-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDKSA-2007:009 http://www.mandriva.com/security/ _______________________________________________________________________ Package : kdenetwork Date : January 10, 2007 Affected: 2007.0, Corporate 3.0 _______________________________________________________________________ Problem Description: KsIRC 1.3.12 allows remote attackers to cause a denial of service (crash) via a long PRIVMSG string when connecting to an Internet Relay Chat (IRC) server, which causes an assertion failure and results in a NULL pointer dereference. Updated packages are patched to address this issue. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6811 _______________________________________________________________________ Updated Packages: Mandriva Linux 2007.0: 7f3f82bbe90b3fe4fb1db1e62d448342 2007.0/i586/kdenetwork-3.5.4-3.1mdv2007.0.i586.rpm a24b61412393e54ffa834fb0f7228bb0 2007.0/i586/kdenetwork-common-3.5.4-3.1mdv2007.0.i586.rpm a9e9706c52fc7ffad69d68f17d480c93 2007.0/i586/kdenetwork-kdict-3.5.4-3.1mdv2007.0.i586.rpm 038a946d098120ec464093c018a535be 2007.0/i586/kdenetwork-kget-3.5.4-3.1mdv2007.0.i586.rpm 9abf1217cc4e7a19feb4211c9adc4d8f 2007.0/i586/kdenetwork-knewsticker-3.5.4-3.1mdv2007.0.i586.rpm 7988391701d28b9b47d9e34c109d2e7f 2007.0/i586/kdenetwork-kopete-3.5.4-3.1mdv2007.0.i586.rpm c2683bb8bc23ea7a5be134d20059da40 2007.0/i586/kdenetwork-kopete-latex-3.5.4-3.1mdv2007.0.i586.rpm 0a7e15b7be8ad813328f62b9db9fdd7b 2007.0/i586/kdenetwork-kppp-3.5.4-3.1mdv2007.0.i586.rpm fd36dd53185c6326c97dcc6e85a09397 2007.0/i586/kdenetwork-kppp-provider-3.5.4-3.1mdv2007.0.i586.rpm bbba60fea543c855b7540185145ea8f1 2007.0/i586/kdenetwork-krfb-3.5.4-3.1mdv2007.0.i586.rpm 24591ca5b36e657aedffdc644678a8c7 2007.0/i586/kdenetwork-ksirc-3.5.4-3.1mdv2007.0.i586.rpm 2895203c537399bb3ee7f9868c5ad024 2007.0/i586/kdenetwork-ktalk-3.5.4-3.1mdv2007.0.i586.rpm 0158c98fc7f25df7d6e12ba759236d72 2007.0/i586/kdenetwork-kwifimanager-3.5.4-3.1mdv2007.0.i586.rpm 85688e975c778f26c84ebfc22c640c7c 2007.0/i586/libkdenetwork2-common-3.5.4-3.1mdv2007.0.i586.rpm 000d1f86c7658324a58132fd588bf055 2007.0/i586/libkdenetwork2-common-devel-3.5.4-3.1mdv2007.0.i586.rpm 5636d5c8bf66afd28460dec93563004d 2007.0/i586/libkdenetwork2-kdict-3.5.4-3.1mdv2007.0.i586.rpm fff59263f5945cc71fdefc0b0879143a 2007.0/i586/libkdenetwork2-knewsticker-3.5.4-3.1mdv2007.0.i586.rpm d859274c7c51a9fd821690bf17b0e816 2007.0/i586/libkdenetwork2-kopete-3.5.4-3.1mdv2007.0.i586.rpm 02298980e316a6627fa404933426b610 2007.0/i586/libkdenetwork2-kopete-devel-3.5.4-3.1mdv2007.0.i586.rpm 299681211b9317a35ba4d5fd0e40b6ff 2007.0/i586/libkdenetwork2-ksirc-3.5.4-3.1mdv2007.0.i586.rpm 9a1312e18d832dfea70faf1f97747576 2007.0/i586/libkdenetwork2-kwifimanager-3.5.4-3.1mdv2007.0.i586.rpm ffe3144d4662031cd5f3d1cebc4b6636 2007.0/i586/lisa-3.5.4-3.1mdv2007.0.i586.rpm ce0d751431b70c32a86c97daab89bb56 2007.0/SRPMS/kdenetwork-3.5.4-3.1mdv2007.0.src.rpm Mandriva Linux 2007.0/X86_64: 9337067791cbe99cae2dcffde551a7f4 2007.0/x86_64/kdenetwork-3.5.4-3.1mdv2007.0.x86_64.rpm 5cd5dbd65e18c12436a6825b15025fc5 2007.0/x86_64/kdenetwork-common-3.5.4-3.1mdv2007.0.x86_64.rpm c9b5240fa211a4a3fc14de6e12119521 2007.0/x86_64/kdenetwork-kdict-3.5.4-3.1mdv2007.0.x86_64.rpm 56b5407a0e659142c99f53790f7b48ce 2007.0/x86_64/kdenetwork-kget-3.5.4-3.1mdv2007.0.x86_64.rpm 96ed68da0e009bcab8334457d79c1ec2 2007.0/x86_64/kdenetwork-knewsticker-3.5.4-3.1mdv2007.0.x86_64.rpm 31d5af02aea380155e0c26e92f63cb3a 2007.0/x86_64/kdenetwork-kopete-3.5.4-3.1mdv2007.0.x86_64.rpm f1830baa03dc8a52c1e053b71804e6b8 2007.0/x86_64/kdenetwork-kopete-latex-3.5.4-3.1mdv2007.0.x86_64.rpm 9bda96f9f4193ad624d21e256d588355 2007.0/x86_64/kdenetwork-kppp-3.5.4-3.1mdv2007.0.x86_64.rpm f1b9898bc0aebbc996bed0ce06bb8e99 2007.0/x86_64/kdenetwork-kppp-provider-3.5.4-3.1mdv2007.0.x86_64.rpm 11bb32070876d7cd0e954da8405d8bac 2007.0/x86_64/kdenetwork-krfb-3.5.4-3.1mdv2007.0.x86_64.rpm 5c1c408b6c9adf1b43cfbd5a91232216 2007.0/x86_64/kdenetwork-ksirc-3.5.4-3.1mdv2007.0.x86_64.rpm 1f626db900a24ac6a7c21aa882b7d384 2007.0/x86_64/kdenetwork-ktalk-3.5.4-3.1mdv2007.0.x86_64.rpm 8c7f0f4dd7e8055d45ac19005c9fd7de 2007.0/x86_64/kdenetwork-kwifimanager-3.5.4-3.1mdv2007.0.x86_64.rpm 3896d6e5a95210d4e052494d29d710ab 2007.0/x86_64/lib64kdenetwork2-common-3.5.4-3.1mdv2007.0.x86_64.rpm 77e152bdf6f358f40941150adfe06a4e 2007.0/x86_64/lib64kdenetwork2-common-devel-3.5.4-3.1mdv2007.0.x86_64.rpm 4adbcf348e64d561e61b946df8458d14 2007.0/x86_64/lib64kdenetwork2-kdict-3.5.4-3.1mdv2007.0.x86_64.rpm 9430ad76831e71d328344bef9e8eef8f 2007.0/x86_64/lib64kdenetwork2-knewsticker-3.5.4-3.1mdv2007.0.x86_64.rpm 9766415fe039a7cc4a71a76f172d2de7 2007.0/x86_64/lib64kdenetwork2-kopete-3.5.4-3.1mdv2007.0.x86_64.rpm 4b45e48031d8e92fa0f555661ff20865 2007.0/x86_64/lib64kdenetwork2-kopete-devel-3.5.4-3.1mdv2007.0.x86_64.rpm a0becdebbb7423c5d7c7cdf42fa2b9ac 2007.0/x86_64/lib64kdenetwork2-ksirc-3.5.4-3.1mdv2007.0.x86_64.rpm 35ece114d74877394a2a6caa401d5bbd 2007.0/x86_64/lib64kdenetwork2-kwifimanager-3.5.4-3.1mdv2007.0.x86_64.rpm 89813bd098e6c666b06153a97b2f8cff 2007.0/x86_64/lisa-3.5.4-3.1mdv2007.0.x86_64.rpm ce0d751431b70c32a86c97daab89bb56 2007.0/SRPMS/kdenetwork-3.5.4-3.1mdv2007.0.src.rpm Corporate 3.0: 56e34c3a88b838e54c1b64d7d63e23c6 corporate/3.0/i586/kdenetwork-3.2-17.3.C30mdk.i586.rpm dc6cc8d88f01d062d0287882b84718b9 corporate/3.0/i586/kdenetwork-common-3.2-17.3.C30mdk.i586.rpm cec7b286a40eb1e74f5539fe76d3c74b corporate/3.0/i586/kdenetwork-kdict-3.2-17.3.C30mdk.i586.rpm 396d82ec8d7ff6cff631947634c62dd6 corporate/3.0/i586/kdenetwork-kget-3.2-17.3.C30mdk.i586.rpm 920f35ee8807871b82e9ac0ab2ab040e corporate/3.0/i586/kdenetwork-knewsticker-3.2-17.3.C30mdk.i586.rpm 6770887102d26d37fc55a8807ff04ed7 corporate/3.0/i586/kdenetwork-kopete-3.2-17.3.C30mdk.i586.rpm f8a495911b1e31b04564e1c20a56d90d corporate/3.0/i586/kdenetwork-kppp-3.2-17.3.C30mdk.i586.rpm 75cd6ce0ee680118672f72b5b22d40d3 corporate/3.0/i586/kdenetwork-krfb-3.2-17.3.C30mdk.i586.rpm da43ce145d4a8d6b3043b17ed4037b6a corporate/3.0/i586/kdenetwork-ksirc-3.2-17.3.C30mdk.i586.rpm 0d81710aa8ebe947715299dab0905352 corporate/3.0/i586/kdenetwork-ktalk-3.2-17.3.C30mdk.i586.rpm dbdd5b3659a0ab60679cc8cc37d82c3b corporate/3.0/i586/kdenetwork-kwifimanager-3.2-17.3.C30mdk.i586.rpm 3e4fb0e614e57302ab2b9d905d8a5c17 corporate/3.0/i586/libkdenetwork2-common-3.2-17.3.C30mdk.i586.rpm 1a5ab5ea8458dadc4c82ac4fed4151a4 corporate/3.0/i586/libkdenetwork2-common-devel-3.2-17.3.C30mdk.i586.rpm 62df119e8a4477703cd248b4e2ab20f4 corporate/3.0/i586/libkdenetwork2-knewsticker-3.2-17.3.C30mdk.i586.rpm 2574ec29fc14215ae4d0b2467f3afe8a corporate/3.0/i586/libkdenetwork2-kopete-3.2-17.3.C30mdk.i586.rpm b745ffea2f681d2c8d49073ad15a85ac corporate/3.0/i586/libkdenetwork2-kopete-devel-3.2-17.3.C30mdk.i586.rpm a20b29ab226bd9a701edf048edf661fc corporate/3.0/i586/libkdenetwork2-ksirc-3.2-17.3.C30mdk.i586.rpm 5b03de510d8e7ee8c47b19c4256f6d98 corporate/3.0/i586/libkdenetwork2-kwifimanager-3.2-17.3.C30mdk.i586.rpm f3bf1ad2295f31a36357f527dc47943d corporate/3.0/i586/lisa-3.2-17.3.C30mdk.i586.rpm 3a583e8481a7f6cc7c5c5f117da8729f corporate/3.0/SRPMS/kdenetwork-3.2-17.3.C30mdk.src.rpm Corporate 3.0/X86_64: ae597019c0bd143d775852b77bd9821f corporate/3.0/x86_64/kdenetwork-3.2-17.3.C30mdk.x86_64.rpm 99be4174cb90ce115966c3dd02cf2ee0 corporate/3.0/x86_64/kdenetwork-common-3.2-17.3.C30mdk.x86_64.rpm dab1030d8d612b8bc4c594374708ac51 corporate/3.0/x86_64/kdenetwork-kdict-3.2-17.3.C30mdk.x86_64.rpm 03159795801e5d16d3f416a5bf27c139 corporate/3.0/x86_64/kdenetwork-kget-3.2-17.3.C30mdk.x86_64.rpm 8ea70f82bdad8679a806bbee02e79235 corporate/3.0/x86_64/kdenetwork-knewsticker-3.2-17.3.C30mdk.x86_64.rpm ef8d9306ddc12d440af8e0af1eeba142 corporate/3.0/x86_64/kdenetwork-kopete-3.2-17.3.C30mdk.x86_64.rpm 458a9a4ebb38c2a124139cfbd5d53f6d corporate/3.0/x86_64/kdenetwork-kppp-3.2-17.3.C30mdk.x86_64.rpm f9432084ab87f6ff0244ca48ec89ee8e corporate/3.0/x86_64/kdenetwork-krfb-3.2-17.3.C30mdk.x86_64.rpm e58eb402429d4ba36055976c02f741e7 corporate/3.0/x86_64/kdenetwork-ksirc-3.2-17.3.C30mdk.x86_64.rpm bb188f8ce1151eb4094df74335746349 corporate/3.0/x86_64/kdenetwork-ktalk-3.2-17.3.C30mdk.x86_64.rpm a15c4873ad7650099b3c63c3d14f09c4 corporate/3.0/x86_64/kdenetwork-kwifimanager-3.2-17.3.C30mdk.x86_64.rpm c6d2a736c0f49c4c3eae33f7582a43d7 corporate/3.0/x86_64/lib64kdenetwork2-common-3.2-17.3.C30mdk.x86_64.rpm 972888db4a24bcc65bb7294e1ee37c69 corporate/3.0/x86_64/lib64kdenetwork2-common-devel-3.2-17.3.C30mdk.x86_64.rpm a65215f840b97dc3d02d58a2e2711433 corporate/3.0/x86_64/lib64kdenetwork2-knewsticker-3.2-17.3.C30mdk.x86_64.rpm 9b69c1314edcfa5cf10316bb8ea7b5b8 corporate/3.0/x86_64/lib64kdenetwork2-kopete-3.2-17.3.C30mdk.x86_64.rpm 1c37a562d7c37b3f62da1f4747072eea corporate/3.0/x86_64/lib64kdenetwork2-kopete-devel-3.2-17.3.C30mdk.x86_64.rpm 2833d4f3f65b8f4881d47e75089283a1 corporate/3.0/x86_64/lib64kdenetwork2-ksirc-3.2-17.3.C30mdk.x86_64.rpm 0d072c0103bfbcb05e129f0565de0c30 corporate/3.0/x86_64/lib64kdenetwork2-kwifimanager-3.2-17.3.C30mdk.x86_64.rpm d596bbaa7d187b07301a0fc10fbde517 corporate/3.0/x86_64/lisa-3.2-17.3.C30mdk.x86_64.rpm 3a583e8481a7f6cc7c5c5f117da8729f corporate/3.0/SRPMS/kdenetwork-3.2-17.3.C30mdk.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFFpZrOmqjQ0CJFipgRAhzdAKCq79fOPV9MFJAm3y0FUe1gSZxgLQCfe1jj 5o2bLIb8wt/a7rX1soBoJzA= =bWnn -----END PGP SIGNATURE-----