Fedora Legacy Test Update Notification: kdelibs, kdebase
Marc Deslauriers
marcdeslauriers at videotron.ca
Tue Mar 1 01:37:36 UTC 2005
---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2005-2008
Bugzilla https://bugzilla.fedora.us/show_bug.cgi?id=2008
2005-02-28
---------------------------------------------------------------------
Name : kdelibs and kdebase
Versions : rh7.3: kdelibs-3.0.5a-0.73.6.legacy
Versions : rh9: kdelibs-3.1-17.legacy
Versions : fc1: kdelibs-3.1.4-9.legacy
Summary : Libraries for the K Desktop Environment.
Description :
KDE Libraries include: kdecore (KDE core library), kdeui (user
interface), kfm (file manager), khtmlw (HTML widget), kio
(Input/Output, networking), kspell (spelling checker), jscript
(javascript), kab (addressbook), kimgio (image manipulation).
---------------------------------------------------------------------
Update Information:
Updated kdelib and kdebase packages that resolve several security issues
are now available.
The kdelibs packages include libraries for the K Desktop Environment.
The kdebase packages include core applications for the K Desktop
Environment.
Flaws have been found in the cookie path handling between a number of
Web browsers and servers. The HTTP cookie standard allows a Web server
supplying a cookie to a client to specify a subset of URLs on the origin
server to which the cookie applies. Web servers such as Apache do not
filter returned cookies and assume that the client will only send back
cookies for requests that fall within the server-supplied subset of
URLs. However, by supplying URLs that use path traversal (/../) and
character encoding, it is possible to fool many browsers into sending a
cookie to a path outside of the originally-specified subset. The Common
Vulnerabilities and Exposures project has assigned the name
CAN-2003-0592 to this issue.
iDEFENSE identified a vulnerability in the Opera web browser that could
allow remote attackers to create or truncate arbitrary files. The KDE
team has found two similar vulnerabilities that also exist in KDE. A
flaw in the telnet URI handler may allow options to be passed to the
telnet program, resulting in creation or replacement of files. An
attacker could create a carefully crafted link such that when opened by
a victim it creates or overwrites a file with the victim's permissions.
A flaw in the mailto URI handler may allow options to be passed to the
kmail program. These options could cause kmail to write to the file
system or to run on a remote X display. An attacker could create a
carefully crafted link in such a way that access may be obtained to run
arbitrary code as the victim. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2004-0411 to these
issues.
Andrew Tuitt reported that versions of KDE up to and including 3.2.3
create temporary directories with predictable names. A local attacker
could prevent KDE applications from functioning correctly, or overwrite
files owned by other users by creating malicious symlinks. The Common
Vulnerabilities and Exposures project has assigned the name
CAN-2004-0689 to this issue.
WESTPOINT internet reconnaissance services has discovered that the KDE
web browser Konqueror allows websites to set cookies for certain country
specific secondary top level domains. An attacker within one of the
affected domains could construct a cookie which would be sent to all
other websites within the domain leading to a session fixation attack.
This issue does not affect popular domains such as .co.uk, .co.in, or
.com. The Common Vulnerabilities and Exposures project has assigned the
name CAN-2004-0721 to this issue.
A frame injection spoofing vulnerability has been discovered in the
Konqueror web browser. This issue could allow a malicious website to
show arbitrary content in a named frame of a different browser window.
The Common Vulnerabilities and Exposures project has assigned the name
CAN-2004-0746 to this issue.
Secunia Research discovered a window injection spoofing vulnerability
affecting the Konqueror web browser. This issue could allow a malicious
website to show arbitrary content in a different browser window. The
Common Vulnerabilities and Exposures project has assigned the name
CAN-2004-1158 to this issue.
A bug was discovered in the way kioslave handles URL-encoded newline
(%0a) characters before the FTP command. It is possible that a specially
crafted URL could be used to execute any ftp command on a remote server,
or potentially send unsolicited email. The Common Vulnerabilities and
Exposures project has assigned the name CAN-2004-1165 to this issue.
All users of KDE are advised to upgrade to this updated packages, which
contain backported patches to correct these issues.
---------------------------------------------------------------------
Changelogs
rh73 kdelibs:
* Wed Feb 16 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.6.legacy
- CAN-2004-1158 and CAN-2004-1165 security patches
* Thu Sep 09 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.5.legacy
- CAN-2004-0689, CAN-2004-0721, CAN-2004-0746 security patches
* Tue Jun 08 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.4.legacy
- CAN-2004-0411 security patch
- (KDE Telnet URI Handler File Vulnerability)
- (Vulnerability in the mailto handler)
* Thu Mar 11 2004 Michael Schwendt <mschwendt[AT]users.sf.net>
6:3.0.5a-0.73.3.legacy
- Backport RHL9 kdelibs-3.1-kcookiejar.patch to KDE 3.0.5a and Qt 3.0.x
to fix CAN-2003-0592.
- Add a bunch of build requirements.
rh73 kdebase:
* Sat Feb 26 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.7.legacy
- Added missing autoconf253, automake, libpng-devel, zlib-devel
lm_sensors-devel, libvorbis-devel, openldap-devel, gettext
freetype-devel, bzip2-devel and pam-devel to BuildPrereq
* Wed Feb 16 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.6.legacy
- new security patch, CAN-2004-1158
* Thu Sep 09 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.0.5a-0.73.5.legacy
- new security patch, CAN-2004-0721
rh9 kdelibs:
* Sun Feb 27 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-17.legacy
- Added missing autoconf, automake, libpng-devel, libvorbis-devel
desktop-file-utils, libart_lgpl-devel, bzip2-devel, libjpeg-devel
openldap-devel, libtiff-devel and XFree86-devel BuilPrereq
* Wed Feb 16 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-16.legacy
- CAN-2004-1158 and CAN-2004-1165 security patches
* Thu Sep 09 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-15.legacy
- CAN-2004-0689, CAN-2004-0721, CAN-2004-0746 security patches
* Tue Jun 08 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-14.legacy
- CAN-2004-0411 security patch
- (KDE Telnet URI Handler File Vulnerability)
- (Vulnerability in the mailto handler)
rh9 kdebase:
* Sun Feb 27 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-18.legacy
- Added autoconf, automake15, libpng-devel, zlib-devel, lm_sensors-devel
libvorbis-devel, openldap-devel, gettext, freetype-devel, audiofile-devel
bzip2-devel, libart_lgpl-devel, libjpeg-devel and pam-devel to
BuildPrereq
* Thu Feb 17 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-17.legacy
- new security patch, CAN-2004-1158
* Thu Sep 09 2004 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1-16.legacy
- new security patch, CAN-2004-0721
fc1 kdelibs:
* Sun Feb 27 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1.4-9.legacy
- Added autoconf, automake, XFree86-devel, libpng-devel, libvorbis-devel
openldap-devel and libtiff-devel BuildPrereq
* Thu Feb 17 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1.4-8.legacy
- Added security fixes for CAN-2004-1158 and CAN-2004-1165
fc1 kdebase:
* Sun Feb 27 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1.4-9.legacy
- Added autoconf, automake15, libpng-devel, zlib-devel, lm_sensors-devel
libvorbis-devel, openldap-devel, gettext, freetype-devel
bzip2-devel, pam-devel, libart_lgpl-devel, audiofile-devel
XFree86-devel, utempter and libjpeg-devel to BuildPrereq
* Thu Feb 17 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
6:3.1.4-8.legacy
- Added security patch for CAN-2004-1158
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedoralegacy.org/
(sha1sums)
rh7.3:
ab6411334132d5802fc3ee5f2fe84f093e4bc2e7
redhat/7.3/updates-testing/i386/kdebase-3.0.5a-0.73.7.legacy.i386.rpm
56c46a2228202188e3ed7568d920026271c7b50b
redhat/7.3/updates-testing/i386/kdebase-devel-3.0.5a-0.73.7.legacy.i386.rpm
150f547193e5c29da348580d5fbd3a073f9ef10e
redhat/7.3/updates-testing/i386/kdelibs-3.0.5a-0.73.6.legacy.i386.rpm
018101a1b09d9e8f1ce5aef49186385ee5822eaf
redhat/7.3/updates-testing/i386/kdelibs-devel-3.0.5a-0.73.6.legacy.i386.rpm
5cd53bb265cb29964d1d52680846296eaa34aa5e
redhat/7.3/updates-testing/SRPMS/kdebase-3.0.5a-0.73.7.legacy.src.rpm
aac6a1b078750398b5636e26890d37eeaba15d07
redhat/7.3/updates-testing/SRPMS/kdelibs-3.0.5a-0.73.6.legacy.src.rpm
rh9:
89ec164225d93ec6572d40f843c8ffed6e0b454b
redhat/9/updates-testing/i386/kdebase-3.1-18.legacy.i386.rpm
a7e702304cc599eba38bd232ab216b2f11c04b03
redhat/9/updates-testing/i386/kdebase-devel-3.1-18.legacy.i386.rpm
43952098114d6f1de023ad02051850d1e62a843b
redhat/9/updates-testing/i386/kdelibs-3.1-17.legacy.i386.rpm
bfc0d2fc7e80c57a5306aac818cd75f073b114bd
redhat/9/updates-testing/i386/kdelibs-devel-3.1-17.legacy.i386.rpm
937fc96d039dd3eb43a4acc975545b954112e3d5
redhat/9/updates-testing/SRPMS/kdebase-3.1-18.legacy.src.rpm
2afbef59e60e63906b9ee20a57dccf438f667dcc
redhat/9/updates-testing/SRPMS/kdelibs-3.1-17.legacy.src.rpm
fc1:
c9bb19c3b14d0307048d6963fd943a558b6beace
fedora/1/updates-testing/i386/kdebase-3.1.4-9.legacy.i386.rpm
229ea248850a2bc07f3ea50f6a26932ba019aa93
fedora/1/updates-testing/i386/kdebase-devel-3.1.4-9.legacy.i386.rpm
a9778ed5012ffbe9d9453e589ab04db5531e3918
fedora/1/updates-testing/i386/kdelibs-3.1.4-9.legacy.i386.rpm
fbb005803701315f6d5932967f7e9152eb2365f0
fedora/1/updates-testing/i386/kdelibs-devel-3.1.4-9.legacy.i386.rpm
3cdb52e7b0fd6fc444a7cea58034db5dcdbc9f99
fedora/1/updates-testing/SRPMS/kdebase-3.1.4-9.legacy.src.rpm
0d896b24d8d88e072e7b46d1cf1ba9733b78b42a
fedora/1/updates-testing/SRPMS/kdelibs-3.1.4-9.legacy.src.rpm
---------------------------------------------------------------------
Please test and comment in bugzilla.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 256 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20050228/f64b5c29/attachment.sig>
More information about the fedora-legacy-list
mailing list