-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2006:054 http://www.mandriva.com/security/ _______________________________________________________________________ Package : kdegraphics Date : March 8, 2006 Affected: 2006.0, Corporate 3.0 _______________________________________________________________________ Problem Description: Marcelo Ricardo Leitner discovered the official published kpdf patches for several previous xpdf vulnerabilities were lacking some hunks published by upstream xpdf. As a result, kpdf is still vulnerable to certain carefully crafted pdf files. Although previous updates captured most of these changes, this new update picks up some of the missing patches. The updated packages have been patched to correct these problems. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0746 _______________________________________________________________________ Updated Packages: Mandriva Linux 2006.0: dc23d7a2c2799b07f8ca1a55e1ca51c3 2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.i586.rpm 95ff255170962f2857421a7d03e73e0d 2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.i586.rpm 474020c1b3d7f2ff0377b7493d4fe015 2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.i586.rpm 3e677eafc18a927eb4b7005ebdc220c4 2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.i586.rpm 10215d111099353bb1029691ec64ecd1 2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.i586.rpm bc6eed827d7271f6f0893866de8e58fe 2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.i586.rpm 57099b9e0d3984f7270cb651ea1a04e4 2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.i586.rpm 13e05c162914feb2c92919b83d4f87e4 2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.i586.rpm aae519f69b4a99b8aa6f712db6bdfc8a 2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.i586.rpm ba4fbb4a4c9681a636a3bf5143d5eb0a 2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.i586.rpm 9ee64f4bb02478bef90f3236891ab21d 2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm 5ea03b32b80e136231c29b5b052bf879 2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.i586.rpm 84bc05495dffbdb278b2fe59bb0b0b4c 2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.i586.rpm 323bd1b223e4714dd421aa45f2d5bc15 2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.i586.rpm 88e0c206e28710ce025f1d4b0be51194 2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.i586.rpm cf495fa452779ea71d44b8d08fae9e4a 2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.i586.rpm 84b5fea1f30a37c7b6554d238d9969b8 2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm b96a36a001c57a9e8af8c1e462cc1728 2006.0/RPMS/libkdegraphics0-common-3.4.2-11.6.20060mdk.i586.rpm 0dacf50541280f76239aefc6a85eaea2 2006.0/RPMS/libkdegraphics0-common-devel-3.4.2-11.6.20060mdk.i586.rpm 750c8f0a555b6d78d75cbdfbdbcb99e2 2006.0/RPMS/libkdegraphics0-kghostview-3.4.2-11.6.20060mdk.i586.rpm fed6e610a76e0a6e07cbe5d3267d2949 2006.0/RPMS/libkdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.i586.rpm f8a04d9c6ffcd78195a1e01e752014d9 2006.0/RPMS/libkdegraphics0-kooka-3.4.2-11.6.20060mdk.i586.rpm 52efbc50319331d5e60eded62a227293 2006.0/RPMS/libkdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.i586.rpm 0c4ff0dfe710a242c8ca60f991644f4c 2006.0/RPMS/libkdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.i586.rpm 019bc2f486450bd63b61f856bbf69867 2006.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.i586.rpm bd99611424c15e5858475f2103eba259 2006.0/RPMS/libkdegraphics0-ksvg-3.4.2-11.6.20060mdk.i586.rpm bf7dcc4cd4810b59c93dd528cbcd0007 2006.0/RPMS/libkdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.i586.rpm 6d07da96dc1aa9b47b3836a21c34ba81 2006.0/RPMS/libkdegraphics0-kuickshow-3.4.2-11.6.20060mdk.i586.rpm df357ed8a9ebeb4bc6b6d643ec3344ee 2006.0/RPMS/libkdegraphics0-kview-3.4.2-11.6.20060mdk.i586.rpm cfc0e76d0f28b1fda5020844b7310eb3 2006.0/RPMS/libkdegraphics0-kview-devel-3.4.2-11.6.20060mdk.i586.rpm 262df8bca246f0a11f8f48c68d0def2a 2006.0/RPMS/libkdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.i586.rpm 490e87860d08949dcfba640aebb64e9e 2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm Mandriva Linux 2006.0/X86_64: e451ef694d51102e3ea632ad2acc6275 x86_64/2006.0/RPMS/kdegraphics-3.4.2-11.6.20060mdk.x86_64.rpm 9d7fd55d06f15e42b52e47db83103b81 x86_64/2006.0/RPMS/kdegraphics-common-3.4.2-11.6.20060mdk.x86_64.rpm e22588e10d162a4b9ab6f22f394512f1 x86_64/2006.0/RPMS/kdegraphics-kdvi-3.4.2-11.6.20060mdk.x86_64.rpm f1a59958e73e439e3484926c5ce8485b x86_64/2006.0/RPMS/kdegraphics-kfax-3.4.2-11.6.20060mdk.x86_64.rpm 584190d5ee8feda810cf82b13a5d9b2b x86_64/2006.0/RPMS/kdegraphics-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm 8c0dbb217f3ec91be0b42ab49e5df624 x86_64/2006.0/RPMS/kdegraphics-kiconedit-3.4.2-11.6.20060mdk.x86_64.rpm 55e7b90d0c134b346d9694219d55d4c3 x86_64/2006.0/RPMS/kdegraphics-kolourpaint-3.4.2-11.6.20060mdk.x86_64.rpm 935e8c36e8ee328915bf274df8bba219 x86_64/2006.0/RPMS/kdegraphics-kooka-3.4.2-11.6.20060mdk.x86_64.rpm 15b6922841998a8befa0c03d71a9d697 x86_64/2006.0/RPMS/kdegraphics-kpaint-3.4.2-11.6.20060mdk.x86_64.rpm d43c63a5a7d972b7fecad3bda9699661 x86_64/2006.0/RPMS/kdegraphics-kpdf-3.4.2-11.6.20060mdk.x86_64.rpm 73ef99e1c249306c55a0537c387fdf6b x86_64/2006.0/RPMS/kdegraphics-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm e1eb7688e3bb5db74e867a48cd1f3fd3 x86_64/2006.0/RPMS/kdegraphics-kruler-3.4.2-11.6.20060mdk.x86_64.rpm f161cc3dda887f10fcf488ead0ff3659 x86_64/2006.0/RPMS/kdegraphics-ksnapshot-3.4.2-11.6.20060mdk.x86_64.rpm 129e7bf9db533f7428fa84e5d4d57a40 x86_64/2006.0/RPMS/kdegraphics-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm 1a315ee0d22be616186a7ff9378d7ccd x86_64/2006.0/RPMS/kdegraphics-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm cceffb28070069b6a63b4380ceea13bc x86_64/2006.0/RPMS/kdegraphics-kview-3.4.2-11.6.20060mdk.x86_64.rpm fa6d629d828a564a912f378f6b5fd8ba x86_64/2006.0/RPMS/kdegraphics-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm 44bcb009f741ba86d85cc7319a51c349 x86_64/2006.0/RPMS/lib64kdegraphics0-common-3.4.2-11.6.20060mdk.x86_64.rpm 232089b2cff996ebfafec428e5b7970d x86_64/2006.0/RPMS/lib64kdegraphics0-common-devel-3.4.2-11.6.20060mdk.x86_64.rpm 1f6ed874be34c557f97296389969b70e x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-3.4.2-11.6.20060mdk.x86_64.rpm 84d92f82eb9f22abea7884dd548bcd03 x86_64/2006.0/RPMS/lib64kdegraphics0-kghostview-devel-3.4.2-11.6.20060mdk.x86_64.rpm bdf205140076f24147247b06a4cd77b8 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-3.4.2-11.6.20060mdk.x86_64.rpm 1d54c3557c2d39347845645dd5b0a494 x86_64/2006.0/RPMS/lib64kdegraphics0-kooka-devel-3.4.2-11.6.20060mdk.x86_64.rpm 3883f32ec9c35957dbc02bd37af36669 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-3.4.2-11.6.20060mdk.x86_64.rpm 10d49dd6216817e421c7f24018bb5f67 x86_64/2006.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.4.2-11.6.20060mdk.x86_64.rpm dcd8aa2cef36a42f1d280c606cbf99b6 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-3.4.2-11.6.20060mdk.x86_64.rpm 81b12ebf82ac906e1382d07e56c105f3 x86_64/2006.0/RPMS/lib64kdegraphics0-ksvg-devel-3.4.2-11.6.20060mdk.x86_64.rpm 49524b942ff8d8268bd06a0f0e107085 x86_64/2006.0/RPMS/lib64kdegraphics0-kuickshow-3.4.2-11.6.20060mdk.x86_64.rpm dcffebae88d6429403dc7fe63cac6c9d x86_64/2006.0/RPMS/lib64kdegraphics0-kview-3.4.2-11.6.20060mdk.x86_64.rpm fc74f36474838a66dc5308fe9e02e3f6 x86_64/2006.0/RPMS/lib64kdegraphics0-kview-devel-3.4.2-11.6.20060mdk.x86_64.rpm 01843ddf9e3b76f5cc3e01524cd0286e x86_64/2006.0/RPMS/lib64kdegraphics0-mrmlsearch-3.4.2-11.6.20060mdk.x86_64.rpm 490e87860d08949dcfba640aebb64e9e x86_64/2006.0/SRPMS/kdegraphics-3.4.2-11.6.20060mdk.src.rpm Corporate 3.0: 51e0606ac280e0cc886c72dffe6824d1 corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.i586.rpm 9601ca08dd6eda7c98308182550e8248 corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.i586.rpm ca58e5e269b245bdc946d9b9360134c9 corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.i586.rpm 9e28cb256b4e12cd3ca3f9bda5c0520a corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.i586.rpm 1b9d8e9f8d628034b4acae94fad7bc7a corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.i586.rpm 6005e3a0c5275657196a896cbc4f303f corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.i586.rpm 6418633ded8703d8414098ab4ae44f42 corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.i586.rpm 27cbec1b107839d628bdd8351e5d7949 corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.i586.rpm be303920699e02c4222e3dc4c4c4f70f corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.i586.rpm 6c36c9c3c2c1164e082fa21bcb22f898 corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.i586.rpm fd676144c8c91bfa2fc815d74d6d06c4 corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.i586.rpm c70efb5c20a0210ebadd304ac33084ed corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.i586.rpm 4802c5c4d71c97cb580d1abfa8b53e62 corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.i586.rpm 41c26fcd50da8d743824cbf02f951659 corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.i586.rpm 3eda368d71099e6a8ed7862c1d047cdc corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.i586.rpm eefc87854e4da33c8e5cc72d1f4247bc corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.i586.rpm 7d97dde05898b3c4cc043ce004b99fee corporate/3.0/RPMS/libkdegraphics0-common-3.2-15.11.C30mdk.i586.rpm a046dae0c8de2befc845bd9b59b90f09 corporate/3.0/RPMS/libkdegraphics0-common-devel-3.2-15.11.C30mdk.i586.rpm 176537ec9600922a7b9139ddeb6079dd corporate/3.0/RPMS/libkdegraphics0-kooka-3.2-15.11.C30mdk.i586.rpm c431ca440ccda135872614b568f14891 corporate/3.0/RPMS/libkdegraphics0-kooka-devel-3.2-15.11.C30mdk.i586.rpm 2a202d58fa292c12fd1b9930bae61884 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-3.2-15.11.C30mdk.i586.rpm 43731a73ae3cf3907bff942bfdcf4273 corporate/3.0/RPMS/libkdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.i586.rpm e9dfd9364a1ae87e1c693e860fab291e corporate/3.0/RPMS/libkdegraphics0-ksvg-3.2-15.11.C30mdk.i586.rpm cc01418cec4f0083121b3bc991bdefdf corporate/3.0/RPMS/libkdegraphics0-ksvg-devel-3.2-15.11.C30mdk.i586.rpm cfc7b4529602c70a182b21c54299a2d8 corporate/3.0/RPMS/libkdegraphics0-kuickshow-3.2-15.11.C30mdk.i586.rpm eba181f9a600f705fc98e60f6f7ac442 corporate/3.0/RPMS/libkdegraphics0-kview-3.2-15.11.C30mdk.i586.rpm 3827091a0c824a380ce0646346187b44 corporate/3.0/RPMS/libkdegraphics0-kview-devel-3.2-15.11.C30mdk.i586.rpm 9a49711ad498f9b75240dae5123cdaef corporate/3.0/RPMS/libkdegraphics0-mrmlsearch-3.2-15.11.C30mdk.i586.rpm 8b920b69894838d7d88e94ab5c9b1e2c corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm Corporate 3.0/X86_64: 5026cabe3d75dd58603ed3802189facf x86_64/corporate/3.0/RPMS/kdegraphics-3.2-15.11.C30mdk.x86_64.rpm 01caa05305add9c1c98ec71b0ae47aeb x86_64/corporate/3.0/RPMS/kdegraphics-common-3.2-15.11.C30mdk.x86_64.rpm e5cfd1891c687c2a21c07e1b13a3a9e7 x86_64/corporate/3.0/RPMS/kdegraphics-kdvi-3.2-15.11.C30mdk.x86_64.rpm 30065589222058a50de2c18ba959c630 x86_64/corporate/3.0/RPMS/kdegraphics-kfax-3.2-15.11.C30mdk.x86_64.rpm 12f6066eb7232f7c6f31e1b60be92503 x86_64/corporate/3.0/RPMS/kdegraphics-kghostview-3.2-15.11.C30mdk.x86_64.rpm ee70269eb23ff8847432b598b963eeaa x86_64/corporate/3.0/RPMS/kdegraphics-kiconedit-3.2-15.11.C30mdk.x86_64.rpm aa80daf0b9a45ae487ff2343f801c94a x86_64/corporate/3.0/RPMS/kdegraphics-kooka-3.2-15.11.C30mdk.x86_64.rpm fba3494001ca73a2b091f1d97542fe73 x86_64/corporate/3.0/RPMS/kdegraphics-kpaint-3.2-15.11.C30mdk.x86_64.rpm 83595fb2da64f3558b6a42686bb55a50 x86_64/corporate/3.0/RPMS/kdegraphics-kpdf-3.2-15.11.C30mdk.x86_64.rpm 6dd9a9afbc380d8c0d6d90da147bb8d6 x86_64/corporate/3.0/RPMS/kdegraphics-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm 9df4059d563ca6d5aed4d97174bc4063 x86_64/corporate/3.0/RPMS/kdegraphics-kruler-3.2-15.11.C30mdk.x86_64.rpm 583ebf769f9b683362b6a761ae6d58bf x86_64/corporate/3.0/RPMS/kdegraphics-ksnapshot-3.2-15.11.C30mdk.x86_64.rpm e8cbe2fb6f56f64109de990068090e1f x86_64/corporate/3.0/RPMS/kdegraphics-ksvg-3.2-15.11.C30mdk.x86_64.rpm c0734112d40ad034d4f8ac3c731abc2e x86_64/corporate/3.0/RPMS/kdegraphics-kuickshow-3.2-15.11.C30mdk.x86_64.rpm 860c3df07ce03e3c18f270ad93aec61b x86_64/corporate/3.0/RPMS/kdegraphics-kview-3.2-15.11.C30mdk.x86_64.rpm ca43b8e1a0dab676968862d17497dffb x86_64/corporate/3.0/RPMS/kdegraphics-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm ad5d0dcfa14588b362e324e19d2330a7 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-3.2-15.11.C30mdk.x86_64.rpm fbe466690d4f80aa96dbe69d751f8ac2 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-common-devel-3.2-15.11.C30mdk.x86_64.rpm c370cba72fdd6d01f2757088753d2760 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-3.2-15.11.C30mdk.x86_64.rpm 7dbcdbc9aa9818985fbab842bf68cedd x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kooka-devel-3.2-15.11.C30mdk.x86_64.rpm dabee7aa3c28e3b5831463325204c958 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-3.2-15.11.C30mdk.x86_64.rpm 69257212b2952f9cefa8612973349329 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kpovmodeler-devel-3.2-15.11.C30mdk.x86_64.rpm 4c25457183c583888000b8752e706715 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-3.2-15.11.C30mdk.x86_64.rpm be5380637967d4b977b9900939c34cd4 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-ksvg-devel-3.2-15.11.C30mdk.x86_64.rpm 54a37b14f7939bdc210a28e50ef1211a x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kuickshow-3.2-15.11.C30mdk.x86_64.rpm 612d43095d606bf61f5ee11a3bd6976c x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-3.2-15.11.C30mdk.x86_64.rpm f28f0bd9630345cfb11c6a2004108988 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-kview-devel-3.2-15.11.C30mdk.x86_64.rpm 40a4b7aa13ef681c3498bddb68f9e0f9 x86_64/corporate/3.0/RPMS/lib64kdegraphics0-mrmlsearch-3.2-15.11.C30mdk.x86_64.rpm 8b920b69894838d7d88e94ab5c9b1e2c x86_64/corporate/3.0/SRPMS/kdegraphics-3.2-15.11.C30mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team <security*mandriva.com> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFEDzEXmqjQ0CJFipgRAgwtAKDWpac+I0HvICUg/d8xGnG7P+xC6gCgsmwZ ndzXdc2NM4ccSeUxPnHVHGc= =ASxO -----END PGP SIGNATURE-----
