Fedora update for kdelibs - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Fedora update for kdelibs

Secunia Advisory:	SA14704
Release Date:	2005-03-24

Critical:	Moderately critical
Impact:	DoS Privilege escalation Spoofing
Where:	From remote
Solution Status:	Vendor Patch

OS:	Fedora Core 2 Fedora Core 3


CVE reference:	CVE-2005-0237 (Secunia mirror) CVE-2005-0365 (Secunia mirror) CVE-2005-0396 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Description: Fedora has issued an update for kdelibs. This fixes two vulnerabilities and a security issue, which can be exploited by malicious, local users to cause a DoS (Denial of Service), perform certain actions with escalated privileges on a vulnerable system, and by a malicious web site to spoof the URL displayed in the address bar and status bar. For more information: SA14162 SA14254 SA14591 Solution: Apply updated packages. Fedora Core2: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ aaa0cb8e445fa90e1847892e256282d5 SRPMS/kdelibs-3.2.2-14.FC2.src.rpm 1dadffe3da3ea39e8c5916101d46aee3 x86_64/kdelibs-3.2.2-14.FC2.x86_64.rpm 73d5e1ed8ce19204593df1a0c8434713 x86_64/kdelibs-devel-3.2.2-14.FC2.x86_64.rpm 72b1a5439fc9f8f270dbe220f1e8c15b x86_64/debug/kdelibs-debuginfo-3.2.2-14.FC2.x86_64.rpm 1df0c931f51840cdf5079a08606f4a55 i386/kdelibs-3.2.2-14.FC2.i386.rpm e2846a3d48ed4f68f286af01c591a6da i386/kdelibs-devel-3.2.2-14.FC2.i386.rpm 8e14d65d02656ee73dc1850d80c96e2c i386/debug/kdelibs-debuginfo-3.2.2-14.FC2.i386.rpm Fedora Core 3: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ c28ef6077f606f12a42cc9353b44dbfb SRPMS/kdelibs-3.3.1-2.9.FC3.src.rpm 27aa0f9c550e57fecd378e5e7c5aff97 x86_64/kdelibs-3.3.1-2.9.FC3.x86_64.rpm f2801218b5ff4be23df191f5de57fa42 x86_64/kdelibs-devel-3.3.1-2.9.FC3.x86_64.rpm add5d7c4324e4790ee84441237225e88 x86_64/debug/kdelibs-debuginfo-3.3.1-2.9.FC3.x86_64.rpm 4ef5aaa433f4108d56110118c35e3f7f x86_64/kdelibs-3.3.1-2.9.FC3.i386.rpm 4ef5aaa433f4108d56110118c35e3f7f i386/kdelibs-3.3.1-2.9.FC3.i386.rpm 5aca755d133987148fb5885b08daad24 i386/kdelibs-devel-3.3.1-2.9.FC3.i386.rpm f79bcea56792848db679d141f9bd903b i386/debug/kdelibs-debuginfo-3.3.1-2.9.FC3.i386.rpm Other References: SA14162: http://secunia.com/advisories/14162/ SA14254: http://secunia.com/advisories/14254/ SA14591: http://secunia.com/advisories/14591/



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

263 Related Secunia Security Advisories, displaying 10

1. Fedora update for tetex

2. Fedora update for gpdf

3. Fedora update for mod_auth_pgsql

4. Fedora update for cups

5. Fedora update for ethereal

6. Fedora update for netpbm

7. Fedora update for fetchmail

8. Fedora update for cups

9. Fedora update for curl

10. Fedora update for gpdf

Show all related advisories

Send Feedback to Secunia

If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	OpenOffice "rtl_allocateMe mory()" Truncation Vulnerability

2.	HP-UX update for Apache

3.	JustSystems Ichitaro Products Unspecified Code Execution Vulnerability

4.	Red Hat update for tomcat

5.	Ampache "gather-message s.sh" Insecure Temporary Files

6.	Tiger "genmsgidx" Insecure Temporary Files

7.	R "javareconf" Insecure Temporary Files

8.	Mono Sys.Web HTTP Header Injection Vulnerability

9.	Red Hat Directory Server Multiple Vulnerabilities

10.	Honeyd "test.sh" Insecure Temporary Files