Linux Today - Advisories, March 8, 2006

search.internet.com

Become a Marketplace Partner

internet.commerce

Be a Commerce Partner

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices

Technology Jobs

LinuxToday Newsletters

Subscribe News
Subscribe PR
Subscribe Security

internet.com

IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Current Newswire:

ANGLE wined3d in reverse

Easy (and amazing) Debian for the N900

Insight into GNU/Linux boot process

Reviewed: OpenOffice.org 3.2

Creating An NFS-Like Standalone Storage Server With GlusterFS On CentOS 5.4

Open Source is Not a Democracy

Open Source Gets Political

Open source and the Morevna project

Android market going down the drain?

All Done With Ubuntu

Systems Engineer Sr - Solaris - Linux (TX)
Next Step Systems
US-TX-Houston

Post A Job | Post A Resume

:Advisories, March 8, 2006

Advisories, March 8, 2006
Mar 9, 2006, 04 :45 UTC (0 Talkback[s]) (3087 reads)

Debian GNU/Linux

Debian Security Advisory DSA 988-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 8th, 2006 http://www.debian.org/security/faq

Package : squirrelmail
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE IDs : CVE-2006-0377 CVE-2006-0195 CVE-2006-0188
Debian Bug : 354062 354063 354064 355424

Several vulnerabilities have been discovered in Squirrelmail, a commonly used webmail system. The Common Vulnerabilities and Exposures project identifies the following problems:

CVE-2006-0188

Martijn Brinkers and Ben Maurer found a flaw in webmail.php that allows remote attackers to inject arbitrary web pages into the right frame via a URL in the right_frame parameter.

CVE-2006-0195

Martijn Brinkers and Scott Hughes discovered an interpretation conflict in the MagicHTML filter that allows remote attackers to conduct cross-site scripting (XSS) attacks via style sheet specifiers with invalid (1) "/*" and "*/" comments, or (2) slashes inside the "url" keyword, which is processed by some web browsers including Internet Explorer.

CVE-2006-0377

Vicente Aguilera of Internet Security Auditors, S.L. discovered a CRLF injection vulnerability, which allows remote attackers to inject arbitrary IMAP commands via newline characters in the mailbox parameter of the sqimap_mailbox_select command, aka "IMAP injection." There's no known way to exploit this yet.

For the old stable distribution (woody) these problems have been fixed in version 1.2.6-5.

For the stable distribution (sarge) these problems have been fixed in version 2:1.4.4-8.

For the unstable distribution (sid) these problems have been fixed in version 2:1.4.6-1.

We recommend that you upgrade your squirrelmail package.

Upgrade Instructions

wget url

will fetch the file for you
dpkg -i file.deb

will install the referenced file.

If you are using the apt-get package manager, use the line for sources.list as given below:

apt-get update

will update the internal database apt-get upgrade

will install corrected packages

You may use an automated update by adding the resources from the footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:

    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.2.6-5.dsc
      Size/MD5 checksum: 582 07fe8ca983ec4bf8a3355a91c79c9d78
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.2.6-5.diff.gz
      Size/MD5 checksum: 24884 a65726611c8f71274582b353e309a9a1
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.2.6.orig.tar.gz
      Size/MD5 checksum: 1856087 be9e6be1de8d3dd818185d596b41a7f1

Architecture independent components:

http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.2.6-5_all.deb
Size/MD5 checksum: 1841716 1d246bc2ffe2323e2503202bfc147d9c

Debian GNU/Linux 3.1 alias sarge

Source archives:

    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-8.dsc
      Size/MD5 checksum: 678 140546ee9c0534419ddcaf3c7e632110
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-8.diff.gz
      Size/MD5 checksum: 24654 15ddd8f4db234006a1ac290087640dfc
    http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4.orig.tar.gz
      Size/MD5 checksum: 575871 f50548b6f4f24d28afb5e6048977f4da

Architecture independent components:

http://security.debian.org/pool/updates/main/s/squirrelmail/squirrelmail_1.4.4-8_all.deb
Size/MD5 checksum: 570472 2087dcea05cd5e1c4033f15cf120761a

These files will probably be moved into the stable distribution on its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

Fedora Legacy

Fedora Legacy Update Advisory

Synopsis: Updated XFree86 packages fix security issues
Advisory ID: FLSA:168264-1
Issue date: 2006-03-07
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CVE-2005-0605 CVE-2005-2495

1. Topic:

Updated XFree86 packages that fix security issues are now available.

XFree86 is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386

3. Problem description:

An integer overflow flaw was found in libXpm, which is used by some applications for loading of XPM images. An attacker could create a malicious XPM file that would execute arbitrary code if opened by a victim using an application linked to the vulnerable library. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CVE-2005-0605 to this issue.

Several integer overflow bugs were found in the way XFree86 parses pixmap images. It is possible for a user to gain elevated privileges by loading a specially crafted pixmap image. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CVE-2005-2495 to this issue.

Users of XFree86 should upgrade to these updated packages, which contain backported patches and are not vulnerable to these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (*.rpm) if your current directory only contains the desired RPMs.

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. This assumes that you have yum or apt-get configured for obtaining Fedora Legacy content. Please visit http://www.fedoralegacy.org/docs for directions on how to configure yum and apt-get.

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168264

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/XFree86-4.2.1-16.73.31.legacy.src.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/XFree86-4.3.0-2.90.61.legacy.src.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/XFree86-4.3.0-60.legacy.src.rpm

7. Verification:

SHA1 sum Package Name

0cbc1cb6499a8684d19f24cf111b4fea65ba92ae redhat/7.3/updates/i386/XFree86-100dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
8c2025d75448c2f03b9bd2493cdc42f84741ba14 redhat/7.3/updates/i386/XFree86-4.2.1-16.73.31.legacy.i386.rpm
45d182c851d2d98fcf551ee5f4229ba76f7fe1ae redhat/7.3/updates/i386/XFree86-75dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
57d848f52c35787175eb7556350cf6202a3acc9e redhat/7.3/updates/i386/XFree86-base-fonts-4.2.1-16.73.31.legacy.i386.rpm
6b7e1499d32cea54eda46c7a23586edff860b01f redhat/7.3/updates/i386/XFree86-cyrillic-fonts-4.2.1-16.73.31.legacy.i386.rpm
5ae4db073a051453c1ea05328ba611820c54ac6e redhat/7.3/updates/i386/XFree86-devel-4.2.1-16.73.31.legacy.i386.rpm
8f5ddf6f2ffc17a706368dbdcd9f6880cf163eca redhat/7.3/updates/i386/XFree86-doc-4.2.1-16.73.31.legacy.i386.rpm
e80034e10d2babcab44f449040556f1c62b9c65b redhat/7.3/updates/i386/XFree86-font-utils-4.2.1-16.73.31.legacy.i386.rpm
67b6b5d8b00a4f53ad300bc07d5c35c6c023280f redhat/7.3/updates/i386/XFree86-ISO8859-15-100dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
c25c85a92e2fb2e80fb9ee2c19b0cb017e92b065 redhat/7.3/updates/i386/XFree86-ISO8859-15-75dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
a54081ce435b2ed6695231f895e8cce95972027f redhat/7.3/updates/i386/XFree86-ISO8859-2-100dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
ceb5c88c82123d553c09ed2dceb7395abf893dfc redhat/7.3/updates/i386/XFree86-ISO8859-2-75dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
9d8a2d217d1161cd8e37187ab82826592fced64b redhat/7.3/updates/i386/XFree86-ISO8859-9-100dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
7b7684a8bca628231f42d04aa545624052ebd59b redhat/7.3/updates/i386/XFree86-ISO8859-9-75dpi-fonts-4.2.1-16.73.31.legacy.i386.rpm
dc04b533163d6a61471e2ce404bbce11e8a026de redhat/7.3/updates/i386/XFree86-libs-4.2.1-16.73.31.legacy.i386.rpm
58388c03cb94a1b74c4e65246a21b364e3e9bec0 redhat/7.3/updates/i386/XFree86-tools-4.2.1-16.73.31.legacy.i386.rpm
23d5801937faf0b0033db434d4713719bf13992f redhat/7.3/updates/i386/XFree86-truetype-fonts-4.2.1-16.73.31.legacy.i386.rpm
ea0187127b7e4177c7d1653fe65c86d1b95f2dd9 redhat/7.3/updates/i386/XFree86-twm-4.2.1-16.73.31.legacy.i386.rpm
05d935b6e8e5b2dcc443556a3f15522aaa054278 redhat/7.3/updates/i386/XFree86-xdm-4.2.1-16.73.31.legacy.i386.rpm
7ec5886f06e93eac890fd5c47ed96b811b218b17 redhat/7.3/updates/i386/XFree86-xf86cfg-4.2.1-16.73.31.legacy.i386.rpm
cd5d813aa22857cea4ea75179befad39e643559d redhat/7.3/updates/i386/XFree86-xfs-4.2.1-16.73.31.legacy.i386.rpm
53f7b20ad43180b4b860974a867030c484656b23 redhat/7.3/updates/i386/XFree86-Xnest-4.2.1-16.73.31.legacy.i386.rpm
e0629ed131499721c4384630364fa34a4338614f redhat/7.3/updates/i386/XFree86-Xvfb-4.2.1-16.73.31.legacy.i386.rpm
f28c45eafb4b035d7fa814ed8b23c1270aea4d0b redhat/7.3/updates/SRPMS/XFree86-4.2.1-16.73.31.legacy.src.rpm

fb1a1f39a9372aa0147c508eb5d4db52d581a1cc redhat/9/updates/i386/XFree86-100dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
562913cdf6f7237b852062d1c6fd8f1a03482f9f redhat/9/updates/i386/XFree86-4.3.0-2.90.61.legacy.i386.rpm
a0a44151d9c0c7b73e2b266b3c81f4e5cd2ba712 redhat/9/updates/i386/XFree86-75dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
0b6ae5bf6ea0938feadc805890c1b46b5de98870 redhat/9/updates/i386/XFree86-base-fonts-4.3.0-2.90.61.legacy.i386.rpm
6e06fe3b0262230d005020b9176a0601f8fe17fd redhat/9/updates/i386/XFree86-cyrillic-fonts-4.3.0-2.90.61.legacy.i386.rpm
75ec411aeaa191642774ff3d6b2da778849fff86 redhat/9/updates/i386/XFree86-devel-4.3.0-2.90.61.legacy.i386.rpm
9ca5fb3e139559593e1d3b243c03fd660ebf1bde redhat/9/updates/i386/XFree86-doc-4.3.0-2.90.61.legacy.i386.rpm
77f4f6d9d41c8ae72ca152fa8c5d856dd0d14acb redhat/9/updates/i386/XFree86-font-utils-4.3.0-2.90.61.legacy.i386.rpm
8a3282947adcb55f210534fa7930a2caf35ee31b redhat/9/updates/i386/XFree86-ISO8859-14-100dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
00e356bf12d218e3cf4cfd16cbdbb3bb6c1f4ff6 redhat/9/updates/i386/XFree86-ISO8859-14-75dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
ffa1bfa1925f88314a916835609d2567593fee7d redhat/9/updates/i386/XFree86-ISO8859-15-100dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
73ccf11e207edc656b4bb7dfce08ed804290ef4b redhat/9/updates/i386/XFree86-ISO8859-15-75dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
38b67c16ea8b8191edb4b3df890d017b4c498397 redhat/9/updates/i386/XFree86-ISO8859-2-100dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
ec33602ea178f0c9b3133f5224c7230f373a19ff redhat/9/updates/i386/XFree86-ISO8859-2-75dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
b47fb63d7c9dfbe83846a8c016a4e62725d8fad4 redhat/9/updates/i386/XFree86-ISO8859-9-100dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
b9c0e2552ccd4ce1f2cdd3494d38d956cd0e8c52 redhat/9/updates/i386/XFree86-ISO8859-9-75dpi-fonts-4.3.0-2.90.61.legacy.i386.rpm
f34539d0acccb62d0c39eda5d8e2f69677594505 redhat/9/updates/i386/XFree86-libs-4.3.0-2.90.61.legacy.i386.rpm
44c71e911bcbc53bf2692bdb4fa39d05b69777ec redhat/9/updates/i386/XFree86-libs-data-4.3.0-2.90.61.legacy.i386.rpm
b65547fc07ae1c1880cbfb2905dbc61a3e97f7d3 redhat/9/updates/i386/XFree86-Mesa-libGL-4.3.0-2.90.61.legacy.i386.rpm
537c5f4aacb6eedd2c508ab2968f013396e52a76 redhat/9/updates/i386/XFree86-Mesa-libGLU-4.3.0-2.90.61.legacy.i386.rpm
2b4c1d714eec3c66cb5b01539ee8d179b49ffcc1 redhat/9/updates/i386/XFree86-sdk-4.3.0-2.90.61.legacy.i386.rpm
97b8aa8cf0cfcb6af5e594819d98486b32f9c965 redhat/9/updates/i386/XFree86-syriac-fonts-4.3.0-2.90.61.legacy.i386.rpm
7898a7ae919e67e4cfe63fd3121d815710240bf0 redhat/9/updates/i386/XFree86-tools-4.3.0-2.90.61.legacy.i386.rpm
d8b6e93b6c4fa6c0563bf9bc4f82b1e4828c9b30 redhat/9/updates/i386/XFree86-truetype-fonts-4.3.0-2.90.61.legacy.i386.rpm
3fdf5b8877cef9d337ae13deff0c72fdea156291 redhat/9/updates/i386/XFree86-twm-4.3.0-2.90.61.legacy.i386.rpm
612a4e120fcd790c5e8a3481e0cadd76fddb1cc7 redhat/9/updates/i386/XFree86-xauth-4.3.0-2.90.61.legacy.i386.rpm
6ceb66f35332408b2a19474533285b3d0fc17c9d redhat/9/updates/i386/XFree86-xdm-4.3.0-2.90.61.legacy.i386.rpm
174dcc7e757da7175b270ff34f8ce9c4efd9563e redhat/9/updates/i386/XFree86-xfs-4.3.0-2.90.61.legacy.i386.rpm
22b32e9c6460e4a52704f43d78675f0cdcce8291 redhat/9/updates/i386/XFree86-Xnest-4.3.0-2.90.61.legacy.i386.rpm
ec25c9cb7a1bff4eccd503fedd3b49862d9c2405 redhat/9/updates/i386/XFree86-Xvfb-4.3.0-2.90.61.legacy.i386.rpm
84bbfb5f2fa13f20d465a0a552041526cb26bc3b redhat/9/updates/SRPMS/XFree86-4.3.0-2.90.61.legacy.src.rpm

2a09c30f05a126480d06220affc808bed0ccd831 fedora/1/updates/i386/XFree86-100dpi-fonts-4.3.0-60.legacy.i386.rpm
d168ebb164d69f9fa0edd668a27e50a4e43ea2dd fedora/1/updates/i386/XFree86-4.3.0-60.legacy.i386.rpm
e6ab23ec2e99a2d6dcbfed6a073402d88e796563 fedora/1/updates/i386/XFree86-75dpi-fonts-4.3.0-60.legacy.i386.rpm
5573af42869b10f104a52ac6fa5221e4c125cd46 fedora/1/updates/i386/XFree86-base-fonts-4.3.0-60.legacy.i386.rpm
0ae445a93ae5b573b2afb72441a712ac858c002e fedora/1/updates/i386/XFree86-cyrillic-fonts-4.3.0-60.legacy.i386.rpm
c453822bd9aa5cdd6d7497bf7e629928a0424ebb fedora/1/updates/i386/XFree86-devel-4.3.0-60.legacy.i386.rpm
b8768066b3f60ae86ab32559748c33590ae58b61 fedora/1/updates/i386/XFree86-doc-4.3.0-60.legacy.i386.rpm
142309e5f990556c9789bbe8e5b29e7b99ce9131 fedora/1/updates/i386/XFree86-font-utils-4.3.0-60.legacy.i386.rpm
02f4ffe56217dac4c263317c754be2221f11c2b1 fedora/1/updates/i386/XFree86-ISO8859-14-100dpi-fonts-4.3.0-60.legacy.i386.rpm
f5a98a73fcdc0ff03e2b24ed9b8e147c85e55487 fedora/1/updates/i386/XFree86-ISO8859-14-75dpi-fonts-4.3.0-60.legacy.i386.rpm
7d833db16f028ff40d6ee67e04c03e7bb351a0fd fedora/1/updates/i386/XFree86-ISO8859-15-100dpi-fonts-4.3.0-60.legacy.i386.rpm
318f747bcdbd0be642d3fe1d52382772dec56634 fedora/1/updates/i386/XFree86-ISO8859-15-75dpi-fonts-4.3.0-60.legacy.i386.rpm
38395a9806da0e234d74b7c1e6e3dbed5d525726 fedora/1/updates/i386/XFree86-ISO8859-2-100dpi-fonts-4.3.0-60.legacy.i386.rpm
507cc1c515c2fe3f901704153819bcc62c133b46 fedora/1/updates/i386/XFree86-ISO8859-2-75dpi-fonts-4.3.0-60.legacy.i386.rpm
e5a19310f393f5fde53a72a7fa3d522e227bc7e7 fedora/1/updates/i386/XFree86-ISO8859-9-100dpi-fonts-4.3.0-60.legacy.i386.rpm
f65b8b8da1484ce2dd20737cc0279865ab5fdbd8 fedora/1/updates/i386/XFree86-ISO8859-9-75dpi-fonts-4.3.0-60.legacy.i386.rpm
1bbdad4b6bd3117c6495d7c3bdef3da6bcb9ab0b fedora/1/updates/i386/XFree86-libs-4.3.0-60.legacy.i386.rpm
8a55ec0a7a0564c3cd3f4263b6cc8e4ed151ba8e fedora/1/updates/i386/XFree86-libs-data-4.3.0-60.legacy.i386.rpm
c9eb4e6054d2159b1ff28a5ce52b640a4e9b0359 fedora/1/updates/i386/XFree86-Mesa-libGL-4.3.0-60.legacy.i386.rpm
5e9c2f7390b7200e573a77bd9051ec36eb67621f fedora/1/updates/i386/XFree86-Mesa-libGLU-4.3.0-60.legacy.i386.rpm
9cde04ebb5610324b158a9ae2b5f0d04d56ed7cb fedora/1/updates/i386/XFree86-sdk-4.3.0-60.legacy.i386.rpm
339d8521270468753b9db696306acd64cb8bbab1 fedora/1/updates/i386/XFree86-syriac-fonts-4.3.0-60.legacy.i386.rpm
c011244e0b99ce7d3929c3ad6958f409de1f6139 fedora/1/updates/i386/XFree86-tools-4.3.0-60.legacy.i386.rpm
36ba1b374ee3fae3b65712e2cd2a6b1e131524a5 fedora/1/updates/i386/XFree86-truetype-fonts-4.3.0-60.legacy.i386.rpm
36f807093616e0615f4a70dc46ebd91b256ce8d2 fedora/1/updates/i386/XFree86-twm-4.3.0-60.legacy.i386.rpm
5f82fea2f05c74f2433ebc6bc2e4db188ad9e7d2 fedora/1/updates/i386/XFree86-xauth-4.3.0-60.legacy.i386.rpm
2b5768e46ce851b22564cc3b824d0987d027b8d1 fedora/1/updates/i386/XFree86-xdm-4.3.0-60.legacy.i386.rpm
c11d8de359322a543e8876163581bc38fa06b954 fedora/1/updates/i386/XFree86-xfs-4.3.0-60.legacy.i386.rpm
a3b20af14a192aa110f0fe247d7c6d0478cebd98 fedora/1/updates/i386/XFree86-Xnest-4.3.0-60.legacy.i386.rpm
ba4f2c18b58be48594a48eafc97564d31aec0286 fedora/1/updates/i386/XFree86-Xvfb-4.3.0-60.legacy.i386.rpm
d1fe795457c17ae1348c63e859414623d8fd5c02 fedora/1/updates/SRPMS/XFree86-4.3.0-60.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0605
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2495

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated X.org packages fix security issue
Advisory ID: FLSA:168264-2
Issue date: 2006-03-07
Product: Fedora Core
Keywords: Bugfix
CVE Names: CVE-2005-2495

1. Topic:

Updated X.org packages that fix a security issue are now available.

X.org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon.

2. Relevant releases/architectures:

Fedora Core 2 - i386

3. Problem description:

Several integer overflow bugs were found in the way X.org parses pixmap images. It is possible for a user to gain elevated privileges by loading a specially crafted pixmap image. The Common Vulnerabilities and Exposures project (cve.mitre.org/) has assigned the name CVE-2005-2495 to this issue.

Users of X.org should upgrade to these updated packages, which contain a backported patch and are not vulnerable to this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168264

6. RPMs required:

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/xorg-x11-6.7.0-14.1.legacy.src.rpm

7. Verification:

SHA1 sum Package Name

fb2e8bbd5c2f1132d19ee20bd773be9d3179db9d fedora/2/updates/i386/xorg-x11-100dpi-fonts-6.7.0-14.1.legacy.i386.rpm
02ff368c88f7907764b2da5e385f2e079f3849cd fedora/2/updates/i386/xorg-x11-6.7.0-14.1.legacy.i386.rpm
c81dda89910ea896c7070eab733df161dba54a39 fedora/2/updates/i386/xorg-x11-75dpi-fonts-6.7.0-14.1.legacy.i386.rpm
501f87e1196be0a33d95f0d52ead826677a34f22 fedora/2/updates/i386/xorg-x11-base-fonts-6.7.0-14.1.legacy.i386.rpm
1e0c6b43d3965b5e7d2d049bbc790d9a8c73a7d0 fedora/2/updates/i386/xorg-x11-cyrillic-fonts-6.7.0-14.1.legacy.i386.rpm
82eb2326f5b8494f96761e6092e34056e700a809 fedora/2/updates/i386/xorg-x11-devel-6.7.0-14.1.legacy.i386.rpm
c0d1461ddb2c070cdabddf6b3ebccc34ec66d3ef fedora/2/updates/i386/xorg-x11-doc-6.7.0-14.1.legacy.i386.rpm
3f6382954c75e22ab177abbe1707140feea0170d fedora/2/updates/i386/xorg-x11-font-utils-6.7.0-14.1.legacy.i386.rpm
6f0c373860e9d64c5efea95e77d3e6d5872dacc0 fedora/2/updates/i386/xorg-x11-ISO8859-14-100dpi-fonts-6.7.0-14.1.legacy.i386.rpm
c861aa4032a4f169929f225d46e798f5e0f18890 fedora/2/updates/i386/xorg-x11-ISO8859-14-75dpi-fonts-6.7.0-14.1.legacy.i386.rpm
83eb270f4395c14edd17cc55a1d78965e5f602e8 fedora/2/updates/i386/xorg-x11-ISO8859-15-100dpi-fonts-6.7.0-14.1.legacy.i386.rpm
a99b042654bd86640eea6e7e1b76bda402d49b85 fedora/2/updates/i386/xorg-x11-ISO8859-15-75dpi-fonts-6.7.0-14.1.legacy.i386.rpm
52b7c9ff7e29265605c4bb1d08a735b279287fc5 fedora/2/updates/i386/xorg-x11-ISO8859-2-100dpi-fonts-6.7.0-14.1.legacy.i386.rpm
4e3900230a90728563f1173c8af82af2272dec03 fedora/2/updates/i386/xorg-x11-ISO8859-2-75dpi-fonts-6.7.0-14.1.legacy.i386.rpm
5091477dffb64324caae7d3d558882ab73e26609 fedora/2/updates/i386/xorg-x11-ISO8859-9-100dpi-fonts-6.7.0-14.1.legacy.i386.rpm
9ef03f7f4355a5e1d3f19f71d597e541cad3e831 fedora/2/updates/i386/xorg-x11-ISO8859-9-75dpi-fonts-6.7.0-14.1.legacy.i386.rpm
f1ea8740e9802ad98b194284e8afb3eee8e1106d fedora/2/updates/i386/xorg-x11-libs-6.7.0-14.1.legacy.i386.rpm
222037711ead385d31fac145142c10c9c93f8c51 fedora/2/updates/i386/xorg-x11-libs-data-6.7.0-14.1.legacy.i386.rpm
c21a7c11d52eaabe8bae5145e270c5301fcf8c17 fedora/2/updates/i386/xorg-x11-Mesa-libGL-6.7.0-14.1.legacy.i386.rpm
3314b29f2bc32e4ccd837b7973fc07847d073df0 fedora/2/updates/i386/xorg-x11-Mesa-libGLU-6.7.0-14.1.legacy.i386.rpm
3eac8219f4e3753644511090657ddc513a75c0c8 fedora/2/updates/i386/xorg-x11-sdk-6.7.0-14.1.legacy.i386.rpm
f99d01e683755302d4ed5ea8a03f09b4828b7ea0 fedora/2/updates/i386/xorg-x11-syriac-fonts-6.7.0-14.1.legacy.i386.rpm
d265d17e698e8d2e3a40c9b8519fe70cd01a1ca2 fedora/2/updates/i386/xorg-x11-tools-6.7.0-14.1.legacy.i386.rpm
ff8ff747514e3b9bf7945aac37ed19ab00293fbd fedora/2/updates/i386/xorg-x11-truetype-fonts-6.7.0-14.1.legacy.i386.rpm
e6141cfe3188c556c6e8ba54eba44d5e8645f09b fedora/2/updates/i386/xorg-x11-twm-6.7.0-14.1.legacy.i386.rpm
05fc596a5a8956e8fcbd1ac788bbba855e87fbba fedora/2/updates/i386/xorg-x11-xauth-6.7.0-14.1.legacy.i386.rpm
70b47f7e0e944ef7402437135a044209cba064ae fedora/2/updates/i386/xorg-x11-xdm-6.7.0-14.1.legacy.i386.rpm
f6b74e278a54a2477bbda52155daad7787721a81 fedora/2/updates/i386/xorg-x11-xfs-6.7.0-14.1.legacy.i386.rpm
c362a7d289c0c8d56ad63f0364e879819185871f fedora/2/updates/i386/xorg-x11-Xnest-6.7.0-14.1.legacy.i386.rpm
fd3251aec6f906005c34d5a6e3324e38a0dcc510 fedora/2/updates/i386/xorg-x11-Xvfb-6.7.0-14.1.legacy.i386.rpm
af4f7aea4c1b550d1a0389c0f3213bc6c74d87e6 fedora/2/updates/SRPMS/xorg-x11-6.7.0-14.1.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2495

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated pcre packages fix a security issue
Advisory ID: FLSA:168516
Issue date: 2006-03-07
Product: Red Hat Linux, Fedora Core
Keywords: Bugfix
CVE Names: CVE-2005-2491

1. Topic:

Updated pcre packages are now available to correct a security issue.

PCRE is a Perl-compatible regular expression library.

2. Relevant releases/architectures:

Red Hat Linux 7.3 - i386
Red Hat Linux 9 - i386
Fedora Core 1 - i386
Fedora Core 2 - i386

3. Problem description:

An integer overflow flaw was found in PCRE, triggered by a maliciously crafted regular expression. On systems that accept arbitrary regular expressions from untrusted users, this could be exploited to execute arbitrary code with the privileges of the application using the library. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2491 to this issue.

Users should update to these erratum packages that contain a backported patch to correct this issue.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168516

6. RPMs required:

Red Hat Linux 7.3:
SRPM:
http://download.fedoralegacy.org/redhat/7.3/updates/SRPMS/pcre-3.9-2.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/7.3/updates/i386/pcre-3.9-2.1.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/7.3/updates/i386/pcre-devel-3.9-2.1.legacy.i386.rpm

Red Hat Linux 9:

SRPM:
http://download.fedoralegacy.org/redhat/9/updates/SRPMS/pcre-3.9-10.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/redhat/9/updates/i386/pcre-3.9-10.1.legacy.i386.rpm
http://download.fedoralegacy.org/redhat/9/updates/i386/pcre-devel-3.9-10.1.legacy.i386.rpm

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/pcre-4.4-1.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/pcre-4.4-1.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/1/updates/i386/pcre-devel-4.4-1.2.legacy.i386.rpm

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/pcre-4.5-2.2.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/2/updates/i386/pcre-4.5-2.2.legacy.i386.rpm
http://download.fedoralegacy.org/fedora/2/updates/i386/pcre-devel-4.5-2.2.legacy.i386.rpm

7. Verification:

SHA1 sum Package Name

9b641aa989639c706065bafc146d34bb6e282a22 redhat/7.3/updates/i386/pcre-3.9-2.1.legacy.i386.rpm
7d8b094083c7a85991d194d6741a0a664204a19d redhat/7.3/updates/i386/pcre-devel-3.9-2.1.legacy.i386.rpm
9a49145385042483532254fb5d05fae6c3f252f3 redhat/7.3/updates/SRPMS/pcre-3.9-2.1.legacy.src.rpm

d876a7f4cdb3a936b2f72fb629fae928d3db6e96 redhat/9/updates/i386/pcre-3.9-10.1.legacy.i386.rpm
9e516b5e44944b25a47171b15c0229423b10f99d redhat/9/updates/i386/pcre-devel-3.9-10.1.legacy.i386.rpm
55de51292b97aacbad6c375b4ad8578561ac5fe3 redhat/9/updates/SRPMS/pcre-3.9-10.1.legacy.src.rpm

4edc206f1e0fc0c3df459b6f8de289f27417974b fedora/1/updates/i386/pcre-4.4-1.2.legacy.i386.rpm
0fcc5801dc238bb1fac0d59b8403e6cdcc72f126 fedora/1/updates/i386/pcre-devel-4.4-1.2.legacy.i386.rpm
57b3a2c5c2bb3435d3c7971daf29c665fb2c1687 fedora/1/updates/SRPMS/pcre-4.4-1.2.legacy.src.rpm

bff4b330e8c9a76262020c7ddb2b48f71bf01788 fedora/2/updates/i386/pcre-4.5-2.2.legacy.i386.rpm
8354926500e18905dd94dddc1e6bf44cd236df68 fedora/2/updates/i386/pcre-devel-4.5-2.2.legacy.i386.rpm
9f43e7d484412d93734dfe4b08f87d2ef133100a fedora/2/updates/SRPMS/pcre-4.5-2.2.legacy.src.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Fedora Legacy Update Advisory

Synopsis: Updated gpdf package fixes security issues
Advisory ID: FLSA:176751
Issue date: 2006-03-07
Product: Fedora Core
Keywords: Bugfix
CVE Names: CVE-2005-2097 CVE-2005-3191 CVE-2005-3192 CVE-2005-3193 CVE-2005-3624 CVE-2005-3625 CVE-2005-3626 CVE-2005-3627 CVE-2005-3628

1. Topic:

An updated gpdf package that fixes several security issues is now available.

The gpdf package is a GNOME based viewer for Portable Document Format (PDF) files.

2. Relevant releases/architectures:

Fedora Core 1 - i386
Fedora Core 2 - i386
Fedora Core 3 - i386, x86_64

3. Problem description:

A flaw was discovered in gpdf. An attacker could construct a carefully crafted PDF file that would cause gpdf to consume all available disk space in /tmp when opened. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2097 to this issue.

Several flaws were discovered in gpdf. An attacker could construct a carefully crafted PDF file that could cause gpdf to crash or possibly execute arbitrary code when opened. The Common Vulnerabilities and Exposures project assigned the names CVE-2005-3191, CVE-2005-3192, CVE-2005-3193, CVE-2005-3624, CVE-2005-3625, CVE-2005-3626, CVE-2005-3627 and CVE-2005-3628 to these issues.

Users of gpdf should upgrade to this updated package, which contains backported patches to resolve these issues.

4. Solution:

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

yum update

or to use apt:

apt-get update; apt-get upgrade

5. Bug IDs fixed:

https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=176751

6. RPMs required:

Fedora Core 1:

SRPM:
http://download.fedoralegacy.org/fedora/1/updates/SRPMS/gpdf-0.110-1.5.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/1/updates/i386/gpdf-0.110-1.5.legacy.i386.rpm

Fedora Core 2:

SRPM:
http://download.fedoralegacy.org/fedora/2/updates/SRPMS/gpdf-2.8.2-4.1.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/2/updates/i386/gpdf-2.8.2-4.1.1.legacy.i386.rpm

Fedora Core 3:

SRPM:
http://download.fedoralegacy.org/fedora/3/updates/SRPMS/gpdf-2.8.2-7.2.1.legacy.src.rpm

i386:
http://download.fedoralegacy.org/fedora/3/updates/i386/gpdf-2.8.2-7.2.1.legacy.i386.rpm

x86_64:
http://download.fedoralegacy.org/fedora/3/updates/x86_64/gpdf-2.8.2-7.2.1.legacy.x86_64.rpm

7. Verification:

SHA1 sum Package Name

646edd9bdaf07a2f74d0b9874a666f94dc4f7982 fedora/1/updates-testing/i386/gpdf-0.110-1.5.legacy.i386.rpm
23f1172453f4e6572bd5a5bebcf093fda9c9ef62 fedora/1/updates-testing/SRPMS/gpdf-0.110-1.5.legacy.src.rpm

2798a8e5ba37214b4ad3d537aa38b65c62c9e7c7 fedora/2/updates-testing/i386/gpdf-2.8.2-4.1.1.legacy.i386.rpm
e6d36329145bd25d5646da0064124f4b3a3faf99 fedora/2/updates-testing/SRPMS/gpdf-2.8.2-4.1.1.legacy.src.rpm

2a08ad7afb9cecc7e41d80603a536b191d85f776 fedora/3/updates-testing/i386/gpdf-2.8.2-7.2.1.legacy.i386.rpm
3d3ab23bea79b424aaac1c26e3c16a3dfbee7af0 fedora/3/updates-testing/SRPMS/gpdf-2.8.2-7.2.1.legacy.src.rpm
a434ff117af22aeacc3c76773fa6985be9c107c0 fedora/3/updates-testing/x86_64/gpdf-2.8.2-7.2.1.legacy.x86_64.rpm

These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

You can verify each package with the following command:

rpm --checksig -v <filename>

If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

sha1sum <filename>

8. References:

9. Contact:

The Fedora Legacy security contact is <secnotice@fedoralegacy.org>. More project details at http://www.fedoralegacy.org

Mandriva Linux

Mandriva Linux Security Advisory MDKSA-2006:054
http://www.mandriva.com/security/

Package : kdegraphics
Date : March 8, 2006
Affected: 2006.0, Corporate 3.0

Problem Description:

Marcelo Ricardo Leitner discovered the official published kpdf patches for several previous xpdf vulnerabilities were lacking some hunks published by upstream xpdf. As a result, kpdf is still vulnerable to certain carefully crafted pdf files.

Although previous updates captured most of these changes, this new update picks up some of the missing patches.

The updated packages have been patched to correct these problems.

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0746

Updated Packages:

Mandriva Linux 2006.0:
dc23d7a2c2799b07f8ca1a55e1ca51c3 2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.i586.rpm
95ff255170962f2857421a7d03e73e0d 2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.i586.rpm
474020c1b3d7f2ff0377b7493d4fe015 2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.i586.rpm
3e677eafc18a927eb4b7005ebdc220c4 2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.i586.rpm
10215d111099353bb1029691ec64ecd1 2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.i586.rpm
bc6eed827d7271f6f0893866de8e58fe 2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.i586.rpm
57099b9e0d3984f7270cb651ea1a04e4 2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.i586.rpm
13e05c162914feb2c92919b83d4f87e4 2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.i586.rpm
aae519f69b4a99b8aa6f712db6bdfc8a 2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.i586.rpm
ba4fbb4a4c9681a636a3bf5143d5eb0a 2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.i586.rpm
9ee64f4bb02478bef90f3236891ab21d 2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
5ea03b32b80e136231c29b5b052bf879 2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.i586.rpm
84bc05495dffbdb278b2fe59bb0b0b4c 2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.i586.rpm
323bd1b223e4714dd421aa45f2d5bc15 2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.i586.rpm
88e0c206e28710ce025f1d4b0be51194 2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
cf495fa452779ea71d44b8d08fae9e4a 2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.i586.rpm
84b5fea1f30a37c7b6554d238d9969b8 2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
b96a36a001c57a9e8af8c1e462cc1728 2006.0/RPMS/libkdegraphics0-common-3.4.2-11.6.20060mdk.i586.rpm
0dacf50541280f76239aefc6a85eaea2 2006.0/RPMS/libkdegraphics0-common-devel-3.4.2-11.6.20060mdk.i586.rpm
750c8f0a555b6d78d75cbdfbdbcb99e2 2006.0/RPMS/libkdegraphics0-kghostview-3.4.2-11.6.20060mdk.i586.rpm
fed6e610a76e0a6e07cbe5d3267d2949 2006.0/RPMS/libkdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.i586.rpm
f8a04d9c6ffcd78195a1e01e752014d9 2006.0/RPMS/libkdegraphics0-kooka-3.4.2-11.6.20060mdk.i586.rpm
52efbc50319331d5e60eded62a227293 2006.0/RPMS/libkdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.i586.rpm
0c4ff0dfe710a242c8ca60f991644f4c 2006.0/RPMS/libkdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
019bc2f486450bd63b61f856bbf69867 2006.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.i586.rpm
bd99611424c15e5858475f2103eba259 2006.0/RPMS/libkdegraphics0-ksvg-3.4.2-11.6.20060mdk.i586.rpm
bf7dcc4cd4810b59c93dd528cbcd0007 2006.0/RPMS/libkdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.i586.rpm
6d07da96dc1aa9b47b3836a21c34ba81 2006.0/RPMS/libkdegraphics0-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
df357ed8a9ebeb4bc6b6d643ec3344ee 2006.0/RPMS/libkdegraphics0-kview-3.4.2-11.6.20060mdk.i586.rpm
cfc0e76d0f28b1fda5020844b7310eb3 2006.0/RPMS/libkdegraphics0-kview-devel-3.4.2-11.6.20060mdk.i586.rpm
262df8bca246f0a11f8f48c68d0def2a 2006.0/RPMS/libkdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
490e87860d08949dcfba640aebb64e9e 2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm

Mandriva Linux 2006.0/X86_64:
e451ef694d51102e3ea632ad2acc6275 x86_64/2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.x86_64.rpm
9d7fd55d06f15e42b52e47db83103b81 x86_64/2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.x86_64.rpm
e22588e10d162a4b9ab6f22f394512f1 x86_64/2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.x86_64.rpm
f1a59958e73e439e3484926c5ce8485b x86_64/2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.x86_64.rpm
584190d5ee8feda810cf82b13a5d9b2b x86_64/2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
8c0dbb217f3ec91be0b42ab49e5df624 x86_64/2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.x86_64.rpm
55e7b90d0c134b346d9694219d55d4c3 x86_64/2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.x86_64.rpm
935e8c36e8ee328915bf274df8bba219 x86_64/2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
15b6922841998a8befa0c03d71a9d697 x86_64/2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.x86_64.rpm
d43c63a5a7d972b7fecad3bda9699661 x86_64/2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.x86_64.rpm
73ef99e1c249306c55a0537c387fdf6b x86_64/2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
e1eb7688e3bb5db74e867a48cd1f3fd3 x86_64/2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.x86_64.rpm
f161cc3dda887f10fcf488ead0ff3659 x86_64/2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.x86_64.rpm
129e7bf9db533f7428fa84e5d4d57a40 x86_64/2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
1a315ee0d22be616186a7ff9378d7ccd x86_64/2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
cceffb28070069b6a63b4380ceea13bc x86_64/2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fa6d629d828a564a912f378f6b5fd8ba x86_64/2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
44bcb009f741ba86d85cc7319a51c349 x86_64/2006.0/RPMS/lib64kdegraphics0-common-3.4.2-11.6.20060mdk.x86_64.rpm
232089b2cff996ebfafec428e5b7970d x86_64/2006.0/RPMS/lib64kdegraphics0-common-devel-3.4.2-11.6.20060mdk.x86_64.rpm
1f6ed874be34c557f97296389969b70e x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
84d92f82eb9f22abea7884dd548bcd03 x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
bdf205140076f24147247b06a4cd77b8 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
1d54c3557c2d39347845645dd5b0a494 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.x86_64.rpm
3883f32ec9c35957dbc02bd37af36669 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
10d49dd6216817e421c7f24018bb5f67 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.x86_64.rpm
dcd8aa2cef36a42f1d280c606cbf99b6 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
81b12ebf82ac906e1382d07e56c105f3 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.x86_64.rpm
49524b942ff8d8268bd06a0f0e107085 x86_64/2006.0/RPMS/lib64kdegraphics0-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
dcffebae88d6429403dc7fe63cac6c9d x86_64/2006.0/RPMS/lib64kdegraphics0-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fc74f36474838a66dc5308fe9e02e3f6 x86_64/2006.0/RPMS/lib64kdegraphics0-kview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
01843ddf9e3b76f5cc3e01524cd0286e x86_64/2006.0/RPMS/lib64kdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
490e87860d08949dcfba640aebb64e9e x86_64/2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm

Corporate 3.0:
51e0606ac280e0cc886c72dffe6824d1 corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.i586.rpm
9601ca08dd6eda7c98308182550e8248 corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.i586.rpm
ca58e5e269b245bdc946d9b9360134c9 corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.i586.rpm
9e28cb256b4e12cd3ca3f9bda5c0520a corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.i586.rpm
1b9d8e9f8d628034b4acae94fad7bc7a corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.i586.rpm
6005e3a0c5275657196a896cbc4f303f corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.i586.rpm
6418633ded8703d8414098ab4ae44f42 corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.i586.rpm
27cbec1b107839d628bdd8351e5d7949 corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.i586.rpm
be303920699e02c4222e3dc4c4c4f70f corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.i586.rpm
6c36c9c3c2c1164e082fa21bcb22f898 corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
fd676144c8c91bfa2fc815d74d6d06c4 corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.i586.rpm
c70efb5c20a0210ebadd304ac33084ed corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.i586.rpm
4802c5c4d71c97cb580d1abfa8b53e62 corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.i586.rpm
41c26fcd50da8d743824cbf02f951659 corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.i586.rpm
3eda368d71099e6a8ed7862c1d047cdc corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.i586.rpm
eefc87854e4da33c8e5cc72d1f4247bc corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
7d97dde05898b3c4cc043ce004b99fee corporate/3.0/RPMS/libkdegraphics0-common-3.2-15.11.C30mdk.i586.rpm
a046dae0c8de2befc845bd9b59b90f09 corporate/3.0/RPMS/libkdegraphics0-common-devel-3.2-15.11.C30mdk.i586.rpm
176537ec9600922a7b9139ddeb6079dd corporate/3.0/RPMS/libkdegraphics0-kooka-3.2-15.11.C30mdk.i586.rpm
c431ca440ccda135872614b568f14891 corporate/3.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.11.C30mdk.i586.rpm
2a202d58fa292c12fd1b9930bae61884 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
43731a73ae3cf3907bff942bfdcf4273 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.i586.rpm
e9dfd9364a1ae87e1c693e860fab291e corporate/3.0/RPMS/libkdegraphics0-ksvg-3.2-15.11.C30mdk.i586.rpm
cc01418cec4f0083121b3bc991bdefdf corporate/3.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.11.C30mdk.i586.rpm
cfc7b4529602c70a182b21c54299a2d8 corporate/3.0/RPMS/libkdegraphics0-kuickshow-3.2-15.11.C30mdk.i586.rpm
eba181f9a600f705fc98e60f6f7ac442 corporate/3.0/RPMS/libkdegraphics0-kview-3.2-15.11.C30mdk.i586.rpm
3827091a0c824a380ce0646346187b44 corporate/3.0/RPMS/libkdegraphics0-kview-devel-3.2-15.11.C30mdk.i586.rpm
9a49711ad498f9b75240dae5123cdaef corporate/3.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
8b920b69894838d7d88e94ab5c9b1e2c corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm

Corporate 3.0/X86_64:
5026cabe3d75dd58603ed3802189facf x86_64/corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.x86_64.rpm
01caa05305add9c1c98ec71b0ae47aeb x86_64/corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.x86_64.rpm
e5cfd1891c687c2a21c07e1b13a3a9e7 x86_64/corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.x86_64.rpm
30065589222058a50de2c18ba959c630 x86_64/corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.x86_64.rpm
12f6066eb7232f7c6f31e1b60be92503 x86_64/corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.x86_64.rpm
ee70269eb23ff8847432b598b963eeaa x86_64/corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.x86_64.rpm
aa80daf0b9a45ae487ff2343f801c94a x86_64/corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.x86_64.rpm
fba3494001ca73a2b091f1d97542fe73 x86_64/corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.x86_64.rpm
83595fb2da64f3558b6a42686bb55a50 x86_64/corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.x86_64.rpm
6dd9a9afbc380d8c0d6d90da147bb8d6 x86_64/corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
9df4059d563ca6d5aed4d97174bc4063 x86_64/corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.x86_64.rpm
583ebf769f9b683362b6a761ae6d58bf x86_64/corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.x86_64.rpm
e8cbe2fb6f56f64109de990068090e1f x86_64/corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.x86_64.rpm
c0734112d40ad034d4f8ac3c731abc2e x86_64/corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
860c3df07ce03e3c18f270ad93aec61b x86_64/corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.x86_64.rpm
ca43b8e1a0dab676968862d17497dffb x86_64/corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
ad5d0dcfa14588b362e324e19d2330a7 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-3.2-15.11.C30mdk.x86_64.rpm
fbe466690d4f80aa96dbe69d751f8ac2 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-devel-3.2-15.11.C30mdk.x86_64.rpm
c370cba72fdd6d01f2757088753d2760 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-3.2-15.11.C30mdk.x86_64.rpm
7dbcdbc9aa9818985fbab842bf68cedd x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-devel-3.2-15.11.C30mdk.x86_64.rpm
dabee7aa3c28e3b5831463325204c958 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
69257212b2952f9cefa8612973349329 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.x86_64.rpm
4c25457183c583888000b8752e706715 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-3.2-15.11.C30mdk.x86_64.rpm
be5380637967d4b977b9900939c34cd4 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-devel-3.2-15.11.C30mdk.x86_64.rpm
54a37b14f7939bdc210a28e50ef1211a x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
612d43095d606bf61f5ee11a3bd6976c x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-3.2-15.11.C30mdk.x86_64.rpm
f28f0bd9630345cfb11c6a2004108988 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-devel-3.2-15.11.C30mdk.x86_64.rpm
40a4b7aa13ef681c3498bddb68f9e0f9 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
8b920b69894838d7d88e94ab5c9b1e2c x86_64/corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm

To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com>

Red Hat Linux

Red Hat Security Advisory

Synopsis: Updated kernel packages available for Red Hat Enterprise Linux 4 Update 3
Advisory ID: RHSA-2006:0132-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2006-0132.html
Issue date: 2006-03-07
Updated on: 2006-03-07
Product: Red Hat Enterprise Linux
CVE Names: CVE-2006-0095

1. Summary:

Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. This is the third regular update.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 4 - i386, ia64, noarch, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, noarch, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, noarch, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, noarch, x86_64

3. Problem description:

The Linux kernel handles the basic functions of the operating system.

This is the third regular kernel update to Red Hat Enterprise Linux 4.

New features introduced in this update include:

Open InfiniBand (OpenIB) support
Serial Attached SCSI support
NFS access control lists, asynchronous I/O
IA64 multi-core support and sgi updates
Large SMP CPU limits increased using the largesmp kernel: Up to 512 CPUs in ia64, 128 in ppc64, and 64 in AMD64 and Intel EM64T
Improved read-ahead performance
Common Internet File System (CIFS) update
Device mapper mirroring
Error Detection and Correction (EDAC) modules
Unisys support

There were several bug fixes in various parts of the kernel. The ongoing effort to resolve these problems has resulted in a marked improvement in the reliability and scalability of Red Hat Enterprise Linux 4.

The following security bug was fixed in this update:

- dm-crypt did not clear a structure before freeing it, which could allow local users to discover information about cryptographic keys (CVE-2006-0095)

The following device drivers have been upgraded to new versions:

cciss: 2.6.8 to 2.6.8-rh1
ipmi_devintf: 33.4 to 33.11
ipmi_msghandler: 33.4 to 33.11
ipmi_poweroff: 33.4 to 33.11
ipmi_si: 33.4 to 33.11
ipmi_watchdog: 33.4 to 33.11
mptbase: 3.02.18 to 3.02.60.01rh
e1000: 6.0.54-k2-NAPI to 6.1.16-k2-NAPI
ixgb: 1.0.95-k2-NAPI to 1.0.100-k2-NAPI
tg3: 3.27-rh to 3.43-rh
aacraid: 1.1.2-lk2 to 1.1-5[2412]
ahci: 1.01 to 1.2
ata_piix: 1.03 to 1.05
iscsi_sfnet: 4:0.1.11-1 to 4:0.1.11-2
libata: 1.11 to 1.20
qla2100: 8.01.00b5-rh2 to 8.01.02-d3
qla2200: 8.01.00b5-rh2 to 8.01.02-d3
qla2300: 8.01.00b5-rh2 to 8.01.02-d3
qla2322: 8.01.00b5-rh2 to 8.01.02-d3
qla2xxx: 8.01.00b5-rh2 to 8.01.02-d3
qla6312: 8.01.00b5-rh2 to 8.01.02-d3
sata_nv: 0.6 to 0.8
sata_promise: 1.01 to 1.03
sata_svw: 1.06 to 1.07
sata_sx4: 0.7 to 0.8
sata_vsc: 1.0 to 1.1
cifs: 1.20 to 1.34

Added drivers:

bnx2: 1.4.25
dell_rbu: 0.7
hangcheck-timer: 0.9.0
ib_mthca: 0.06
megaraid_sas: 00.00.02.00
qla2400: 8.01.02-d3
typhoon: 1.5.7

All Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command:

up2date

For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system:

http://www.redhat.com/docs/manuals/enterprise/

5. Bug IDs fixed (http://bugzilla.redhat.com/):

108616 - RHEL4 (IPF): Support for Additional function in Intel's Monticeto processor (HW)
108827 - RHEL4: Infiniband support
131889 - RHEL4 U2: SATA ATAPI support (including ESB2)
139949 - sym driver creates voluminous /var/log/messages entries
141699 - FEAT: RHEL 4 U3: ia64 needs hint@pause in spinloop
141851 - spin loops on both ia32 and ia32e need cpu_relax
144477 - bonding mode=6 + dhcp doesn't work correctly
144703 - ia32 apps that are not large file aware can access files >= 4GB
145061 - SMART support in SATA driver (P1)
149294 - qlogic fabric rediscovery functionality missing
150893 - On few Nocona based platforms, acpi-cpufreq driver assumes the wrong CPU freq at boot time
151549 - RHEL 4 Kernel does not provide ACL support over NFS
152036 - Amanda hangs on backup in case of ip_conntrack_amanda is used (RHEL4)
153971 - large usb flash drive require reboot to mount more than once
154387 - umount fails on nfs server side when nfs client does heavy io
155017 - Unisys' x86_64 ES7000 loses legacy devices during boot when using latest ES7000 platform code
156437 - Writing large file to 1TB ext3 volume sometimes very slow
156602 - SCTP memory consumption, additional fixes
156785 - Missing SHUTDOWN notification with SCTP stream socket
157241 - [RHEL4-U3] PCI Hotplug - Slot powered off after enabling
157586 - ES7000 systems won't boot with large configuration
159869 - Diskdump fails through ipr driver
160308 - USB Key stops working after upgrade to U1
160844 - dangling POSIX locks after close
161101 - Assertion failure in journal_commit_transaction() at fs/jbd/commit.c:790: "jh->b_next_transaction == ((void *)0)"
161362 - Oracle Hangs with directio and aio using NFS
161597 - sysfs_remove_dir() de-references NULL pointer
161617 - RHEL4 Panics at smp_apic_timer_interrupt
161846 - Problem with b44: SIOCSIFFLAGS: Cannot allocate memory
162094 - read() with count > 0xffffffff panics kernel at fs/direct-io.c:886
162731 - [RHEL4] 'getpriority/setpriority' broken with PRIO_USER, who=0
162732 - io_cancel doesn't work properly
162759 - System occasionally experienced system hangs.
162814 - Assertion failure in log_do_checkpoint
163150 - request backport of fc transport class HBA port_id for dm-multipath
163738 - Kernel PANIC - not syncing: fatal exception
163741 - qetharp 'Operation not supported' on non-layer2 guestlan
164298 - PANIC at rpc_wake_up_status
164547 - Bug in IPv6 address adding error path
165018 - Bonding driver fails to switch to backup link
165092 - Bugs in kernel key managment syscall interface
165154 - Bad order for release_region in error exit from i810_probe
165741 - acct does not have Large File Support
165744 - 2.6: /sbin/service iptables stop hangs on modprobe -r ipt_state
165959 - NFS/RPC - timestamp conversion is wrong
166454 - rpmbuild --rebuild glibc-2.3.4-2.12.src.rpm hangs (same problem with glibc-2.3.4-2.9.src.rpm)
166524 - Erratic behaviour when system fd limit reached
166544 - 2.6.9-16.ELsmp null pointer dereference in __bounce_end_io_read on x86_64
166589 - mount/umount can cause the block device reads to fail
166880 - [RHEL4 U1] OOPS removing ahci driver
167115 - [RHEL4 U1] Bonding driver does not switch to backup interface upon active interface failure under heavy UDP traffic
167192 - NFSv3 locking misses important kernel patches
167211 - RHEL4 Panic in __wake_up_common (networking)
167630 - Multicast domain membership doesn't follow bonding failover
167634 - RHEL4 __copy_user breaks on unaligned src
167645 - RHEL4 U2 performance regression running enterprise workload
167730 - FEAT RHEL4 U3: 10GigE Neterion Driver Update (S2io)
167731 - [RHEL4] hangcheck-timer not compiled in RHEL4 on IA64
167907 - SCTP association restart problem, possible backport
168090 - ipmi_poweroff driver update for Dell <8G servers
168262 - [RHEL4 U1][diskdump] Diskdump from OS_INIT fails.
168431 - autofs removes leading path components of /net mounts on timeout
168483 - FEAT: [RHEL4 U3] kernel dm: Statistic information about dm devices (*)
168775 - wait() and waitpid() return inconsistencies under high load
168824 - [FEAT:][RHEL 4 U3]LVM2 Snapshot support of root
169042 - [Texas Instruments] nfs bindresvport: Address already in use
169149 - oops in gss_pipe_release()
169184 - ls hangs on krb5 mountd when user has not kinit-ed
169197 - NFS client oops when debugging is on
170146 - CRM648268: kernel reporting init process cutime as very large negative value
170423 - Cache invalidation bug in nfs v3
170487 - Bad: kernel panic on boot (kernel-2.6.9-22.EL)
170546 - kernel_lock() problem through NFS mount
170656 - iSCSI connection recovery uses session address instead of portal address
170864 - device-mapper mirroring backwards compatibility issue
170887 - Neterion(S2io) adapter not functional after running offline diagnostics
170985 - RHEL 4 Update 2 Incompatibility with VMware ESX 2.5.2
171060 - Marvell Yukon 88E8050 ethernet interface not supported
171112 - Kernel oops killing process with open files on a NFS3 krb5 mount after /var/lib/nfs/rpc_pipefs has been unmounted
171141 - FEAT RHEL4 U3 [diskdump]: kernel - support compressing dump data
171220 - USB: khubd deadlock on error path
171705 - Kernel key management facility improvements
171715 - nfsd: clear signals before exiting the nfsd() thread
171765 - linux-2.6.13-key-reiserfs.patch is incomplete
171950 - Can't reboot on IBM xSeries 236.
171985 - rhel4 u2 - Null pointer dereference in alc880_auto_fill_dac_nids
171989 - rhel4 modules loading signing issue
172081 - rename(2) onto an empty directory fails on NFS file systems
172214 - Large LUNS can't be seen with Hitachi Open-L SAN
172393 - No analog audio with the "Intel Corporation Enterprise Southbridge High Definition Audio (rev 08)"
172487 - Difficulty with some iSCSI targets in iscsi_sfnet
172595 - netpoll can dereference a null pointer, causing a system crash
172598 - [RHEL4] tuxstat SIGSEGV
172839 - NMI watchdog panic during cache_alloc_refill with corrupt size-128 slabcache
172892 - kernel dm: dm-ioctl memory leak on attempt to load non-existing mapping
172920 - Lock at "Initializing hardware... storage network" caused by ULi HD Audio controller enabled.
172986 - autofs doesn't remount if nfs server is unreachable at expire time
173155 - kernel dm: DM_LIST_VERSIONS_CMD ioctl reponse truncated
173156 - kernel dm: Notify userspace when a device is renamed.
173157 - kernel dm-log: big endian 64-bit corruption
173158 - kernel dm-log: Make mirror log arch-independent
173159 - kernel dm: move bdget outside lockfs
173161 - kernel dm: Make lock_fs optional.
173163 - kernel dm snapshot: Separate out metadata reading.
173164 - kernel dm snapshot: Load metadata on table creation not resumption.
173166 - kernel dm snapshot: Reduce PF_MEMALLOC usage
173174 - kernel dm multipath: Fix do_end_io locking.
173194 - race condition when expiring ghosted autofs mounts
173206 - kernel dm snapshot: bio_list_merge fix
173304 - Fix for SystemTap bugzilla #1345 - return probe on do_execve
173354 - unable to create sgi_sn/ptc_statistics" printed to the console
173486 - Further key management facility improvements
173493 - Permit key management to request already running process to instantiate a key
173912 - GFS deadlock - gfs_write (do_write_direct) and gfs_setattr (do_truncate)
173981 - kernel bug at mm/prio_tree.c
174427 - SCSI errors with latest qlogic driver
174760 - Provide support for more than 8 logical processors
174895 - System became unresponsive to local commands.
175123 - Diskdump overwrite by SATA update
175132 - Audit fails to record syscall failures when asked to via auditctl
175415 - [audit][PATCH] New user space message types
175680 - broken U3 modsyms
175687 - autofs doesn't attempt to remount failed mount points
175728 - Kernel panic. Server hangs and is totally unresponsive until a power cycle brings it back online.
175812 - setxattr() to a file on NFS returns EIO
175988 - hang-check timer needs to be build on S390/S390x
176825 - broken memsets in s390 drivers.
177031 - device-mapper mirror log: avoid overrun while syncing
177136 - CVE-2006-0095 dm-crypt key leak
177445 - Please consider upping NR_CPUS to 16 for x86_64
177492 - Early panic in "io_apic_get_unique_id" on 4CPU, dual-core HT enabled EM64T System
177522 - Kernel panic while running NFS ACL test
177527 - Add aic94xx and sas code into RHEL4 U3
177561 - Largesmp kernel does not see all logical CPUs on IBM x460
177620 - kernel device-mapper snapshot: barriers are not supported
177634 - AIM7 File Server Performance -15% relative to U2
177719 - BIOS bug shows the wrong number of CPUs
178839 - CPU's being incorrectly numbered
178975 - /proc/cpuinfo shows wrong value
179057 - SCSI LLDD's oops on rmmod if devices scan w/ PQ=3
179751 - lvremove panic in dm_mod:kcopyd_client_destroy while attempting to remove a snapshot 180353 - NPTL: under xterm -e process receives SIGHUP when child thread exits 180405 - kabi violation in multi-core detection patch 181574 - device-mapper mirror removal stuck on kcopyd_client_destroy (pvmove hangs) 181884 - RHEL4 U3 "noht" boot parameter sometimes disables dual core support as well as ht support

6. RPMs required:

Red Hat Enterprise Linux AS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/kernel-2.6.9-34.EL.src.rpm
969780046bc8a7f7d33e6eb73477c35e kernel-2.6.9-34.EL.src.rpm

i386:
2064a3c58b05e968679207687dbc4298 kernel-2.6.9-34.EL.i686.rpm
46608bf806692c1646d89c6c1355dbf5 kernel-devel-2.6.9-34.EL.i686.rpm
a397a5ec8ef28298565091bb8c671c05 kernel-hugemem-2.6.9-34.EL.i686.rpm
5df428f24b225b21ae93fad89a2e5eb1 kernel-hugemem-devel-2.6.9-34.EL.i686.rpm
6e01fc2120b5124c16d8adc7b970739a kernel-smp-2.6.9-34.EL.i686.rpm
0880e12ccbbbcbff6959dbbc447dbb3b kernel-smp-devel-2.6.9-34.EL.i686.rpm

ia64:
91971bcda1453b7c47410733681a0ddb kernel-2.6.9-34.EL.ia64.rpm
46302dee1262b2d19e3020991185f73a kernel-devel-2.6.9-34.EL.ia64.rpm
99f2d93f5d63d16340e5ce69a6f7f974 kernel-largesmp-2.6.9-34.EL.ia64.rpm
4bf73a79f4b617649dced45d8a394f63 kernel-largesmp-devel-2.6.9-34.EL.ia64.rpm

noarch:
cd967a8e145158552f88654d643cf6de kernel-doc-2.6.9-34.EL.noarch.rpm

ppc:
e10d63ac6746fba6e5550eae629d6795 kernel-2.6.9-34.EL.ppc64.rpm
4ed97e3db813003b84a2eeb89dd8b8b3 kernel-2.6.9-34.EL.ppc64iseries.rpm
bb1b102063817e1298fefda9761fdb81 kernel-devel-2.6.9-34.EL.ppc64.rpm
8f57904dce87c0d8157adcb59a178ecd kernel-devel-2.6.9-34.EL.ppc64iseries.rpm
69c5f58101a9d3989366ade5d80bb8a5 kernel-largesmp-2.6.9-34.EL.ppc64.rpm
b04b4db355aec05ddc4b924764d9d959 kernel-largesmp-devel-2.6.9-34.EL.ppc64.rpm

s390:
6aad68668854f1cd731f82e9cc63e3ad kernel-2.6.9-34.EL.s390.rpm
6485150610367322e3cce1be384e50ec kernel-devel-2.6.9-34.EL.s390.rpm

s390x:
46dad8427fa0306934d953e4156df78a kernel-2.6.9-34.EL.s390x.rpm
266d5bdc257d7cedaac57ba5bbbcf8e5 kernel-devel-2.6.9-34.EL.s390x.rpm

x86_64:
64621007fa744fec83d865c5051f3da7 kernel-2.6.9-34.EL.x86_64.rpm
92d147f62c823c6cb7ff093eb49036a1 kernel-devel-2.6.9-34.EL.x86_64.rpm
cfc22b13fabbc9b548ec949d67d79d45 kernel-largesmp-2.6.9-34.EL.x86_64.rpm
a2ef24cc6901dc3dc7ceb42f3884f44e kernel-largesmp-devel-2.6.9-34.EL.x86_64.rpm
15d7ed8513b00f20037219ff0a8e2394 kernel-smp-2.6.9-34.EL.x86_64.rpm
91fe0d58820c367ae72758ed0334a3e4 kernel-smp-devel-2.6.9-34.EL.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/kernel-2.6.9-34.EL.src.rpm
969780046bc8a7f7d33e6eb73477c35e kernel-2.6.9-34.EL.src.rpm

noarch:
cd967a8e145158552f88654d643cf6de kernel-doc-2.6.9-34.EL.noarch.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/kernel-2.6.9-34.EL.src.rpm
969780046bc8a7f7d33e6eb73477c35e kernel-2.6.9-34.EL.src.rpm

noarch:
cd967a8e145158552f88654d643cf6de kernel-doc-2.6.9-34.EL.noarch.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/kernel-2.6.9-34.EL.src.rpm
969780046bc8a7f7d33e6eb73477c35e kernel-2.6.9-34.EL.src.rpm

noarch:
cd967a8e145158552f88654d643cf6de kernel-doc-2.6.9-34.EL.noarch.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0095

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact details at https://www.redhat.com/security/team/contact/