Debian alert DSA-539-1 (kdelibs)
| From: | joey@infodrom.org (Martin Schulze) | |
| To: | debian-security-announce@lists.debian.org (Debian Security Announcements) | |
| Subject: | [SECURITY] [DSA 539-1] New kdelibs packages fix denial of service | |
| Date: | Tue, 17 Aug 2004 12:37:34 +0200 (CEST) |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 539-1 security@debian.org http://www.debian.org/security/ Martin Schulze August 17th, 2004 http://www.debian.org/security/faq - -------------------------------------------------------------------------- Package : kdelibs Vulnerability : temporary directory vulnerability Problem-Type : local Debian-specific: no CVE ID : CAN-2004-0689 The SUSE security team was alerted that in some cases the integrity of symlinks used by KDE are not ensured and that these symlinks can be pointing to stale locations. This can be abused by a local attacker to create or truncate arbitrary files or to prevent KDE applications from functioning correctly. For the stable distribution (woody) this problem has been fixed in version 2.2.2-13.woody.12. For the unstable distribution (sid) this problem has been fixed in version 3.3.0-1. We recommend that you upgrade your kde packages. Upgrade Instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 3.0 alias woody - -------------------------------- Source archives: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 1355 d3a686303d44d4d7267d003437c61d6f http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 60237 a247b433ae9405adb8ba32ac64366ea9 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6396699 7a9277a2e727821338f751855c2ce5d3 Architecture independent components: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 2565330 94ae7a9f2aa13f0d5af53e84711b48df Alpha architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 757648 070939992e3f91d5e4af7459bcbc65bd http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 7553152 8a38dc59758c98f0ffc45ff30d35545f http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 137540 828a37e54007e3ee26ead1022225c4fb http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 202136 c149dbf59fb5e2b4cc86b6efedb11798 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1022454 ae3ee30c6da6c2bd359f19aa95d35164 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1029338 a859bc42892d2254b49e78e7804e5572 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 198358 3ed91696368d4bec551b90e4eb14e306 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 174840 7bbf74d09ecab2838000eff44fefb412 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 178310 fd4f1272e955bbe747f1d636e05b6d46 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37360 bd60c3654e906c76f0ba56b2ac0e2ba6 ARM architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 743890 f4570ed6dc7f06bf5842634f7d87bf98 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6589724 ace8117a74cacb732c5fb937d730bd02 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 104704 44ddcd45621c3d9ab55815e9281be254 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 186724 33dff29b8d4d32143dae08f2bf2a0707 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 651892 94ec38d2950f27192227fd2c5e8f2539 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 655498 09b34582c403425044a328315d985556 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 155764 989e1904a2653ff5b63a47cca2d96afe http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 124956 13a186a5514ea0b77067f9f07e5e8669 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 128068 18d5d45087c564e74ac7e0339446733c http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37362 eebd1e696269ba46c619c427161b105b Intel IA-32 architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 743168 f68af0a8ac8c481085e898de6a847e7f http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6619492 c7575be8e141f5beed80ba700a532076 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 106252 5b31130082d854841ddd97450cc005de http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 183214 f82c6a704c45c6f0edfdee0a7baf80be http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 625368 53972f342aa4b648a5efcc97a9c069a8 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 629646 fb0f9b4c8b9a77394380beccf50ff794 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 155104 4789419151794965ad6dcee62e2cb9f5 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 123624 c3c16139946d4aba4c6f52d96abb1387 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 126702 d7169b378a82e23bb7227ad129164c5c http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37354 77ca1f5c92af7900758758d83510e60a Intel IA-64 architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 768012 580f23b7cdf35305beb92e999ba5d0a3 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 8859798 01747dfaba30bdf9b9fb4671f09c7549 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 153880 80462e3a89a72e0d4e6cce0b5c8b5aa3 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 257394 94e0cbc745ff2fd7539fa978e18b70f0 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1045640 85cf65252794eebda8b315b9d16d38b7 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1051082 705a684a23f545469502398227b3005e http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 199630 862e4406fc9e5e9bf6fd12102fada77b http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 185646 003014ea7220e7e072f5590b85ea3a44 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 191168 47d95215dabbc7815e5d8c9d058bf50c http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37346 36939c48d36ad10fa6f714c5790f2572 HP Precision architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 749976 d36688bf0bb71345e81f53c35cdbf633 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 7345134 3ce498555005ec03158b0204304964b5 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 117614 d87e46df4c0e03cd0c2df1da8daf12d5 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 218080 361692ff0f3e2a10efc88614d68e670d http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1111794 3c0a43ef05d73130d0a83eda8f9976ae http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 1115472 b0f435aa78ff25a70bf045ad3d59602d http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 207794 753e967a306857eade12ef5833de4d3e http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 172134 d4df135b8d2d0e385a23c830e2eaf291 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 176282 2ae6a01bdd9b0978a3fcd24661589e2a http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37360 4b78561ba125de1623aad0985d421059 Motorola 680x0 architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 740284 5acaae1f0542e7a917a22078ad3f5517 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6484874 87ff700648c3eebb8ef382d4994074c8 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 103784 c2484427b9d2a03fbb3dd11b790e205f http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 178680 b7dc5dad932d6227cc4ca7ea45acef44 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 628842 584553689667389420893c8df9717418 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 633340 5cdf5156814e757f3de3378f2329ece3 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 151260 e6b2f1d87c03359683ced5d4a652f1c6 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 120908 88fb5d3b55827edaba64b1a0dc496b21 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 123834 a8976c61a5863f0044be15e72db8633b http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37362 22a795c7f5d00b2124b9d1438b6bbbe9 Big endian MIPS architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 740110 365824fb1cc40b36c84f02bfd98370db http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6298940 7798ef2d9f4af7d36f11368d235af175 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 107036 c50dbb82dad5e132785da5f74e273eb0 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 161186 767756d8bb5f26dceac74897a50d53a3 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 621108 cc793df9d37277fe876ffebe34c35c8d http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 625428 9d630556c1a34d152e5ad1f3d721237b http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 176042 09c4fbd451ad2fb09263b2b2c52c110b http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 124446 2ce8ab66dbc9971765903e799d21b7b8 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 127486 72028283ffbb83771ff7d9e083493bd6 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37362 e5f39aeae3576bac38c2958f1b77a5f4 Little endian MIPS architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 739470 be36fb502c0add3edb8c126c7c6aaeca http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6191060 75c8cbe691811e886e4549900c2cf4ff http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 106036 59cca462876ca3ac32b0d6b6ce720b28 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 159414 b598649367df5e1cd32cff3219077bee http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 613886 64ba4160509525088d1998fde60edaea http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 617456 1e8d8926b9193a024099389626106c63 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 175236 7dab30528a2ce3d3c8f7d6a88eeb89d2 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 123468 474bcaf555edc60ccb8b0883441d25bd http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 126458 6bc7e7c66f5ecb44d1e99ed2ef19347c http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37370 be9b7a0e141449aea2c7fd3ead3cf2de PowerPC architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 741128 a739292946050c0b9bb86473b90667a7 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6742956 35f2676a4e6b829486175b686d7ea067 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 106154 28dffafa60ff506e33d35b95fd902e28 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 182800 d2b8215a33f516e4633ddb2cff4f8ad5 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 691252 f6aeb7beed07c022d5c08c55c7caa245 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 694858 f24574669857e90a5460bbc90e19845d http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 154020 6cf08316c42a767ac227791d1ba6f71f http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 127754 61050762ba53549839f513e9fffe607e http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 130672 766961b45ec3ba35dd204653267ac017 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37356 07bcb224fb8946796200faccced5a7dd IBM S/390 architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 742592 c33b6be42f3b4c55c20b876f0f439bd7 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6743254 efc3c4cf7a0f265e016c621b0f16bbf6 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 110692 f9ce2901504915d3cf833432d9b152f6 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 177166 803d86215970756a1e13f914aefcb247 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 642490 769869ba63aec951e6cf589a2055e937 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 647564 28070605d0c633ea4ce3be2b9b3a40cb http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 151606 d9e1db83c62f0c7199f940f0ea662525 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 130114 04e6ac510c568cb872282213fe61fcbc http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 133544 856e185ca4d107247b2eb428ded8ae33 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37354 95c2d65d90777fa3ac784f3995757264 Sun Sparc architecture: http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 741956 47aa5619e6e67958a030a50a18824613 http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 6579770 e28496f22195640d3dfc1b450e9aeb9e http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 117958 f52340e7d4bf7cdd20837b25292af0bb http://security.debian.org/pool/updates/main/k/kdelibs/kd... Size/MD5 checksum: 184378 fc12f85e153e1d1e3653257920b851c4 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 665204 cd0e1c7939525cf758c8f3b99b40f1d7 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 669090 e25b4d047cb320fe9adc49b4b4e1efdb http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 152008 5607dddc8a78c6aafa8d4c79a808b9c4 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 128866 13792b1a4c52e462d0982f1a0ef804ed http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 131594 4e10857249e6f914ea0d42a23d504105 http://security.debian.org/pool/updates/main/k/kdelibs/li... Size/MD5 checksum: 37364 f949cc34262f6c7cc18c992af6a69e8b These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce@lists.debian.org Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (GNU/Linux) iD8DBQFBId/tW5ql+IAeqTIRAo2RAJ9iUHMjdPFPc6raFYz9CLjdPbMtaQCfZG+l 8fHwVhO3T1g8nBiAIFZHBQ8= =pEtp -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to debian-security-announce-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
(Log in to post comments)