[PLUTO-security] [Fwd: [RHSA-2003:002-01] Updated KDE packages fix security issues]

Tom aka 'Dido' tom at pluto.linux.it
Tue May 13 11:03:31 CEST 2003


...e per ultimo questa (si, so che ne escono "mille" di Security Adv.,
ma questo è su KDE, mi pareva abbastanza rilevante!)
Dido

-----Forwarded Message-----

> From: bugzilla a redhat.com
> To: redhat-watch-list a redhat.com, redhat-announce-list a redhat.com
> Subject: [RHSA-2003:002-01] Updated KDE packages fix security issues
> Date: 12 May 2003 13:16:00 -0400
> 
> ---------------------------------------------------------------------
>                    Red Hat Security Advisory
> 
> Synopsis:          Updated KDE packages fix security issues
> Advisory ID:       RHSA-2003:002-01
> Issue date:        2003-05-12
> Updated on:        2003-05-12
> Product:           Red Hat Linux
> Keywords:          
> Cross references:  RHSA-2003:003
> Obsoletes:         RHSA-2002:220
> CVE Names:         CAN-2002-1393 CAN-2003-0204
> ---------------------------------------------------------------------
> 
> 1. Topic:
> 
> This erratum provides updated KDE packages to resolve two security issues.
> 
> 2. Relevant releases/architectures:
> 
> Red Hat Linux 7.1 - i386, noarch
> Red Hat Linux 7.2 - i386, ia64, noarch
> Red Hat Linux 7.3 - i386, noarch
> Red Hat Linux 8.0 - i386, noarch
> Red Hat Linux 9 - i386, noarch
> 
> 3. Problem description:
> 
> KDE is a graphical desktop environment for the X Window System.
> 
> KDE fails in multiple places to properly quote URLs and file names
> before passing them to a command shell. This could allow remote
> attackers to execute arbitrary commands via carefully crafted URLs,
> filenames, or email addresses.  CAN-2002-1393.
> 
> KDE versions up to and including KDE 3.1.1 have a vulnerability caused by
> -dSAFER not being used when previewing in Konquerer.  An attacker can
> prepare a malicious PostScript or PDF file which provides the attacker
> with access to the victim's account and privileges  when the victim opens
> this malicious file for viewing or when the victim browses a directory
> containing such malicious file and has file previews enabled.
> 
> Red Hat Linux 9 provides KDE version 3.1 and is not vulnerable to the first
> issue (CAN-2002-1393).  This erratum provides updated packages with a
> backported fix for the malicious PostScript and PDF issue.
> 
> Red Hat Linux 7.3 and 8.0 currently provide KDE version 3.0.3 and are
> vulnerable to both of these issues. This erratum provides KDE 3.0.5a
> packages with patches to correct these issues.
> 
> Red Hat Linux 7.2 shipped with KDE 2.2.2, and Red Hat Linux 7.1 shipped
> with KDE 2.1.1. The versions are vulnerable to both of the issues. This
> erratum provides packages which contain backported patches to correct the
> issues.
> 
> 4. Solution:
> 
> Before applying this update, make sure all previously released errata
> relevant to your system have been applied.
> 
> To update all RPMs for your particular architecture, run:
> 
> rpm -Fvh [filenames]
> 
> where [filenames] is a list of the RPMs you wish to upgrade.  Only those
> RPMs which are currently installed will be updated.  Those RPMs which are
> not installed but included in the list will not be updated.  Note that you
> can also use wildcards (*.rpm) if your current directory *only* contains the
> desired RPMs.
> 
> Please note that this update is also available via Red Hat Network.  Many
> people find this an easier way to apply updates.  To use Red Hat Network,
> launch the Red Hat Update Agent with the following command:
> 
> up2date
> 
> This will start an interactive process that will result in the appropriate
> RPMs being upgraded on your system.
> 
> 5. RPMs required:

<cut>
 
> Red Hat Linux 7.3:
> 
> SRPMS:
> ftp://updates.redhat.com/7.3/en/os/SRPMS/arts-1.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdelibs-3.0.5a-0.73.1.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kde-i18n-3.0.5-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdeaddons-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdeadmin-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdeartwork-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdebase-3.0.5a-0.73.2.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdebindings-3.0.5a-0.73.1.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdeedu-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdegames-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdegraphics-3.0.5a-0.73.1.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdemultimedia-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdenetwork-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdepim-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdesdk-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdetoys-3.0.5a-0.73.0.src.rpm
> ftp://updates.redhat.com/7.3/en/os/SRPMS/kdeutils-3.0.5a-0.73.0.src.rpm
> 
> i386:
> ftp://updates.redhat.com/7.3/en/os/i386/arts-1.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/arts-devel-1.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdelibs-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdelibs-devel-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeaddons-kate-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeaddons-konqueror-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeaddons-kicker-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeaddons-noatun-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeaddons-knewsticker-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeadmin-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeartwork-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeartwork-locolor-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeartwork-kworldclock-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeartwork-screensavers-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdebase-3.0.5a-0.73.2.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdebase-devel-3.0.5a-0.73.2.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdebindings-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdebindings-kmozilla-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdebindings-devel-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/keduca-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kstars-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kgeo-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ktouch-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/klettres-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kvoctrain-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kmessedwords-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdegames-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdegames-devel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kamera-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kpaint-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kcoloredit-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kruler-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdvi-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ksnapshot-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kfax-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kuickshow-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kfile-pdf-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kview-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kfile-png-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kviewshell-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kfract-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kviewshell-devel-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kghostview-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/libkscan-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kiconedit-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/libkscan-devel-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kooka-3.0.5a-0.73.1.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kaboodle-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kmidi-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdemultimedia-arts-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kmix-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdemultimedia-devel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/koncd-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdemultimedia-kfile-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kscd-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdemultimedia-libs-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/noatun-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kmid-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdenetwork-devel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/korn-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdenetwork-libs-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kpf-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdict-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kppp-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kit-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ksirc-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kmail-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ktalkd-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/knewsticker-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kxmlrpcd-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/knode-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/lisa-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/karm-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdepim-devel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdepim-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdepim-pilot-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdepim-cellphone-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/knotes-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/cervisia-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kbugbuster-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-gimp-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kmtrace-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kapptemplate-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kompare-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kbabel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdesdk-kspy-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdetoys-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ark-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/khexedit-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kcalc-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kjots-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kcharselect-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kljettool-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdepasswd-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/klpq-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdessh-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/klprfax-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdeutils-laptop-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kregexpeditor-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kdf-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kregexpeditor-devel-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kedit-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/ktimer-3.0.5a-0.73.0.i386.rpm
> ftp://updates.redhat.com/7.3/en/os/i386/kfloppy-3.0.5a-0.73.0.i386.rpm
> 
> noarch:
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Afrikaans-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Brazil-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-British-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Catalan-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Chinese-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Chinese-Big5-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Czech-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Danish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Dutch-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Estonian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Finnish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-French-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-German-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Greek-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Hebrew-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Hungarian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Icelandic-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Italian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Japanese-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Korean-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Norwegian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Norwegian-Nynorsk-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Polish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Portuguese-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Romanian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Russian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Serbian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Slovak-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Slovenian-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Spanish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Swedish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Turkish-3.0.5-0.73.0.noarch.rpm
> ftp://updates.redhat.com/7.3/en/os/noarch/kde-i18n-Ukrainian-3.0.5-0.73.0.noarch.rpm
> 
> Red Hat Linux 8.0:
> 
> SRPMS:
> ftp://updates.redhat.com/8.0/en/os/SRPMS/arts-1.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kde-i18n-3.0.5-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdelibs-3.0.5a-4.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdebase-3.0.5a-4.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdeaddons-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdeadmin-3.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdeartwork-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdebindings-3.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdeedu-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdegames-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdegraphics-3.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdemultimedia-3.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdenetwork-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdepim-3.0.5a-1.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdesdk-3.0.5a-3.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdetoys-3.0.5a-2.src.rpm
> ftp://updates.redhat.com/8.0/en/os/SRPMS/kdeutils-3.0.5a-1.src.rpm
> 
> i386:
> ftp://updates.redhat.com/8.0/en/os/i386/arts-1.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/arts-devel-1.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdelibs-3.0.5a-4.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdelibs-devel-3.0.5a-4.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebase-3.0.5a-4.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebase-devel-3.0.5a-4.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeaddons-kate-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeaddons-kicker-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeaddons-knewsticker-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeaddons-konqueror-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeaddons-noatun-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeadmin-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeartwork-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeartwork-kworldclock-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeartwork-locolor-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeartwork-screensavers-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-devel-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-kdec-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-kdejava-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-kmozilla-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-qtc-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdebindings-qtjava-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/keduca-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kgeo-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/klettres-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kmessedwords-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kstars-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ktouch-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kvoctrain-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdegames-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdegames-devel-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kamera-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kcoloredit-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdvi-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kfax-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kfile-pdf-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kfile-png-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kfract-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kghostview-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kiconedit-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kooka-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kpaint-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kruler-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ksnapshot-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kuickshow-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kview-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kviewshell-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kviewshell-devel-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/libkscan-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/libkscan-devel-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kaboodle-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdemultimedia-arts-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdemultimedia-devel-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdemultimedia-kfile-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdemultimedia-libs-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kmid-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kmidi-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kmix-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/koncd-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kscd-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/noatun-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdenetwork-devel-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdenetwork-libs-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdict-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kit-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kmail-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/knewsticker-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/knode-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/korn-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kpf-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kppp-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ksirc-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ktalkd-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kxmlrpcd-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/lisa-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdepim-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/karm-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdepim-cellphone-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdepim-devel-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdepim-pilot-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/knotes-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/cervisia-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-gimp-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kapptemplate-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kbabel-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kbugbuster-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kmtrace-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kompare-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdesdk-kspy-3.0.5a-3.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdetoys-3.0.5a-2.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ark-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kcalc-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kcharselect-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdepasswd-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdessh-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdeutils-laptop-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kdf-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kedit-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kfloppy-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/khexedit-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kjots-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kljettool-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/klpq-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/klprfax-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kregexpeditor-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/kregexpeditor-devel-3.0.5a-1.i386.rpm
> ftp://updates.redhat.com/8.0/en/os/i386/ktimer-3.0.5a-1.i386.rpm
> 
> noarch:
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Afrikaans-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Italian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Brazil-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Japanese-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-British-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Korean-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Catalan-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Norwegian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Chinese-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Norwegian-Nynorsk-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Chinese-Big5-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Polish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Czech-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Portuguese-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Danish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Romanian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Dutch-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Russian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Estonian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Serbian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Finnish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Slovak-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-French-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Slovenian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-German-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Spanish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Greek-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Swedish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Hebrew-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Turkish-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Hungarian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Ukrainian-3.0.5-2.noarch.rpm
> ftp://updates.redhat.com/8.0/en/os/noarch/kde-i18n-Icelandic-3.0.5-2.noarch.rpm
> 
> Red Hat Linux 9:
> 
> SRPMS:
> ftp://updates.redhat.com/9/en/os/SRPMS/kdebase-3.1-13.src.rpm
> ftp://updates.redhat.com/9/en/os/SRPMS/kdegraphics-3.1-5.src.rpm
> ftp://updates.redhat.com/9/en/os/SRPMS/kdelibs-3.1-11.src.rpm
> 
> i386:
> ftp://updates.redhat.com/9/en/os/i386/kdebase-3.1-13.i386.rpm
> ftp://updates.redhat.com/9/en/os/i386/kdebase-devel-3.1-13.i386.rpm
> ftp://updates.redhat.com/9/en/os/i386/kdegraphics-3.1-5.i386.rpm
> ftp://updates.redhat.com/9/en/os/i386/kdegraphics-devel-3.1-5.i386.rpm
> ftp://updates.redhat.com/9/en/os/i386/kdelibs-3.1-11.i386.rpm
> ftp://updates.redhat.com/9/en/os/i386/kdelibs-devel-3.1-11.i386.rpm
> 

<cut>
> These packages are GPG signed by Red Hat for security.  Our key is
> available at http://www.redhat.com/solutions/security/news/publickey/
> 
> You can verify each package with the following command:
>     
>     rpm --checksig -v <filename>
> 
> If you only wish to verify that each package has not been corrupted or
> tampered with, examine only the md5sum with the following command:
>     
>     md5sum <filename>
> 
> 
> 7. References:
> 
> http://www.kde.org/info/security/advisory-20021220-1.txt
> http://www.kde.org/info/security/advisory-20030409-1.txt
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1393
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0204
> 
> 8. Contact:
> 
> The Red Hat security contact is <security a redhat.com>.  More contact
> details at http://www.redhat.com/solutions/security/news/contact/
> 
> Copyright 2003 Red Hat, Inc.
> 



More information about the pluto-security mailing list