logo       
<prev   next>


Choosing A Webhost:
A web hosting service is a type of Internet hosting service that allows individuals and organizations to provide their own website accessible via the World Wide Web. Web hosts are companies that provide space on a server they own for use by their clients as well as providing Internet connectivity, typically in a data center. Web hosts can also provide data center space and connectivity to the Internet for servers they do not own to be located in their data center, called colocation. more...

[SECURITY] Fedora Core 2 Update: kdelibs-3.2.2-6: msg#00012

Subject: [SECURITY] Fedora Core 2 Update: kdelibs-3.2.2-6 
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-122
2004-05-19
---------------------------------------------------------------------

Name        : kdelibs
Version     : 3.2.2
Release     : 6
Summary     : K Desktop Environment - Libraries
Description :
Libraries for the K Desktop Environment:
KDE Libraries included: kdecore (KDE core library), kdeui (user interface),
kfm (file manager), khtmlw (HTML widget), kio (Input/Output, networking),
kspell (spelling checker), jscript (javascript), kab (addressbook),
kimgio (image manipulation).

---------------------------------------------------------------------
Update Information:

iDEFENSE identified a vulnerability in the Opera Web Browser that could
allow remote attackers to create or truncate arbitrary files. The KDE team
has found that a similar vulnerability exists in KDE.

A flaw in the telnet URL handler can allow options to be passed to the
telnet program which can be used to allow file creation or overwriting.
An attacker could create a carefully crafted link such that when opened by
a victim it creates or overwrites a file in the victims home directory. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2004-0411 to this issue.

---------------------------------------------------------------------
* Sun May 16 2004 Than Ngo <than@xxxxxxxxxx> 6:3.2.2-6

- vulnerability in the mailto handler, CAN-2004-0411

* Fri May 14 2004 Than Ngo <than@xxxxxxxxxx> 3.2.2-5

- KDE Telnet URI Handler File Vulnerability , CAN-2004-0411


---------------------------------------------------------------------
This update can be downloaded from:
 http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/

b271936a42f0370877996f52b25d7304  SRPMS/kdelibs-3.2.2-6.src.rpm
1f002c97bebde36e11f8ebaa8dd49ceb  i386/kdelibs-3.2.2-6.i386.rpm
fcdb0589544dbc9d878dd99c890429a8  i386/kdelibs-devel-3.2.2-6.i386.rpm
853897fa6815cc47ae2bf92c3352847b i386/debug/kdelibs-debuginfo-3.2.2-6.i386.rpm 
b2174cd0c744138b24364cccfbf50847  x86_64/kdelibs-3.2.2-6.x86_64.rpm
795aa24e391b667a5b2fb79cb8d4230f  x86_64/kdelibs-devel-3.2.2-6.x86_64.rpm
e95f633ef222198d8cbb8be067773fae x86_64/debug/kdelibs-debuginfo-3.2.2-6.x86_64.rpm 

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------



--
fedora-announce-list mailing list
fedora-announce-list@xxxxxxxxxx
http://www.redhat.com/mailman/listinfo/fedora-announce-list
Ruby Jobs
Java Jobs
Jobs in California
more...
what
job title, keywords
where
city, state, zip
jobs by job search
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.2, Harald Hoyer
Next by Date:  [SECURITY] Fedora Core 1 Update: cvs-1.11.15-5, Nalin Dahyabhai
Previous by Thread:  [SECURITY] Fedora Core 1 Update: tcpdump-3.7.2-8.fc1.2, Harald Hoyer
Next by Thread:  [SECURITY] Fedora Core 1 Update: cvs-1.11.15-5, Nalin Dahyabhai
Indexes:  [Date] [Thread] [Top] [All Lists]

Google Custom Search
Recently Viewed:
db.firebase.por...    text.xml.xalan....    qnx.openqnx.dev...    user-groups.zar...    internationaliz...    kde.devel.konve...    finance.e-gold....    emacs.latex.pre...    gis.therion/200...    web.webmin.gene...    yellowdog.gener...    vserver/2003-08...    redhat.release....    sysutils.tivoli...    xfree86.expert/...    mail.becky.user...    hardware.netapp...    netbsd.ports.xe...    python.distutil...    boot-loaders.gr...    culture.interne...    java.springfram...    activedir/2006-...   
Home | blog view | USPTO Patent Archive | advertise | OSDir is an inevitable website. super tiny logo

Free Magazines

Cisco News
Receive a free quarterly e-newsletter with exclusive articles on how Cisco IT uses its own products and solutions to enable the business.
subscribe

Systems Management News, the newspaper for IT systems administration and data center managers! Each issue of Systems Management News is chock-full of news and analysis to help you understand what's happening in your field.
subscribe

The Enterprise Newsweekly eWeek is the essential technology information source for builders of e-business.
subscribe

Oracle Magazine Oracle Magazine contains technology strategy articles, sample code, tips, Oracle and partner news, how to articles for developers and DBAs, and more. Oracle (NASDAQ: ORCL) is the world's largest enterprise software company.
subscribe

Total Telecom Total Telecom is "The Economist of the communications industry".
subscribe