[ MDKSA-2006:054 ] - Updated kdegraphics packages fixes overflow vulnerabilities
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDKSA-2006:054
http://www.mandriva.com/security/
_______________________________________________________________________
Package : kdegraphics
Date : March 8, 2006
Affected: 2006.0, Corporate 3.0
_______________________________________________________________________
Problem Description:
Marcelo Ricardo Leitner discovered the official published kpdf
patches for several previous xpdf vulnerabilities were lacking some
hunks published by upstream xpdf. As a result, kpdf is still
vulnerable to certain carefully crafted pdf files.
Although previous updates captured most of these changes, this new
update picks up some of the missing patches.
The updated packages have been patched to correct these problems.
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0746
_______________________________________________________________________
Updated Packages:
Mandriva Linux 2006.0:
dc23d7a2c2799b07f8ca1a55e1ca51c3
2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.i586.rpm
95ff255170962f2857421a7d03e73e0d
2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.i586.rpm
474020c1b3d7f2ff0377b7493d4fe015
2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.i586.rpm
3e677eafc18a927eb4b7005ebdc220c4
2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.i586.rpm
10215d111099353bb1029691ec64ecd1
2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.i586.rpm
bc6eed827d7271f6f0893866de8e58fe
2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.i586.rpm
57099b9e0d3984f7270cb651ea1a04e4
2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.i586.rpm
13e05c162914feb2c92919b83d4f87e4
2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.i586.rpm
aae519f69b4a99b8aa6f712db6bdfc8a
2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.i586.rpm
ba4fbb4a4c9681a636a3bf5143d5eb0a
2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.i586.rpm
9ee64f4bb02478bef90f3236891ab21d
2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
5ea03b32b80e136231c29b5b052bf879
2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.i586.rpm
84bc05495dffbdb278b2fe59bb0b0b4c
2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.i586.rpm
323bd1b223e4714dd421aa45f2d5bc15
2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.i586.rpm
88e0c206e28710ce025f1d4b0be51194
2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
cf495fa452779ea71d44b8d08fae9e4a
2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.i586.rpm
84b5fea1f30a37c7b6554d238d9969b8
2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
b96a36a001c57a9e8af8c1e462cc1728
2006.0/RPMS/libkdegraphics0-common-3.4.2-11.6.20060mdk.i586.rpm
0dacf50541280f76239aefc6a85eaea2
2006.0/RPMS/libkdegraphics0-common-devel-3.4.2-11.6.20060mdk.i586.rpm
750c8f0a555b6d78d75cbdfbdbcb99e2
2006.0/RPMS/libkdegraphics0-kghostview-3.4.2-11.6.20060mdk.i586.rpm
fed6e610a76e0a6e07cbe5d3267d2949
2006.0/RPMS/libkdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.i586.rpm
f8a04d9c6ffcd78195a1e01e752014d9
2006.0/RPMS/libkdegraphics0-kooka-3.4.2-11.6.20060mdk.i586.rpm
52efbc50319331d5e60eded62a227293
2006.0/RPMS/libkdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.i586.rpm
0c4ff0dfe710a242c8ca60f991644f4c
2006.0/RPMS/libkdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm
019bc2f486450bd63b61f856bbf69867
2006.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.i586.rpm
bd99611424c15e5858475f2103eba259
2006.0/RPMS/libkdegraphics0-ksvg-3.4.2-11.6.20060mdk.i586.rpm
bf7dcc4cd4810b59c93dd528cbcd0007
2006.0/RPMS/libkdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.i586.rpm
6d07da96dc1aa9b47b3836a21c34ba81
2006.0/RPMS/libkdegraphics0-kuickshow-3.4.2-11.6.20060mdk.i586.rpm
df357ed8a9ebeb4bc6b6d643ec3344ee
2006.0/RPMS/libkdegraphics0-kview-3.4.2-11.6.20060mdk.i586.rpm
cfc0e76d0f28b1fda5020844b7310eb3
2006.0/RPMS/libkdegraphics0-kview-devel-3.4.2-11.6.20060mdk.i586.rpm
262df8bca246f0a11f8f48c68d0def2a
2006.0/RPMS/libkdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm
490e87860d08949dcfba640aebb64e9e
2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm
Mandriva Linux 2006.0/X86_64:
e451ef694d51102e3ea632ad2acc6275
x86_64/2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.x86_64.rpm
9d7fd55d06f15e42b52e47db83103b81
x86_64/2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.x86_64.rpm
e22588e10d162a4b9ab6f22f394512f1
x86_64/2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.x86_64.rpm
f1a59958e73e439e3484926c5ce8485b
x86_64/2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.x86_64.rpm
584190d5ee8feda810cf82b13a5d9b2b
x86_64/2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
8c0dbb217f3ec91be0b42ab49e5df624
x86_64/2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.x86_64.rpm
55e7b90d0c134b346d9694219d55d4c3
x86_64/2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.x86_64.rpm
935e8c36e8ee328915bf274df8bba219
x86_64/2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
15b6922841998a8befa0c03d71a9d697
x86_64/2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.x86_64.rpm
d43c63a5a7d972b7fecad3bda9699661
x86_64/2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.x86_64.rpm
73ef99e1c249306c55a0537c387fdf6b
x86_64/2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
e1eb7688e3bb5db74e867a48cd1f3fd3
x86_64/2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.x86_64.rpm
f161cc3dda887f10fcf488ead0ff3659
x86_64/2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.x86_64.rpm
129e7bf9db533f7428fa84e5d4d57a40
x86_64/2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
1a315ee0d22be616186a7ff9378d7ccd
x86_64/2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
cceffb28070069b6a63b4380ceea13bc
x86_64/2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fa6d629d828a564a912f378f6b5fd8ba
x86_64/2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
44bcb009f741ba86d85cc7319a51c349
x86_64/2006.0/RPMS/lib64kdegraphics0-common-3.4.2-11.6.20060mdk.x86_64.rpm
232089b2cff996ebfafec428e5b7970d
x86_64/2006.0/RPMS/lib64kdegraphics0-common-devel-3.4.2-11.6.20060mdk.x86_64.rpm
1f6ed874be34c557f97296389969b70e
x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm
84d92f82eb9f22abea7884dd548bcd03
x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
bdf205140076f24147247b06a4cd77b8
x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-3.4.2-11.6.20060mdk.x86_64.rpm
1d54c3557c2d39347845645dd5b0a494
x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.x86_64.rpm
3883f32ec9c35957dbc02bd37af36669
x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm
10d49dd6216817e421c7f24018bb5f67
x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.x86_64.rpm
dcd8aa2cef36a42f1d280c606cbf99b6
x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm
81b12ebf82ac906e1382d07e56c105f3
x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.x86_64.rpm
49524b942ff8d8268bd06a0f0e107085
x86_64/2006.0/RPMS/lib64kdegraphics0-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm
dcffebae88d6429403dc7fe63cac6c9d
x86_64/2006.0/RPMS/lib64kdegraphics0-kview-3.4.2-11.6.20060mdk.x86_64.rpm
fc74f36474838a66dc5308fe9e02e3f6
x86_64/2006.0/RPMS/lib64kdegraphics0-kview-devel-3.4.2-11.6.20060mdk.x86_64.rpm
01843ddf9e3b76f5cc3e01524cd0286e
x86_64/2006.0/RPMS/lib64kdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm
490e87860d08949dcfba640aebb64e9e
x86_64/2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm
Corporate 3.0:
51e0606ac280e0cc886c72dffe6824d1
corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.i586.rpm
9601ca08dd6eda7c98308182550e8248
corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.i586.rpm
ca58e5e269b245bdc946d9b9360134c9
corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.i586.rpm
9e28cb256b4e12cd3ca3f9bda5c0520a
corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.i586.rpm
1b9d8e9f8d628034b4acae94fad7bc7a
corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.i586.rpm
6005e3a0c5275657196a896cbc4f303f
corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.i586.rpm
6418633ded8703d8414098ab4ae44f42
corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.i586.rpm
27cbec1b107839d628bdd8351e5d7949
corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.i586.rpm
be303920699e02c4222e3dc4c4c4f70f
corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.i586.rpm
6c36c9c3c2c1164e082fa21bcb22f898
corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
fd676144c8c91bfa2fc815d74d6d06c4
corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.i586.rpm
c70efb5c20a0210ebadd304ac33084ed
corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.i586.rpm
4802c5c4d71c97cb580d1abfa8b53e62
corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.i586.rpm
41c26fcd50da8d743824cbf02f951659
corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.i586.rpm
3eda368d71099e6a8ed7862c1d047cdc
corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.i586.rpm
eefc87854e4da33c8e5cc72d1f4247bc
corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
7d97dde05898b3c4cc043ce004b99fee
corporate/3.0/RPMS/libkdegraphics0-common-3.2-15.11.C30mdk.i586.rpm
a046dae0c8de2befc845bd9b59b90f09
corporate/3.0/RPMS/libkdegraphics0-common-devel-3.2-15.11.C30mdk.i586.rpm
176537ec9600922a7b9139ddeb6079dd
corporate/3.0/RPMS/libkdegraphics0-kooka-3.2-15.11.C30mdk.i586.rpm
c431ca440ccda135872614b568f14891
corporate/3.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.11.C30mdk.i586.rpm
2a202d58fa292c12fd1b9930bae61884
corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.11.C30mdk.i586.rpm
43731a73ae3cf3907bff942bfdcf4273
corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.i586.rpm
e9dfd9364a1ae87e1c693e860fab291e
corporate/3.0/RPMS/libkdegraphics0-ksvg-3.2-15.11.C30mdk.i586.rpm
cc01418cec4f0083121b3bc991bdefdf
corporate/3.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.11.C30mdk.i586.rpm
cfc7b4529602c70a182b21c54299a2d8
corporate/3.0/RPMS/libkdegraphics0-kuickshow-3.2-15.11.C30mdk.i586.rpm
eba181f9a600f705fc98e60f6f7ac442
corporate/3.0/RPMS/libkdegraphics0-kview-3.2-15.11.C30mdk.i586.rpm
3827091a0c824a380ce0646346187b44
corporate/3.0/RPMS/libkdegraphics0-kview-devel-3.2-15.11.C30mdk.i586.rpm
9a49711ad498f9b75240dae5123cdaef
corporate/3.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.11.C30mdk.i586.rpm
8b920b69894838d7d88e94ab5c9b1e2c
corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm
Corporate 3.0/X86_64:
5026cabe3d75dd58603ed3802189facf
x86_64/corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.x86_64.rpm
01caa05305add9c1c98ec71b0ae47aeb
x86_64/corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.x86_64.rpm
e5cfd1891c687c2a21c07e1b13a3a9e7
x86_64/corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.x86_64.rpm
30065589222058a50de2c18ba959c630
x86_64/corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.x86_64.rpm
12f6066eb7232f7c6f31e1b60be92503
x86_64/corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.x86_64.rpm
ee70269eb23ff8847432b598b963eeaa
x86_64/corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.x86_64.rpm
aa80daf0b9a45ae487ff2343f801c94a
x86_64/corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.x86_64.rpm
fba3494001ca73a2b091f1d97542fe73
x86_64/corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.x86_64.rpm
83595fb2da64f3558b6a42686bb55a50
x86_64/corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.x86_64.rpm
6dd9a9afbc380d8c0d6d90da147bb8d6
x86_64/corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
9df4059d563ca6d5aed4d97174bc4063
x86_64/corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.x86_64.rpm
583ebf769f9b683362b6a761ae6d58bf
x86_64/corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.x86_64.rpm
e8cbe2fb6f56f64109de990068090e1f
x86_64/corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.x86_64.rpm
c0734112d40ad034d4f8ac3c731abc2e
x86_64/corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
860c3df07ce03e3c18f270ad93aec61b
x86_64/corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.x86_64.rpm
ca43b8e1a0dab676968862d17497dffb
x86_64/corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
ad5d0dcfa14588b362e324e19d2330a7
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-3.2-15.11.C30mdk.x86_64.rpm
fbe466690d4f80aa96dbe69d751f8ac2
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-devel-3.2-15.11.C30mdk.x86_64.rpm
c370cba72fdd6d01f2757088753d2760
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-3.2-15.11.C30mdk.x86_64.rpm
7dbcdbc9aa9818985fbab842bf68cedd
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-devel-3.2-15.11.C30mdk.x86_64.rpm
dabee7aa3c28e3b5831463325204c958
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm
69257212b2952f9cefa8612973349329
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.x86_64.rpm
4c25457183c583888000b8752e706715
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-3.2-15.11.C30mdk.x86_64.rpm
be5380637967d4b977b9900939c34cd4
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-devel-3.2-15.11.C30mdk.x86_64.rpm
54a37b14f7939bdc210a28e50ef1211a
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kuickshow-3.2-15.11.C30mdk.x86_64.rpm
612d43095d606bf61f5ee11a3bd6976c
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-3.2-15.11.C30mdk.x86_64.rpm
f28f0bd9630345cfb11c6a2004108988
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-devel-3.2-15.11.C30mdk.x86_64.rpm
40a4b7aa13ef681c3498bddb68f9e0f9
x86_64/corporate/3.0/RPMS/lib64kdegraphics0-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm
8b920b69894838d7d88e94ab5c9b1e2c
x86_64/corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm
_______________________________________________________________________
To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
_______________________________________________________________________
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFEDzEXmqjQ0CJFipgRAgwtAKDWpac+I0HvICUg/d8xGnG7P+xC6gCgsmwZ
ndzXdc2NM4ccSeUxPnHVHGc=
=ASxO
-----END PGP SIGNATURE-----