f8fb5dd77f0dc5f58b85f26e25b5520366ca6 fedora/1/updates/i386/php-ldap-4.3.11-1.fc1.1.legacy.i386.rpm
d36a8ac545d151a20817a95d441d221c36edcb74 fedora/1/updates/i386/php-mbstring-4.3.11-1.fc1.1.legacy.i386.rpm
f4d95a5cdb7fcbcdb1391a089a1ca65edf8e0e03 fedora/1/updates/i386/php-mysql-4.3.11-1.fc1.1.legacy.i386.rpm
a2a0944dfd1362ad186ab8b345d7e7ab32911a7a fedora/1/updates/i386/php-odbc-4.3.11-1.fc1.1.legacy.i386.rpm
4d4546fecefc879004ebbfc596cd109f4d144ba7 fedora/1/updates/i386/php-pgsql-4.3.11-1.fc1.1.legacy.i386.rpm
5d968e87611c5dce727a492f149b3583e1588e30 fedora/1/updates/i386/php-snmp-4.3.11-1.fc1.1.legacy.i386.rpm
22a069541240a9ab4f9fe62887cd7ea45d961238 fedora/1/updates/i386/php-xmlrpc-4.3.11-1.fc1.1.legacy.i386.rpm
08203f404d05ab58128b8b12c8b5a8e5ac53b34e fedora/1/updates/SRPMS/php-4.3.11-1.fc1.1.legacy.src.rpm
b9f6accb0cdf84270147e80ec27e262936f5d125 fedora/2/updates/i386/php-4.3.11-1.fc2.2.legacy.i386.rpm
e4cedd230b3727daaa064222e5402a18a89b4aca fedora/2/updates/i386/php-devel-4.3.11-1.fc2.2.legacy.i386.rpm
fdab268ba8d6eb59309f324a929fae08e1bb12b1 fedora/2/updates/i386/php-domxml-4.3.11-1.fc2.2.legacy.i386.rpm
960e1a97b673978778415aa2f2fcbf9a700b83da fedora/2/updates/i386/php-imap-4.3.11-1.fc2.2.legacy.i386.rpm
e6a04924bbd016fdb470a8448beda47ee2b75e77 fedora/2/updates/i386/php-ldap-4.3.11-1.fc2.2.legacy.i386.rpm
019161cfaaa180f0fcb98a4d48a296d99ecca5b3 fedora/2/updates/i386/php-mbstring-4.3.11-1.fc2.2.legacy.i386.rpm
9252cfa6c6485a0b803e9483e1f43eb2624b1826 fedora/2/updates/i386/php-mysql-4.3.11-1.fc2.2.legacy.i386.rpm
48c8743b590cc176cc3497f2c9225e402ec03b67 fedora/2/updates/i386/php-odbc-4.3.11-1.fc2.2.legacy.i386.rpm
814fcfe1d33f6eea65b5bcd88ba6e54e2da3062a fedora/2/updates/i386/php-pear-4.3.11-1.fc2.2.legacy.i386.rpm
d20c34df03bf67028f9ded420310b75a66c1db1d fedora/2/updates/i386/php-pgsql-4.3.11-1.fc2.2.legacy.i386.rpm
d84ff3766026e802f9a815b8c599c19bfbeaaefa fedora/2/updates/i386/php-snmp-4.3.11-1.fc2.2.legacy.i386.rpm
7792c85444679beab3a0bdc56e2d4666dcb9c963 fedora/2/updates/i386/php-xmlrpc-4.3.11-1.fc2.2.legacy.i386.rpm
0772ba5bc711edf55fcfe34b368881cc5ec09ed0 fedora/2/updates/SRPMS/php-4.3.11-1.fc2.2.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0524
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0525
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1042
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1043

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Gentoo Linux

Gentoo Linux Security Advisory GLSA 200507-07

http://security.gentoo.org/

Severity: High
Title: phpWebSite: Multiple vulnerabilities
Date: July 10, 2005
Bugs: #97461
ID: 200507-07

Synopsis

phpWebSite is vulnerable to the remote execution of arbitrary PHP script code and to other, yet undisclosed, vulnerabilities.

Background

phpWebSite is a content management system written in PHP.

Affected packages


     Package              /   Vulnerable   /                Unaffected

  1  www-apps/phpwebsite      < 0.10.1-r1                 >= 0.10.1-r1

Description

phpWebSite fails to sanitize input sent to the XML-RPC server using the "POST" method. Other unspecified vulnerabilities have been discovered by Diabolic Crab of Hackers Center.

Impact

A remote attacker could exploit the XML-RPC vulnerability to execute arbitrary PHP script code by sending specially crafted XML data to phpWebSite. The undisclosed vulnerabilities do have an unknown impact.

Workaround

There is no known workaround at this time.

Resolution

All phpWebSite users should upgrade to the latest available version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=www-app/phpwebsite-0.10.1-r1"

References

[ 1 ] CAN-2005-1921

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1921

[ 2 ] phpWebSite announcement

http://phpwebsite.appstate.edu/index.php?module=announce&ANN_user_op=view&ANN_id=989

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200507-07.xml

Concerns?

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Linux Security Advisory GLSA 200507-08

http://security.gentoo.org/

Severity: High
Title: phpGroupWare, eGroupWare: PHP script injection vulnerability
Date: July 10, 2005
Bugs: #97460, #97651
ID: 200507-08

Synopsis

phpGroupWare and eGroupWare include an XML-RPC implementation which allows remote attackers to execute arbitrary PHP script commands.

Background

phpGroupWare and eGroupWare are web based collaboration software suites.

Affected packages

Package / Vulnerable / Unaffected

1 www-apps/phpgroupware < 0.9.16.006 >= 0.9.16.006 2 www-apps/egroupware < 1.0.0.008 >= 1.0.0.008 ------------------------------------------------------------------- 2 affected packages on all of their supported architectures.

Description

The XML-RPC implementations of phpGroupWare and eGroupWare fail to sanitize input sent to the XML-RPC server using the "POST" method.

Impact

A remote attacker could exploit the XML-RPC vulnerability to execute arbitrary PHP script code by sending specially crafted XML data to the XML-RPC servers of phpGroupWare or eGroupWare.

Workaround

There are no known workarounds at this time.

Resolution

All phpGroupWare users should upgrade to the latest available version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=www-app/phpgroupware-0.9.16.006"

All eGroupWare users should upgrade to the latest available version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=www-app/egroupware-1.0.0.008"

References

[ 1 ] CAN-2005-1921

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1921

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200507-08.xml

Concerns?

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Linux Security Advisory GLSA 200507-09

http://security.gentoo.org/

Severity: Normal
Title: Adobe Acrobat Reader: Buffer overflow vulnerability
Date: July 11, 2005
Bugs: #98101
ID: 200507-09

Synopsis

Adobe Acrobat Reader is vulnerable to a buffer overflow that could lead to remote execution of arbitrary code.

Background

Adobe Acrobat Reader is a utility used to view PDF files.

Affected packages


     Package            /  Vulnerable  /                    Unaffected

  1  app-text/acroread       <= 5.10                            >= 7.0

Description

A buffer overflow has been discovered in the UnixAppOpenFilePerform() function, which is called when Adobe Acrobat Reader tries to open a file with the "Filespec" tag.

Impact

By enticing a user to open a specially crafted PDF document, a remote attacker could exploit this vulnerability to execute arbitrary code.

Workaround

There is no known workaround at this time.

Resolution

Since Adobe will most likely not update the 5.0 series of Adobe Acrobat Reader for Linux, all users should upgrade to the latest available version of the 7.0 series:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-text/acroread-7.0"

References

[ 1 ] CAN-2005-1625

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1625

[ 2 ] iDEFENSE Security Advisory

http://www.idefense.com/application/poi/display?id=279&type=vulnerabilities&flashstatus=true

[ 3 ] Adobe Security Advisory

http://www.adobe.com/support/techdocs/329083.html

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200507-09.xml

Concerns?

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Linux Security Advisory GLSA 200507-10

http://security.gentoo.org/

Severity: High
Title: Ruby: Arbitrary command execution through XML-RPC
Date: July 11, 2005
Bugs: #96784
ID: 200507-10

Synopsis

A vulnerability in XMLRPC.iPIMethods allows remote attackers to execute arbitrary commands.

Background

Ruby is an interpreted scripting language for quick and easy object-oriented programming. XML-RPC is a remote procedure call protocol encoded in XML.

Affected packages


     Package        /  Vulnerable  /                        Unaffected

  1  dev-lang/ruby     < 1.8.2-r2                          >= 1.8.2-r2

Description

Nobuhiro IMAI reported that an invalid default value in "utils.rb" causes the security protections of the XML-RPC server to fail.

Impact

A remote attacker could exploit this vulnerability to execute arbitrary commands.

Workaround

There is no known workaround at this time.

Resolution

All Ruby users should upgrade to the latest available version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=dev-lang/ruby-1.8.2-r2"

References

[ 1 ] CAN-2005-1992

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1992

[ 2 ] Ruby Security Announcement

http://www.ruby-lang.org/en/20050701.html

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200507-10.xml

Concerns?

License

The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

http://creativecommons.org/licenses/by-sa/2.0

Gentoo Linux Security Advisory GLSA 200507-11

http://security.gentoo.org/

Severity: High
Title: MIT Kerberos 5: Multiple vulnerabilities
Date: July 12, 2005
Bugs: #98799
ID: 200507-11

Synopsis

MIT Kerberos 5 is vulnerable to a Denial of Service attack and remote execution of arbitrary code, possibly leading to the compromise of the entire Kerberos realm.

Background

MIT Kerberos 5 is the free implementation of the Kerberos network authentication protocol by the Massachusetts Institute of Technology.

Affected packages


     Package             /  Vulnerable  /                   Unaffected

  1  app-crypt/mit-krb5     < 1.4.1-r1                     >= 1.4.1-r1

Description

Daniel Wachdorf discovered that MIT Kerberos 5 could corrupt the heap by freeing unallocated memory when receiving a special TCP request (CAN-2005-1174). He also discovered that the same request could lead to a single-byte heap overflow (CAN-2005-1175). Magnus Hagander discovered that krb5_recvauth() function of MIT Kerberos 5 might try to double-free memory (CAN-2005-1689).

Impact

Although exploitation is considered difficult, a remote attacker could exploit the single-byte heap overflow and the double-free vulnerability to execute arbitrary code, which could lead to the compromise of the whole Kerberos realm. A remote attacker could also use the heap corruption to cause a Denial of Service.

Workaround

There are no known workarounds at this time.

Resolution

All MIT Kerberos 5 users should upgrade to the latest available version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=app-crypt/mit-krb5-1.4.1-r1"

References

[ 1 ] CAN-2005-1174

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1174

[ 2 ] CAN-2005-1175

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1175

[ 3 ] CAN-2005-1689

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1689

[ 4 ] MITKRB5-SA-2005-002

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-002-kdc.txt

[ 5 ] MITKRB5-SA-2005-003

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-003-recvauth.txt

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200507-11.xml

Concerns?

License

Mandriva Linux

Mandriva Linux Security Update Advisory

Package name: clamav
Advisory ID: MDKSA-2005:113
Date: July 11th, 2005
Affected versions: 10.1, 10.2, Corporate 3.0

Problem Description:

Andrew Toller and Stefan Kanthak discovered that a flaw in libmspack's Quantum archive decompressor renders Clam AntiVirus vulnerable to a Denial of Service attack.

The updated packages have been patched to correct the problem.

References:

http://sourceforge.net/project/shownotes.php?release_id=337279

Updated Packages:

Mandrakelinux 10.1:
d1a61855ca50e53018e5c65ef380d8dd 10.1/RPMS/clamav-0.81-0.3.101mdk.i586.rpm
4a73d4428b1c8288192e1880882114f1 10.1/RPMS/clamav-db-0.81-0.3.101mdk.i586.rpm
ead89b02938223716b68ce51047fd193 10.1/RPMS/clamav-milter-0.81-0.3.101mdk.i586.rpm
69ab5c876524188f382cb7649949ebcf 10.1/RPMS/clamd-0.81-0.3.101mdk.i586.rpm
f682ad9ceaab4b22deacce071f685dd7 10.1/RPMS/libclamav1-0.81-0.3.101mdk.i586.rpm
f74afc4b092506d942bc1c33e978143a 10.1/RPMS/libclamav1-devel-0.81-0.3.101mdk.i586.rpm
5427d070911966721a7a74e43d5115d1 10.1/SRPMS/clamav-0.81-0.3.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
cef11c2c75f3d931e2fef9018895e410 x86_64/10.1/RPMS/clamav-0.81-0.3.101mdk.x86_64.rpm
097aa32fc592727a5355872a91f2e53e x86_64/10.1/RPMS/clamav-db-0.81-0.3.101mdk.x86_64.rpm
e205ca0a534f2ca20afee6c311c927f2 x86_64/10.1/RPMS/clamav-milter-0.81-0.3.101mdk.x86_64.rpm
dd5e7b49cc8b442b3ce9285b3b065217 x86_64/10.1/RPMS/clamd-0.81-0.3.101mdk.x86_64.rpm
1c5d18841912089a2c0788103c81fd47 x86_64/10.1/RPMS/lib64clamav1-0.81-0.3.101mdk.x86_64.rpm
b4ed80c808515aa78c5b64a90badc208 x86_64/10.1/RPMS/lib64clamav1-devel-0.81-0.3.101mdk.x86_64.rpm
5427d070911966721a7a74e43d5115d1 x86_64/10.1/SRPMS/clamav-0.81-0.3.101mdk.src.rpm

Mandrakelinux 10.2:
40ebaed7490c8c4609d175898a4524a5 10.2/RPMS/clamav-0.83-6.1.102mdk.i586.rpm
ecba8225d04b3d56b367cd12d1b18041 10.2/RPMS/clamav-db-0.83-6.1.102mdk.i586.rpm
4c3f83da2c21d5b438fa87c2fc9c2510 10.2/RPMS/clamav-milter-0.83-6.1.102mdk.i586.rpm
9af96c3025518c85b71382ade35b34c2 10.2/RPMS/clamd-0.83-6.1.102mdk.i586.rpm
617a8776560de95a5feebdb18beb2f74 10.2/RPMS/libclamav1-0.83-6.1.102mdk.i586.rpm
bb629f7ef414de49be3bf2fff4fdd949 10.2/RPMS/libclamav1-devel-0.83-6.1.102mdk.i586.rpm
c1aa9d888990112d8db675a67d65d612 10.2/SRPMS/clamav-0.83-6.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
73b4b991f4b44ff648f4f9730608988c x86_64/10.2/RPMS/clamav-0.83-6.1.102mdk.x86_64.rpm
78da41faaaf4a67ecebb2155d20681b8 x86_64/10.2/RPMS/clamav-db-0.83-6.1.102mdk.x86_64.rpm
104687d7dcd6258e5737e90c6814a0c0 x86_64/10.2/RPMS/clamav-milter-0.83-6.1.102mdk.x86_64.rpm
afc85c501b6a9aed7f967ed35f2e4540 x86_64/10.2/RPMS/clamd-0.83-6.1.102mdk.x86_64.rpm
9f831708f8a44ccba75bd0cafc926e0d x86_64/10.2/RPMS/lib64clamav1-0.83-6.1.102mdk.x86_64.rpm
f76da72a62e0d94451c5bcfdd4a5ff56 x86_64/10.2/RPMS/lib64clamav1-devel-0.83-6.1.102mdk.x86_64.rpm
c1aa9d888990112d8db675a67d65d612 x86_64/10.2/SRPMS/clamav-0.83-6.1.102mdk.src.rpm

Corporate 3.0:
154457f3913dc4bfcd349e8d7f3d9ed1 corporate/3.0/RPMS/clamav-0.81-0.3.C30mdk.i586.rpm
aa6d83e73d03464aee591658721017db corporate/3.0/RPMS/clamav-db-0.81-0.3.C30mdk.i586.rpm
79ffb7195506c5b0914e10dda8eac35a corporate/3.0/RPMS/clamav-milter-0.81-0.3.C30mdk.i586.rpm
1232f43b5272369f1c11ed6c4c173091 corporate/3.0/RPMS/clamd-0.81-0.3.C30mdk.i586.rpm
05d298da13d32180fcc1c20344b5b8d1 corporate/3.0/RPMS/libclamav1-0.81-0.3.C30mdk.i586.rpm
f7035cc164562e19743d7be91d6d1a43 corporate/3.0/RPMS/libclamav1-devel-0.81-0.3.C30mdk.i586.rpm
86bc352ab413fa6232a997d57adf1d1d corporate/3.0/SRPMS/clamav-0.81-0.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
934b40e521ea1419a9ff4d886feddbf7 x86_64/corporate/3.0/RPMS/clamav-0.81-0.3.C30mdk.x86_64.rpm
3e133b0bbe1135ef2e3e8092b1a2b499 x86_64/corporate/3.0/RPMS/clamav-db-0.81-0.3.C30mdk.x86_64.rpm
c8a51fa7450234d845e5b278b13e1eb7 x86_64/corporate/3.0/RPMS/clamav-milter-0.81-0.3.C30mdk.x86_64.rpm
dc4500f7c4b0bf29d8cb9ca41688965c x86_64/corporate/3.0/RPMS/clamd-0.81-0.3.C30mdk.x86_64.rpm
d1e99a1f9accbfc1702c0c3dc1a8dd4c x86_64/corporate/3.0/RPMS/lib64clamav1-0.81-0.3.C30mdk.x86_64.rpm
050a0ee0bf1511f62e59b2f42893c580 x86_64/corporate/3.0/RPMS/lib64clamav1-devel-0.81-0.3.C30mdk.x86_64.rpm
86bc352ab413fa6232a997d57adf1d1d x86_64/corporate/3.0/SRPMS/clamav-0.81-0.3.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Update Advisory

Package name: leafnode
Advisory ID: MDKSA-2005:114
Date: July 11th, 2005
Affected versions: 10.1, 10.2, Corporate 3.0

Problem Description:

A number of vulnerabilities in the leafnode NNTP server package have been found:

A vulnerability in the fetchnews program that could under some circumstances cause a wait for input that never arrives, which in turn would cause fetchnews to hang (CAN-2004-2068).

Two vulnerabilities in the fetchnews program can cause fetchnews to crash when the upstream server closes the connection and leafnode is receiving an article header or an article body, which prevent leafnode from querying other servers that are listed after that particular server in the configuration file (CAN-2005-1453).

Finally, another vulnerability in the fetchnews program could also cuase a wait for input that never arrives, causing fetchnews to hang (CAN-2005-1911).

The updated packages have been patched to correct this problem.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-2068
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1453
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1911

Updated Packages:

Mandrakelinux 10.1:
0d573481e6ba6335c50c7f2c0008c556 10.1/RPMS/leafnode-1.10.4-1.1.101mdk.i586.rpm
1598ba602b4d7eae524469a4ffa4f363 10.1/SRPMS/leafnode-1.10.4-1.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
6ea053906fce3f66505594c7a300988c x86_64/10.1/RPMS/leafnode-1.10.4-1.1.101mdk.x86_64.rpm
1598ba602b4d7eae524469a4ffa4f363 x86_64/10.1/SRPMS/leafnode-1.10.4-1.1.101mdk.src.rpm

Mandrakelinux 10.2:
6e1d77530f56d974603dbe5b5b414877 10.2/RPMS/leafnode-1.10.4-1.1.102mdk.i586.rpm
df3600d2511ec46c90370598664834df 10.2/SRPMS/leafnode-1.10.4-1.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
a2328b9c5fe8d6f273642955dbb9496f x86_64/10.2/RPMS/leafnode-1.10.4-1.1.102mdk.x86_64.rpm
df3600d2511ec46c90370598664834df x86_64/10.2/SRPMS/leafnode-1.10.4-1.1.102mdk.src.rpm

Corporate 3.0:
2e31824248a0b72dcd573cc1ce6fd54b corporate/3.0/RPMS/leafnode-1.9.46-1.1.C30mdk.i586.rpm
a1154635606b715011ac5a876be60719 corporate/3.0/SRPMS/leafnode-1.9.46-1.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
bbd7bfdc23f029aa8966e1a0b845bc0a x86_64/corporate/3.0/RPMS/leafnode-1.9.46-1.1.C30mdk.x86_64.rpm
a1154635606b715011ac5a876be60719 x86_64/corporate/3.0/SRPMS/leafnode-1.9.46-1.1.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Update Advisory

Package name: mplayer
Advisory ID: MDKSA-2005:115
Date: July 11th, 2005
Affected versions: 10.1, 10.2, Corporate 3.0

Problem Description:

Two heap overflows were discovered in mplayer's code handling the RealMedia RTSP and Microsoft Media Services streams over TCP (MMST). These vulnerabilities could allow for a malicious server to execute arbitrary code on the client computer with the permissions of the user running MPlayer.

The updated packages have been patched to correct this problem.

References:

http://www.mplayerhq.hu/homepage/design7/news.html#vuln10
http://www.mplayerhq.hu/homepage/design7/news.html#vuln11

Updated Packages:

Mandrakelinux 10.1:
bd10af1b022eab6c708b798b788d8f8f 10.1/RPMS/libdha1.0-1.0-0.pre5.8.1.101mdk.i586.rpm
0f045ff30c496287bca8ecb70fd3f9d4 10.1/RPMS/libpostproc0-1.0-0.pre5.8.1.101mdk.i586.rpm
2d6cc0414095376592ca2f31b530e139 10.1/RPMS/libpostproc0-devel-1.0-0.pre5.8.1.101mdk.i586.rpm
083b1fd4689665cc07477f87d171d614 10.1/RPMS/mencoder-1.0-0.pre5.8.1.101mdk.i586.rpm
8428f9c5e8216dc20f92ddccbaaa906c 10.1/RPMS/mplayer-1.0-0.pre5.8.1.101mdk.i586.rpm
596d46dd4d84deda9e5b38910e4d6f78 10.1/RPMS/mplayer-gui-1.0-0.pre5.8.1.101mdk.i586.rpm
b74e89d4c606c99857a5a5a4314e2cc3 10.1/SRPMS/mplayer-1.0-0.pre5.8.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
bd10af1b022eab6c708b798b788d8f8f x86_64/10.1/RPMS/libdha1.0-1.0-0.pre5.8.1.101mdk.i586.rpm
0f045ff30c496287bca8ecb70fd3f9d4 x86_64/10.1/RPMS/libpostproc0-1.0-0.pre5.8.1.101mdk.i586.rpm
2d6cc0414095376592ca2f31b530e139 x86_64/10.1/RPMS/libpostproc0-devel-1.0-0.pre5.8.1.101mdk.i586.rpm
083b1fd4689665cc07477f87d171d614 x86_64/10.1/RPMS/mencoder-1.0-0.pre5.8.1.101mdk.i586.rpm
8428f9c5e8216dc20f92ddccbaaa906c x86_64/10.1/RPMS/mplayer-1.0-0.pre5.8.1.101mdk.i586.rpm
596d46dd4d84deda9e5b38910e4d6f78 x86_64/10.1/RPMS/mplayer-gui-1.0-0.pre5.8.1.101mdk.i586.rpm
b74e89d4c606c99857a5a5a4314e2cc3 x86_64/10.1/SRPMS/mplayer-1.0-0.pre5.8.1.101mdk.src.rpm

Mandrakelinux 10.2:
4c177eb3a8868ef01de7f8f645a8df1e 10.2/RPMS/libdha1.0-1.0-0.pre6.8.1.102mdk.i586.rpm
e1c7dbc6206e73501b30eb57effdac5a 10.2/RPMS/libpostproc0-1.0-0.pre6.8.1.102mdk.i586.rpm
2d3e70104fdb6d95895a7ee2bde6595d 10.2/RPMS/libpostproc0-devel-1.0-0.pre6.8.1.102mdk.i586.rpm
99a4599c171c4d497a846ea04ca17f69 10.2/RPMS/mencoder-1.0-0.pre6.8.1.102mdk.i586.rpm
c227f20edb5d7918baf3c57bb0873821 10.2/RPMS/mplayer-1.0-0.pre6.8.1.102mdk.i586.rpm
fbd9082c731f6f2c1ffb9e4f8d34b3b9 10.2/RPMS/mplayer-gui-1.0-0.pre6.8.1.102mdk.i586.rpm
99eae364cc22227fd060a30c04d16ee0 10.2/SRPMS/mplayer-1.0-0.pre6.8.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
4fac156842e3d8128f3db891176cf5bc x86_64/10.2/RPMS/lib64postproc0-1.0-0.pre6.8.1.102mdk.x86_64.rpm
4e400c2a8eec069eb48b174dad260630 x86_64/10.2/RPMS/lib64postproc0-devel-1.0-0.pre6.8.1.102mdk.x86_64.rpm
4b6be0070a94b344a273c58a72887e09 x86_64/10.2/RPMS/mencoder-1.0-0.pre6.8.1.102mdk.x86_64.rpm
74c034b62e9a521bc1940a055ed85efa x86_64/10.2/RPMS/mplayer-1.0-0.pre6.8.1.102mdk.x86_64.rpm
939796a7a34edfd1a28ede74945f6476 x86_64/10.2/RPMS/mplayer-gui-1.0-0.pre6.8.1.102mdk.x86_64.rpm
99eae364cc22227fd060a30c04d16ee0 x86_64/10.2/SRPMS/mplayer-1.0-0.pre6.8.1.102mdk.src.rpm

Corporate 3.0:
d41099adcaa6d11c38e89b576cd29c0e corporate/3.0/RPMS/libdha0.1-1.0-0.pre3.14.2.C30mdk.i586.rpm
957d003a9d6a87dcef47000389cf1718 corporate/3.0/RPMS/libpostproc0-1.0-0.pre3.14.2.C30mdk.i586.rpm
2e03d433c8c85d92fd5f3b55993657a4 corporate/3.0/RPMS/libpostproc0-devel-1.0-0.pre3.14.2.C30mdk.i586.rpm
c7db9472c5307cf4b2101cf85258374b corporate/3.0/RPMS/mencoder-1.0-0.pre3.14.2.C30mdk.i586.rpm
2ff16f611b2e04279d82d334d22e09b2 corporate/3.0/RPMS/mplayer-1.0-0.pre3.14.2.C30mdk.i586.rpm
c893a7b1127e6a6b882f8a805197f704 corporate/3.0/RPMS/mplayer-gui-1.0-0.pre3.14.2.C30mdk.i586.rpm
33af37ca45913f9143a14c54cf599ea9 corporate/3.0/SRPMS/mplayer-1.0-0.pre3.14.2.C30mdk.src.rpm

Corporate 3.0/X86_64:
d56e4c1c37fc14c358679c9965a1a631 x86_64/corporate/3.0/RPMS/lib64postproc0-1.0-0.pre3.14.2.C30mdk.x86_64.rpm
855ab006ca3e953ff0b2e74dc945ec4e x86_64/corporate/3.0/RPMS/lib64postproc0-devel-1.0-0.pre3.14.2.C30mdk.x86_64.rpm
735165e505cd65f4c035778e681b4da1 x86_64/corporate/3.0/RPMS/mencoder-1.0-0.pre3.14.2.C30mdk.x86_64.rpm
0bbec21ba423cdeb16d1d3a86ce48d70 x86_64/corporate/3.0/RPMS/mplayer-1.0-0.pre3.14.2.C30mdk.x86_64.rpm
314b912d457e48b4a09ca03e94600310 x86_64/corporate/3.0/RPMS/mplayer-gui-1.0-0.pre3.14.2.C30mdk.x86_64.rpm
33af37ca45913f9143a14c54cf599ea9 x86_64/corporate/3.0/SRPMS/mplayer-1.0-0.pre3.14.2.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Update Advisory

Package name: cpio
Advisory ID: MDKSA-2005:116
Date: July 11th, 2005
Affected versions: 10.0, 10.1, 10.2, Corporate 3.0, Corporate Server 2.1

Problem Description:

A race condition has been found in cpio 2.6 and earlier which allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cpio after the decompression is complete. (CAN-2005-1111)

A vulnerability has been discovered in cpio that allows a malicious cpio file to extract to an arbitrary directory of the attackers choice. Cpio will extract to the path specified in the cpio file, this path can be absolute. (CAN-2005-1229)

The updated packages have been patched to address both of these issues.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1111
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1229

Updated Packages:

Mandrakelinux 10.0:
5e09657806ea7779182c7e5a49c22be8 10.0/RPMS/cpio-2.5-4.2.100mdk.i586.rpm
407b3cef16e5d7153c3af0a685df7109 10.0/SRPMS/cpio-2.5-4.2.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:
4a1947f3c7fc27f0b6cc0d9bdf97cfd8 amd64/10.0/RPMS/cpio-2.5-4.2.100mdk.amd64.rpm
407b3cef16e5d7153c3af0a685df7109 amd64/10.0/SRPMS/cpio-2.5-4.2.100mdk.src.rpm

Mandrakelinux 10.1:
c808f5a1689a006e9049e1d8a37ede70 10.1/RPMS/cpio-2.5-4.3.101mdk.i586.rpm
907e5f404afe7cdd649f8aeaa8444914 10.1/SRPMS/cpio-2.5-4.3.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
71ab78c534f9552ad081c625e92afb45 x86_64/10.1/RPMS/cpio-2.5-4.3.101mdk.x86_64.rpm
907e5f404afe7cdd649f8aeaa8444914 x86_64/10.1/SRPMS/cpio-2.5-4.3.101mdk.src.rpm

Mandrakelinux 10.2:
9db16a5fa7bfc85aa7bb2d199ab5d825 10.2/RPMS/cpio-2.6-3.1.102mdk.i586.rpm
131667db822df5a4cec71e24cdc51b69 10.2/SRPMS/cpio-2.6-3.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
4d5b31e9bdd5d1c81fc61ec3a863f7ff x86_64/10.2/RPMS/cpio-2.6-3.1.102mdk.x86_64.rpm
131667db822df5a4cec71e24cdc51b69 x86_64/10.2/SRPMS/cpio-2.6-3.1.102mdk.src.rpm

Corporate Server 2.1:
fe2a5bdd208f9ce6fcf87b90a87dbbdf corporate/2.1/RPMS/cpio-2.5-4.2.C21mdk.i586.rpm
950d0f7e96d109e965fb9d6d8f500813 corporate/2.1/SRPMS/cpio-2.5-4.2.C21mdk.src.rpm

Corporate Server 2.1/X86_64:
826500d3531ce8aff99afaf97eb8a8a7 x86_64/corporate/2.1/RPMS/cpio-2.5-4.2.C21mdk.x86_64.rpm
950d0f7e96d109e965fb9d6d8f500813 x86_64/corporate/2.1/SRPMS/cpio-2.5-4.2.C21mdk.src.rpm

Corporate 3.0:
44667c0001e9da72f56c109f9f451c22 corporate/3.0/RPMS/cpio-2.5-4.2.C30mdk.i586.rpm
a7beddf04ef0e065dad9af2387393c22 corporate/3.0/SRPMS/cpio-2.5-4.2.C30mdk.src.rpm

Corporate 3.0/X86_64:
94803dd8ac6d1a1fc5436c04f097b4a1 x86_64/corporate/3.0/RPMS/cpio-2.5-4.2.C30mdk.x86_64.rpm
a7beddf04ef0e065dad9af2387393c22 x86_64/corporate/3.0/SRPMS/cpio-2.5-4.2.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Update Advisory

Package name: dhcpcd
Advisory ID: MDKSA-2005:117
Date: July 12th, 2005
Affected versions: 10.1, 10.2, Corporate 3.0

Problem Description:

"infamous42md" discovered that the dhcpcd DHCP client could be tricked into reading past the end of the supplied DHCP buffer, which could lead to the daemon crashing.

The updated packages have been patched to address this issue.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1848

Updated Packages:

Mandrakelinux 10.1:
c690959dc0ba51327c85856cc42c0c05 10.1/RPMS/dhcpcd-1.3.22pl4-4.1.101mdk.i586.rpm
6b830a9a614025aa26c74c831dbbcd24 10.1/SRPMS/dhcpcd-1.3.22pl4-4.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
190a7e068611249ab13eba7f0754f30a x86_64/10.1/RPMS/dhcpcd-1.3.22pl4-4.1.101mdk.x86_64.rpm
6b830a9a614025aa26c74c831dbbcd24 x86_64/10.1/SRPMS/dhcpcd-1.3.22pl4-4.1.101mdk.src.rpm

Mandrakelinux 10.2:
8d7e2e4f9dd145c72dfa06b662437206 10.2/RPMS/dhcpcd-1.3.22pl4-4.1.102mdk.i586.rpm
f88321c6e99e6ecdd614e79dd938d6b4 10.2/SRPMS/dhcpcd-1.3.22pl4-4.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
442b745b6d43b1fca68a9843e8c55c94 x86_64/10.2/RPMS/dhcpcd-1.3.22pl4-4.1.102mdk.x86_64.rpm
f88321c6e99e6ecdd614e79dd938d6b4 x86_64/10.2/SRPMS/dhcpcd-1.3.22pl4-4.1.102mdk.src.rpm

Corporate 3.0:
f12b8268879122dbfbb348856578701e corporate/3.0/RPMS/dhcpcd-1.3.22pl4-4.1.C30mdk.i586.rpm
3f8e81acc938dd89f9a576cf50baff5f corporate/3.0/SRPMS/dhcpcd-1.3.22pl4-4.1.C30mdk.src.rpm

Corporate 3.0/X86_64:
2dc6f10ac3905c162177222ce57406a0 x86_64/corporate/3.0/RPMS/dhcpcd-1.3.22pl4-4.1.C30mdk.x86_64.rpm
3f8e81acc938dd89f9a576cf50baff5f x86_64/corporate/3.0/SRPMS/dhcpcd-1.3.22pl4-4.1.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Mandriva Linux Security Update Advisory

Package name: ruby
Advisory ID: MDKSA-2005:118
Date: July 12th, 2005
Affected versions: 10.1, 10.2, Corporate 3.0

Problem Description:

A vulnerability was discovered in ruby version 1.8 that could allow for the execution of arbitrary commands on a server running the ruby xmlrpc server.

The updated packages have been patched to address this issue.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1992

Updated Packages:

Mandrakelinux 10.1:
043863c657386a3854a0360efe400485 10.1/RPMS/ruby-1.8.1-4.3.101mdk.i586.rpm
2a8de5aaf553cae5ba5fc4ce64989c2a 10.1/RPMS/ruby-devel-1.8.1-4.3.101mdk.i586.rpm
b05c05c460299fb987781b1a7bcb76a3 10.1/RPMS/ruby-doc-1.8.1-4.3.101mdk.i586.rpm
a639754ad5ddec161d3e6310d2c8f597 10.1/RPMS/ruby-tk-1.8.1-4.3.101mdk.i586.rpm
6b8c255d78584b374868f68c0fba1f9a 10.1/SRPMS/ruby-1.8.1-4.3.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:
422ce1ef49205b71ec46cba5b324596e x86_64/10.1/RPMS/ruby-1.8.1-4.3.101mdk.x86_64.rpm
9cd8d758760b3a6f8e2d294b49974795 x86_64/10.1/RPMS/ruby-devel-1.8.1-4.3.101mdk.x86_64.rpm
d1f77bd35fec7be67c174d421004cc99 x86_64/10.1/RPMS/ruby-doc-1.8.1-4.3.101mdk.x86_64.rpm
ff201be467588f67119dac4c77d2451d x86_64/10.1/RPMS/ruby-tk-1.8.1-4.3.101mdk.x86_64.rpm
6b8c255d78584b374868f68c0fba1f9a x86_64/10.1/SRPMS/ruby-1.8.1-4.3.101mdk.src.rpm

Mandrakelinux 10.2:
1abe15ec37c10254da6f869a91f462d6 10.2/RPMS/ruby-1.8.2-6.1.102mdk.i586.rpm
69902e1e9f69fa0417de527b86b08129 10.2/RPMS/ruby-devel-1.8.2-6.1.102mdk.i586.rpm
79d13e6dc12446bf0d4ceba8f3891746 10.2/RPMS/ruby-doc-1.8.2-6.1.102mdk.i586.rpm
4d1bae45003f12c8f640354654d08c66 10.2/RPMS/ruby-tk-1.8.2-6.1.102mdk.i586.rpm
72470b9bdecc8085247dd3ea9bfd026e 10.2/SRPMS/ruby-1.8.2-6.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:
6defbc537392fd90ca86512ec16f84ba x86_64/10.2/RPMS/ruby-1.8.2-6.1.102mdk.x86_64.rpm
42f826518c7e2d7184409006156e85a1 x86_64/10.2/RPMS/ruby-devel-1.8.2-6.1.102mdk.x86_64.rpm
be826ba64425c2b6257ae2106311c4ba x86_64/10.2/RPMS/ruby-doc-1.8.2-6.1.102mdk.x86_64.rpm
a229474a25b363f856dc73999e620409 x86_64/10.2/RPMS/ruby-tk-1.8.2-6.1.102mdk.x86_64.rpm
72470b9bdecc8085247dd3ea9bfd026e x86_64/10.2/SRPMS/ruby-1.8.2-6.1.102mdk.src.rpm

Corporate 3.0:
ee7b55f434cddfabbb51ff7de4b4300a corporate/3.0/RPMS/ruby-1.8.1-1.3.C30mdk.i586.rpm
8f30c891611ec8a94f2547ea9d6fc4f5 corporate/3.0/RPMS/ruby-devel-1.8.1-1.3.C30mdk.i586.rpm
82012434d3fe44cfd6d3f22643382134 corporate/3.0/RPMS/ruby-doc-1.8.1-1.3.C30mdk.i586.rpm
fac1f5244b97d58523ddf13afa550889 corporate/3.0/RPMS/ruby-tk-1.8.1-1.3.C30mdk.i586.rpm
7781778b81a36b85cfb60424337ab463 corporate/3.0/SRPMS/ruby-1.8.1-1.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
8dccd5b797263c2784a6159bdf1b4614 x86_64/corporate/3.0/RPMS/ruby-1.8.1-1.3.C30mdk.x86_64.rpm
89b25dcefd9e99b9b67255f1ed862946 x86_64/corporate/3.0/RPMS/ruby-devel-1.8.1-1.3.C30mdk.x86_64.rpm
24559489e7e1aebe6f7f788caa31d0c3 x86_64/corporate/3.0/RPMS/ruby-doc-1.8.1-1.3.C30mdk.x86_64.rpm
2737e9bdaafe436bcec1a367d4c80c82 x86_64/corporate/3.0/RPMS/ruby-tk-1.8.1-1.3.C30mdk.x86_64.rpm
7781778b81a36b85cfb60424337ab463 x86_64/corporate/3.0/SRPMS/ruby-1.8.1-1.3.C30mdk.src.rpm

To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Red Hat Linux

Red Hat Security Advisory

Synopsis: Critical: krb5 security update
Advisory ID: RHSA-2005:562-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-562.html
Issue date: 2005-07-12
Updated on: 2005-07-12
Product: Red Hat Enterprise Linux
Cross references: RHSA-2005:567
Obsoletes: RHSA-2005:330
CVE Names: CAN-2004-0175 CAN-2005-0488 CAN-2005-1175 CAN-2005-1689

1. Summary:

Updated krb5 packages which fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 and 3.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

3. Problem description:

Kerberos is a networked authentication system which uses a trusted third party (a KDC) to authenticate clients and servers to each other.

A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Although no exploit is currently known to exist, this issue could potentially be exploited to allow arbitrary code execution on a Key Distribution Center (KDC). The Common Vulnerabilities and Exposures project assigned the name CAN-2005-1689 to this issue.

Daniel Wachdorf discovered a single byte heap overflow in the krb5_unparse_name() function, part of krb5-libs. Sucessful exploitation of this flaw would lead to a denial of service (crash). To trigger this flaw an attacker would need to have control of a kerberos realm that shares a cross-realm key with the target, making exploitation of this flaw unlikely. (CAN-2005-1175).

All users of krb5 should update to these erratum packages which contain backported patches to correct these issues. Red Hat would like to thank the MIT Kerberos Development Team for their responsible disclosure of these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

159304 - CAN-2005-0488 telnet Information Disclosure Vulnerability
159753 - CAN-2005-1689 double-free in krb5_recvauth
161471 - krb5 krb5_principal_compare NULL pointer crash
161611 - CAN-2004-0175 malicious rsh server can cause rcp to write to arbitrary files
162255 - CAN-2005-1175 krb5 buffer overflow in KDC

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/krb5-1.2.2-37.src.rpm
5d772e7c740e732034b985eb5e7d7b41 krb5-1.2.2-37.src.rpm

i386:
283a0ed8f883a7ad7b26b45cb016e8ca krb5-devel-1.2.2-37.i386.rpm
7cb388a856413589650647e0a9564cb1 krb5-libs-1.2.2-37.i386.rpm
e9aa3596874efb262790e07ac672d3b6 krb5-server-1.2.2-37.i386.rpm
169c84674beb1695eb981fdd50b576a1 krb5-workstation-1.2.2-37.i386.rpm

ia64:
d7508a6995fe60eb2ef436d377539cec krb5-devel-1.2.2-37.ia64.rpm
088e0a0865d8239b28be7427920c784f krb5-libs-1.2.2-37.ia64.rpm
5aa88a1c23d6282d314038d20dc968bd krb5-server-1.2.2-37.ia64.rpm
ca40819f1a408b1eb7415adae1951dd4 krb5-workstation-1.2.2-37.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/krb5-1.2.2-37.src.rpm
5d772e7c740e732034b985eb5e7d7b41 krb5-1.2.2-37.src.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/krb5-1.2.2-37.src.rpm
5d772e7c740e732034b985eb5e7d7b41 krb5-1.2.2-37.src.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/krb5-1.2.2-37.src.rpm
5d772e7c740e732034b985eb5e7d7b41 krb5-1.2.2-37.src.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/krb5-1.2.7-47.src.rpm
b8269d371eb18afe5f496a6da97c5c40 krb5-1.2.7-47.src.rpm

i386:
61ed228798dfec78fe47f3a64a02853b krb5-devel-1.2.7-47.i386.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
5872d358c01320902ccacd063a6121f6 krb5-server-1.2.7-47.i386.rpm
d55268c2e3f2156ec4116fe088bb85b1 krb5-workstation-1.2.7-47.i386.rpm

ia64:
2072d4e5f43da1792152e9b54ced0a17 krb5-devel-1.2.7-47.ia64.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
acfd537073b91f424bf50ebe8deac442 krb5-libs-1.2.7-47.ia64.rpm
ae65b2188580cff61cc0312e4d5b3202 krb5-server-1.2.7-47.ia64.rpm
cb0cb308aa0f1137c0daa669ec1ead24 krb5-workstation-1.2.7-47.ia64.rpm

ppc:
a903b06e058a287be57e2c7f0f94e980 krb5-devel-1.2.7-47.ppc.rpm
8a8469e3ef6a67eb496ad16559aa7405 krb5-libs-1.2.7-47.ppc.rpm
977ad9b12b867b889ff6bfd0b94c4a8f krb5-libs-1.2.7-47.ppc64.rpm
731d35f2b029c41a0b24891732bb4559 krb5-server-1.2.7-47.ppc.rpm
12d4e81ac7be9082782c78c899e433d8 krb5-workstation-1.2.7-47.ppc.rpm

s390:
867e2d001c6980c0c5d0f37e714247ea krb5-devel-1.2.7-47.s390.rpm
ee7b6ec8720ad8d9852d484c185165af krb5-libs-1.2.7-47.s390.rpm
b048fb47c789862b45c6df459ad27d47 krb5-server-1.2.7-47.s390.rpm
1a0cfff73729877a6d82aba64d3f7e52 krb5-workstation-1.2.7-47.s390.rpm

s390x:
c80223d11f2563d11a057295860add78 krb5-devel-1.2.7-47.s390x.rpm
ee7b6ec8720ad8d9852d484c185165af krb5-libs-1.2.7-47.s390.rpm
4d6fda2c87164c6292ec6b8edcea69f0 krb5-libs-1.2.7-47.s390x.rpm
a95168d9021cc7c787c2de94afd38ebf krb5-server-1.2.7-47.s390x.rpm
b6b382bbc101ef8287abc2b27e44d8b5 krb5-workstation-1.2.7-47.s390x.rpm

x86_64:
d467a180a18c6abcaad7c15406602417 krb5-devel-1.2.7-47.x86_64.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
b319c5aee6eca1f14b3ae009f54202b9 krb5-libs-1.2.7-47.x86_64.rpm
98ba88672f8710329630030b8de6712e krb5-server-1.2.7-47.x86_64.rpm
ad10533e67f6047f378cafbf922fea77 krb5-workstation-1.2.7-47.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/krb5-1.2.7-47.src.rpm
b8269d371eb18afe5f496a6da97c5c40 krb5-1.2.7-47.src.rpm

i386:
61ed228798dfec78fe47f3a64a02853b krb5-devel-1.2.7-47.i386.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
d55268c2e3f2156ec4116fe088bb85b1 krb5-workstation-1.2.7-47.i386.rpm

x86_64:
d467a180a18c6abcaad7c15406602417 krb5-devel-1.2.7-47.x86_64.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
b319c5aee6eca1f14b3ae009f54202b9 krb5-libs-1.2.7-47.x86_64.rpm
ad10533e67f6047f378cafbf922fea77 krb5-workstation-1.2.7-47.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/krb5-1.2.7-47.src.rpm
b8269d371eb18afe5f496a6da97c5c40 krb5-1.2.7-47.src.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/krb5-1.2.7-47.src.rpm
b8269d371eb18afe5f496a6da97c5c40 krb5-1.2.7-47.src.rpm

i386:
61ed228798dfec78fe47f3a64a02853b krb5-devel-1.2.7-47.i386.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
d55268c2e3f2156ec4116fe088bb85b1 krb5-workstation-1.2.7-47.i386.rpm

ia64:
2072d4e5f43da1792152e9b54ced0a17 krb5-devel-1.2.7-47.ia64.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
acfd537073b91f424bf50ebe8deac442 krb5-libs-1.2.7-47.ia64.rpm
cb0cb308aa0f1137c0daa669ec1ead24 krb5-workstation-1.2.7-47.ia64.rpm

x86_64:
d467a180a18c6abcaad7c15406602417 krb5-devel-1.2.7-47.x86_64.rpm
cd30cacc7f4eaa7b098b33feb06253df krb5-libs-1.2.7-47.i386.rpm
b319c5aee6eca1f14b3ae009f54202b9 krb5-libs-1.2.7-47.x86_64.rpm
ad10533e67f6047f378cafbf922fea77 krb5-workstation-1.2.7-47.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-003-recvauth.txt
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-002-kdc.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0488
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1689

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Red Hat Security Advisory

Synopsis: Important: krb5 security update
Advisory ID: RHSA-2005:567-02
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-567.html
Issue date: 2005-07-12
Updated on: 2005-07-12
Product: Red Hat Enterprise Linux
Cross references: RHSA-2005:562
Obsoletes: RHSA-2005:330
CVE Names: CAN-2004-0175 CAN-2005-1174 CAN-2005-1175 CAN-2005-1689

1. Summary:

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4.

This update has been rated as having important security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

Kerberos is a networked authentication system that uses a trusted third party (a KDC) to authenticate clients and servers to each other.

A double-free flaw was found in the krb5_recvauth() routine which may be triggered by a remote unauthenticated attacker. Red Hat Enterprise Linux 4 contains checks within glibc that detect double-free flaws. Therefore, on Red Hat Enterprise Linux 4 successful exploitation of this issue can only lead to a denial of service (KDC crash). The Common Vulnerabilities and Exposures project assigned the name CAN-2005-1689 to this issue.

All users of krb5 should update to these erratum packages, which contain backported patches to correct these issues. Red Hat would like to thank the MIT Kerberos Development Team for their responsible disclosure of these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

157103 - CAN-2005-1174 krb5 buffer overflow, heap corruption in KDC (CAN-2005-1175)
159304 - CAN-2005-0488 telnet Information Disclosure Vulnerability
159756 - CAN-2005-1689 double-free in krb5_recvauth
161471 - krb5 krb5_principal_compare NULL pointer crash
161611 - CAN-2004-0175 malicious rsh server can cause rcp to write to arbitrary files

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/krb5-1.3.4-17.src.rpm
eb03ea1204d767bfdd5c651047474bc8 krb5-1.3.4-17.src.rpm

i386:
8711751b5bbc9a586c05c5f6122758df krb5-devel-1.3.4-17.i386.rpm
d672310384822836b3257c85777426ab krb5-libs-1.3.4-17.i386.rpm
36077a459b9e60055f1c4f97fe54b7e4 krb5-server-1.3.4-17.i386.rpm
41a717b95454e404d379a85ce691aa72 krb5-workstation-1.3.4-17.i386.rpm

ia64:
e022bc5b3a7fa4aa58c8df9ac8d4eb1c krb5-devel-1.3.4-17.ia64.rpm
d672310384822836b3257c85777426ab krb5-libs-1.3.4-17.i386.rpm
05f9346a3d1749ed344c1b6886ce8363 krb5-libs-1.3.4-17.ia64.rpm
23d98f10451ba361f99e8fd01da62729 krb5-server-1.3.4-17.ia64.rpm
47c4e458b181a4fc2d99ad110c35e80e krb5-workstation-1.3.4-17.ia64.rpm

ppc:
efa66e287518dd981a385f93dd087445 krb5-devel-1.3.4-17.ppc.rpm
b01ebd176e288cadf3288162d5d45997 krb5-libs-1.3.4-17.ppc.rpm
6b57eff4d9b5506b45b749500b848838 krb5-libs-1.3.4-17.ppc64.rpm
4642ab1a5a73cb1fb4985cf7aa63003e krb5-server-1.3.4-17.ppc.rpm
c4d951ee5954b2c7655c65af59e4cd6c krb5-workstation-1.3.4-17.ppc.rpm

s390:
748be68de3ed9f3d40ce624322dc555e krb5-devel-1.3.4-17.s390.rpm
f7b51e891da7442bf41d8297247dc1d5 krb5-libs-1.3.4-17.s390.rpm
bfb93446ef2ab7b8a6d2a0ca0786aca5 krb5-server-1.3.4-17.s390.rpm
ec219d6075667d8d7698e358d0d7e7ef krb5-workstation-1.3.4-17.s390.rpm

s390x:
2370a9ceabc738c716ae515f598d4713 krb5-devel-1.3.4-17.s390x.rpm
f7b51e891da7442bf41d8297247dc1d5 krb5-libs-1.3.4-17.s390.rpm
b251dee235fdaaddfbc02dcf1106f5eb krb5-libs-1.3.4-17.s390x.rpm
df7a2c26ac6a6f872ec3b8d33649bd8f krb5-server-1.3.4-17.s390x.rpm
79f44c1f3cf6e66892d6c40865ce8f72 krb5-workstation-1.3.4-17.s390x.rpm

x86_64:
6810bc5ab22a5b9d8aef3728fdbf239c krb5-devel-1.3.4-17.x86_64.rpm
d672310384822836b3257c85777426ab krb5-libs-1.3.4-17.i386.rpm
24cb00892ca0c1d278cb6d92568145a0 krb5-libs-1.3.4-17.x86_64.rpm
197573ea8764dbf467df0c71546facdc krb5-server-1.3.4-17.x86_64.rpm
9c5d3e5cb109a13c1140cf2060e768b8 krb5-workstation-1.3.4-17.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/krb5-1.3.4-17.src.rpm
eb03ea1204d767bfdd5c651047474bc8 krb5-1.3.4-17.src.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/krb5-1.3.4-17.src.rpm
eb03ea1204d767bfdd5c651047474bc8 krb5-1.3.4-17.src.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/krb5-1.3.4-17.src.rpm
eb03ea1204d767bfdd5c651047474bc8 krb5-1.3.4-17.src.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1174
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1689

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/

Slackware Linux

[slackware-security] PHP (SSA:2005-192-01)

New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue with the PEAR XML_RPC class that allows a remote attacker to run arbitrary PHP code. Sites that make use of this PHP library should upgrade to the new PHP package right away, or may instead upgrade the XML_RPC PEAR class with the following command:

pear upgrade XML_RPC

More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-1921

Here are the details from the Slackware 10.1 ChangeLog:
+--------------------------+
patches/packages/php-4.3.11-i486-2.tgz: Upgraded PEAR XML_RPC class.
This new PHP package fixes a PEAR XML_RPC vulnerability. Sites that use this PEAR class should upgrade to the new PHP package, or as a minimal fix may instead upgrade the XML_RPC PEAR class with the following command:
pear upgrade XML_RPC
(* Security fix *)
+--------------------------+

Where to find the new packages:

Updated package for Slackware 8.1:
ftp://ftp.slackware.com/pub/slackware/slackware-8.1/patches/packages/php-4.3.11-i386-2.tgz

Updated package for Slackware 9.0:
ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/php-4.3.11-i386-2.tgz

Updated package for Slackware 9.1:
ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/php-4.3.11-i486-2.tgz

Updated package for Slackware 10.0:
ftp://ftp.slackware.com/pub/slackware/slackware-10.0/patches/packages/php-4.3.11-i486-2.tgz

Updated package for Slackware 10.1:
ftp://ftp.slackware.com/pub/slackware/slackware-10.1/patches/packages/php-4.3.11-i486-2.tgz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-4.4.0-i486-1.tgz

MD5 signatures:

Slackware 8.1 package:
b968e86e7876d52f83453f45f6dd844f php-4.3.11-i386-2.tgz

Slackware 9.0 package:
639ce88dea73156c70f5e011d96c2785 php-4.3.11-i386-2.tgz

Slackware 9.1 package:
b5a8235ca226d0420ade16770ac1c24f php-4.3.11-i486-2.tgz

Slackware 10.0 package:
4aef14c01c4c574b83f4867a8ac58cac php-4.3.11-i486-2.tgz

Slackware 10.1 package:
7ff0731532e3bd24698c90f0f803db49 php-4.3.11-i486-2.tgz

Slackware -current package:
66702eabe070fa223a2c888c467afa53 php-4.4.0-i486-1.tgz

Installation instructions:

First, stop apache:
# apachectl stop

Next, upgrade to the new PHP package:
# upgradepkg php-4.3.11-i486-2.tgz

Finally, restart apache:
# apachectl start (or: apachectl startssl)

+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

[slackware-security] PHP packages updated again for 8.1, 9.0, 9.1 (SSA:2005-192-02)

Sorry folks, I mistakenly used a build template that was too new to build the first round of PHP packages for Slackware 8.1, 9.0, and 9.1, which tried to place the module in /usr/libexec/apache (older versions of Slackware use /usr/libexec instead), and tried to link to incorrect libraries and features. These packages have been replaced with working ones. The packages for 10.0, 10.1, and -current were OK.

Here are the details from the Slackware 9.1 ChangeLog:
+--------------------------+
patches/packages/php-4.3.11-i486-3.tgz: Fixed build/packaging bugs.
+--------------------------+