A xine-lib nem megfelelően kezeli az Ogg és Windows Media állományokat az ezt használó program DoS-olható. Az MNG, MOD és Real dekóderek nem jól kezelik a memória allokációs hibákat, a támadó kódot is futtathat a lejátszó rendszeren. Ezen kívül a qt, Real, RealAudio és Matroska dekóderekben heap overflow és integer overflow hibákat találtak. Több feldolgozó rész is figyelmen kívül hagy hibakódokat, ami szintén heap overflow hibát okoz. Problémákat találtak még az AAC, MP3 állományok, valamint az id3 tag-ek feldolgozása közben is. Az ffmpeg dekóderben is több hibát találtak. A KTorrent hozzáférés vezérlése nem működik a web felületen át, a támadó tetszőleges torrent állományt feltölthet és elkezdheti a letöltésüket. A web felület egyébként más hibát is tartalmaz, a rossz paraméter ellenőrzés miatt tetszőleges php kód futtatható. A vim rosszul ellenőrzi a paramétereket a külső programok futtatásakor, illetve rosszul védi a paramétereket a keyword vagy tag lookup-ok használata esetén. Mindkét hiba kód futtatási lehetőséget nyújt a támadó számára. Az openjdk-ban több biztonsági hibát is találtak, ami a sandbox-ból kitörést, kód futtatást illetve az alkalmazás összeomlasztását teszik lehetővé. Hibákat találtak a linux kernel 2.6.x szériájában: DoS lehetőség az ATM, az inotify alrendszereken keresztül, a sendmsg() rendszerhívás nem minden esetben szabadítja fel az allokált memóriát, ami szintén DoS-t okoz, a PA-RISC kernelek stack unwinding támogatása hibás, szintén DoS-t okozhat, az ATA alrendszer timeout kezelése hibás, ez a rendszer lefagyását okozza, az ib700 watchdog időzítő ioctl kezelése szintén DoS-t okoz. Számos XSS, valamint egy directory traversal és egy információ szivárgási hibát találtak a MoinMoin csomagban. Több biztonsági hibát is találtak a firefox illetve xulrunnel csomagokban. Az MIT Kerberos-hoz készült PAM modul nem megfelelően inicializálja a rutinkönyvtárat, így setuid/setgid programok tévesen elfogadnak környezeti változókat. Ugyancsak hibás, hogy setuid kontextből újrainicializálja a felhasználó credential cache-ét. Hibákat találtak a php értelmezőben is: a php_admin_value és a php_admin_flag korlátozások kikerülhetőek, buffer overflow a karakterkészlet állományok kezelésében, buffer overflow hiba az explode() függvényben, a FastCGI modul DoS-olható, heap overflow hiba a HTML entitások unicode konverziójában, a safe_mode korlátozás kikerülhető a php_getuid() SAPI függvény által használt page_uid és page_gid globális változók hibás inicializációja miatt, az error_log safe_mode korlátozás kikerülhető, dot-dot bug-ot találtak a ZipArchive::extractTo() függvényben, a GD rutinkönyvtár helytelen visszatérési érték ellenőrzése miatt a rendszer DoS-olható volt. Az fglrx-installer 64 bites rendszereken nem biztonságos LD_LIBRARY_PATH beállításokat használ. A sudo RunAs feldolgozása hibás volt, amennyiben a felhasználó már egyébként is a csoport tagja volt ami a RunAs listában szerepelt, úgy nem a megadott felhasználó, hanem a root jogaival futtathatott programokat. Stack buffer overflow hibákat találtak több git segédprogramban is, ezenkívül a gitweb sem minden esetben kezeli helyesen a shell metakaraktereket külső programok indításakor, ami tetszőleges parancsok futtatására ad lehetőséget. A gitweb ezen kívül még egy súlyos hibát tartalmaz, a diff.external paraméter megváltoztatásával tetszőleges parancs futtatható. A squid hibaüzenettel leállt, ha a kérésben érvénytelen verzió szerepelt (ez DoS hibát okozott). A curl nem figyelt a redirect-ek által visszaadott értékre, akkor is követte őket, ha az eredmény egy file:// URL volt. A network-manager-applet nem figyelt a jogosultság beállításokra amikor egy dbus kérésre válaszolt, így a helyi támadó hozzájuthatott más felhasználók hálózati kapcsolódási jelszavához és PSK-jához. Ezen kívül szintén hibásan kezelte a modify és delete kéréseket, így más felhasználók kapcsolatait lehetett törölni illetve módosítani.
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-710-1 January 26, 2009 xine-lib vulnerabilities CVE-2008-3231, CVE-2008-5233, CVE-2008-5234, CVE-2008-5236, CVE-2008-5237, CVE-2008-5238, CVE-2008-5239, CVE-2008-5240, CVE-2008-5241, CVE-2008-5242, CVE-2008-5243, CVE-2008-5244, CVE-2008-5246, CVE-2008-5248 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libxine-main1 1.1.1+ubuntu2-7.10 Ubuntu 7.10: libxine1 1.1.7-1ubuntu1.4 Ubuntu 8.04 LTS: libxine1 1.1.11.1-1ubuntu3.2 Ubuntu 8.10: libxine1 1.1.15-0ubuntu3.1 After a standard system upgrade you need to restart applications linked against xine-lib, such as Totem-xine and Amarok, to effect the necessary changes. Details follow: It was discovered that xine-lib did not correctly handle certain malformed Ogg and Windows Media files. If a user or automated system were tricked into opening a specially crafted Ogg or Windows Media file, an attacker could cause xine-lib to crash, creating a denial of service. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-3231) It was discovered that the MNG, MOD, and Real demuxers in xine-lib did not correctly handle memory allocation failures. If a user or automated system were tricked into opening a specially crafted MNG, MOD, or Real file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-5233) It was discovered that the QT demuxer in xine-lib did not correctly handle an invalid metadata atom size, resulting in a heap-based buffer overflow. If a user or automated system were tricked into opening a specially crafted MOV file, an attacker could execute arbitrary code as the user invoking the program. (CVE-2008-5234, CVE-2008-5242) It was discovered that the Real, RealAudio, and Matroska demuxers in xine-lib did not correctly handle malformed files, resulting in heap-based buffer overflows. If a user or automated system were tricked into opening a specially crafted Real, RealAudio, or Matroska file, an attacker could execute arbitrary code as the user invoking the program. (CVE-2008-5236) It was discovered that the MNG and QT demuxers in xine-lib did not correctly handle malformed files, resulting in integer overflows. If a user or automated system were tricked into opening a specially crafted MNG or MOV file, an attacker could execute arbitrary code as the user invoking the program. (CVE-2008-5237) It was discovered that the Matroska, MOD, Real, and Real Audio demuxers in xine-lib did not correctly handle malformed files, resulting in integer overflows. If a user or automated system were tricked into opening a specially crafted Matroska, MOD, Real, or Real Audio file, an attacker could execute arbitrary code as the user invoking the program. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-5238) It was discovered that the input handlers in xine-lib did not correctly handle certain error codes, resulting in out-of-bounds reads and heap-based buffer overflows. If a user or automated system were tricked into opening a specially crafted file, stream, or URL, an attacker could execute arbitrary code as the user invoking the program. (CVE-2008-5239) It was discovered that the Matroska and Real demuxers in xine-lib did not correctly handle memory allocation failures. If a user or automated system were tricked into opening a specially crafted Matroska or Real file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-5240) It was discovered that the QT demuxer in xine-lib did not correctly handle an invalid metadata atom size in a compressed MOV file, resulting in an integer underflow. If a user or automated system were tricked into opening a specially crafted MOV file, an attacker could an attacker could cause xine-lib to crash, creating a denial of service. (CVE-2008-5241) It was discovered that the Real demuxer in xine-lib did not correctly handle certain malformed files. If a user or automated system were tricked into opening a specially crafted Real file, an attacker could could cause xine-lib to crash, creating a denial of service. (CVE-2008-5243) It was discovered that xine-lib did not correctly handle certain malformed AAC files. If a user or automated system were tricked into opening a specially crafted AAC file, an attacker could could cause xine-lib to crash, creating a denial of service. This issue only applied to Ubuntu 7.10, and 8.04 LTS. (CVE-2008-5244) It was discovered that the id3 tag handler in xine-lib did not correctly handle malformed tags, resulting in heap-based buffer overflows. If a user or automated system were tricked into opening a media file containing a specially crafted id3 tag, an attacker could execute arbitrary code as the user invoking the program. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-5246) It was discovered that xine-lib did not correctly handle MP3 files with metadata consisting only of separators. If a user or automated system were tricked into opening a specially crafted MP3 file, an attacker could could cause xine-lib to crash, creating a denial of service. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2008-5248) It was discovered that the Matroska demuxer in xine-lib did not correctly handle an invalid track type. If a user or automated system were tricked into opening a specially crafted Matroska file, an attacker could could cause xine-lib to crash, creating a denial of service. It was discovered that the ffmpeg video decoder in xine-lib did not correctly handle media with certain image heights, resulting in a heap-based buffer overflow. If a user or automated system were tricked into opening a specially crafted video file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only applied to Ubuntu 7.10, 8.04 LTS, and 8.10. It was discovered that the ffmpeg audio decoder in xine-lib did not correctly handle malformed media, resulting in a integer overflow. If a user or automated system were tricked into opening a specially crafted media file, an attacker could crash xine-lib or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only applied to Ubuntu 8.10. Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.10.diff.gz Size/MD5: 34172 938cfdc710a17f2e08e6c71f508c910c http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2-7.10.dsc Size/MD5: 1123 4e6a8acd08d23a65f6d3a5ee3a8ccf95 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.1+ubuntu2.orig.tar.gz Size/MD5: 6099365 5d0f3988e4d95f6af6f3caf2130ee992 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.10_amd64.deb Size/MD5: 117530 85c43d5e493703a6c492c1331418bf39 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.10_amd64.deb Size/MD5: 2618236 0aff003f96ea70f1df1dbb8b33ba8a17 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.10_i386.deb Size/MD5: 117536 7df1b193e90345a37aaa175fc947cd19 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.10_i386.deb Size/MD5: 2937628 ec4bac5ec9f91bf0dbd12458b944816d powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.10_powerpc.deb Size/MD5: 117552 d44ae5635b07b863c1eafddd82295582 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.10_powerpc.deb Size/MD5: 2730188 38c031e1600fcd04f66006a1c1cadd67 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.1+ubuntu2-7.10_sparc.deb Size/MD5: 117548 78a42bb669a76a445e1256522d7e6e0a http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-main1_1.1.1+ubuntu2-7.10_sparc.deb Size/MD5: 2595756 b33543e3836dcffd0ec1ffddc84b4acf Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.7-1ubuntu1.4.diff.gz Size/MD5: 116097 91756fca06501a7b08f54d4a8d2e2b28 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.7-1ubuntu1.4.dsc Size/MD5: 1700 1844aed1b3084f88907d8a9c72504273 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.7.orig.tar.gz Size/MD5: 8868650 a613a3adf44b5098e04842250dbd2251 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.7-1ubuntu1.4_all.deb Size/MD5: 322340 5be627f43ff4ddaba80f1b531796c0a5 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-doc_1.1.7-1ubuntu1.4_all.deb Size/MD5: 127436 06e47283a81250e72b2f688a30c738ee http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-plugins_1.1.7-1ubuntu1.4_all.deb Size/MD5: 46216 343eb19a7bc9eed0703fd2c7fbb7c0c6 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.7-1ubuntu1.4_amd64.deb Size/MD5: 3142060 194efba5d149933c2a09cc60dfcae115 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.7-1ubuntu1.4_amd64.deb Size/MD5: 2384488 f46af5ef02e4483682f507a5d1ce2f63 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-console_1.1.7-1ubuntu1.4_amd64.deb Size/MD5: 79892 a00b7d6b261e120b39266cf5a00e79d3 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.7-1ubuntu1.4_amd64.deb Size/MD5: 445868 148bf75755c2073816c1a43279f1845e http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.7-1ubuntu1.4_amd64.deb Size/MD5: 60852 f9c5e7e9a2446129a0e5767ab57cae06 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.7-1ubuntu1.4_i386.deb Size/MD5: 3272954 45aabb6244096094d96ce7f1c8440b9d http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.7-1ubuntu1.4_i386.deb Size/MD5: 2493452 4ee861c6b848d3e38dea32390ec25434 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-console_1.1.7-1ubuntu1.4_i386.deb Size/MD5: 80806 de14c4820d38c2bd056fd50c019a9117 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.7-1ubuntu1.4_i386.deb Size/MD5: 450528 c1bedfd48d6d2d6b234b4e1f4a358a9b http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.7-1ubuntu1.4_i386.deb Size/MD5: 60268 1e77c930428fe702bbe54672a12ca6a1 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.7-1ubuntu1.4_lpia.deb Size/MD5: 3052416 2e1182d434b3b2cecd823ad483735a10 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.7-1ubuntu1.4_lpia.deb Size/MD5: 2366106 cfd2ec78107fdaf70139ef2cac778319 http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-console_1.1.7-1ubuntu1.4_lpia.deb Size/MD5: 79978 942713f92aa5705eb4b719ba6e9666a1 http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.7-1ubuntu1.4_lpia.deb Size/MD5: 445714 bda760c7f3d976dad562cee61c6dc8c7 http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-gnome_1.1.7-1ubuntu1.4_lpia.deb Size/MD5: 60176 cc7a6a18fd22cb4d37af4d245d4f58de powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.7-1ubuntu1.4_powerpc.deb Size/MD5: 3189758 62a9f1561a4b093f2d8a0c5bb58b1ba0 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.7-1ubuntu1.4_powerpc.deb Size/MD5: 2586002 e5bc0621a376dfdddbfd6f711dad740a http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-console_1.1.7-1ubuntu1.4_powerpc.deb Size/MD5: 84602 8668c3dd796634386fdd437ba185d507 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.7-1ubuntu1.4_powerpc.deb Size/MD5: 478828 dc3aaee99bdcd5ecde1d853c654a8d57 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.7-1ubuntu1.4_powerpc.deb Size/MD5: 66772 ceaf74fd0d0c8a1e7abcf859bc3db2b3 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.7-1ubuntu1.4_sparc.deb Size/MD5: 2862504 3ec5fb6b3cebf75c4ec5b0a4c9480b2b http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.7-1ubuntu1.4_sparc.deb Size/MD5: 2354412 144ffff1d154cba859bb6e93e188f46b http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-console_1.1.7-1ubuntu1.4_sparc.deb Size/MD5: 75840 ad61fd71281c516f3c2e231407a18542 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.7-1ubuntu1.4_sparc.deb Size/MD5: 454380 ec814bbf79b8762c520b14fa70e22ed5 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.7-1ubuntu1.4_sparc.deb Size/MD5: 60354 008ec1f2b30b9bf1c0f4ba034c0197d2 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.11.1-1ubuntu3.2.diff.gz Size/MD5: 124730 3c48d3d987da13e8eac0e82bc1df48e0 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.11.1-1ubuntu3.2.dsc Size/MD5: 1876 34345c685e1d81b02778bbef6d4725a7 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.11.1.orig.tar.gz Size/MD5: 9056527 08f6d8ed03d98ec43a5ee1386ce83a00 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-doc_1.1.11.1-1ubuntu3.2_all.deb Size/MD5: 143134 5400616c6d371a9cc6790f1cbae3a409 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-all-plugins_1.1.11.1-1ubuntu3.2_all.deb Size/MD5: 53330 416756efb11283adc307eeac638ab033 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-plugins_1.1.11.1-1ubuntu3.2_all.deb Size/MD5: 53324 cebffda4121f80ca8ee557c01df29f5f amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 328300 7d5ebc2f15877196bf12f647c6240d9a http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-bin_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 1221368 7c26330aec5ec1da1bd0ae9b1ee79d9d http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-console_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 58108 a9ebc69580000c3bc7e6e57e5d074816 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 3965012 96af3bfbaea611169332ff6f81fbc806 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 940580 82848cd0de473b95acf48836a0496a94 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-x_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 207550 767ac6287d28ceed1c76d533b3d00223 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 1312 b870b450d1af0b37635594686086bffe http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 393644 c4c3839c63a469ccf63f65377da68cc0 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.11.1-1ubuntu3.2_amd64.deb Size/MD5: 15298 9bcfb1ff701cd687d3b194a0d040bfb2 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 328274 c465629e707860eb5c571320097530a5 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-bin_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 1329338 298d760d8705da2e950338ac191ac71c http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-console_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 58112 69bbc29883b09954024852cc5faa55d5 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 4053480 42ee1af149423d47b237c86e0cdd16da http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 927890 4f3fc9cf9a7b11b4d4b97cc6d63ebefc http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-x_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 203446 22ed03c47dc3392e2ae498ea9b40fb02 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 1314 c127845119f283df784378d2ee16a4dd http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 397114 c662bf12d984ab728ecb475efc43f302 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-gnome_1.1.11.1-1ubuntu3.2_i386.deb Size/MD5: 14742 f5f92395f7663d6edc2651e213b6faa1 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 328270 2543b05142ae2fae329fb6cb33801cf5 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 1215496 96664f19d3a9f32a18859b0a6c1cf0d6 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 58340 4ea715c67199065b7bafa41682cf8cae http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 3797158 29d555c3d067b4a3cd0cb9ff889e7cf6 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 927760 ddabeea591f64f43cefa6904dd3d39d8 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 203662 eed4a67a1958c0f68eca9bfd198f5dcd http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 1312 d40b220a71522a1959af2f12956a7cf4 http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 396864 97913767547ea65d073c32d9115a930e http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-gnome_1.1.11.1-1ubuntu3.2_lpia.deb Size/MD5: 14804 27a5aede9278910f4ba497cf767bd217 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 328284 f13265580b654ee71b424f755059322e http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 1228340 f10024f68b94fdb6cf53d7e3f40035fe http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 61312 1d2ba65ff45775e754fe15c5cb9c9bb9 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 3987368 d4525c05abcfe534a225f89e387a6976 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 1125592 ddb89d8aad5c236622723b5c7b9619d6 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 218346 48301d25f5fa5882ef36baea9ab564e6 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 1314 d729d297038a52d6fef70fdb71e0a5a1 http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 426434 bb7bc85ee0e67f151ae43a9532bb43ec http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-gnome_1.1.11.1-1ubuntu3.2_powerpc.deb Size/MD5: 21432 5880816b08b3b02c5c428dbb1be0affc sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 328290 c61f6dbca4dfdfc591460a24e6541958 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 1212286 56075df0f2a9ad225da3ac14dd8b4a2a http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 48606 a903b2d3e8470537705f1d937c54f985 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 3596678 6a92975b108805e10f24cca169abac51 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 944560 ea27d345e1293e0ed4476c554580f621 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 176196 550bd152dc937bf74b39f47fb80f18cf http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 1314 1042b89799ff604e388d0410ccc2984b http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-ffmpeg_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 401654 14297110354b570c992b8acda67782bd http://ports.ubuntu.com/pool/universe/x/xine-lib/libxine1-gnome_1.1.11.1-1ubuntu3.2_sparc.deb Size/MD5: 14640 8a09904b44e2038287580c2571f8b19d Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.15-0ubuntu3.1.diff.gz Size/MD5: 39794 e175fc8377204306f7f79082d5761e71 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.15-0ubuntu3.1.dsc Size/MD5: 2335 b2646d964b32e5e8ffbdc2d61c23c437 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/xine-lib_1.1.15.orig.tar.gz Size/MD5: 9102819 a270252e1a1342e83d1596e2d42a7282 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-doc_1.1.15-0ubuntu3.1_all.deb Size/MD5: 145136 8e99014e965f032059e741263d3484a5 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-all-plugins_1.1.15-0ubuntu3.1_all.deb Size/MD5: 55382 92f2b70147d60a5a57835889d4268400 http://security.ubuntu.com/ubuntu/pool/universe/x/xine-lib/libxine1-plugins_1.1.15-0ubuntu3.1_all.deb Size/MD5: 55364 924864e1e5d2bd2fad1c1412fe319a60 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 331666 c82dcc4c2c8b7954a0c1c23572cc83eb http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-bin_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 1232210 d5c87ac974fe49fe9a6c2d2806c3b576 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-console_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 58704 14cd9e9b376c4d135122a35d0948ac3b http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 4001758 5a1391e12f842a5e13060a4fbfc1b8d4 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-ffmpeg_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 393600 1887b7e8bca28736347b019c7b7d61d2 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-gnome_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 15608 e09e40b2a08d7500d91c835e42f51087 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 924642 4b867166067d31dce7fd81c35141375f http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-x_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 213368 6896e7bf70eaecd3123d524a169a8b8f http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.15-0ubuntu3.1_amd64.deb Size/MD5: 1308 6499b47f3ff995b7d6f69a08fe051581 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine-dev_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 331654 41a1a485b260fe06297fe622ef38c313 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-bin_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 1343716 f1f32b21650a664eca5b5ac02daa08f1 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-console_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 61410 ead7731e3e57a804061ec8a5f882e985 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-dbg_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 4179430 e21e79731adcb045f522ffa19cd53340 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-ffmpeg_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 392558 346426322663aaf1027be27eefc124a3 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-gnome_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 15056 2d4047390b3edb03b08588b3aeb502ad http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 930848 ff8a0bafb5ff02ebceeb8c0636cef8e3 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1-x_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 212384 98d72bb47155573005b732119ad821d9 http://security.ubuntu.com/ubuntu/pool/main/x/xine-lib/libxine1_1.1.15-0ubuntu3.1_i386.deb Size/MD5: 1308 24cd157100e90f6ffb16487097cee661 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 331660 d5e07cce9d9297c30de3443f27b6ab92 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 1226698 e8a652164ba39b19ffb48a8c927ae5b3 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 60786 f47f088ffed3062eb0d53660f06b97b1 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 3907724 9143ee0cfa212d6d5fd2811812462380 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-ffmpeg_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 392470 e5e842a675be26d802f9349533aceb20 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-gnome_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 15038 ce965125e8f48992bf302b29dbd6031e http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 929914 ecb6a6d0794f5094fa4804a146c04229 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 211426 7678b2246d83d35c8646fc3340d3dd64 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.15-0ubuntu3.1_lpia.deb Size/MD5: 1302 b33d44c68b3826cb0ece22274710a1f8 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 331682 e0abb5278fdae809ee40f4030ac86f99 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 1240468 b3ebc080ae25493a4caab8fab710206c http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 64684 ac39f695916ffcd9055a2cb32c2984bc http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 4016902 5a5a2d8df263c35f004f5eb1bb7aeafc http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-ffmpeg_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 425972 5962652e3484749d5136e129e18f32b2 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-gnome_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 21600 355556409d5d3bfe5edcaefb382fc627 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 1119042 e4f9270e0992031089b4dc219ab69164 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 225628 8832cecbb506d64c5daf5135f0328646 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.15-0ubuntu3.1_powerpc.deb Size/MD5: 1310 e7f96fa4ea171af773e33b8c8e6c681e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/x/xine-lib/libxine-dev_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 331684 015bf0445be5297b372611c7cb43f491 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-bin_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 1220590 e93fc299cfc27d9dfbc461b6842077cb http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-console_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 51184 46bee66f3ce0d074dcda480106169c93 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-dbg_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 3583360 bc7b4a417befcf9cba3077ec0381b422 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-ffmpeg_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 400698 b935086ad2f364f812b9ba3df6427746 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-gnome_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 14630 29f34302dca752497aa7643f7a27cd0f http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-misc-plugins_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 933724 fdd17ad07b119aaed540f26d5fbd7e48 http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1-x_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 185912 353be978de95dd49a0d46f7084224b9f http://ports.ubuntu.com/pool/main/x/xine-lib/libxine1_1.1.15-0ubuntu3.1_sparc.deb Size/MD5: 1306 2eba6f1b0bec30881e877bc86299de67Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-711-1 January 26, 2009 ktorrent vulnerabilities CVE-2008-5905, CVE-2008-5906 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.10: ktorrent 2.2.1-0ubuntu3.1 Ubuntu 8.04 LTS: ktorrent 2.2.5-0ubuntu1.1 Ubuntu 8.10: ktorrent 3.1.2+dfsg.1-0ubuntu2.1 After a standard system upgrade you need to restart KTorrent to effect the necessary changes. Details follow: It was discovered that KTorrent did not properly restrict access when using the web interface plugin. A remote attacker could use a crafted http request and upload arbitrary torrent files to trigger the start of downloads and seeding. (CVE-2008-5905) It was discovered that KTorrent did not properly handle certain parameters when using the web interface plugin. A remote attacker could use crafted http requests to execute arbitrary PHP code. (CVE-2008-5906) Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1.diff.gz Size/MD5: 8139 542d145b17f4c93e90358305f5082892 http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1.dsc Size/MD5: 679 5d731774f0370fa9347ff1d4a9fe59b3 http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1.orig.tar.gz Size/MD5: 3763678 229a0615d9252510d9387079dd5bd86d amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1_amd64.deb Size/MD5: 2809826 64590eb7d61058feffe16b0c05c462de i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1_i386.deb Size/MD5: 2764082 0e1d642f8f86576da7aadb1ba5915993 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1_lpia.deb Size/MD5: 2769980 979fbc6391793dd1b976b555614b8125 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1_powerpc.deb Size/MD5: 2912698 5c0baa03be10092f5f9dae0ec33cf050 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.1-0ubuntu3.1_sparc.deb Size/MD5: 2764418 71d8cf3eb924098584948847752a69e7 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1.diff.gz Size/MD5: 8186 887b90cfe0b14d6e654edf5f83d443a1 http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1.dsc Size/MD5: 679 1cf90260c7bb419ba83f280e0c242c1e http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.5.orig.tar.gz Size/MD5: 3841204 f5cd0430250317eff85d8356d65c0a6f amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1_amd64.deb Size/MD5: 2812314 a60c001b92052ac0d269c894f4bafa7c i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1_i386.deb Size/MD5: 2749174 361a62003fe4029dd48b007f05a18848 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1_lpia.deb Size/MD5: 2762832 e458e9a11bf9d2db72c8af4d89936241 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1_powerpc.deb Size/MD5: 2894978 935494d19c317011e02041b204d042a5 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_2.2.5-0ubuntu1.1_sparc.deb Size/MD5: 2744550 5a1f3871c1a972155efcc1a77cac2788 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1.diff.gz Size/MD5: 28491 2dfc78827267f8a0316f7b871a3c5795 http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1.dsc Size/MD5: 1616 9daa934ea811f90d15aafcb96bcb8b3e http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1.orig.tar.gz Size/MD5: 3243464 d7ec6f8f7a77f9a460c99f9ba1d95cec amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent-dbg_3.1.2+dfsg.1-0ubuntu2.1_amd64.deb Size/MD5: 10574990 4039eb82f82e92c60212a4639842fb8e http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1_amd64.deb Size/MD5: 1876310 7d183d5f936776da921a26eb07852cf9 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent-dbg_3.1.2+dfsg.1-0ubuntu2.1_i386.deb Size/MD5: 10462534 b2a3142f8a5a73fac78af5651cb31a68 http://security.ubuntu.com/ubuntu/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1_i386.deb Size/MD5: 1872266 7f2002e96efccf24fd12178a0ac2af91 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent-dbg_3.1.2+dfsg.1-0ubuntu2.1_lpia.deb Size/MD5: 10485854 5b8f4fda1bb0b2e797a2b6d59bbe0f1a http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1_lpia.deb Size/MD5: 1891462 4b37c0d9502c46aa5f55e7cccd35c7b5 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent-dbg_3.1.2+dfsg.1-0ubuntu2.1_powerpc.deb Size/MD5: 11060316 fd33f09a63abe5485884da105fd5de91 http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1_powerpc.deb Size/MD5: 1947996 561ba5edef371c84a165d61a88df0b80 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent-dbg_3.1.2+dfsg.1-0ubuntu2.1_sparc.deb Size/MD5: 10583140 b2957586c0802312c7e837336b2dfc10 http://ports.ubuntu.com/pool/main/k/ktorrent/ktorrent_3.1.2+dfsg.1-0ubuntu2.1_sparc.deb Size/MD5: 1873550 2d38e242cfa474fb4c335a1ae2475482Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-712-1 January 27, 2009 vim vulnerabilities CVE-2008-2712, CVE-2008-4101 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: vim 1:6.4-006+2ubuntu6.2 vim-runtime 1:6.4-006+2ubuntu6.2 Ubuntu 7.10: vim 1:7.1-056+2ubuntu2.1 vim-runtime 1:7.1-056+2ubuntu2.1 Ubuntu 8.04 LTS: vim 1:7.1-138+1ubuntu3.1 vim-runtime 1:7.1-138+1ubuntu3.1 Ubuntu 8.10: vim 1:7.1.314-3ubuntu3.1 vim-runtime 1:7.1.314-3ubuntu3.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Jan Minar discovered that Vim did not properly sanitize inputs before invoking the execute or system functions inside Vim scripts. If a user were tricked into running Vim scripts with a specially crafted input, an attacker could execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-2712) Ben Schmidt discovered that Vim did not properly escape characters when performing keyword or tag lookups. If a user were tricked into running specially crafted commands, an attacker could execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-4101) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2.diff.gz Size/MD5: 199371 085ca7601cc068cc572c8cee1d25529f http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2.dsc Size/MD5: 1331 42f100409e8290158363e03eba87126c http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4.orig.tar.gz Size/MD5: 5740778 b893e7167089e788091f80c72476f0d3 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-doc_6.4-006+2ubuntu6.2_all.deb Size/MD5: 1732888 bcbc824e5296fea0ea3dd16b2ca54bc8 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-runtime_6.4-006+2ubuntu6.2_all.deb Size/MD5: 3594550 84cc69c7fd6b266f697d189cd67c1f69 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 83548 8445c214e8f5d3b04077800b3c795799 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 844928 1bf3bfb3b3552f2b7f77d9250517cbed http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 70034 7c8e29ed88bde4310459b8adfa6a5243 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 444484 99bd94b62dfb322a66dc1c1a98ef4efb http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 664378 f99c5f44f075e507727cfde6e4f4ac5c http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 842724 3121ac81e306aca18d1ce7a8de71ba9e http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 846792 705dcb476de0bb335ffdf74f7f0596a0 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 842742 98bd00409e7bc852a53ecc019ee89b28 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 838130 6e1b1064fb3aa016ba69fc77b6be912b http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.4-006+2ubuntu6.2_amd64.deb Size/MD5: 800738 708dfae6260edef8c7dcc5f8d4cf9c81 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 83114 9831f107a9a9b5544265e2ab53eb5afb http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 713796 32f00306228eecffa22a77de84ae0949 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 70036 ffca389f01faaaf229ed4a016d37274d http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 366068 76ea071f100dcad8de93b685b278dcf5 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 555212 34446768f4d4bf93e189e9d98752d9a6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 711754 489a955d8ee4716063a3d8cea4499584 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 718432 5e3a38e1f487af57947bd38d9a0b6bc8 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 711776 5d4887649de172dec2ac677202ab327b http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 707540 3a2500bf0437de7d07a1e503e6e54cec http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.4-006+2ubuntu6.2_i386.deb Size/MD5: 671316 ddf4437a7aa1d91c99f9233be933e81a powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 83524 b1350ec11eab7e0a8c7afb049eff2f5c http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 804090 933bd849bf1d0592dd58a90f8e7a18ab http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 70040 0676d5dcf3f7e0076b861f4155fc524e http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 419552 33840a53481dcd63a1101fef3cfe30f9 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 631936 35786da23d1d301ca0960ddee36d35d2 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 801918 c98a917f381fe65b102e8ea39018c96d http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 809022 09ceb2a4de5060527f9a7cf44645afb6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 801926 4ba448ba11132ed8cf7a54fef482287f http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 796202 43edf711b07fa56643a5fb8eded714a6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.4-006+2ubuntu6.2_powerpc.deb Size/MD5: 760386 804ef83be2b6fe1a1205dc47dfb2688b sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 83338 c5aadd2ccb560b7b9a0af14a36a57463 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 751596 88933c97a543b045f5a2a989f9388fa5 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 70042 a8d6b75acfbed2cf74ef004b0d92e366 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 385816 b39f990cfa7c107f00bee3963b89bb53 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 584808 d2fe4dd57e23835eb0083b9aaa3d0ee5 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 749082 bdfefe496675144e1d4e5de26efeff87 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 756456 9a43ff7be0d00dee2cefd09ed97a8485 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 749096 9aca70326bd2980bc3024581ea89dc7c http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 744754 b2f2b57fd4cc6f25f1dde87ecf09e320 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_6.4-006+2ubuntu6.2_sparc.deb Size/MD5: 708382 66fb791aae316f93f73280196da96709 Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1.diff.gz Size/MD5: 393692 1b3b5f04cd4a81d38ed0690b6b9d7743 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1.dsc Size/MD5: 1610 c3ab1ce8845e412ffc2b44cc78637c0b http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.orig.tar.gz Size/MD5: 8773102 e916524e292fc482f43c8c2d30a30fa6 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-doc_7.1-056+2ubuntu2.1_all.deb Size/MD5: 2130870 7ea95575b4acd8ee853a36ec453b48fb http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_7.1-056+2ubuntu2.1_all.deb Size/MD5: 150228 db6e3271ed87baea4c6083b8e1fc1876 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-runtime_7.1-056+2ubuntu2.1_all.deb Size/MD5: 5422078 f33d8d8c2e2669580872134440a1359b amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 186800 9ece94f30dbc2cb3f7832ebd894213c1 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1065528 ff141a43b5b1af110693ccfcb95046c0 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 374196 34964c0414fba2796d8cfd4ac242ed7e http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 854278 9eacc7e610cc130327f56f12fe4d79ff http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1094640 c07a85be1440a56630d3104de9d1c3d9 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1058146 7f80bd3a81e4d483668e044a3c1df6b1 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1061814 f1d25e364183d9a3639ff6a89379c92a http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1058170 90f07708118219a113ce1ed200a723bd http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 1053596 cd8af8025c00d2875fc4114e8c32ad6e http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1-056+2ubuntu2.1_amd64.deb Size/MD5: 994498 99b25af6fbf7ed37397343c9aedb118a i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 186526 1c5b14a967c56f527abde15a6cc270f2 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 938974 625fc2a4f8a12e88ac252c451f3e6024 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 320798 c96cff6480b4489dbecdd1f39cf01ad2 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 746298 9251a78ad602636fd9699314ec77d666 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 966390 4eefee53ec26b0852b4c1a1976aeb71e http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 932676 226be7042400feaf9b62efa930286c14 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 938568 9d8d4f4e85d1be84cf24c1be21e955ca http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 932694 57864d7a940bede3c58d2e2dfcb35912 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 927378 dc14a22042c2b7530f9e1c18a50f53f5 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1-056+2ubuntu2.1_i386.deb Size/MD5: 869332 11400fcc70fcc6dd84bed14379c70efc lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 186600 220221a93ba298595d0651e8976832d2 http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 947352 740a1f4daf8a645b8e74e9180c5c5b67 http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 324578 586e93debbb43b0ce0ed6a21eb72920d http://ports.ubuntu.com/pool/main/v/vim/vim_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 754072 3f7c52e9ca8b845e64285e4fb51a85b6 http://ports.ubuntu.com/pool/universe/v/vim/vim-full_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 974946 18c7df52886b595a94e97f1c2407888a http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 941128 88c01ab5f296975105a8faab719a3c15 http://ports.ubuntu.com/pool/universe/v/vim/vim-perl_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 947516 d705d68732b735a043ec08b53533a58f http://ports.ubuntu.com/pool/universe/v/vim/vim-python_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 941142 4b45cd44c494f0f831ece3c22b971594 http://ports.ubuntu.com/pool/universe/v/vim/vim-ruby_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 936940 637b9e9f371939b0c46bf6e4a9c0453f http://ports.ubuntu.com/pool/universe/v/vim/vim-tcl_7.1-056+2ubuntu2.1_lpia.deb Size/MD5: 878208 2e89f9f2a81b820de804396ff46d57f6 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 187136 1131b7bbb93c812894fc3cc3f4f815a0 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1035838 51c45eefb668ae4afa1f363d9a0a5ccb http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 358830 86e4c33cbf991ae34f1d4e8bc3059029 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 825842 9506722a8f49dc4f30e47c6c3a2577ba http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1065266 5e1a252c5b864ec8a96b515d269c39c6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1030034 177485eaf310d460b58874117416fb98 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1036130 2bdcae3b51d8922f1ec5b11ac65399ae http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1030058 e81a49b046a9707d4670bf1573d16554 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 1024506 f49b7283b734fc51c4f9f2948cc90c7e http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1-056+2ubuntu2.1_powerpc.deb Size/MD5: 965684 689fd854cdea0e3bf0c09247fa6c9984 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 186772 6b2986febbe1fc5e3e6cea7cc9c1d042 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 967554 6879daa23034ded4a78d134e2492b29f http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 330680 b7edd78593478bba9ae8884d1f3b2db1 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 765590 184029618474b7ebff72ed5eb41ace18 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 994152 c798eb18c3692edbd07017bc32c25627 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 960806 bb1b172f87715a0cd61aee3ff7c8cf47 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 967366 4a7f6b8872335c3c421c7057cfc7351a http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 960816 ed648eaf0545d24c5b6d009d7ecbf47d http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 956596 02184debe746effd8ae7528428652485 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1-056+2ubuntu2.1_sparc.deb Size/MD5: 895664 997ef5a68f8f5b0720cc5c25c40e8a7f Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-138+1ubuntu3.1.diff.gz Size/MD5: 482742 54eb4229d5763120208d2d20ac809f44 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-138+1ubuntu3.1.dsc Size/MD5: 1509 5c4c3bba5ccc75298dd423f4b716c91f http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.orig.tar.gz Size/MD5: 8773102 e916524e292fc482f43c8c2d30a30fa6 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-doc_7.1-138+1ubuntu3.1_all.deb Size/MD5: 2132596 28304b786a3b70580db9e0bab2949552 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_7.1-138+1ubuntu3.1_all.deb Size/MD5: 151400 1bd9f4fc6a3e51fe45cbcbd8416bd248 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-runtime_7.1-138+1ubuntu3.1_all.deb Size/MD5: 5419710 3492313bbadd1ddbc65ae4b08ae66d05 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1-138+1ubuntu3.1_all.deb Size/MD5: 74274 3bc4d91c11f1bc969e78ac73487c51c3 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1-138+1ubuntu3.1_all.deb Size/MD5: 74248 89c8890423010c4a34382a64d0d62ad3 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1-138+1ubuntu3.1_all.deb Size/MD5: 74256 a5366868ac4c658d64ab9e9fc3cbbb9a http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1-138+1ubuntu3.1_all.deb Size/MD5: 74250 55a74caafbcf80c8a9ef714e6d422b7f http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1-138+1ubuntu3.1_all.deb Size/MD5: 74248 56bc2e22a7d05b999a72958350b1902f amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 190268 dd94c487b0403b57ca0fb0001a7e723b http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 1084070 aa9eb702fc2c39ef9b92301314e64536 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 374196 ab44a42f4060b718ce8fc7c8cbbd43e8 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 918830 fd5621c6395501a2f662f008fdad5ca6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 1082024 a3bd8980e3fdc023a069a0a08051c4db http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-nox_7.1-138+1ubuntu3.1_amd64.deb Size/MD5: 937480 caf015d69dcb0a15b1d5ca3232592cba i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 190018 6fc29d7ee77a24113d8d5827639fa7f6 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 958664 0ceb5bbcc17fe99a7e7d7acd1f47709e http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 320494 543a7b4a0d0a464591f3b9824c5b9f97 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 809564 6c12ed10616a76a71cd7cba5ff0d706d http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 956016 cb03086864f236c27c325bf738447097 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-nox_7.1-138+1ubuntu3.1_i386.deb Size/MD5: 828428 7d080579043951e47115254ec5bc07ad lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 190110 b98fda9bbfc55b72ed8519cf3c41cf6e http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 966628 afaa5b401da251ffd52213652eabc7ed http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 324812 d8b3a9f212990d18c01ffc8b74646e5d http://ports.ubuntu.com/pool/main/v/vim/vim_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 816836 45fb07768698cf1e7c56b59b2553949b http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 964296 ea8310422488da931a80a2cc78fee31b http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1-138+1ubuntu3.1_lpia.deb Size/MD5: 836018 b44ae3764cbb051af9cfde49efc129b9 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 190664 c8fabe23845a2be35527a1cf0b7410b6 http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 1058820 2b1e8327f081ab564e8e52110f1dfccf http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 359578 13a805fda9db9cb5d1e119074369a9b6 http://ports.ubuntu.com/pool/main/v/vim/vim_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 890486 ce4c2d195c093e9d30b0ff5dfb18739d http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 1056292 213988f1463b4bdbc08a5a86f6b2344d http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1-138+1ubuntu3.1_powerpc.deb Size/MD5: 913762 2f28cae371414308904467f5d44e79dc sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 190158 0c6c24efd2fab3b4e276f2e3a2289860 http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 985654 3a0dd240e32dfc1c642ce51a741b0fa9 http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 330026 8d03c143ad76d77456e66ba681c539d9 http://ports.ubuntu.com/pool/main/v/vim/vim_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 828736 a69be6d5a2b1cd10d57b5b01b808c2ac http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 982666 490d12ba995b15e2909f50891395ac87 http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1-138+1ubuntu3.1_sparc.deb Size/MD5: 848732 70a096cecb67556bd29dc93ba1ad4b96 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.314-3ubuntu3.1.diff.gz Size/MD5: 426252 17db7251b8ae83a1b3cfdada9629c7e2 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.314-3ubuntu3.1.dsc Size/MD5: 1815 4a9a9a4389c9a782918c156121af7289 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.314.orig.tar.gz Size/MD5: 10273809 90784dbb53ddb4d8bb6b5d5892746690 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-doc_7.1.314-3ubuntu3.1_all.deb Size/MD5: 2143942 fcaeeb43ec4383c003e241dc0c03e3c6 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gui-common_7.1.314-3ubuntu3.1_all.deb Size/MD5: 157332 89665dd2ffe56175c27ebf5b273b33a8 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-runtime_7.1.314-3ubuntu3.1_all.deb Size/MD5: 5416638 5bd7a798f4974b1a742e166f4a1948a8 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-full_7.1.314-3ubuntu3.1_all.deb Size/MD5: 80484 f9f95788dc145a4a5adce70127e25fb7 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-perl_7.1.314-3ubuntu3.1_all.deb Size/MD5: 80460 1e538697b9acacf0562f5281c9972196 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-python_7.1.314-3ubuntu3.1_all.deb Size/MD5: 80464 25404cc2da5db7fbfb2dc464f4ac5bcc http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-ruby_7.1.314-3ubuntu3.1_all.deb Size/MD5: 80460 1490c97c35d08e5fdf8a6582f4593f3c http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-tcl_7.1.314-3ubuntu3.1_all.deb Size/MD5: 80458 d9c1af5990326706ac6c2e85d3914b2c amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 201452 41e47f5906491f4363cd2fc9292c4dd0 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-dbg_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 7539466 e3843facd22bc5a2e1c06b5877260997 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 1133170 db72063dfbc68422476bf981c10d5d18 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 393742 963794c604bf32bdc2307658e5dc8de7 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 958906 5c96db766b1b7bc858612f31e583441e http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 1131118 7dfa2c23b77e805c56bb6dd211167ea5 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-nox_7.1.314-3ubuntu3.1_amd64.deb Size/MD5: 984434 16f435c32aaa406e0dcb957d93e75c5f i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-common_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 201076 a025e59fe74d25dbe45df8f40cb6c257 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-dbg_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 6918862 0795f4cc1958fe9313a7e44206c313a1 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-gnome_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 1001884 d43eaa31f3f3c866381fc5a5e4f4dee0 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim-tiny_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 337034 e7ebe3a74ed41afe68c7732247f15932 http://security.ubuntu.com/ubuntu/pool/main/v/vim/vim_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 845336 9e75ff117dce2a31ea81b737ca42c1a6 http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-gtk_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 1000194 06f79cb34f9823349db18f1de30a137a http://security.ubuntu.com/ubuntu/pool/universe/v/vim/vim-nox_7.1.314-3ubuntu3.1_i386.deb Size/MD5: 869936 3996bfdeef67484a530e9c0a972a4b4b lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 201064 81b05c562a88a311741c9f445b346cb6 http://ports.ubuntu.com/pool/main/v/vim/vim-dbg_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 7057912 32da5634da78296764a4eda78f283de7 http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 1002748 2b547a5b3da808f481fb1f9e1bc40f9a http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 338056 e61b7aaa0371c20248119fea51d99e1c http://ports.ubuntu.com/pool/main/v/vim/vim_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 846448 cb613a4daa7a7bc45f313244c7953082 http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 1000440 28349733f5a54289d2f6e30028e3153b http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1.314-3ubuntu3.1_lpia.deb Size/MD5: 871132 315ddba20a3c20ca065b25abdb036f6e powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 201568 58e6c305160bab301344618e3ab7d1ba http://ports.ubuntu.com/pool/main/v/vim/vim-dbg_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 7315038 ace59d423fb0a1bee81f0181d3ad3d8a http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 1091626 8f6488a48a78491169ecbb11e25b8593 http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 373910 3acd020fafd580e39cec25b9a1b3ae90 http://ports.ubuntu.com/pool/main/v/vim/vim_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 921236 95eac3965aed8eaf4623de9717596d28 http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 1089970 13e8c07752dceff491c7c0e5c4a2cff9 http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1.314-3ubuntu3.1_powerpc.deb Size/MD5: 948830 31053af16f48643bb7e7ebbef2d665ae sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/v/vim/vim-common_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 201384 2e0b5c020c791383af5e6f6b100b3515 http://ports.ubuntu.com/pool/main/v/vim/vim-dbg_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 6488360 91ce6060a4e564a04df77272d0c49ead http://ports.ubuntu.com/pool/main/v/vim/vim-gnome_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 1018922 ff5ac5548640101097090567aeb8629b http://ports.ubuntu.com/pool/main/v/vim/vim-tiny_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 343254 315121752514c84f869c9749fe9ee7bb http://ports.ubuntu.com/pool/main/v/vim/vim_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 856666 be7425321108fab242c081a04f0858ff http://ports.ubuntu.com/pool/universe/v/vim/vim-gtk_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 1017684 b25e0111341e8838c3a98eb317f62c30 http://ports.ubuntu.com/pool/universe/v/vim/vim-nox_7.1.314-3ubuntu3.1_sparc.deb Size/MD5: 882514 09f11d2b3e15319facb480831818c873Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-713-1 January 27, 2009 openjdk-6 vulnerabilities CVE-2008-5347, CVE-2008-5348, CVE-2008-5349, CVE-2008-5350, CVE-2008-5351, CVE-2008-5352, CVE-2008-5353, CVE-2008-5354, CVE-2008-5358, CVE-2008-5359, CVE-2008-5360 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: icedtea6-plugin 6b12-0ubuntu6.1 openjdk-6-jdk 6b12-0ubuntu6.1 openjdk-6-jre 6b12-0ubuntu6.1 openjdk-6-jre-headless 6b12-0ubuntu6.1 openjdk-6-jre-lib 6b12-0ubuntu6.1 After a standard system upgrade you need to restart any Java applications to effect the necessary changes. Details follow: It was discovered that Java did not correctly handle untrusted applets. If a user were tricked into running a malicious applet, a remote attacker could gain user privileges, or list directory contents. (CVE-2008-5347, CVE-2008-5350) It was discovered that Kerberos authentication and RSA public key processing were not correctly handled in Java. A remote attacker could exploit these flaws to cause a denial of service. (CVE-2008-5348, CVE-2008-5349) It was discovered that Java accepted UTF-8 encodings that might be handled incorrectly by certain applications. A remote attacker could bypass string filters, possible leading to other exploits. (CVE-2008-5351) Overflows were discovered in Java JAR processing. If a user or automated system were tricked into processing a malicious JAR file, a remote attacker could crash the application, leading to a denial of service. (CVE-2008-5352, CVE-2008-5354) It was discovered that Java calendar objects were not unserialized safely. If a user or automated system were tricked into processing a specially crafted calendar object, a remote attacker could execute arbitrary code with user privileges. (CVE-2008-5353) It was discovered that the Java image handling code could lead to memory corruption. If a user or automated system were tricked into processing a specially crafted image, a remote attacker could crash the application, leading to a denial of service. (CVE-2008-5358, CVE-2008-5359) It was discovered that temporary files created by Java had predictable names. If a user or automated system were tricked into processing a specially crafted JAR file, a remote attacker could overwrite sensitive information. (CVE-2008-5360) Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6_6b12-0ubuntu6.1.diff.gz Size/MD5: 222090 25681e25a40ae36385d2429e8b905009 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6_6b12-0ubuntu6.1.dsc Size/MD5: 2355 281bc682638116538e829499572e3cde http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6_6b12.orig.tar.gz Size/MD5: 54363262 f3aa01206f2192464b998fb7cc550686 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-doc_6b12-0ubuntu6.1_all.deb Size/MD5: 8468244 7746db24f22ff25e7655bd9ad73b7077 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jre-lib_6b12-0ubuntu6.1_all.deb Size/MD5: 4708568 3e9ffbcebcadc431e5c1a21b80e9a9b7 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-source_6b12-0ubuntu6.1_all.deb Size/MD5: 25619670 4eb18b9cdd11778e80ce6b1ac63c2040 http://security.ubuntu.com/ubuntu/pool/universe/o/openjdk-6/openjdk-6-source-files_6b12-0ubuntu6.1_all.deb Size/MD5: 49156890 044fa2fafc22c35568c01e46f85dbf0a amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/icedtea6-plugin_6b12-0ubuntu6.1_amd64.deb Size/MD5: 81028 8f3c35e45a001a5bb5e7d7231656e206 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-dbg_6b12-0ubuntu6.1_amd64.deb Size/MD5: 47370572 db9493bf071aa08183a7aeef6efc71ea http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-demo_6b12-0ubuntu6.1_amd64.deb Size/MD5: 2366078 639ac32c62c5b951a77a0a58fcf8ee70 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jdk_6b12-0ubuntu6.1_amd64.deb Size/MD5: 9942620 ac6600eb8cddc9afd55d37a646ba3a89 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jre-headless_6b12-0ubuntu6.1_amd64.deb Size/MD5: 24087518 d9b0e9f7a0f6df9392eed8c67fa77acd http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jre_6b12-0ubuntu6.1_amd64.deb Size/MD5: 241532 404e268000d8d15e903f67eb4383146e i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/icedtea6-plugin_6b12-0ubuntu6.1_i386.deb Size/MD5: 71520 9af6963e6ddc977bd05a8dbbe40f1139 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-dbg_6b12-0ubuntu6.1_i386.deb Size/MD5: 101844924 fcdcbeacbb5f2854f68efa196e6d0ab3 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-demo_6b12-0ubuntu6.1_i386.deb Size/MD5: 2348616 6313881219ebbee2ee650685bcb6105f http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jdk_6b12-0ubuntu6.1_i386.deb Size/MD5: 9949838 366df23097c855e2d329dec6bf9f9d24 http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jre-headless_6b12-0ubuntu6.1_i386.deb Size/MD5: 25169062 1354f7327a8df3422a442f37b357f77a http://security.ubuntu.com/ubuntu/pool/main/o/openjdk-6/openjdk-6-jre_6b12-0ubuntu6.1_i386.deb Size/MD5: 230678 59ed425557f18fba815bcbf9b17c6d1d lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/o/openjdk-6/icedtea6-plugin_6b12-0ubuntu6.1_lpia.deb Size/MD5: 72102 c3317b35cd38f7b4ab607bf49331e440 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-dbg_6b12-0ubuntu6.1_lpia.deb Size/MD5: 101930608 292954d99c81b528891824548c6b885e http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-demo_6b12-0ubuntu6.1_lpia.deb Size/MD5: 2345410 fc2cd7ec4e96749e39307f756231fdc3 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jdk_6b12-0ubuntu6.1_lpia.deb Size/MD5: 9945176 4a8fb4a2b021f7ce6729dca9b0eef67c http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre-headless_6b12-0ubuntu6.1_lpia.deb Size/MD5: 25192978 cccb11f6580b47ab30c981a0a8cea0f6 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre_6b12-0ubuntu6.1_lpia.deb Size/MD5: 227450 abf58752fcf129175266e60b86857f8c powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/o/openjdk-6/icedtea6-plugin_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 77056 790776ea3f41a2392e6c9666402428c0 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-dbg_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 35896200 55947cfd47a40e248a626adcb601b4da http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-demo_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 2393068 c475228e916c602eea348b0382f51f21 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jdk_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 8599254 97e338f60e55a488ef0ba06bc23cf414 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre-headless_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 22974726 e3bf13b8599a94a0b89f2757a90800f5 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre_6b12-0ubuntu6.1_powerpc.deb Size/MD5: 255456 54b666eaaf464931a56406d09cfff088 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/o/openjdk-6/icedtea6-plugin_6b12-0ubuntu6.1_sparc.deb Size/MD5: 70100 b4addb80ceb8e01dd8819a1bc3b8c89a http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-dbg_6b12-0ubuntu6.1_sparc.deb Size/MD5: 103684964 9f7150e6e1675831b723cdbae5b5c963 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-demo_6b12-0ubuntu6.1_sparc.deb Size/MD5: 2355110 38f63636383fcb60ba60552ca4e0c60c http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jdk_6b12-0ubuntu6.1_sparc.deb Size/MD5: 9927636 7c32c7c800f01a2dc1ae878eceade91d http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre-headless_6b12-0ubuntu6.1_sparc.deb Size/MD5: 25175260 a09637fa2629b9ffa58d932078a44d67 http://ports.ubuntu.com/pool/main/o/openjdk-6/openjdk-6-jre_6b12-0ubuntu6.1_sparc.deb Size/MD5: 232954 17e8a53c99ea3ac34c0018b2e60a2be8Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-715-1 January 29, 2009 linux vulnerabilities CVE-2008-5079, CVE-2008-5182, CVE-2008-5300, CVE-2008-5395, CVE-2008-5700, CVE-2008-5702 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: linux-image-2.6.27-11-generic 2.6.27-11.27 linux-image-2.6.27-11-server 2.6.27-11.27 linux-image-2.6.27-11-virtual 2.6.27-11.27 After a standard system upgrade you need to reboot your computer to effect the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-server, linux-powerpc), a standard system upgrade will automatically perform this as well. Details follow: Hugo Dias discovered that the ATM subsystem did not correctly manage socket counts. A local attacker could exploit this to cause a system hang, leading to a denial of service. (CVE-2008-5079) It was discovered that the inotify subsystem contained watch removal race conditions. A local attacker could exploit this to crash the system, leading to a denial of service. (CVE-2008-5182) Dann Frazier discovered that in certain situations sendmsg did not correctly release allocated memory. A local attacker could exploit this to force the system to run out of free memory, leading to a denial of service. (CVE-2008-5300) Helge Deller discovered that PA-RISC stack unwinding was not handled correctly. A local attacker could exploit this to crash the system, leading do a denial of service. This did not affect official Ubuntu kernels, but was fixed in the source for anyone performing HPPA kernel builds. (CVE-2008-5395) It was discovered that the ATA subsystem did not correctly set timeouts. A local attacker could exploit this to cause a system hang, leading to a denial of service. (CVE-2008-5700) It was discovered that the ib700 watchdog timer did not correctly check buffer sizes. A local attacker could send a specially crafted ioctl to the device to cause a system crash, leading to a denial of service. (CVE-2008-5702) Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.27-11.27.diff.gz Size/MD5: 3045315 319b70724933690ebeaf2570c08e5872 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.27-11.27.dsc Size/MD5: 1529 1f0ca8782583778c06befbe486a5537c http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.27.orig.tar.gz Size/MD5: 63721466 482b04f680ce6676114ccfaaf8f66a55 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.27_2.6.27-11.27_all.deb Size/MD5: 3480820 102ffe69d583daaea25e9dc16624cf1d http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.27-11_2.6.27-11.27_all.deb Size/MD5: 5782904 b7de142c5ded4e2e26037799b045b17d http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.27_2.6.27-11.27_all.deb Size/MD5: 52041978 3eb25260c3bf95d7110174a153457fe4 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 36522 9e9b81519f796f9c8d970e369e6235b9 http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 264132 781d177036c0d1f8d04fca8fd1322ad4 http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 53470 8e367a9fbbb2aea106db18724fbd78e8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 43124 32bb76a5c82cf4787e015a8d14a78b96 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 52340 46d233691c5842fa9f7347216eba0ce1 http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 89726 a8ac9ef887eacc31ebc322cf37223aec http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 38136 9d6bf29c616ae927c9341f80cb1d354b http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 677334 2d925e6343fb97c1ce8c6c09438e3718 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 158556 40a73a5eb7858e877a17a6d0a28c3043 http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 46412 641ffe0928f442956384d73dc5fcb9cb http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 154052 7891486ab310849caa511a7ea3a1bf7c http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 312654 b1d2f2e0e9806822dbdd40733a2cce06 http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 2602056 b4700083fb77226533a5bd56e53e75e5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.27-11-generic_2.6.27-11.27_amd64.deb Size/MD5: 650884 057a9ec3b2e95418feb15f4ff322a0be http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.27-11-server_2.6.27-11.27_amd64.deb Size/MD5: 650812 78edc2defb2ee5021fc467dd1371165b http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-generic_2.6.27-11.27_amd64.deb Size/MD5: 23066840 67bb78180690fd6c6279b3e6646949b6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-server_2.6.27-11.27_amd64.deb Size/MD5: 23063204 17ec50d1369bf3c1de230498ec658de1 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-virtual_2.6.27-11.27_amd64.deb Size/MD5: 10458152 dfa3ac79fa292857dd7180a8b5533121 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.27-11.27_amd64.deb Size/MD5: 663848 8e0665e8893317c6b1129439cbf8612c http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 434908 b5a695a4f2f24657ea84c929f5d7ee62 http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 186342 b7a1cca322d68a0f9527ae2d72fc6231 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 275584 b22e9e6b69184f316a19c962318aa10e http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 1808120 824533c7be48a5d527ba67b89bb5518f http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 151332 c649c8efebd591d06e236cf67038a3c7 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 194226 7dc44b61e6db4e263792a41021b32f23 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 167994 b0eec2b2c31f2722fa09b1f93146dfc1 http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 36462 ac920fe410b1d3966c5b09771550160f http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 83386 c7bc43aad167ea7072f594048b631658 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 71942 628766ec1e59a39a404ea0347f610c59 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 23248 048d2bbe2abb50df1c7c3418ef1c41d4 http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 9018 975b1829cf22116ac762dadb64134904 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 68450 e9f1d069286257e48656fd6bdcce9bab http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 110420 6ab3fac78aec7c2415f2c4f1125c4c13 http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 1275722 c1679d35e5b5ac1ba621cf0be47c3183 http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 47598 4a49b7ce281ba54376b481ce6262b893 http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 13326 aba5704b3eb0815e06c1ea0e4b2ccdf6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 393692 6d4c19e8ad0d57be0405765494b24e9d http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 200842 1381efd1c93a15db6624ae8e8d9df104 http://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.27-11-generic-di_2.6.27-11.27_amd64.udeb Size/MD5: 13584 4a7ccf52bdc9b3d0dad86552fa461f0d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 33940 53d8f886cc515299e0eb7fe2a71e98e2 http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 244608 8d93bedf28c656de410ce24e1a350e8e http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 55386 cf79c0e3fe330fe240dd0f11b07e909a http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 41266 39a834a82711ec66c6b27937770d1805 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 48690 5f04814a5a76700b49ef21a75af6d161 http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 86928 8a7931fd909cf6ae6d0564c97186d070 http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 33954 8d3bcb9e61f855ea8b6386f01342b43f http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 674578 fd257461743980b6e4e8bb7e10ab6f3d http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 158190 520a2b2d77a7cbc688c4c70a12c7d7cb http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 43714 8b9aa57db293e55cef3d60f5becc7263 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 144884 7fbc0d69548b95a16eec745bddc79337 http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 301946 8c81d047b7c026b20591d191e945e997 http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 2431736 394df3bd7f18565be6901a5ea1712105 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.27-11-generic_2.6.27-11.27_i386.deb Size/MD5: 632990 c05b53970da1f25e9c81668a09e9b3ae http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.27-11-server_2.6.27-11.27_i386.deb Size/MD5: 633356 b8307ea92110ae4c9b5ebeca7d36f4d8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-generic_2.6.27-11.27_i386.deb Size/MD5: 23447370 9a758b4ecf00f126be500b1df7caf344 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-server_2.6.27-11.27_i386.deb Size/MD5: 23581390 ec5535e94eb5775cb8a678c579de8df5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.27-11-virtual_2.6.27-11.27_i386.deb Size/MD5: 10096662 c1778afb9dabe62225b7d766e160498e http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.27-11.27_i386.deb Size/MD5: 663792 7d3ab57dfd5d2f9c537634247e9398d5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 432704 891b06a4f4240bab98735a0a26b15234 http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 170998 f433e304c1e459f25988617280e15890 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 264000 6f2e567b929370211311a86899e85243 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 1991656 dca60f4f4fa22e08355e3cd4ce381b05 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 150938 db2ad37e334d23e2d775a7ee05e12652 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 183914 8c89dc120cd8ae8ab6a9ed22abe1ff4d http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 157596 a3f0343a661a2207d0c2a76234698a1c http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 34458 84e133df5aaa20cb1a9b6635c62dd48f http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 78180 206749d441c3ca3b944ef63882f0d3f1 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 86136 93ffbb4882c09e989335910e1c98530e http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 51164 3e1f3994e027b35c0cfd3824357415ac http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 8794 593b7c703dab68100a29326611f07071 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 64170 56a1b6a05fc9c6334fa232ee5753234c http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 101846 f72497e53cbb1517c01ad754dcbc68dd http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 1448908 d634feb7eace4987a4466dae309246b4 http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 44520 a5e92227ba7d965e33ed76d9c53cc1d5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 12478 c004549b61d3fb69fdbceb890f430cdc http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 372730 98180fd4bbe2441a04b191f1b6dae1a7 http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 189760 27a4ed16ecfa113cce764df26c2a707f http://security.ubuntu.com/ubuntu/pool/main/l/linux/virtio-modules-2.6.27-11-generic-di_2.6.27-11.27_i386.udeb Size/MD5: 12986 afde633f64a103dc86644d482210e552Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-716-1 January 30, 2009 moin vulnerabilities CVE-2008-0780, CVE-2008-0781, CVE-2008-0782, CVE-2008-1098, CVE-2008-1099, CVE-2009-0260, CVE-2009-0312 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: python2.4-moinmoin 1.5.2-1ubuntu2.4 Ubuntu 7.10: python-moinmoin 1.5.7-3ubuntu2.1 Ubuntu 8.04 LTS: python-moinmoin 1.5.8-5.1ubuntu2.2 Ubuntu 8.10: python-moinmoin 1.7.1-1ubuntu1.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Fernando Quintero discovered than MoinMoin did not properly sanitize its input when processing login requests, resulting in cross-site scripting (XSS) vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. This issue affected Ubuntu 7.10 and 8.04 LTS. (CVE-2008-0780) Fernando Quintero discovered that MoinMoin did not properly sanitize its input when attaching files, resulting in cross-site scripting vulnerabilities. This issue affected Ubuntu 6.06 LTS, 7.10 and 8.04 LTS. (CVE-2008-0781) It was discovered that MoinMoin did not properly sanitize its input when processing user forms. A remote attacker could submit crafted cookie values and overwrite arbitrary files via directory traversal. This issue affected Ubuntu 6.06 LTS, 7.10 and 8.04 LTS. (CVE-2008-0782) It was discovered that MoinMoin did not properly sanitize its input when editing pages, resulting in cross-site scripting vulnerabilities. This issue only affected Ubuntu 6.06 LTS and 7.10. (CVE-2008-1098) It was discovered that MoinMoin did not properly enforce access controls, which could allow a remoter attacker to view private pages. This issue only affected Ubuntu 6.06 LTS and 7.10. (CVE-2008-1099) It was discovered that MoinMoin did not properly sanitize its input when attaching files and using the rename parameter, resulting in cross-site scripting vulnerabilities. (CVE-2009-0260) It was discovered that MoinMoin did not properly sanitize its input when displaying error messages after processing spam, resulting in cross-site scripting vulnerabilities. (CVE-2009-0312) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2-1ubuntu2.4.diff.gz Size/MD5: 42544 ebd2cc72e4a9b91642c7e5b7fcae7754 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2-1ubuntu2.4.dsc Size/MD5: 710 1c979ab18f50b60ec0b9494a7513b71f http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.2.orig.tar.gz Size/MD5: 3975925 689ed7aa9619aa207398b996d68b4b87 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.2-1ubuntu2.4_all.deb Size/MD5: 1508228 88106c7e059b5b91deac7bfb71f96fb3 http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.2-1ubuntu2.4_all.deb Size/MD5: 69842 bf8ce8a5b46a32185e1f09af0b370e41 http://security.ubuntu.com/ubuntu/pool/main/m/moin/python2.4-moinmoin_1.5.2-1ubuntu2.4_all.deb Size/MD5: 835312 aa269dbf77b123fe000ee69de31df352 Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.7-3ubuntu2.1.diff.gz Size/MD5: 57794 cbaa73b938fa38550adfca2cd82b2228 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.7-3ubuntu2.1.dsc Size/MD5: 805 ac38488f222ba5451ae827b834713bf2 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.7.orig.tar.gz Size/MD5: 4411634 b304f1c2054c7f3bf0dc48c141b28b33 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.7-3ubuntu2.1_all.deb Size/MD5: 1660458 98e840ca6bc4322a5a8c9c2776e5ff18 http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.7-3ubuntu2.1_all.deb Size/MD5: 1020898 947daca038abf2eb07c4bb220b0c9276 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.8-5.1ubuntu2.2.diff.gz Size/MD5: 61334 1b3992acd9d6720686415752ec2b84da http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.8-5.1ubuntu2.2.dsc Size/MD5: 989 cf1add0defdb66648b3d327bb6fb3c59 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.5.8.orig.tar.gz Size/MD5: 4351630 79625eaeb65907bfaf8b3036d81c82a5 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moinmoin-common_1.5.8-5.1ubuntu2.2_all.deb Size/MD5: 1661790 6f1cf1970e15ae49e807c91b9a92d841 http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.5.8-5.1ubuntu2.2_all.deb Size/MD5: 942866 03c9f754644bab2a9bb59fb341988831 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.7.1-1ubuntu1.1.diff.gz Size/MD5: 69361 73955e746562f932d4c47650457e6d17 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.7.1-1ubuntu1.1.dsc Size/MD5: 1266 95f6ced2570e48fcf3f947f8b0dee615 http://security.ubuntu.com/ubuntu/pool/main/m/moin/moin_1.7.1.orig.tar.gz Size/MD5: 5468224 871337b8171c91f9a6803e5376857e8d Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/m/moin/python-moinmoin_1.7.1-1ubuntu1.1_all.deb Size/MD5: 4498436 617459b556027289b17473abccade9ffAttachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-717-1 February 10, 2009 firefox-3.0, xulrunner-1.9 vulnerabilities CVE-2009-0352, CVE-2009-0353, CVE-2009-0354, CVE-2009-0355, CVE-2009-0357, CVE-2009-0358 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: firefox-3.0 3.0.6+nobinonly-0ubuntu0.8.04.1 xulrunner-1.9 1.9.0.6+nobinonly-0ubuntu0.8.04.1 Ubuntu 8.10: abrowser 3.0.6+nobinonly-0ubuntu0.8.10.1 firefox-3.0 3.0.6+nobinonly-0ubuntu0.8.10.1 xulrunner-1.9 1.9.0.6+nobinonly-0ubuntu0.8.10.1 After a standard system upgrade you need to restart Firefox and any applications that use xulrunner, such as Epiphany, to effect the necessary changes. Details follow: Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. (CVE-2009-0352, CVE-2009-0353) A flaw was discovered in the JavaScript engine. An attacker could bypass the same-origin policy in Firefox by utilizing a chrome XBL method and execute arbitrary JavaScript within the context of another website. (CVE-2009-0354) A flaw was discovered in the browser engine when restoring closed tabs. If a user were tricked into restoring a tab to a malicious website with form input controls, an attacker could steal local files on the user's system. (CVE-2009-0355) Wladimir Palant discovered that Firefox did not restrict access to cookies in HTTP response headers. If a user were tricked into opening a malicious web page, a remote attacker could view sensitive information. (CVE-2009-0357) Paul Nel discovered that Firefox did not honor certain Cache-Control HTTP directives. A local attacker could exploit this to view private data in improperly cached pages of another user. (CVE-2009-0358) Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1.diff.gz Size/MD5: 105962 9d1dd815f6901881c9d0c7e02ba4a75b http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1.dsc Size/MD5: 2711 61ba06fa21dae6e6828921f22540d243 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly.orig.tar.gz Size/MD5: 11180629 f7306d068c261f95c284fba5a75a6c71 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1.diff.gz Size/MD5: 77638 2173124c73ad3095d97bf8960ec855a5 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1.dsc Size/MD5: 2776 a3dcb8b8fd26e1d802e9971a46e7e1f3 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly.orig.tar.gz Size/MD5: 41504221 c3b32d6f68af24a75e4c902cb2ddbc09 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65864 9dc2bf09e6fc28741544c4bfc5904738 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65876 8e290cff0732bac4b1ce1728b06f028b http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-granparadiso-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65840 30c689f5ecf7ec430353d713057cd971 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-trunk-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65818 0cdaaf28707b274a5f73a54d8b1fa965 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65978 f962ffb3ed9dd6573956304e7cf1a4df http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-3.0-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65890 322b798cd164a5ce68de2866e1dc1162 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-3.0-venkman_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65836 0a000e41e94f5e60a83ded055748296a http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 8968 61ba17d1e482222ac49f5f5a7d5d3913 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 8964 2ad2759d85a104116cb36831b028ce07 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65870 aac931ab3ca46e329a4955a5bf6e76a3 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65828 a62f716f84713ecfa1a33408e3872bd2 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-libthai_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65818 10dc6e5214d80b1624114c37bb86f738 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 8946 c8fb67a942b0d7d77aae0222f5e29887 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65844 5b4ed7aa2e26b77b6c95bb44d3869750 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-venkman_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 8934 ec245ae15b0ba68b501af7a188e20c78 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk_3.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 65806 726700c8e49d8e2ece5c84262ab82849 http://security.ubuntu.com/ubuntu/pool/universe/x/xulrunner-1.9/xulrunner-1.9-dom-inspector_1.9.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 125468 591ac192642c55dd439ee6dd1d4a1a62 http://security.ubuntu.com/ubuntu/pool/universe/x/xulrunner-1.9/xulrunner-1.9-venkman_1.9.0.6+nobinonly-0ubuntu0.8.04.1_all.deb Size/MD5: 235298 194d01564975da1065f994fda7ec9c3a amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 9028 a575ef97892b265117c921490478c749 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 29740 49d84b67f840254959132b1568ae46be http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 1091924 5eb7c34ffbc5cac1ec3428fb6ff81daa http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 4450518 8268133a51caf767e6bd3b7974e9c6f2 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 48682 da2d1192a88c460a80fee528be093d73 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1_amd64.deb Size/MD5: 9062436 75bb3c5a7a40c2c09832a5db61c5f320 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 9026 dcb3ffe9961637a24f4a92900bf506cb http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 25686 5c83329675e0bec00f0e1f6fa263be35 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 1071068 4d6756aa7b216b50e8357dd6469147f5 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 4437824 3285afec7e972337675f9771f64ed668 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 38588 44673073b942d11924cdf56ba3df690b http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1_i386.deb Size/MD5: 7813284 273b331b31de831a4a39d25a49d999a4 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 9024 795d386d153f97be00bb1a426fc15330 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 25304 de597f7551e871e1f57fe7e1a31774a3 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 1069414 9851027bd003573746541269877bb84d http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 4428972 a940da665b7b409066cf234921180a97 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 37546 16eb7adda58ba8ac943b7815ef7a3871 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1_lpia.deb Size/MD5: 7696132 9283cdb44b3215147e0abdc0620ec4d3 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 9030 891e46ef9a1aef332d3df52dcfb8d19c http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 27506 72d42ec8e4060dc2d642810b84be4077 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 1084224 96e261886e771af178fb932dc7f269b8 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 4028840 ff6de6d173949cc34bafcd2fa4b64b84 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 43668 ce09a7ed59b34d9ac1a227dc1f7cff8a http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.04.1_powerpc.deb Size/MD5: 8616998 a18d048f4b68e41a60044f3804044ab9 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1.diff.gz Size/MD5: 123854 5eb9af8cc607c980d141364a77065c17 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1.dsc Size/MD5: 2766 99c48d12708f9cf8ca1255ab0d2a39ef http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly.orig.tar.gz Size/MD5: 11180629 f7306d068c261f95c284fba5a75a6c71 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1.diff.gz Size/MD5: 251224 fa9a4f293ca4d0d5045f9680d53d5c96 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1.dsc Size/MD5: 2794 c42552247a5657a41d07d7ce5203ecc1 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly.orig.tar.gz Size/MD5: 41504221 c3b32d6f68af24a75e4c902cb2ddbc09 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/abrowser_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68878 ed90d727a49bbadd3503458c4d1bd922 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68782 87ffabc6b89b467f305649830ffa9c82 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68792 78dd805c6027aeac6d99d87487e67d08 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-granparadiso-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68756 8394edd832cb58014187941a43999ef5 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-trunk-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68742 9537b48d032b9cd82856940efc0964a4 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68872 2b3bc01c0502214b21069538107d727b http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-3.0-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68800 ea0d87d1e8f07f08ba34d3562a31c4c6 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-3.0-venkman_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68752 27d56b3630cbd6b3fa79e9da1cce611a http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 8968 67da562edf4df7832aeb222a56a2c0d9 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 8958 2644e20ea755ee36e04e271c9d1ba1bc http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68772 ceceabc7ab558738da2323a66f8897e8 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-granparadiso_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68744 dc3fee0726ee341fbb6ddfcd9ec1f1cf http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-libthai_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68732 b00be3635032695f79604b02c57c8faa http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-dom-inspector_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 8944 6db5ec69884f667e8369fbcc49cc8304 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68760 454aca37921589c3b74a2448a4073ff7 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk-venkman_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 8934 f1bcff624ea0c0386c55062bff9c9e68 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox-3.0/firefox-trunk_3.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 68726 9436faf6054364b44eebf32c559f950a http://security.ubuntu.com/ubuntu/pool/universe/x/xulrunner-1.9/xulrunner-1.9-dom-inspector_1.9.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 127760 c8126a5db486c695e71b428b9c571ad1 http://security.ubuntu.com/ubuntu/pool/universe/x/xulrunner-1.9/xulrunner-1.9-venkman_1.9.0.6+nobinonly-0ubuntu0.8.10.1_all.deb Size/MD5: 237822 b440b3b72dc00feb81657173c73984ca amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/abrowser-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 198336 6361e539637def42f67396cd216c49c3 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 201764 8536462b9963d3f0cb07c31e3894adc6 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 68838 e1e9d7e140bb2c79997cbf2f1fa30bbd http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 88232 fa2bdb12ff9a8d7e8c754888e4bb8f3b http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 906364 da574c215590f93a8bd1b9e455ec9e2f http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 4984526 634e691770102d04f85a6cf6db487304 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 47064 c8af5dafb7823bae2fee3fa801dd3105 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 8733332 1c85a4e3e06ac189438341268439bf61 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_amd64.deb Size/MD5: 22494 735532b1360ede105f56598f41cb8a70 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/abrowser-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 203608 ea24117110d1cfff534ab76f3ca862b5 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 202138 076232931f266edb189416e974266a98 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 68840 ef9f3612a61220022a280e370f527b16 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 84282 acc9e8b502808b65d5a30be04be42302 http://security.ubuntu.com/ubuntu/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 885350 6665202fe8c152f48cbf1591ebed93f3 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 4954618 d73cb09470917f27e4d1e8b8eacb79ce http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 39454 0f044675aab70caa5e0f610c829f687d http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 7563740 61a5e2807bbe5caba44968ac181ef140 http://security.ubuntu.com/ubuntu/pool/main/x/xulrunner-1.9/xulrunner-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_i386.deb Size/MD5: 22498 42b3898fefda9a5c6098b2a22d859f4f lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/f/firefox-3.0/abrowser-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 198084 7ff37decf8a4a57940785671c7c4707c http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 201306 32cc39b567f1d22cd023481779c246cd http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 68778 4c271575af18ed49ca16bd7999eca2ad http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 84300 056ad9092a7f0a270edcad48141af0d8 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 884652 56d9c0316fa92c8ccf74fea4250c41b0 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 4955706 560a919e63e36fc4b3fb52208e291d93 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 38452 6da3195179b5a5379e2fb7c4fa74eee1 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 7464230 f81a06670d47cde0eaa511cfb47cac06 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_lpia.deb Size/MD5: 22312 d4aba0c381a3fb4fecfbc0d71aa01b95 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/f/firefox-3.0/abrowser-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 203610 25bc60c85ae5e082a0c4f3b2f37f4255 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 201974 df219ab232cc417f097bb845a73f6a62 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 68844 72965f097fd6d0f6fd6b3d8b5c8b9aec http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 85698 a5f825d00ec30299aa30d042ae4932a6 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 898222 add6ae49c0b4118adaf6b21ba632c66d http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 4533050 47146ffecd0b0db849497637b0a0bb6b http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 42408 0b6c4c6e1591a7e45d40760947fe64b6 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 8273998 5c8b6e55a9a4cf2af73299279619fd5e http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_powerpc.deb Size/MD5: 22500 3823abc3a2f63be4d1ba8c0deb264836 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/f/firefox-3.0/abrowser-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 203600 21e5f298ce9eebf6961ed5df9c492d4c http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-branding_3.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 201972 fb3fcbf79a27708ab8e0a76140f07c79 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-dev_3.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 68842 94c43c32c310476e8c0168c694b783ce http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0-gnome-support_3.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 83394 531ccc5cf4f71116ab32b6baca072e72 http://ports.ubuntu.com/pool/main/f/firefox-3.0/firefox-3.0_3.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 886646 481460e1a6a961fe08b7144845ae86bc http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 4519408 a545337a375ebc4d9eb4ec1115a7b8b1 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9-gnome-support_1.9.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 37870 ce67b9084164ebfdb2fea7f76b19af79 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-1.9_1.9.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 8092686 5cdd2e017bb05cb2d2ec424752a770d0 http://ports.ubuntu.com/pool/main/x/xulrunner-1.9/xulrunner-dev_1.9.0.6+nobinonly-0ubuntu0.8.10.1_sparc.deb Size/MD5: 22504 d7d84e7d9443d8fc01822bdfd3035872Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-717-2 February 10, 2009 firefox-3.0 vulnerabilities CVE-2009-0355, CVE-2009-0357 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.10: firefox 2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1 After a standard system upgrade you need to restart Firefox to effect the necessary changes. Details follow: A flaw was discovered in the browser engine when restoring closed tabs. If a user were tricked into restoring a tab to a malicious website with form input controls, an attacker could steal local files on the user's system. (CVE-2009-0355) Wladimir Palant discovered that Firefox did not restrict access to cookies in HTTP response headers. If a user were tricked into opening a malicious web page, a remote attacker could view sensitive information. (CVE-2009-0357) Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1.diff.gz Size/MD5: 194096 3b0eb4a53c8a6f101d8e802172b35470 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1.dsc Size/MD5: 2410 1a4f7e3c168867fe00d15a9ab0fddbd0 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly.orig.tar.gz Size/MD5: 37773218 99f6660ed9a5123b99deb71a4e542beb Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_all.deb Size/MD5: 201368 31cb5c6d1a08cc7ba16bb639c91a0aaf amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 78163666 58624d232e8d4cfefd8aa0b3930f1645 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 3409228 2c70383c7fdb1c47dff030bcfc19c667 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 98652 96c04d01cb85d0e7bf7f6bd0a462217d http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 67370 d7c39e5768ab583dfd378dd8caaec8ad http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_amd64.deb Size/MD5: 10514542 e2848c8d832da591ee6738b6c83e46fe i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 77307750 06d768c4f6ff11b0e9a767d9430d1167 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 3389432 6d0f9551aad0bf24730ce9e8bd0e43a8 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 91414 0e6b2a8b84b703e83daff329bec2aaa8 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 66320 509349c58bd38c4c8d5c3f01c5f854d8 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_i386.deb Size/MD5: 9263558 5071f73cd799d6be6694ffc325ece112 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/f/firefox/firefox-dbg_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 77589024 34b1054c205c40487c6fb63a07b7f8ea http://ports.ubuntu.com/pool/main/f/firefox/firefox-dev_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 3387598 9f72cfde2387f9728124f32e82adab69 http://ports.ubuntu.com/pool/main/f/firefox/firefox-gnome-support_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 92266 b52a5d27e848f2b49642accce30457a1 http://ports.ubuntu.com/pool/main/f/firefox/firefox-libthai_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 66600 60206314a39b88285db5ff69efa2079c http://ports.ubuntu.com/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_lpia.deb Size/MD5: 9116162 08e770ab94d22ad21731033bb9569bc9 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 80783090 7e7d643e7fba65302c52f6c250b826ac http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 3202874 ac1e5d66c385ddc6c52ac47d54408624 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 96388 1d752d1304bae4438e69e7176c853df7 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-libthai_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 67654 de86db9d630be0c23ac80d17bdc21552 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_2.0.0.21~20090209t122238+nobinonly-0ubuntu0.7.10.1_powerpc.deb Size/MD5: 10317856 2b66401173a009cfdc915156c3eafa7cAttachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-717-3 February 11, 2009 firefox vulnerabilities CVE-2008-5510, CVE-2009-0357 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: firefox 1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1 After a standard system upgrade you need to restart Firefox to effect the necessary changes. Details follow: Kojima Hajime discovered that Firefox did not properly handle an escaped null character. An attacker may be able to exploit this flaw to bypass script sanitization. (CVE-2008-5510) Wladimir Palant discovered that Firefox did not restrict access to cookies in HTTP response headers. If a user were tricked into opening a malicious web page, a remote attacker could view sensitive information. (CVE-2009-0357) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1.diff.gz Size/MD5: 184569 201540f2560ee07d0a7b30d367ce41bd http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1.dsc Size/MD5: 1800 e8a6f2726dbc06dade12a0ebc19c7fae http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j.orig.tar.gz Size/MD5: 48454140 496d1a74f2a98e8983737a874a9db29f Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/f/firefox/mozilla-firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_all.deb Size/MD5: 53638 9a18c7067527411eababced232354e7c http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/mozilla-firefox-dev_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_all.deb Size/MD5: 52746 fa9d687831d30b8f8ef39da07c7a1ff4 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 47675616 d3b427dc0d4db0eebb5f3147ce3d29bb http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 3045278 1683527a70cdf674f7b711ad559db6b4 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 85802 d88ad731cdfc825cb1f88ad91d8fbe2d http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 9522850 b6d18064354f4e733894ce40fe048be4 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 228116 90343b0a500020dd643c049164ba9c93 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 165590 3c2be076fb6d9c61cb42d938a90b93d2 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 254734 4198117776b43f20ca6d70b554b81db7 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 826298 b88f70f60cb48caa96add58750e5b4bd http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_amd64.deb Size/MD5: 218730 e76dcc4583433117dbd7b81a77a858f5 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 44222898 8c37f41c90782d6f7a1bef130a33bebc http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 3042728 4542d11b7a0d330ba036246b518b7348 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 78320 a09d5ac38d8656b09b02f61de4a3a848 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 8031042 89edcd5c182b752bd4a81d53bb4fcf9c http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 226174 0837e3ee67b4f6cde742c775e037f458 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 150976 6405eb0e815c96e8627f2b4d136eff11 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 255144 0e40cab26f0632c3d8687def727799c5 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 716692 950b133f03721a6e850c39374211eed9 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_i386.deb Size/MD5: 212318 32b6d850fe57e89ae8646adb606552df powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 49080148 8c660c35194a0d6ea0eaef04217fabee http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 2858774 459ccaa976dadf0a084d79a749a1117e http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 81422 ebce34e5fbdc9f9512eb52ff4722ae5b http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 9112744 6b2cda45169a8a9bb7b13afd2698a304 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 222260 6aae274c9ced525cd99cc4995a893118 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 163044 390f958f20ee78f041342d934b67edcd http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 247834 3a4363d4e6b72e79826f46013328d975 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 816088 69bf430f8f920576685682d684dd0159 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_powerpc.deb Size/MD5: 215280 33d4ae48f71b7ac9c0b8a3ddaccbe9b9 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dbg_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 45627582 86289259deef3338488deff398981f8f http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-dev_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 2858786 b846d70d98da5c911c56175900f38561 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox-gnome-support_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 79926 b001d774bd2f4eeba25abe99aaf806f1 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 8498570 191dac8aa9174eefd1a0bdfe212b453a http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 222282 2dc8e2df944c5d49c4e7a409077eb3ff http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnspr4_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 152948 68af6ea71c2386cff897d0862f2025ab http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss-dev_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 247844 243fcbcde87e019f0e81748b9db25014 http://security.ubuntu.com/ubuntu/pool/main/f/firefox/libnss3_1.firefox1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 727550 dcb087f639cc1fe8be4fea51c4034d28 http://security.ubuntu.com/ubuntu/pool/universe/f/firefox/firefox-dom-inspector_1.5.dfsg+1.5.0.15~prepatch080614j-0ubuntu1_sparc.deb Size/MD5: 212730 d74dc227e12ba13b96cb586edefe1c90Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-719-1 February 12, 2009 libpam-krb5 vulnerabilities CVE-2009-0360, CVE-2009-0361 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: libpam-krb5 3.10-1ubuntu0.8.04.1 Ubuntu 8.10: libpam-krb5 3.10-1ubuntu0.8.10.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that pam_krb5 parsed environment variables when run with setuid applications. A local attacker could exploit this flaw to bypass authentication checks and gain root privileges. (CVE-2009-0360) Derek Chan discovered that pam_krb5 incorrectly handled refreshing existing credentials when used with setuid applications. A local attacker could exploit this to create or overwrite arbitrary files, and possibly gain root privileges. (CVE-2009-0361) Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1.diff.gz Size/MD5: 12322 2915d0d5b4133bcc65b6bc03346033b0 http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1.dsc Size/MD5: 816 cbc0e2b13d48682ec29127649d9d3407 http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10.orig.tar.gz Size/MD5: 156259 6ec6bd6637f8c91bf5386ed95fa975ba amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1_amd64.deb Size/MD5: 78068 6f201eda9f6df9d527c165c21756084d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1_i386.deb Size/MD5: 77412 199ba52d9440d89f70fab1544fa90d7f lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1_lpia.deb Size/MD5: 77246 ff9cce0bbaf03a1a348fcd1fb0ca6745 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1_powerpc.deb Size/MD5: 80536 e3ec20dbf0fb9666549f801c012f72b0 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.04.1_sparc.deb Size/MD5: 77196 6e8a12a640e6c9163d65709d68c14775 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1.diff.gz Size/MD5: 12322 9646c596627edf91af8799f78b9bffb2 http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1.dsc Size/MD5: 1234 39b9545e294f6937092fbf8316ffc9d1 http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10.orig.tar.gz Size/MD5: 156259 6ec6bd6637f8c91bf5386ed95fa975ba amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1_amd64.deb Size/MD5: 78348 9be5305e9bb4f8b85d0857230cc2acda i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1_i386.deb Size/MD5: 77494 2e37aba551e192fffaf17754b96fee1a lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1_lpia.deb Size/MD5: 77452 d89fdc271a18c000d84a2ce6c1c1db4a powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1_powerpc.deb Size/MD5: 80632 5312557a64d26867ac5472ee56f3ac2e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/libp/libpam-krb5/libpam-krb5_3.10-1ubuntu0.8.10.1_sparc.deb Size/MD5: 76978 9fc7e9ee619bd7ce77fafe13a2dc46b8Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-720-1 February 12, 2009 php5 vulnerabilities CVE-2007-3996, CVE-2007-5900, CVE-2008-3658, CVE-2008-3659, CVE-2008-3660, CVE-2008-5557, CVE-2008-5624, CVE-2008-5625, CVE-2008-5658 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libapache2-mod-php5 5.1.2-1ubuntu3.13 php5-cgi 5.1.2-1ubuntu3.13 php5-cli 5.1.2-1ubuntu3.13 php5-gd 5.1.2-1ubuntu3.13 Ubuntu 7.10: libapache2-mod-php5 5.2.3-1ubuntu6.5 php5-cgi 5.2.3-1ubuntu6.5 php5-cli 5.2.3-1ubuntu6.5 php5-gd 5.2.3-1ubuntu6.5 Ubuntu 8.04 LTS: libapache2-mod-php5 5.2.4-2ubuntu5.5 php5-cgi 5.2.4-2ubuntu5.5 php5-cli 5.2.4-2ubuntu5.5 php5-gd 5.2.4-2ubuntu5.5 Ubuntu 8.10: libapache2-mod-php5 5.2.6-2ubuntu4.1 libapache2-mod-php5filter 5.2.6-2ubuntu4.1 php5-cgi 5.2.6-2ubuntu4.1 php5-cli 5.2.6-2ubuntu4.1 php5-gd 5.2.6-2ubuntu4.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that PHP did not properly enforce php_admin_value and php_admin_flag restrictions in the Apache configuration file. A local attacker could create a specially crafted PHP script that would bypass intended security restrictions. This issue only applied to Ubuntu 6.06 LTS, 7.10, and 8.04 LTS. (CVE-2007-5900) It was discovered that PHP did not correctly handle certain malformed font files. If a PHP application were tricked into processing a specially crafted font file, an attacker may be able to cause a denial of service and possibly execute arbitrary code with application privileges. (CVE-2008-3658) It was discovered that PHP did not properly check the delimiter argument to the explode function. If a script passed untrusted input to the explode function, an attacker could cause a denial of service and possibly execute arbitrary code with application privileges. (CVE-2008-3659) It was discovered that PHP, when used as FastCGI module, did not properly sanitize requests. By performing a request with multiple dots preceding the extension, an attacker could cause a denial of service. (CVE-2008-3660) It was discovered that PHP did not properly handle Unicode conversion in the mbstring extension. If a PHP application were tricked into processing a specially crafted string containing an HTML entity, an attacker could execute arbitrary code with application privileges. (CVE-2008-5557) It was discovered that PHP did not properly initialize the page_uid and page_gid global variables for use by the SAPI php_getuid function. An attacker could exploit this issue to bypass safe_mode restrictions. (CVE-2008-5624) It was dicovered that PHP did not properly enforce error_log safe_mode restrictions when set by php_admin_flag in the Apache configuration file. A local attacker could create a specially crafted PHP script that would overwrite arbitrary files. (CVE-2007-5625) It was discovered that PHP contained a flaw in the ZipArchive::extractTo function. If a PHP application were tricked into processing a specially crafted zip file that had filenames containing "..", an attacker could write arbitrary files within the filesystem. This issue only applied to Ubuntu 7.10, 8.04 LTS, and 8.10. (CVE-2008-5658) USN-557-1 fixed a vulnerability in the GD library. When using the GD library, PHP did not properly handle the return codes that were added in the security update. An attacker could exploit this issue with a specially crafted image file and cause PHP to crash, leading to a denial of service. This issue only applied to Ubuntu 6.06 LTS, and 7.10. (CVE-2007-3996) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.13.diff.gz Size/MD5: 136172 36d74530cd6425b824aca441313ed346 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.13.dsc Size/MD5: 1776 02fd1bc0edafb5cbb9c79f59b731e3b2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2.orig.tar.gz Size/MD5: 8064193 b5b6564e8c6a0d5bc1d2b4787480d792 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.1.2-1ubuntu3.13_all.deb Size/MD5: 301950 7e2ab3ef12e6da932f0ac73fd146fdf5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.13_all.deb Size/MD5: 1040 5a05c841f86752bfa494099af06a972d amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 2434690 445924f3d8b7d220d6ad6f63bd6ca42a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 4758492 2fd749aa61a449bed58b6ef8b84015cd http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 2390194 f9e8022d83eb1cb31af82f33fd02ab77 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 136268 d59a233d6d7312d666e0e23606b197ed http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 24622 2ff8ff5729acaa80076aea734bcdee21 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 312642 6e24091ae7aaa47263da531a5a2bf166 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 36844 4974ce36d97755f9f413698b0067e156 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 22140 4c69a7739a7a79e3f0e2bcc92b6b0f06 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 8790 2d3f59432e04d90eb3ebfc1e73d00844 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 25238 3a35d3e25eec55d65576d0f6b5fca253 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 43908 052ddb2d3e0efe6fd180ae1e250288f5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 30132 409c281c95f3bf02c564c34bbc52bdae http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 44388 25607ca3ebf3e0457c20ea4c47e35f3d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 8346 8309bb41c1f195fc19b1bce8d730c6eb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 15310 da4830247685e3ebb51b02bcacd9b1d0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 29154 d1e5dcc34f2d6abfa66a2d193a10cc68 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 22706 128b3d00bf83515ae3065acb6a7e1879 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 42304 077a0218f3f0ab07f2f916b074dd6b85 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.13_amd64.deb Size/MD5: 16394 318a601dc2689cd98911937777009cf0 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 2263664 723113654e6f6150ae0743342ee3565e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 4475074 40d3b58e88b82ef15a1285a43512ddbf http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 2247554 cfeb30b87a9ae81bdb620b49c477fde6 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 136272 d28ac7c484bacf6e1602dbeb06383da8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 22854 32e8bb20c4e53a716a7e3e4e83a6d51a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 312652 c31d62287b548577143eb4f57275e609 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 32886 0dbc2939cc6baf2c0acac4d9dee0bb6b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 19800 ed67bb5cbaf534e2edfb15e14de007a4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 8382 2a762be1742abac5b64df0ce65e83909 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 22000 457cd07e46978526385e1d170b8ba470 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 37376 8d5084d4542e33bba9a8d0b54fbae776 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 27042 44966bd6a45a2af4d73534afbbc9c565 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 39784 57ced673510f93bd7e5172441488ef8d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 8070 6377e700ddc7da484cd0f7ee74809e86 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 14162 b1889a9523cb80a27ac784b98e941d4d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 25604 f2ec727d74b0587ca215a97b2fcbd662 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 20546 f8335b1346f0f19011706a2b7fc3b175 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 37818 c372b6c6f9a1dd4e8d9d75335ca27cfa http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.13_i386.deb Size/MD5: 15140 e3d5a9b0ed6dbbc86829ef5778e7a629 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 2398262 1b8526eba895ded1a6b0f35e962912d5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 4694370 ad4bfc7788d94916767ea58ecf10bea4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 2356838 a18a229d28ead6bf651db58fe2d11855 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 136266 31ed0e8b18ac07e2c9745cbe5821434b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 26614 3e81a2685c28d76b9cb3fbec0bc49495 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 312654 beaf8441a24716ec8b9c5ab75e7c30bb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 36610 c1b4693475b99b9c702c69edb5d32766 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 22548 d8f60015638ff78d4bad8f8704a499d8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 10128 c5c53b698024bce46e5f1a052b57d87c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 24822 b758bc1e12c234e332e74f3b90d4565f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 41778 6a4e55f78a44668aa278ea238fa5d142 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 30082 c3987b37c875f9982359ba61a696e55e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 43422 d1819d5264159c4db98e867cc39c6464 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 9796 c8b61e0b56113051480db8ed34fdb6eb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 15946 d52234e6329fa8d4a75a95d50cba59ed http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 29406 dd218657059776d7dae11e35735c1e1f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 23584 4001a0cc310fd12f52fab61c8cf4f59a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 40900 98a6993a6501b493f2c46a7ba7564117 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.13_powerpc.deb Size/MD5: 17252 335f60e5738db9d0113bdadc4975a61e sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 2324542 db8c2cb095d98fca73e2d286dd13a9b8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 4532930 02dcfd3b6586a24874e409a3d1ac7d59 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 2277860 adf60d8c9ff3dbee4b1601921016292e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 136272 707245f1a6d88ef08c2f47cd89c7e819 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 24562 1facc01bb587987d5d2d1c999aa81a34 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 312638 88d811505bdde51a525cb36c15547403 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 33362 b7d07b1907c65a787aeb3efc24b0ebd7 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 20096 2a3c7b999bdf12b9ececabc2b83c08c2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 8382 f55a2dfb5f9b4eca87e7bcf1be390429 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 22358 2e64f4e85569a6d25be623c1f2c6a7a1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 38654 f4c2a7c3d7d8d81210058be183089bed http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 26840 875c3f77c1d3e31ff1ffb86509d9915b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 40608 3072f08be4812e80ad35214a334f83a2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 8110 738901ef119e0d909114bc573e713cbe http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 14056 ed25d44142a88721492c7925fa404ac4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 25956 9f1d9d8bd43cbb876f5a844d29734bfb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 20792 99a5aab3ef5911e0c44ad85eaac64f58 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 38032 44f97c5a4b494c6718cb8f52db37c8a9 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.13_sparc.deb Size/MD5: 15078 bb8eac596fe7ae509a1d3ee864e6ddcb Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.5.diff.gz Size/MD5: 141328 77b0fb7cdbab3e6e249866192eb8c33d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.5.dsc Size/MD5: 1929 4073677fb19f06436b45d8008330922d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3.orig.tar.gz Size/MD5: 9341653 df79b04d63fc4c1ccb6d8ea58a9cf3ac Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.3-1ubuntu6.5_all.deb Size/MD5: 351442 859f0c86ad6bd9b6339e4e6a2c947830 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.3-1ubuntu6.5_all.deb Size/MD5: 1084 70d2aa948b496a66833e3955caef0c26 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 2671660 d756236d908d59b0149c839b34466f29 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 5198498 c6a95883f0f06d07c2ef70a2f0d1113a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 2619848 401c42ca99caab2db745aa88a6c9c545 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 224178 8bfbaa36e2f1a19c3d0bbba4301a4581 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 24896 6c7849a29d3c27a31da804a2f0d0948a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 355114 97e4451d7bcc7205d2e2f9c70ed88304 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 37968 04addecdc5654ee5ce033ccbdb971240 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 19986 4056882e8d7d1cce62278c12b255ef51 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 5540 d1fd2f40f4edf1d06052d95436993c51 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 73944 aed0f0b90a2ebd388bae9bc5eedd2e15 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 37410 bf4598445c8bed217f65d344c6a89c57 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 55956 5d7e0c205187e50c538c541b381dd5b2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 9658 9250537d5a1455e79af7e873752c0053 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 5018 3f7e497354e49029bef6d94d3fad6dff http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 12380 7dbade72cb242f73d3c58fa60ec80ea5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 39568 194902c1041cf88040f62fb00c014292 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 19858 f265bb2a623cd5a3a2cbd6e6d0d90258 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 17916 e5cf2184c30b353a2a2d1c77ff192b0b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 40846 b4fab24add12ab0bcba89da5ffe9bb16 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.5_amd64.deb Size/MD5: 13400 ccc946cafd032b7376d0f98a3d791fef i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 2545354 ef720da7a5b5fbb09a3ca2a381a7b049 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 5030078 82e9ea17ba4a922df38aaf57c47bb40e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 2532718 0e9353873b6221314d487fa793311205 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 220476 a8664db13fea056b754dda67974bd23c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 23870 b2d1a302d7ca6d46ee41380b22b4fdf3 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 355132 5e5eef5c8894e8854cc46685b1ad285a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 33672 6300d76184664b4d833b40683588a2e8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 17998 6bc58fe07f8f41174be27fab2ca4ff4e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 5214 1571595c42a68f6d90341752274117f8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 65282 75001bf5cbc4c2c520156a97ef54ad2c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 34486 0cbcc395fb367e9e6340b7fd962db48f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 51356 ae64f04fab4238f41f84c8a3385d117a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 8718 a3f5900b9c142b7e3898164fb43ceda1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 4790 4ebcbabfe8a795ae34e9ebc7ae24979d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 11590 80d71cfab34c2c0f2bbc7875e59a6a23 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 34542 efdaac38461dee07997d7041a27045c8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 18170 b331e6ea215d25be24045900912ac305 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 16382 a4546a91930c462eb972ed52f85fcba0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 37728 a3c8063a6319fee7c5a7838bdec263e1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.5_i386.deb Size/MD5: 12424 e4c1970f0ded2a81e94374746dd03ab0 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 2516880 22552ccde5ce2554904f90c6ea3b6c65 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 4974774 6723a9195536f4514f898720fd802e5d http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 2504402 55fa8af3ef7e8cc620d960f0f3d40ab6 http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 219960 706b770f5c69d4afb55347c1e596037b http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 23268 9b4ffc382c050d4628dfa65ad33c64c7 http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 355114 c376c57081382651a10e3c4edea1607a http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 32974 b4ed69e3269313e6dc18a59edb222561 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 17886 fcdcdae6afc42501a6db07d4aff6d545 http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 5122 df18d2c6617f4d7eb48cb9b298b04d9a http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 64120 b3c5de7da7306fb36726e8d3e674980b http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 34004 fc2407202072af3a250c8f8171c0da75 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 50826 3da0e32c89d8faebe5b2548dbf681767 http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 8674 b99de9e079a2b5b99abeabcee0b2d7f1 http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 4742 c720524fc25dfbba45a6d73b075af9de http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 11534 3847f6ecafa0cea61beddca0b52e8c68 http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 33784 0b2d10081afe90988616a2c18f7a8af9 http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 18100 7e095c91cdd44902d32523804f66de1c http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 16056 606a72ceee7bcbb46b54a8031f190fdf http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 36846 373baef53fa5a3ed8e7aef305adf16e6 http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.5_lpia.deb Size/MD5: 12256 9d6022687f8e604735cacc6d3f3beb87 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 2745478 36e7be2b49cf0796e2ad7004f3419bfc http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 5274888 679f701e0085f096f1afbe99638a6295 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 2656356 c2c6ef3d680c6b710b0d9e1562a9b368 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 227446 215ec2bd503829f41612dd34d44897a5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 28104 e0e8ea6ec191215f3348a07601d5c1c0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 355162 8d666f8f1898c3f7a86d12319ca0ae5a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 39298 b726434bab3f2d9605d013d95360f17b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 21754 0a8efa783469a8612ef886509609d0ad http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 7670 e333f388530d33b51a491f0a541cb2f4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 78124 8dbd3d0a164203b9555a59fd2d2dcc17 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 41020 b540aa18a4662679e666dc9497438ff8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 59636 13066c41593daa636859b790fdd84877 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 11284 b899966d2e22c73578cda449137d517f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 7198 2f8f26a559194fb5266743cdf8bb82cd http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 14152 8f1f59072f6d4b75ce08726908b3dd7d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 42736 e3b627f38b66c4ebeaccd12c332a1ffa http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 21898 6e467d5ae4e8b5ac5c9b98008e4eea2d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 20248 bdb08ff8d9dcd5fb10fe7a9e00e64e23 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 43172 a01e8e0052f9c69199b681b413cf4ec1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.5_powerpc.deb Size/MD5: 15502 23ac62e2257206f200bc9377a5609e6d sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 2578692 7ea7640bacd789e581d1812701ecc776 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 5025314 966afc68f53811dda0e23cfe0c43d9ae http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 2531546 ddcfc3b266c738398fb2547e0e719b2a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 220416 2acbc470a4bba4aa7e403ab15b65ca35 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 24548 8c81b59c47ca1b656a8e6035003a3878 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 355126 649e23a1ff372176d8ff34635a77f00d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 34486 46ce1e1ac7b553ebd64c50a0bf9ab5c4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 17994 2aa44972f95ec31f72e37aea5cd92020 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 5098 337cee5b22ba77f286891a226ae339b2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 64830 a0e45caccb804175301a582c57955ac0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 32904 0f2d42f799c5e737356cdeb7ad5b5943 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 50188 ce65842fdeaaea84970c95c86ae8f30e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 8644 971786ab8ead2717e6f35950edcd90e8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 4782 35f9d16a979431aed5c71e8be44dd88c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 11456 026e2624d20d67a5997a54f0f284413d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 33308 1e8e3c2597f33d2b64f93089f210f23c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 17950 8b673521ad7c379fd0f5f9c41575403c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 16524 82a7e8f4c202addd6d7c3c24ac48f94b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 36608 f28d18bc4eb5f8a6a52ed231f1aa79a0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.3-1ubuntu6.5_sparc.deb Size/MD5: 11984 c049c8846cb22c610338b3d945a9b1aa Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.5.diff.gz Size/MD5: 146479 10ac048a76b0ff80d3a2822c343b95ec http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.5.dsc Size/MD5: 1969 af68f9f90223f4a06c8a5d9a5a16d216 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4.orig.tar.gz Size/MD5: 9705468 0826e231c3148b29fd039d7a8c893ad3 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.4-2ubuntu5.5_all.deb Size/MD5: 355284 0b72fe4f5536bb30222f979ad733cf3e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.5_all.deb Size/MD5: 1082 ded378e03c6129e651fdfb75ed550682 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 2612442 0bd4d3b78e65b64077c3cad6921f260e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 5086370 1200e08582ac2439109824f8f47c6556 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 2570184 a2c97c1015bbc0f91cab84a9fe295f14 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 319496 ee17f190f70e852ed123ea34ad2fa9bc http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 25028 070883cd3354088da169dce12271eb52 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 364464 1326f897bbab2dc864e76dde14f3a46b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 37332 9da0bfc23767b07391c8872b2e83f167 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 17620 ba8293b0206adfeb6195779c669ff3a8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 20268 a9ef26196f4098064bfbd58a02f1d1e8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 5544 a81da6d9aee5bef3a56d376097287a58 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 74418 6759940215dcfc5443bd8bbcab7ceba0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 37710 631ba3e2bb206c51ca2f9217fc01ac2b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 56162 dadf8db341097abe1a4c941afd20d714 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 9538 a778328b8f810803315a35102cb6bd45 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 5030 00de039d02559be22455d523e1f8634f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 12414 21885276af0536ad8c218ce29304ee8d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 39640 f8490593c19b25ef66526ae6bf9b694b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 28674 1cad1d1087dc9c3ad74a98a8a79062eb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 17884 be514e0c9ce134a42bf28d62b4f7a8e4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 38536 1f79cce7e897fbb63477bc5e6eea402c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.5_amd64.deb Size/MD5: 13544 2eece1acf96eb3dba477804353a2a470 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 2470878 188c868e7c9c6ae32fa2cb02afc34c67 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 4908190 61adb1fd159094942ad178546a635f91 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 2477684 5c48e04d4c059b45721739b32791e780 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 315554 4b9048117dfd99fe0e0e6365879a909c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 23652 8aab66ddc14fbcd1a63ce39ea6f949ca http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 364482 c25f546167d6886054488542af233919 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 32904 1f804c22fc2cce43b227cb7e2cc6e041 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 14756 0d7c8661084e511812f0be4c3acec6bb http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 18108 8808e1b2a283d605f579ba4772f5b5b7 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 5224 c1cb19f67409b60e65b47dde30220a18 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 65244 26c82add922279a5263bb96ef42c2cd1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 34276 650b8f89ba6c06d776e6114b00df30a4 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 51312 ef926082b88ad770656b6cc86b0b0445 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 8620 08f450d1064d9a7e43ba8939791fd3db http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 4794 54f99857f3a9b5bdee1f2f2de38f33f7 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 11734 dd4c2566b907a35c87e006d84178eac3 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 34370 2f434366de974d5d6327e02a29543a8e http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 26248 808c8fa7a6b4e755cf7806303ca032d3 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 16278 59ac2ab3b629b3633cc2a18d21926ee8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 35610 59b1d25dd07dce6919870b15a9c7ae10 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.5_i386.deb Size/MD5: 12592 0bbd507483c6a3f2649b80caea1663fe lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 2451960 9da83769ea2a0b034e8074620bca9685 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 4873544 f1936023c6cb70d3021f0007949e590b http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 2457836 33ca0f10e21664c017af1f922a715fc3 http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 315262 63dbd25a3bd7408135041e88e6b5de5c http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 23284 0c9bedd508ba9d7052e5da7ef49a720b http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 364460 29a685c4d78c56dd75526871f756585c http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 33074 2355208f82f818e36bfba13d980982c0 http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 15026 45ab94f6e140ec82fc6ab329546317e6 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 18104 5eeb784cfb65e67e406e9eb4f77877e3 http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 5106 47ce8b0f05254aaaf383311a5982296a http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 64314 a6128173c9c85174db86e72db02728d1 http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 33948 ca0cdd2bad4f219a52e3c9223a1aa886 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 50870 0030f17f0038866e5782f625baaa1d1f http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 8642 2af8dc509c30a7966d311ae70f39c08e http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 4722 bf831522853ad1da16ca17e6d3e8829f http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 11578 8fd92dee2bacb0b83542c45cd0febcac http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 33768 5387d3ebb0a1ea5eaa027513a18d53a3 http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 26136 335665fa651a3036269b7eeb9a3c5faa http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 16054 6480d2f9fcafee4ba2f04923c023f299 http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 35330 dc2d166b56d7b27c8eae5ca6618b2532 http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.5_lpia.deb Size/MD5: 12440 d6bb80872b84aeac0f8ce881e31a2f03 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 2621760 b385162733d0d6e77a5e06e9b0ec01eb http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 5107926 024b8507c2e59d069d60d0c7e979636c http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 2577246 514109b4a69d9980f454a7693a62538a http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 322640 d3e698a9c7ce5095341a23fbc4b6ccf4 http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 28232 01338dc5292fd4b146411127c76cf266 http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 364492 1ec1883f2800168385474cef709f3cf2 http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 38776 6593fc3f4f07b6993f98362ab56ef2a3 http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 17620 009509173ace9186ef7b5a4c9c0385e8 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 21732 8b42e3274a2ced4b1e022498625ee840 http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 7674 d2f23c74718417ffe824586db9d82abe http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 78002 23fe003721b57315e776844f638547c9 http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 41298 8e03efa9a45dfce27504d4db8a7ab449 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 59730 0cab71dc5308e3fe988805f74fe6a1ca http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 11158 e953dd0af87f85826c741e934696d2bf http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 7188 f5d5892442c0217776e18a32faf38cde http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 14234 40dbf17cf01428b9c4edbe9836fcb8bd http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 42380 73eba33a39b1fe7af81115e55fdade80 http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 31366 58eaac154d94052b633b0133b359ee31 http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 20058 6e7e84f9464c525395f3b4bf8e247b97 http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 40464 6a6025855e2add90a34413de08ed1937 http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.5_powerpc.deb Size/MD5: 15702 286f07f1f3a59248bce1453771416435 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 2493386 72d69c95e4fa2700ff4e4b654bcf0b31 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 4881774 0d35632ace0b3cd9dd14cd66fd7e8734 http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 2462358 37223e79375815e1a32164fd2d253699 http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 315498 d8530e4add54236b3e8dd6b3a2145c64 http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 24272 886302c0f5959a8f8abb49023b6300f5 http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 364482 f7c367e95c4756281eda1f15386ae9e8 http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 33590 e2e25db18df94b5d6aef3726340e7e99 http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 14154 57416b21a9d366846e8e430a785e7a04 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 17696 833c01321d5b35bf0287f63d9c3e4d6a http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 5058 a8958473bda8a218172046f3a2c17b31 http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 63412 697eaf15f741d956f778ed40ba1ecda1 http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 32426 1736603209c26d93cdef476024fd71bc http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 49706 069c489ad5ba480d7cc3530e8bc075b3 http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 8478 9f4d77270f9e3a1bf439a40b857bcb6d http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 4748 6ad16d0957c0e45b3163988194b189e3 http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 11552 93bb024910ead1356f81cbee78dae0e8 http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 32808 0e366c36895631df3e2e17fd33176042 http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 24962 35a5a484bc14d4c10fad1b14a3102597 http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 16348 81b96dc59bc0f18bb5494435d6aa362f http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 34784 99aad0b8e546ccf233b2d4d4e89e38d9 http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.5_sparc.deb Size/MD5: 12008 038806199a6f876464485266ad5b9500 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.6-2ubuntu4.1.diff.gz Size/MD5: 168352 4437377d1768373413554b601d774dc8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.6-2ubuntu4.1.dsc Size/MD5: 2538 3e5afec47d47460a4ebba7fd4ab608f1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.6.orig.tar.gz Size/MD5: 12046184 1720f95f26c506338f0dba3a51906bbd Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.6-2ubuntu4.1_all.deb Size/MD5: 331998 3284e3c50536461157da5ce01997734c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.6-2ubuntu4.1_all.deb Size/MD5: 1116 f2337456b9b10d0f46cf701970c86d74 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 2614376 43207fd72c1cfaba24edfe88d86bbccd http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5filter_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 2612928 d405de859f9b40377362ac0652befbf6 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 5091124 b09b942e2d6a4a12c083a6d31a254f33 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 2570498 80be5002e6c7b7226cc0ad4273f5aea2 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 368842 60492e9153166781951a5e6fec2bae5b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 25486 285ba171fd9305b5616bda260e05a0f5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 8234764 cbeed644512c5aa62ded3f7ca049fc9a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 362366 a4fe4d7b294b67022d08a158b188ac2f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 37198 dae3eac54dc0b17c2b40592852b3fdb0 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 16554 44f54f3089dc23232f961577706f8501 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 20330 a9272490cb31e95668d96954a3c4c6ca http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 5626 31b556190fe465d50cdda3e8293f8588 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 74238 ca971a5bda09770201abd6b6e22cd0a5 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 38056 66c10325ff5b29427818817528d53035 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 57752 dd8d89359f7facd8c45fde70ae753648 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 9548 9ad907f2486ecf88b2cd455ebe19f138 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 5144 c058fd1f2117c0f7a0bb719526765030 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 12560 45f3ebbe438ea2bcbc7884d2f443d9e1 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 39798 b29b2811941645152c7fd4fa5c52d815 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 28690 2ca93c996341346b7171f3e3fe86b5cc http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 18082 3b3aa181084f36461edbfeaf39202c33 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 39450 bac92bae03117f31487d4ed6544f41f6 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.6-2ubuntu4.1_amd64.deb Size/MD5: 14006 98d09645c67667a0e12cf2e2789ec23a i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 2482366 c7ee009fb6514e63e76891037d59de18 http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5filter_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 2481220 cd08b36bc71b8b1e4167843768e6f7e9 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 4934432 d1e837e9680eeafe516629cda4eecc24 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 2487368 0c23c32bff6f9084a357f45617117229 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 365496 d986f8894ca90ce0a11af30fe23b1723 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 23928 e529844b82ff68ae9ed5c0b6da015209 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 8423540 5284868594c5c3efa99234e7aafedc9c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 362386 fa71efa5588e1eeec5d67d3444f3ad43 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 32524 6b8d116404cc7fa6e8c9da90e7521ca6 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 14120 e43f060800cd734d66eb85c503d7dfbe http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 18334 fccd564b6cfca5c786eedff7c21d091f http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 5326 e2a3d6ce1577535127a00718017b9408 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 65934 2d1ac96d292b17852a7df0eb7c097a2a http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 34860 2206a9a94ce0034177730ca78d9ec63b http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 52816 6e7c015ee70003a6f04ceff9c49d02de http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 8626 ec996e9254735ebf5ae98397d51560b8 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 4898 a4334158409cb6cba853f91faa4d56a9 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 11842 eece705e653f00b6eef8f0d1abe7991d http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 34780 ae4be4f826f4731bdcdb16c586a293a9 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 26254 af358c37c88cffa01edecf2de8137621 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 16536 71e461df3a610b7e72a0086d79892c05 http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 36474 2b8f8780ef3fad95aff3c60c5fdd6a7c http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.6-2ubuntu4.1_i386.deb Size/MD5: 12816 768c8c17ea1d11bd59ec3188a269f163 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 2456586 7e7f0600d85fb79b687e114467b3fd07 http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5filter_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 2455630 c04e129649ac2f09dd91c81bd06169d8 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 4884150 cfd058ca385d63420e5b93d59fdf1932 http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 2462708 f58c5653d83cc771d1e38d532a0f7ce4 http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 364894 ee5c3453b5482eced8a1c5fbe28c6d45 http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 23470 d2ecccb927a6bbca512bafa542a2b5ca http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 8479538 d2cb7e709e53dfc3f48651cb9281b572 http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 362390 f5de4fea1cda2a9e9151902721fedbc4 http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 32308 74c18200bd38a9175ec20e5ded81bf89 http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 14184 d70331a8c47949ad23b80fd791eb3109 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 18206 f55cc1a64590dd13d40d986e05a72a0e http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 5168 7192d9435713fd3b5c9b6fb23a5bd2a7 http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 64502 519e28b8eced886d6263e42dc7a4197d http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 34368 3a107b27871b461fd8ece998a4a30009 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 52116 530ade4c924e8d925a9bcf88cd7aef3f http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 8560 339c96df9dce51e1446d963155a57c67 http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 4830 c022b2af3336fa3c53fd329a7c7fd345 http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 11698 535f9ffeb03825f2363d1cc953e305f8 http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 34072 84ad1ddd42cc202d3e43a8a4781e5acb http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 26184 6ff5dce11a2bcd8318c3c974e999cc1d http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 16380 e9789fecd7adbf78199ad4c9359805be http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 35966 c0e8fc341973e92ef586bfaee70c37cc http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.6-2ubuntu4.1_lpia.deb Size/MD5: 12708 e38307f67a2c572f87d0f9754dc26e24 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 2616402 a815c73c53fb43f58ac78e51aedf4c48 http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5filter_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 2614642 658c75608623250f0f95e26737621c74 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 5083520 e8184dcb4bc49c57359d9d954a961310 http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 2565848 3317669059cecccdeffac1914da8249f http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 371760 4ee3f3d5aeeea7bc0d08840e8209c4cd http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 28240 6775a5cad835613d2984a31aec6db7f0 http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 8937736 a8ad6d260b92584f27766d0531f4d208 http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 362408 c987dd4d91c856f4440d0f407db81539 http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 38306 38b9a587610c0516e54e1deea28175af http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 17000 8e52cf651724628a9636e0d61b6ff2ef http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 21760 7753ee5b478b048d59f5d35196a736e7 http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 7742 9d9c762969d969a1e87e0f7c7e7cb1d9 http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 77170 aa8a812c613e63e527b9c6a34e160039 http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 41560 c14a1cd40b358f15bf3fdbf5a50fc7e1 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 60712 9219850445605ecca635e076d8d4075c http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 11120 69e89b6fd62da42d14449b3702aa3792 http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 7282 6252bcb33d21de455da97f0b8f008b05 http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 14398 f1b76a1a1c94a4e1794219f1d56cd663 http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 42570 414404cea46893dc2dc3601779c9579e http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 31280 9afbfb42e647d0214dfd79511dea41f6 http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 20004 3c26b22725fbdb752539680b20b0d446 http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 40726 8333829ec25bcb88bb36a3a8874b121d http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.6-2ubuntu4.1_powerpc.deb Size/MD5: 16024 809b770d7c5de2435e3685fdd1a91651 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 2471774 6dfdee0ed0a22934c0a1b47cf61939a6 http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5filter_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 2469966 5292fd73c92e7cbb22c89de0afa15b09 http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 4839196 aa9e434f8063e8dea5c239ab5e1eaf6d http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 2439250 ff4f8ef4d93207217862cec5bd672693 http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 365644 e9d088f91a6e46c18137e3c5fcba55ea http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 24404 b2c87a4697c8d93144ab4e5e8f9c340b http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 8315538 3db42875d46fd4c0510f2c8873c5b1bd http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 362380 d1ccbbfcebd0f291a29aa8db9e16394b http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 33134 83580cdba282b5773418314682c95513 http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 13338 d83d1cf4b673a2be6b2c4fcc60ad6a33 http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 17610 2d9cb2449e8563c672e0f579d0e7eaf7 http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 5178 cde129e189ff75564c77199f25b12aeb http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 63616 e9d8c8bc9c9fa94f1fc3a36c3df087a8 http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 32980 e2dd008c460ee449d1d7cf2b8c84f7f8 http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 50024 9c17ea69b1deb83f0812cbf9e2a80905 http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 8404 ddd87db504225c093cff6f67308dfbdf http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 4858 9e2b5bb77c0e279b1f4b33704f0ecfe6 http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 11712 b10708e371b667d491ec0999f9405e62 http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 32748 f99586a1cbd6c78b0b63902e6b13eb8e http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 24980 22802e213532149fa8804da2a0f7af5e http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 16528 73cc728a955e0a8ebeb29f225ecfb4e0 http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 35156 3524462ca7cc509f0dd64acb69e8657b http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.6-2ubuntu4.1_sparc.deb Size/MD5: 12332 6f929164c418e5ff0171aa5dddfda158Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-721-1 February 17, 2009 fglrx-installer vulnerability https://launchpad.net/bugs/323327 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: xorg-driver-fglrx 2:8.543-0ubuntu4.1 After a standard system upgrade you need to restart your session to effect the necessary changes. Details follow: Marko Lindqvist discovered that the fglrx installer created an unsafe LD_LIBRARY_PATH on 64bit systems. If a user were tricked into downloading specially crafted libraries and running commands in the same directory, a remote attacker could execute arbitrary code with user privileges. Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-installer_8.543-0ubuntu4.1.diff.gz Size/MD5: 26000 8fd05a4ab9e9f04c59ed5b731bcacd8b http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-installer_8.543-0ubuntu4.1.dsc Size/MD5: 1443 e7dee56d6c645ff3bce0c3093af205e3 http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-installer_8.543.orig.tar.gz Size/MD5: 47046692 6abc8e86f1a00168ba8f43d58f71cb69 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/f/fglrx-installer/fglrx-modaliases_8.543-0ubuntu4.1_amd64.deb Size/MD5: 10938 8f0014e73c06b1fd0e586359067641c7 http://security.ubuntu.com/ubuntu/pool/multiverse/f/fglrx-installer/libamdxvba1_8.543-0ubuntu4.1_amd64.deb Size/MD5: 846038 8982e97324d57a3db0072123d2406a56 http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-amdcccle_8.543-0ubuntu4.1_amd64.deb Size/MD5: 6630112 72d48d2e40f3bb63b7ad9b66367d5dca http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-kernel-source_8.543-0ubuntu4.1_amd64.deb Size/MD5: 1430276 cd88c1a040f050472b82406308e28ec5 http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/xorg-driver-fglrx-dev_8.543-0ubuntu4.1_amd64.deb Size/MD5: 83402 8b2fc26c7f1e2417613e543428d5b21f http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/xorg-driver-fglrx_8.543-0ubuntu4.1_amd64.deb Size/MD5: 17264298 e26cff93ff7eb4cddede61ea41b81aee i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/f/fglrx-installer/fglrx-modaliases_8.543-0ubuntu4.1_i386.deb Size/MD5: 10938 2fc0c5d1a8c799df60ee474b10e57e0a http://security.ubuntu.com/ubuntu/pool/multiverse/f/fglrx-installer/libamdxvba1_8.543-0ubuntu4.1_i386.deb Size/MD5: 412474 c23a19c9e238b0cc8986b98910c0da9d http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-amdcccle_8.543-0ubuntu4.1_i386.deb Size/MD5: 6749062 80263acaf045f9a196d8a2486dc42969 http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/fglrx-kernel-source_8.543-0ubuntu4.1_i386.deb Size/MD5: 1368946 18257688f659b91d95746e1b509edc5d http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/xorg-driver-fglrx-dev_8.543-0ubuntu4.1_i386.deb Size/MD5: 78658 537cc59d4b86274114f0eeb5febdf283 http://security.ubuntu.com/ubuntu/pool/restricted/f/fglrx-installer/xorg-driver-fglrx_8.543-0ubuntu4.1_i386.deb Size/MD5: 11915472 d392662d6ecefae8992c12c0356b63faAttachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-722-1 February 17, 2009 sudo vulnerability CVE-2009-0034 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: sudo 1.6.9p10-1ubuntu3.4 Ubuntu 8.10: sudo 1.6.9p17-1ubuntu2.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Harald Koenig discovered that sudo did not correctly handle certain privilege changes when handling groups. If a local attacker belonged to a group included in a "RunAs" list in the /etc/sudoers file, that user could gain root privileges. This was not an issue for the default sudoers file shipped with Ubuntu. Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4.diff.gz Size/MD5: 28195 a3ef076ed66f2a1d1ab0ebd5cafefaa4 http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4.dsc Size/MD5: 739 91a65bd5beb7e2f7206d081455238fdb http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p10.orig.tar.gz Size/MD5: 579302 16db2a1213159a1fac8239eab58108f5 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4_amd64.deb Size/MD5: 188062 246612b4d29a8fd216cd1f5619b6f92f http://security.ubuntu.com/ubuntu/pool/universe/s/sudo/sudo-ldap_1.6.9p10-1ubuntu3.4_amd64.deb Size/MD5: 199606 b5b948d0f3f12791e97838ea1b952ce2 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4_i386.deb Size/MD5: 176230 bc3547ffcc1a8060cf96f0d096a44c3c http://security.ubuntu.com/ubuntu/pool/universe/s/sudo/sudo-ldap_1.6.9p10-1ubuntu3.4_i386.deb Size/MD5: 187056 ce23d03b7e8f10f714a9c559ce741458 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4_lpia.deb Size/MD5: 177396 57ef14f30094341da593dd3683f3f7e8 http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p10-1ubuntu3.4_lpia.deb Size/MD5: 188098 d4c576aac4c27e7ab3646c5ac5a323e3 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4_powerpc.deb Size/MD5: 188226 a4739b543098b729cfb63ce20fc37dae http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p10-1ubuntu3.4_powerpc.deb Size/MD5: 202064 226b1789a16fedf35241f16e74e2f252 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p10-1ubuntu3.4_sparc.deb Size/MD5: 182204 22004aca9eddcd46a4bda1d066b97ac1 http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p10-1ubuntu3.4_sparc.deb Size/MD5: 193236 96f59c47bbc14586b40c440995467ea4 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1.diff.gz Size/MD5: 25366 af7e507328494298721aad11d13488da http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1.dsc Size/MD5: 1135 e5192f02cdc0284d832460ac7ae4b955 http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p17.orig.tar.gz Size/MD5: 593534 60daf18f28e2c1eb7641c4408e244110 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1_amd64.deb Size/MD5: 191138 ad2dae17ccbc9673d8e53546afee3d14 http://security.ubuntu.com/ubuntu/pool/universe/s/sudo/sudo-ldap_1.6.9p17-1ubuntu2.1_amd64.deb Size/MD5: 202074 ab01d71c8e86e83903dc72fbebba4c90 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1_i386.deb Size/MD5: 179122 ee80fb039bc6d493050a876593bdf8e0 http://security.ubuntu.com/ubuntu/pool/universe/s/sudo/sudo-ldap_1.6.9p17-1ubuntu2.1_i386.deb Size/MD5: 188614 1158e7471fe07070c9900ebcb827af98 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1_lpia.deb Size/MD5: 180306 f0ec9a79d4728047c6d32f3126ae06af http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p17-1ubuntu2.1_lpia.deb Size/MD5: 189392 830c281c450cceed63fdb46093a8e082 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1_powerpc.deb Size/MD5: 188548 0de77be3253ffe27353ca481c638696c http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p17-1ubuntu2.1_powerpc.deb Size/MD5: 200986 04c80b6cf9764550b81d19ada01df988 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/s/sudo/sudo_1.6.9p17-1ubuntu2.1_sparc.deb Size/MD5: 183994 7ed518be234fa37482f3c4e86c49ae3f http://ports.ubuntu.com/pool/universe/s/sudo/sudo-ldap_1.6.9p17-1ubuntu2.1_sparc.deb Size/MD5: 193662 f9616eade202d044a2a62c8ed2b043d8Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-723-1 February 18, 2009 git-core vulnerabilities CVE-2008-3546, CVE-2008-5516, CVE-2008-5517, CVE-2008-5916 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: git-core 1.1.3-1ubuntu1.1 Ubuntu 7.10: git-core 1:1.5.2.5-2ubuntu0.1 gitweb 1:1.5.2.5-2ubuntu0.1 Ubuntu 8.04 LTS: git-core 1:1.5.4.3-1ubuntu2.1 gitweb 1:1.5.4.3-1ubuntu2.1 Ubuntu 8.10: git-core 1:1.5.6.3-1.1ubuntu2.1 gitweb 1:1.5.6.3-1.1ubuntu2.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that Git did not properly handle long file paths. If a user were tricked into performing commands on a specially crafted Git repository, an attacker could possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-3546) It was discovered that the Git web interface (gitweb) did not correctly handle shell metacharacters when processing certain commands. A remote attacker could send specially crafted commands to the Git server and execute arbitrary code with the privileges of the Git web server. This issue only applied to Ubuntu 7.10 and 8.04 LTS. (CVE-2008-5516, CVE-2008-5517) It was discovered that the Git web interface (gitweb) did not properly restrict the diff.external configuration parameter. A local attacker could exploit this issue and execute arbitrary code with the privileges of the Git web server. This issue only applied to Ubuntu 8.04 LTS and 8.10. (CVE-2008-5916) Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1.diff.gz Size/MD5: 8481 84fe19c380b31b7964b6c07a2500afee http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1.dsc Size/MD5: 726 b23292f80d33ee016fcf97a4255dac6d http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3.orig.tar.gz Size/MD5: 572735 4527e2a1afe3e30c0dc49455d9445dab Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-doc_1.1.3-1ubuntu1.1_all.deb Size/MD5: 274678 e523f354649e74138b2aec0842bda73e http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-email_1.1.3-1ubuntu1.1_all.deb Size/MD5: 10040 099cc4c8d98d641cb8832e1b7d767db2 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/gitk_1.1.3-1ubuntu1.1_all.deb Size/MD5: 34830 9467ee72ac93ef0f3417e76b9f7955e1 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-arch_1.1.3-1ubuntu1.1_all.deb Size/MD5: 18572 eacf41e5062a143d9d959c0e2a2d4846 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-cvs_1.1.3-1ubuntu1.1_all.deb Size/MD5: 17804 8bcbc71667cd93ee00b9b3034c419c43 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-svn_1.1.3-1ubuntu1.1_all.deb Size/MD5: 14464 c90c396cdebda9315ec6c567c29da498 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1_amd64.deb Size/MD5: 2175496 6d631f1b04de3816e1a2a2c2401dc527 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1_i386.deb Size/MD5: 1783188 3dab34c13e1ccbc7e3168e55043bc185 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1_powerpc.deb Size/MD5: 2160072 5d23dfdca43d79e68d3c85ca75c87e78 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.1.3-1ubuntu1.1_sparc.deb Size/MD5: 1819706 78da61a35bb9ad71a29c84e30bcc311f Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1.diff.gz Size/MD5: 144952 d83b395b7bbd2cd749d9aa5d97a83bcd http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1.dsc Size/MD5: 913 6da97e15925a75ff803168fea6b9b925 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5.orig.tar.gz Size/MD5: 1413507 4e8de9e56882f3214a92f6d7dc3c49ec Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-doc_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 784322 965127d18e2f2685946421342cae7ea9 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/gitk_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 177188 cf70b1ef991268ff20fdb35d523195ee http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-arch_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 146538 b9cc1bd6aed014a5fe2ef2ef8b056604 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-cvs_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 175020 fac05c19d5edfd3dc6c81e2c520fbccf http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-daemon-run_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 133082 7f6c05fa7b1d1fd561130efa51435003 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-email_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 140880 e4bf3d8f89f2da703802eb36ef99056e http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-gui_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 187602 d4f2f5db1617926ab91c4fc31d64f461 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-p4_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 137942 8897ec08a8634306f0c6d6fdc3a8d107 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-svn_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 184264 45c79c1291145eba9300f0f9056aa718 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/gitweb_1.5.2.5-2ubuntu0.1_all.deb Size/MD5: 173158 25faab173e4ee0b81558ac7dfe0d96f0 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1_amd64.deb Size/MD5: 3973872 de072e080943ef677305b88811e53276 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1_i386.deb Size/MD5: 3629654 29acb5504bd85ebb88e87262166604b2 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1_lpia.deb Size/MD5: 3645624 d14c3238f9dc2a384d962eac1b0b9449 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1_powerpc.deb Size/MD5: 4045000 068573efc26e0837b66022fc66bc0bf9 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.2.5-2ubuntu0.1_sparc.deb Size/MD5: 3579554 d1d7afe1b703db3e4cb2b488ae880580 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1.diff.gz Size/MD5: 200842 b96d1522b48149c79d6a62a3de9d81d0 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1.dsc Size/MD5: 981 9a433d45bfaff2ec9ae2a927d04e7261 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.4.3.orig.tar.gz Size/MD5: 1899555 6311a711eb780b1fbae29e0fd28836bd Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-doc_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 946188 d88de1a9678fc97e884f2284537ed742 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/gitk_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 249246 8725979f197f27104eef0d33ff0b06c4 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-arch_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 200286 003e106780d0884ac753c8471fbed214 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-cvs_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 231348 d1c81166abd3ed04b2ce1bdcee4a75dd http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-daemon-run_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 186912 b9061c6f28b4ca197d3d00ea4fd338e2 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-email_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 197176 c7c118ff8d0702d773c9c4e8d7fa8680 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-gui_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 353336 c4e57d50553dd1e904f38b29526e2727 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-svn_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 235598 8ab114213531386642eb6829a137ae36 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/gitweb_1.5.4.3-1ubuntu2.1_all.deb Size/MD5: 236232 21d1c7191263f03e378e9169e6472fc9 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1_amd64.deb Size/MD5: 3354474 305781ff01c0c1f367f1a633702a77e7 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1_i386.deb Size/MD5: 3080146 27f36ed5dec0e0f02021e3321f8263b0 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1_lpia.deb Size/MD5: 3088974 5fd7ebb55e8e332e3e8c68d3b1f4e7e0 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1_powerpc.deb Size/MD5: 3451558 22bf0faf3f9dc0c1c0750f4daa86b19e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.4.3-1ubuntu2.1_sparc.deb Size/MD5: 3049674 46582ea0b9edc250d6466670d76c8e35 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1.diff.gz Size/MD5: 229915 29811f5d42c322f4bde6c774994606c2 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1.dsc Size/MD5: 1424 dc616d099eb6d2529d6753568e21f6e0 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.6.3.orig.tar.gz Size/MD5: 2098346 26989b6880744ab16f105edaca130777 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-doc_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 1065962 bab74f5f2cebc8193ff9911d3e6ee6b8 http://security.ubuntu.com/ubuntu/pool/main/g/git-core/gitk_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 297524 7be3c3dfdeaca0227ed5aa48590c628c http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-arch_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 229906 dac7569c86a2f05c08cb12f91b4a71a3 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-cvs_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 265926 5e58bab889279df8a320b175baede8ac http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-daemon-run_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 216678 c2b0eb87e49c5bad4d759cdc32df6f9a http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-email_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 228222 fc4310479b4f014aac3aeae9e1568839 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-gui_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 400460 e26bcff5817aa18d762f47c903db4d3f http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/git-svn_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 267084 14eddade7dbd3a5ad459ba8de8a41929 http://security.ubuntu.com/ubuntu/pool/universe/g/git-core/gitweb_1.5.6.3-1.1ubuntu2.1_all.deb Size/MD5: 266960 78a3c82420919e6af86533dddaf9e2ee amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1_amd64.deb Size/MD5: 3439688 5dc535f599b63db0b0e36fa9d08e3a3c i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1_i386.deb Size/MD5: 3162042 b5e9615f4cd16835e9fa59bcc6516faf lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1_lpia.deb Size/MD5: 3145876 08219da3bab247ac30a2265af7e5a227 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1_powerpc.deb Size/MD5: 3477660 5c4c917a1e88655ea95e73aa2067b53b sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/g/git-core/git-core_1.5.6.3-1.1ubuntu2.1_sparc.deb Size/MD5: 3101712 97f7607c999059acf15a931da1d675cfAttachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-724-1 February 25, 2009 squid vulnerability CVE-2009-0478 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: squid 2.7.STABLE3-1ubuntu2.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Joshua Morin, Mikko Varpiola and Jukka Taimisto discovered that Squid did not properly validate the HTTP version when processing requests. A remote attacker could exploit this to cause a denial of service (assertion failure). Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1.diff.gz Size/MD5: 303042 9132293f589a71ae3f771e1ae6de30f1 http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1.dsc Size/MD5: 1252 6953f88d6f4825daabd9e77bd0fa1a88 http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid_2.7.STABLE3.orig.tar.gz Size/MD5: 1782040 a4d7608696e2b617aa5853c7d23e25b0 Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid-common_2.7.STABLE3-1ubuntu2.1_all.deb Size/MD5: 495876 b6d1e76b140c792297c14382a06ed3e3 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1_amd64.deb Size/MD5: 771610 7f2ca95b0497cc23f0bf26b7a6503cc7 http://security.ubuntu.com/ubuntu/pool/universe/s/squid/squid-cgi_2.7.STABLE3-1ubuntu2.1_amd64.deb Size/MD5: 119880 27ff06a902debe143acb7b3959fb1c52 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1_i386.deb Size/MD5: 695708 312c710ebdb46e3017b02cb672d14524 http://security.ubuntu.com/ubuntu/pool/universe/s/squid/squid-cgi_2.7.STABLE3-1ubuntu2.1_i386.deb Size/MD5: 118638 f2f2f698523d49d8971c7a22faebc427 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1_lpia.deb Size/MD5: 694080 6720b3aca93aabb7600a1a2c2f699af5 http://ports.ubuntu.com/pool/universe/s/squid/squid-cgi_2.7.STABLE3-1ubuntu2.1_lpia.deb Size/MD5: 118550 7484981bd7c4c8b6361362e98d5d1631 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1_powerpc.deb Size/MD5: 777958 b9d530e92ad4638fb8d169ef55eb33f4 http://ports.ubuntu.com/pool/universe/s/squid/squid-cgi_2.7.STABLE3-1ubuntu2.1_powerpc.deb Size/MD5: 120446 9899cd403bbca3e0e6f5a936cd2d9955 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/s/squid/squid_2.7.STABLE3-1ubuntu2.1_sparc.deb Size/MD5: 719088 2781d6fd1c7adc0b76aa12670ac1abb5 http://ports.ubuntu.com/pool/universe/s/squid/squid-cgi_2.7.STABLE3-1ubuntu2.1_sparc.deb Size/MD5: 119398 8a26b4da728c31d7bd116666191575b2Attachment: signature.asc
Description: Digital signature
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-726-1 March 03, 2009 curl vulnerability CVE-2009-0037 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libcurl3 7.15.1-1ubuntu3.1 libcurl3-gnutls 7.15.1-1ubuntu3.1 Ubuntu 7.10: libcurl3 7.16.4-2ubuntu1.1 libcurl3-gnutls 7.16.4-2ubuntu1.1 Ubuntu 8.04 LTS: libcurl3 7.18.0-1ubuntu2.1 libcurl3-gnutls 7.18.0-1ubuntu2.1 Ubuntu 8.10: libcurl3 7.18.2-1ubuntu4.1 libcurl3-gnutls 7.18.2-1ubuntu4.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that curl did not enforce any restrictions when following URL redirects. If a user or automated system were tricked into opening a URL to an untrusted server, an attacker could use redirects to gain access to abitrary files. This update changes curl behavior to prevent following "file" URLs after a redirect. Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1.diff.gz Size/MD5: 187821 98a6bc2adb5c5673bdf39e10459be0e8 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1.dsc Size/MD5: 946 54356fc9d1f2f629db92aec10f15ad52 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1.orig.tar.gz Size/MD5: 1769992 63be206109486d4653c73823aa2b34fa Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dev_7.15.1-1ubuntu3.1_all.deb Size/MD5: 31260 e1a1c7938bbc15a8f1183fe1d6d0af0a amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 169568 1315f552c57d7db1315f81b41589792c http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 540736 bb54db6af7f71e8098b99f57c55a8c03 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls-dev_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 717326 74244221991d13b3e27d7600b25cc667 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 167960 0d960ee5cb9c386af7730dd6985e519e http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-openssl-dev_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 724246 a35139c3af268cb40a64b2d4562c239e http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.15.1-1ubuntu3.1_amd64.deb Size/MD5: 172910 33529da99980d7c599c1ddbf49a7a298 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 168448 3ff82ec8fbffb489c198ef86ad45155b http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 506770 10c355570dcb3812efa661f3359792fa http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls-dev_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 700624 d9ed3ac37839ed446dd2d19f4c0ccac1 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 160502 7325d0cd0802f12340de1e5ff8fc94ad http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-openssl-dev_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 705276 442b603f3bef1bb6b76cb475108d0869 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.15.1-1ubuntu3.1_i386.deb Size/MD5: 165456 52191a45a9ccfb55dfa95a5d6059c4c4 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 172084 3b8d50cd83bce1fbf4db132ac6b5fcf2 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 542256 f038486866f70fd91641a338684c9fd7 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls-dev_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 723702 ab81371909385b48de743ff8c6bdef1e http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 170316 b131cc76e2315a6969e5d842ee00ac7d http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-openssl-dev_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 729156 ecb7523175cc86845a65a45e584c52f4 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.15.1-1ubuntu3.1_powerpc.deb Size/MD5: 174808 75929f5b8f8665d595d71b1477428fe8 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 169262 d1227121940771c773000adf86cb2b25 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 510838 cedeacff8c06c39c973cb49e14098a72 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls-dev_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 710240 a69b147b9aa4e84755128b20cf8d6cc0 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 163088 2dc3c7c08147eb59e3b10df00a84380d http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-openssl-dev_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 714840 ef9596a90e8f5d3872dbb533c2e3a785 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.15.1-1ubuntu3.1_sparc.deb Size/MD5: 167244 0eb1ef9b9f24c1ce216bfac5ac61a770 Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1.diff.gz Size/MD5: 23038 ec29fe4a6ce15381ee4d18977a01cf54 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1.dsc Size/MD5: 1070 ee6f69c49d16d34809984d41ba9a95d9 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4.orig.tar.gz Size/MD5: 2127522 b8f272cfe98fd5570447469e2faea844 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 175802 1031a8edbe06cac94c392dedc7453fe5 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 1030904 97008fb6866a84bfc1bfc6aadc387c37 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 180212 8879fd596ec6d374ecc3db7c590a4dee http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 186854 216542e4ee0aa37b12dfceb9f782431f http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 828040 3bef020322ca21c8673b55bcde5a7555 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.16.4-2ubuntu1.1_amd64.deb Size/MD5: 835418 03a845d4637949826e4b606675643351 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 174936 a69d59cba07ca9611470fa45c441d41f http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 998270 4adafc7307dec5a9194e53d27046862a http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 176140 63ce96a012b6b57e14ada06f633293f8 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 182128 cc373dd8b1383abc9647b2755dcc82c2 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 802764 b4f2f06c793123ffc85ecd754d27a799 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.16.4-2ubuntu1.1_i386.deb Size/MD5: 808706 4cdc8ddd315dbd125b6dd6fd9254f584 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/c/curl/curl_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 174826 826bd0dc3bab6c9df46b737c99a4cc12 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 1016026 54999bbac5f7b80c03a450d0fa782e2c http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 174294 4b881eab13f96f101f233b8d8066a1eb http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 180832 7e9738237d5a15b0117463d9c9067925 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 800482 8f79859acd3d9c5656c8776bd595aa17 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.16.4-2ubuntu1.1_lpia.deb Size/MD5: 806612 d310180304c4688ad36b734a929514aa powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 179486 e0fb5643133b30cc3e258820cf17d67d http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 1045612 845b188923e649bc8a165b8356e7f406 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 187794 cd8cd13657a67c0367bae7c821075cbb http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 193612 d4178d220ba2d1e12005387e9226a27b http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 826054 ce04418fbb88124acc4705e9372ecd30 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.16.4-2ubuntu1.1_powerpc.deb Size/MD5: 831906 3a8efee4daf4b2ca73165bd2ec1e2883 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 175644 6b184238aa16330227fa2ef555b6e558 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 990958 66b0b3669cba60f631ed6a0a24617188 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 174762 e8750cc8896cfcffce4815777ac3caee http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 179512 c0e79f63b732fbbc405652f107878b84 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 808072 684fb0a815911676557b5debd393a1fe http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.16.4-2ubuntu1.1_sparc.deb Size/MD5: 814506 1aa48c17a5be7a7373b045abfc18da3d Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.0-1ubuntu2.1.diff.gz Size/MD5: 23694 d86f917e0253ba822db6d2424798463c http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.0-1ubuntu2.1.dsc Size/MD5: 1101 1a3e33be24181c7ffc8f7b60816e249d http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.0.orig.tar.gz Size/MD5: 2285430 76ff5a7fa2e00b25ded5302885d4c3e2 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 197866 101c380ab9d9ab90cd8eb29feb9b1afc http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 1054384 bc98cdd6d1571106757d2411ad6ffd3c http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 202642 f663841bc8e03556b2d41ef1d7260930 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 209456 e8acd7503ad26b01aae5375b90178a48 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 896296 fd68ba64689210d59e867787ba4abb20 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.0-1ubuntu2.1_amd64.deb Size/MD5: 904552 7644776a5d3a3b1922a3507a37ec05dc i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 197074 00eb30ecbc6793f1d10bed5c8bbf5bf5 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 1039734 541d32169bfe1529dd2d4745a1226eb1 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 198480 b4ca187d0408dc35836646c5f966bf90 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 205782 c61cf64efc7baa7cb37a03bed19cfa6a http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 870314 7e275b66161a6cf9c32fbdc4750805eb http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.0-1ubuntu2.1_i386.deb Size/MD5: 877390 b8889ec5febb2da66b0dae49295e6844 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 196994 f85f088f37ed84c756fd75a5ba9c1829 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 1046972 f93a0314315ca010c1e000d6094b529e http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 197474 bedb0ae75d50745d9070d598a7f3bbed http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 204090 7db96e2a1af5229b5c05fe332c30f756 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 869990 16be192ab09c1ca78a48d50b599b6868 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.0-1ubuntu2.1_lpia.deb Size/MD5: 876092 896c0bbc2eee392cbac4a18b5996931b powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 201932 c3f6e455e85ddc6e69daf3431ea58e74 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 1063946 a5d52c748048bf586cedb02daf29fb7a http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 210994 5602b8c0c9979c0eba7eff319d5bc77e http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 216006 8d65ea79097e0e635f75382d7aaecf6b http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 895512 ef52c8d4b5a097751646d1174bca4c35 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.0-1ubuntu2.1_powerpc.deb Size/MD5: 902650 dd88be6fee4e0382db0af0cc490877b0 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 197586 db78b2c9b6402e0f9ed9cb9bf7cd4872 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 1027024 0ead1406330f62ff04c0177d185a53a9 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 196652 3e829cf092deb68935946eccb4471663 http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 202218 ba4d43feba5bc66630d46766f1ae5dd3 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 877208 20b30bf93d62e6c2c165ee6be374435f http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.0-1ubuntu2.1_sparc.deb Size/MD5: 883238 66b2bc1ab0da39b981e35aaf694e6b67 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.1.diff.gz Size/MD5: 22211 6e74e8584ae7aebb6c14d3a114796454 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.1.dsc Size/MD5: 1491 9b355d2d245a85cbca121726652e7f8d http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2.orig.tar.gz Size/MD5: 2273077 4fe99398a64a34613c9db7bd61bf6e3c amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 210246 d67a5eb49a6f5e427bd1654007f455a7 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 1124684 57f1830f3a2e4ffdec0180717f3191a0 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 216106 e36ff6ee975146c248c293ce0f8cfc6b http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 223206 56e2f570c4c989bca172cfc09a370d39 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 926082 5cc5411540ce23be3354b1f4d5fc041f http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.1_amd64.deb Size/MD5: 933036 adcb522fbbb4f3ab68b4fa8af804d5b7 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 209080 80b442fba7924160f234f6d2fc5be8ea http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 1091876 d294a4ad45febe82279359741d6958c4 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 212550 7c5a86d097564f4563cd4992c65544a9 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 219490 83026954c17912ed54036e2f81118310 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 899576 bb001dda2e0e9def2d08f99497adfbcd http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.1_i386.deb Size/MD5: 905326 74ff52579922240c1a034c0f223b1a1a lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 208732 cdc604e918825dd8ca06fb07b69d90ba http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 1099032 5e1a71fa663f6f21944bf7078c57aebe http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 210790 2486bf054d91bf5e5cd32fae20d2002a http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 217316 32814e9da3f6ea13b6b2a77e872f92fc http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 898464 3028bc84dcbc05a2a65d50f49f0ed2f0 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.1_lpia.deb Size/MD5: 903772 00495fb44aba7d390ddb7643de104fca powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 212494 c0ad35c9fbaa7afeb9247b948bf3720e http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 1130288 8a65d0227f3697b505e4634cff6831fd http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 223618 b5d5085350540d988abc19c5dcb04ea6 http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 229464 8053abc5beb65a37ea489eeec41ab2c2 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 925362 8277d9fb3b898cf90e4fa46ffcf71147 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.1_powerpc.deb Size/MD5: 931700 13f3edf118024e221d7f45abd05c0e7e sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 209542 6478e46bb2850c50f7b4def0d86b730b http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 1072458 5eaf45a5c000a1f8b0d09bbab983b8ae http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 209228 83c8fcd128286fd77d9983fff53d9563 http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 213982 bf031afa898326f814e2dea63fdc0523 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 904780 f3ac8d6aab6a12a4b8462152e38463a9 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.1_sparc.deb Size/MD5: 909856 c991e46b6bb3a47c79e7615f398de261Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-727-1 March 03, 2009 network-manager-applet vulnerabilities CVE-2009-0365, CVE-2009-0578 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.10 Ubuntu 8.04 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.10: network-manager-gnome 0.6.5-0ubuntu11~7.10.1 Ubuntu 8.04 LTS: network-manager-gnome 0.6.6-0ubuntu3.1 Ubuntu 8.10: network-manager-gnome 0.7~~svn20081020t000444-0ubuntu1.8.10.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view other users' network connection passwords and pre-shared keys. (CVE-2009-0365) It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus modify and delete requests. A local user could use dbus to modify or delete other users' network connections. This issue only applied to Ubuntu 8.10. (CVE-2009-0578) Updated packages for Ubuntu 7.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.5-0ubuntu11~7.10.1.diff.gz Size/MD5: 7691 a46630110934b343c4ca8e9a36ed915f http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.5-0ubuntu11~7.10.1.dsc Size/MD5: 1024 de8efd3c74908e6c2b211705e599f08d http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.5.orig.tar.gz Size/MD5: 728673 ad8e3feccbb1fcb9627f876cba6dcb0e amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.5-0ubuntu11~7.10.1_amd64.deb Size/MD5: 145754 148c33705c10ad4d070f4f94a16e8718 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.5-0ubuntu11~7.10.1_i386.deb Size/MD5: 138020 b2799201f3ffe0519217eeb3b14fdb6d lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.6.5-0ubuntu11~7.10.1_lpia.deb Size/MD5: 137380 924c344d2874f098198d7cf85fd875ee powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.5-0ubuntu11~7.10.1_powerpc.deb Size/MD5: 147252 718e0776e184ccf7b2af79b4d28b7a6d sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.5-0ubuntu11~7.10.1_sparc.deb Size/MD5: 138660 dd0e6039514e65dfdbf90b1b81bb3810 Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.6-0ubuntu3.1.diff.gz Size/MD5: 11001 c5f9ed4f19e0efc956074a0c8f51a5b2 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.6-0ubuntu3.1.dsc Size/MD5: 1020 181665f28e65a036c5e00de77b82b780 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.6.6.orig.tar.gz Size/MD5: 808916 f01275d74ed277b1a587cbb411811297 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.6-0ubuntu3.1_amd64.deb Size/MD5: 176034 0c9a763eca6983abf1f92bf6591e4fea i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.6.6-0ubuntu3.1_i386.deb Size/MD5: 165398 ff7cb4aa3d452ef58c78eef8b9867136 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.6.6-0ubuntu3.1_lpia.deb Size/MD5: 164806 0c59ab436eb451169a5f141174db9e9b powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.6.6-0ubuntu3.1_powerpc.deb Size/MD5: 178224 e5d54ccb3fea2a24231eae94548deb96 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.6.6-0ubuntu3.1_sparc.deb Size/MD5: 165134 83480e1cce024d7ac57df99901c30034 Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444-0ubuntu1.8.10.2.diff.gz Size/MD5: 45842 868c74bce7081563ad9f9e3d9213a12e http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444-0ubuntu1.8.10.2.dsc Size/MD5: 1745 2e3fa86787038792390ee42bf583ff68 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-applet_0.7~~svn20081020t000444.orig.tar.gz Size/MD5: 668729 af829714605058afb3cf77c5d419ae83 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.2_amd64.deb Size/MD5: 312726 e908146a408b9f979bdbcd97eb6d5321 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.2_i386.deb Size/MD5: 298752 7f7de4a66ab8158b09fc3a8e6b5b51b2 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.2_lpia.deb Size/MD5: 297408 d1011545dbce454951903801c81237a1 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 309074 1dd0558d633b648761ceb913fe4d5452 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/n/network-manager-applet/network-manager-gnome_0.7~~svn20081020t000444-0ubuntu1.8.10.2_sparc.deb Size/MD5: 301496 5edc29edd0c0861bedb46b33a146bb44Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-727-2 March 03, 2009 network-manager vulnerability CVE-2009-0365 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: network-manager-gnome 0.6.2-0ubuntu7.1 Ubuntu 8.10: network-manager 0.7~~svn20081018t105859-0ubuntu1.8.10.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and user network connection passwords and pre-shared keys. Updated packages for Ubuntu 6.06 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1.diff.gz Size/MD5: 34743 600cb7e8502953d66ee115db7f80e7e8 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1.dsc Size/MD5: 1055 c5fa9f57b9b4885fc22701b2a194d4ae http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2.orig.tar.gz Size/MD5: 1020184 dd5d54e70d34320d302366b74a46dbb2 amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 121858 1091f4d13eb137d9642f869e948aa078 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0-dbg_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 127252 e57037d3d5e033c22acdf6790bd5a332 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 117516 5ad2a4f299e1e8817a8738185a2c017e http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dbg_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 383806 652ac19c650545cfacda8b8088288b08 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 105282 d76a91263f62e38d9cc491525bb92d6a http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome-dbg_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 315080 1b4411682db55d1ba47f89e359cf46d4 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 252418 ecd413af32b6ca0624977221b654537f http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 246526 c54e60f980ca55b3011db2a338bb76f4 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib-dev_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 111916 042e88f2641e83f128c46da7075163a8 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0-dbg_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 116148 ea0a66b60676105aadf9d02b98b421b9 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0_0.6.2-0ubuntu7.1_amd64.deb Size/MD5: 111194 619323f4f567215ef769b442f3017546 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 120794 e5509d2e13cf7d1c9bdcebafb106c25b http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0-dbg_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 120694 bf4587855de9b0583261fbac9dc7fcaf http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 116584 b1a080871e2e129d98eef605127ce204 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dbg_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 344318 ae65186e75641ebec2b727e94d30c7c2 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 105284 cc1442a71b1a094bc83da1cf5bab16c4 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome-dbg_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 287922 922c4210cbc75cd3bdb44ff0b3079114 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 240778 d2d4c1540a359fe98c1c7772b4c017c7 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 227720 4010298ffdebc042822509f15f0bb546 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib-dev_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 110910 e8c43189983fb32c8acf7f2d0d9fa14d http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0-dbg_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 114384 1ba62785c9140ecd3089b245d0810c6d http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0_0.6.2-0ubuntu7.1_i386.deb Size/MD5: 109904 66ee6b1be8fbd94e8efb2b7f107830a1 powerpc architecture (Apple Macintosh G3/G4/G5): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 123122 1a6f1e635c3dc77cc22bdfd7bb60bc11 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0-dbg_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 127272 0210f69f718d82ece63aed25e74d402b http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 119154 88c0decef4748240a22b09154f141616 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dbg_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 379006 e2c84cd5f803d99f8d41c817375098c8 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 105290 c69253d41131324fa18f7e0e759d9202 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome-dbg_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 307174 adeffed37388baa98cdf56edbce1ed84 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 246574 e57477ee9b34ac26987b8ba70343f112 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 241916 f069122433b555d066510821cfcc0d0b http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib-dev_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 112090 03dbe4aaf71c5836296f627ae7bad604 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0-dbg_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 116776 efc5f6e58a3a479d0edc36b102e34e69 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0_0.6.2-0ubuntu7.1_powerpc.deb Size/MD5: 111912 c860c571d36875ff394d24a8ecbcb317 sparc architecture (Sun SPARC/UltraSPARC): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 123078 189c7233442448f0b9d42f6ccc9d65a7 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0-dbg_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 122076 f7534c8a43b2b8b6b0b1125f60f70e52 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 118472 ea1c7f1bfc59384ce03875fe980b14dc http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dbg_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 340152 294d1c6ac8e1f96681b084c5ff4432ea http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 105284 e0a0e396ac51ca61d3a8d4009dbd8378 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome-dbg_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 286406 1515545d5f8479c2b4dd9a9781ca80bf http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-gnome_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 240640 53c83f717806730239346aadb092128c http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 230482 c2cd805ee8d49605628049cc2085a1cf http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib-dev_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 111890 be5c94248904858e4d02c941c1419b7c http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0-dbg_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 114498 5a5b1e42901b5b48d5ea9add28420f57 http://security.ubuntu.com/ubuntu/pool/universe/n/network-manager/libnm-glib0_0.6.2-0ubuntu7.1_sparc.deb Size/MD5: 110476 cb0ad802dcfd9293220d86884e00b45a Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2.diff.gz Size/MD5: 53080 0f19cb4cbb0bfdab4ca52e9b9c73cb12 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2.dsc Size/MD5: 1844 0f0437a7643d7d9666a98b34eb1c6948 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859.orig.tar.gz Size/MD5: 1212180 69beaf9748236aa52b10171260089eab amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-glib-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 112584 830c5716079c81073e010497412b2d48 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-glib0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 62498 611af9f6d4c3e2b0d785a777bb30e149 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 77692 591bd10891213c11296705dbc1e73d0b http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 77264 2821140fb2f561650962866e147ecf1b http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 6356 6850c4113c56037851a42e6b706dd7d8 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2_amd64.deb Size/MD5: 290368 cb39ed7239bece30200f13f4d7300ca6 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-glib-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 98336 be6f99056369a30d57df9ff0240eeef5 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-glib0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 55008 a869f6812bc638821d11a3cc044fec2f http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 66950 bfa354627928981f817742918735918e http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/libnm-util0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 72056 b2093f43d1ce34cc3e5624e602d321c3 http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 6354 fe0716a4d4bcbbc03b2fd8acc06e913e http://security.ubuntu.com/ubuntu/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2_i386.deb Size/MD5: 263832 54b49d875cbeadd055e4ee7a9ce9219a lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 97636 bba139127632134dd61918e386cff27d http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 52826 b52a1cf3fdfc5e7b2eefb4407eb768a1 http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 66264 39caaf9daa21e5941ed232caae184660 http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 70742 93cefabc57ba5a3253f5795e13023a9a http://ports.ubuntu.com/pool/main/n/network-manager/network-manager-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 6362 ef1f2fcb9de3a441faa97a496cdeeffe http://ports.ubuntu.com/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2_lpia.deb Size/MD5: 259708 ab41d397cf87f04dca4631ba9570393a powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 111880 719ce51233b96a89de6c55250a21a82b http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 62218 ca9910877eddbc1aedc8c1c59ccc1fe8 http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 81850 2eddceb9dc6f356759bdc0989e02b9aa http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 79320 46fc422fa935e1e608a34e0fd41691f2 http://ports.ubuntu.com/pool/main/n/network-manager/network-manager-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 6358 ed0c910660a9f86bb9e33cc50bb76bf7 http://ports.ubuntu.com/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2_powerpc.deb Size/MD5: 297306 e787cc3e105e34a1a703f9323e712099 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 104144 0c4f78e6bab71a11c1e1540266512169 http://ports.ubuntu.com/pool/main/n/network-manager/libnm-glib0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 56428 f368a9c8694eaaed9e91db1efec4ffb1 http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 72740 1567dfe6b161af503c63d0eef70c930c http://ports.ubuntu.com/pool/main/n/network-manager/libnm-util0_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 73998 3473cc4be864c95a054bb7608c32d7a0 http://ports.ubuntu.com/pool/main/n/network-manager/network-manager-dev_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 6362 ad5c2d9d34043867d6407caac1731f87 http://ports.ubuntu.com/pool/main/n/network-manager/network-manager_0.7~~svn20081018t105859-0ubuntu1.8.10.2_sparc.deb Size/MD5: 265632 b292daa57f5178e7a88651eb9e133d7aAttachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---
--- Begin Message ---=========================================================== Ubuntu Security Notice USN-726-2 March 04, 2009 curl regression https://launchpad.net/bugs/337501 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.10: libcurl3 7.18.2-1ubuntu4.3 libcurl3-gnutls 7.18.2-1ubuntu4.3 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-726-1 fixed a vulnerability in curl. Due to an incomplete fix, a regression was introduced in Ubuntu 8.10 that caused certain types of URLs to fail. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that curl did not enforce any restrictions when following URL redirects. If a user or automated system were tricked into opening a URL to an untrusted server, an attacker could use redirects to gain access to abitrary files. This update changes curl behavior to prevent following "file" URLs after a redirect. Updated packages for Ubuntu 8.10: Source archives: http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.3.diff.gz Size/MD5: 22444 f03a34d199a3dfe6862d4f93b6704e10 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.3.dsc Size/MD5: 1491 906af0232a5e1c0a02e921eb508eff57 http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2.orig.tar.gz Size/MD5: 2273077 4fe99398a64a34613c9db7bd61bf6e3c amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 210392 605f35f7ab21dc4ed16205f73f5ce335 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 1124818 52b6531b8d0ba56e47844b90faaa7d88 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 216220 700b648d0e4b4346da9dd4ba9421962f http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 223312 58580fc77cdd1a93439ee92875aee1fc http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 926208 16822154e80a941fd4305169d7979379 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.3_amd64.deb Size/MD5: 933192 ae5cc0e338e4f2d9f43ceac6c92303f0 i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/c/curl/curl_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 209182 e34d8187746e820d6328fdc4540e7e73 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 1092044 3d9e9bf04f0dd77c09ff967ce0822011 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 212674 bdad3624169c184cdee7153dfdc61a16 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 219586 e9b3008f8cb5047b326b4d3f1f6e0323 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 899702 6dd63d112bdc8055636b2c8edfdd24a2 http://security.ubuntu.com/ubuntu/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.3_i386.deb Size/MD5: 905420 ff0b8f23fd90555ffe215698ac644cdf lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 208850 1c452ad9122b12518bf1b5c8b3996c3b http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 1099132 7735bb7e7c240be1a5f9ee749a67eb6e http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 210934 5f3eea9bf9eece8f91200332c6f41b6a http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 217456 eebef9ad6914c70cb38b0fa08875233c http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 898570 21805c5b24e9477670aad07d167d56ab http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.3_lpia.deb Size/MD5: 903918 90628d272b4301c968ef5cf446c778fe powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 212598 4003e25fccb2f67b75f451e60d7e9362 http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 1130394 f755328b6c0df8b6963ea39255594cfb http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 223766 b72e7008472791b08bba97fc57857f1b http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 229632 d891ef64864441ba7f2496c29b57d49a http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 925530 35c2284ab719cb773592ea4bc8679af6 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.3_powerpc.deb Size/MD5: 931828 f29cf3a604d660801e1b011fa409af90 sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/c/curl/curl_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 209654 b25b0908a500fb1c6ba5e9af876249ac http://ports.ubuntu.com/pool/main/c/curl/libcurl3-dbg_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 1072608 7c3c67a9fcd09e1807a22d6ba110790e http://ports.ubuntu.com/pool/main/c/curl/libcurl3-gnutls_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 209368 cb36362b891401548905671dee5057db http://ports.ubuntu.com/pool/main/c/curl/libcurl3_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 214076 49e05a9531109bcc7cbbce75adb29681 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-gnutls-dev_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 904932 56300cb1c407a1b90d23b72a22df0b56 http://ports.ubuntu.com/pool/main/c/curl/libcurl4-openssl-dev_7.18.2-1ubuntu4.3_sparc.deb Size/MD5: 909964 92dc9ddcf638da3dcac80c7f90373b10Attachment: signature.asc
Description: This is a digitally signed message part
--- End Message ---