From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-2050-1
[email protected] http://www.debian.org/security/ Moritz Muehlenhoff
May 24, 2010
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : kdegraphics
Vulnerability : several
Problem type : local(remote)
Debian-specific: no
CVE Id(s) : CVE-2009-1188 CVE-2009-3603 CVE-2009-3604 CVE-2009-3606 CVE-2009-3608 CVE-2009-3609
Several local vulnerabilities have been discovered in KPDF, a PDF viewer
for KDE, which allow the execution of arbitrary code or denial of
service if a user is tricked into opening a crafted PDF document.
For the stable distribution (lenny), these problems have been fixed in
version 4:3.5.9-3+lenny3.
The unstable distribution (sid) no longer contains kpdf. It's replacement, Okular, links against the poppler PDF library.
We recommend that you upgrade your kdegraphics packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics_3.5.9-3+lenny3.diff.gz
Size/MD5 checksum: 331735 eb19c67b63df9bea8113c6ce0570f99b
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics_3.5.9-3+lenny3.dsc
Size/MD5 checksum: 2100 4332314f48c3583068f8a4144d4c1e4d
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics_3.5.9.orig.tar.gz
Size/MD5 checksum: 9058343 d66472f22db2dc5b706ed4f52d9b16f5
Architecture independent packages:
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics_3.5.9-3+lenny3_all.deb
Size/MD5 checksum: 14088 db2f2157980256b214726dd8d285cf9c
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics-doc-html_3.5.9-3+lenny3_all.deb
Size/MD5 checksum: 146838 f3b12df069df5e721bbae57fe4a0fb10
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/k/kdegraphics/ksvg_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 1426340 d87a0e5f0442b7fc64dc31d27be094b2
http://security.debian.org/pool/updates/main/k/kdegraphics/kuickshow_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 507416 f4b8e0f7d541a103209d9e78aad3019c
http://security.debian.org/pool/updates/main/k/kdegraphics/kpovmodeler_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 2414178 164a5f542ca883185f83b28ce96a8215
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics-kfile-plugins_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 331616 495d561d9ad550890dbac900c114aa8d
http://security.debian.org/pool/updates/main/k/kdegraphics/kruler_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 62098 0147890917b354e67765f26f70515690
http://security.debian.org/pool/updates/main/k/kdegraphics/kfax_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 147112 b10356b326bd4b40ca61edbeac8a2367
http://security.debian.org/pool/updates/main/k/kdegraphics/kolourpaint_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 1136886 6fb9148b54b3227df55204c5f278f6a7
http://security.debian.org/pool/updates/main/k/kdegraphics/kghostview_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 252536 39ea86786322108507e7517595d5f315
http://security.debian.org/pool/updates/main/k/kdegraphics/kfaxview_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 110180 3051edb3012f0959eaa99356234ecefd
http://security.debian.org/pool/updates/main/k/kdegraphics/kview_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 445578 fe3a6bce17c1aebc0d6b13ff18cc3e9e
http://security.debian.org/pool/updates/main/k/kdegraphics/kdvi_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 547246 8a6cd8c49cfe527f3e7ab27294d8895d
http://security.debian.org/pool/updates/main/k/kdegraphics/kcoloredit_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 113248 4cffc9361cd05d4bc35af2173a0bec36
http://security.debian.org/pool/updates/main/k/kdegraphics/kooka_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 772790 e8eff7f950f54450e2f0e6cbbdd8d34a
http://security.debian.org/pool/updates/main/k/kdegraphics/kviewshell_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 902622 42ab9a2b41f0288cfb9fef469b9a3194
http://security.debian.org/pool/updates/main/k/kdegraphics/libkscan-dev_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 13916 aade82b188cec70d7ad505291c73f258
http://security.debian.org/pool/updates/main/k/kdegraphics/kgamma_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 77740 05db5a4ae080528ea3a07ccd1114e6d6
http://security.debian.org/pool/updates/main/k/kdegraphics/libkscan1_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 152308 495305953a72a3296eca760b562ccba8
http://security.debian.org/pool/updates/main/k/kdegraphics/ksnapshot_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 173962 10a70f8016dba32e295e011ae6ccc4be
http://security.debian.org/pool/updates/main/k/kdegraphics/kmrml_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 253144 25d936fb5b3045f89b4d5af9d92e286f
http://security.debian.org/pool/updates/main/k/kdegraphics/kdegraphics-dbg_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 34270914 41a064d04087322673f37b6e3494c25b
http://security.debian.org/pool/updates/main/k/kdegraphics/kiconedit_3.5.9-3+lenny3_alpha.deb
Size/MD5 checksum: 191444 e4eb8865295b49a1cb7685e390a458d1
http://security.debian.org/pool/updates/main/k/kdegraphics/kamera_3.5.9-3+lenny3_alpha.deb
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)