From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-1624-1
[email protected] http://www.debian.org/security/ Moritz Muehlenhoff
July 31, 2008
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : libxslt
Vulnerability : buffer overflows
Problem type : local(remote)
Debian-specific: no
CVE Id(s) : CVE-2008-2935
Chris Evans discovered that a buffer overflow in the RC4 functions of
libexslt may lead to the execution of arbitrary code.
For the stable distribution (etch), this problem has been fixed in
version 1.1.19-3.
For the unstable distribution (sid), this problem will be fixed soon.
We recommend that you upgrade your libxslt packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Stable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt_1.1.19.orig.tar.gz
Size/MD5 checksum: 2799906 622e5843167593c8ea39bf86c66b8fcf
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt_1.1.19-3.diff.gz
Size/MD5 checksum: 149686 b62a7dd0aa648576a266cd20d634c216
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt_1.1.19-3.dsc
Size/MD5 checksum: 849 7d98fdda0079574b360d4a6e2a12e2be
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libx/libxslt/xsltproc_1.1.19-3_alpha.deb
Size/MD5 checksum: 107264 4aac707640a9fcf9aabcd42336b38be3
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dbg_1.1.19-3_alpha.deb
Size/MD5 checksum: 365058 0e966c67dfbc374141960789fcbe96ab
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dev_1.1.19-3_alpha.deb
Size/MD5 checksum: 690408 a431dcc2f32428677e7b737b971e0f9e
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1.1_1.1.19-3_alpha.deb
Size/MD5 checksum: 230788 55d88a4f39eeccf4a21cd2b335c35ae5
http://security.debian.org/pool/updates/main/libx/libxslt/python-libxslt1_1.1.19-3_alpha.deb
Size/MD5 checksum: 131312 ce983f9b6de55027f803e39d1dda2a25
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dbg_1.1.19-3_amd64.deb
Size/MD5 checksum: 362484 c91d2d5458f6de4002b4401f5675b742
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1.1_1.1.19-3_amd64.deb
Size/MD5 checksum: 225658 6d4a52da7c2ca5a4280b06bdf03875e0
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dev_1.1.19-3_amd64.deb
Size/MD5 checksum: 630884 06616b7e52d2fc80530302c7d3acd540
http://security.debian.org/pool/updates/main/libx/libxslt/xsltproc_1.1.19-3_amd64.deb
Size/MD5 checksum: 106562 7782d3653528b848ce1d98455f790196
http://security.debian.org/pool/updates/main/libx/libxslt/python-libxslt1_1.1.19-3_amd64.deb
Size/MD5 checksum: 131782 8e9ed3c7418725e1853ae5ccbd082c9b
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libx/libxslt/xsltproc_1.1.19-3_arm.deb
Size/MD5 checksum: 106452 9ef81b83e04979147310ec62d2682550
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dbg_1.1.19-3_arm.deb
Size/MD5 checksum: 346610 29566f2276ff440e778dac5fb667f346
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dev_1.1.19-3_arm.deb
Size/MD5 checksum: 613436 a9a4ebc76beb7ca67f9a7e92e8029ca7
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1.1_1.1.19-3_arm.deb
Size/MD5 checksum: 213438 2c16e6911e26b8fb360aabd16281c0f6
http://security.debian.org/pool/updates/main/libx/libxslt/python-libxslt1_1.1.19-3_arm.deb
Size/MD5 checksum: 126468 b97c69ae48a06fd09a41fadc7c00366c
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dev_1.1.19-3_hppa.deb
Size/MD5 checksum: 659318 c0f64453ca8cb8dbe9f3970cf157b3ab
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1.1_1.1.19-3_hppa.deb
Size/MD5 checksum: 238420 a7c8f14314bdb82fc51ec1578f4efad3
http://security.debian.org/pool/updates/main/libx/libxslt/xsltproc_1.1.19-3_hppa.deb
Size/MD5 checksum: 107274 3fc49ac897c34e339b3f496700bdfd5e
http://security.debian.org/pool/updates/main/libx/libxslt/python-libxslt1_1.1.19-3_hppa.deb
Size/MD5 checksum: 132222 3f4dc4e5f1162e819bc534c610fad3dc
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dbg_1.1.19-3_hppa.deb
Size/MD5 checksum: 360748 a8c4ae1c8f2e8c348c852a0931f762c5
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libx/libxslt/xsltproc_1.1.19-3_i386.deb
Size/MD5 checksum: 105974 ea524e8b733c0aa52b797692ee2619b6
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1.1_1.1.19-3_i386.deb
Size/MD5 checksum: 216014 27edcf6172b7d9b5b304bf2265ce6e48
http://security.debian.org/pool/updates/main/libx/libxslt/python-libxslt1_1.1.19-3_i386.deb
Size/MD5 checksum: 128718 3bb1df547e3b5312a382bda417a23bc6
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dbg_1.1.19-3_i386.deb
Size/MD5 checksum: 352132 a7707c2b2a1014f61b79383d639c734f
http://security.debian.org/pool/updates/main/libx/libxslt/libxslt1-dev_1.1.19-3_i386.deb
Size/MD5 checksum: 589190 ea9dbf9647d07f026c6b1fd40c0a2546
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)