[guru] Debian biztonsagi frissitesek
DATE: Thu, 02 Apr 2009 17:42:25 +0200
A yaws web szerver túl hosszú fejlécet tartalmazó kéréssel DoS-olható.
Integer overflow hibát találtak PSI Jabber kliensben.
A pluto IKE daemon megfelelő UDP csomaggal DoS-olható, ezért kihozták
a strongswan és az openswan csomagok javítását. Az openswan csomag
livetest eszköze ezen kívül nem megfelelő módon kezeli az átmeneti
állományokat.
Heap buffer overflow hibát találtak a libsndfile csomagban.
Két buffer overflow hibát is találtak a Tk rutinkönyvtár GIF
formátum kezelőjében (libtk-img).
A támadó egy PRIVMSG paranccsal összeomlaszthatja a weechat irc
klienst egy területen kívüli olvasás miatt.
Az lcms csomagban több buffer overflow hibát valamint DoS lehetőséget
találtak, de a csomag első javítása hibás volt, ezért később meg is
ismételték.
Több integer overflow hibát is találtak a ghostscript ICC
rutinkönyvtárában.
A glib 2.0 base64 kódoló függvénye buffer overflow hibát tartalmaz
ha túl hosszú sztringeket kell kódolnia.
A libsoup rutinkönyvtár szintén buffer overflow hibát tartalmaz
hosszú sztringek kódolásakor.
A linux kernel 2.6 szériájában újabb hibákat találtak: az alpha, mips,
powerpc, s390 és sparc64 platformokon a rendszer helyi felhasználók
által DoS-olható, a keyctl alrendszer memleak-et tartalmaz, így a kernel
memória elfogyasztható, memory overflow hibát találtak az SCTP
alrendszerben, az eCryptfs alrendszer DoS-olható volt helyi felhasználók
által, a dell_rbu DoS-olható volt sysfs-en át, a sock_getsockopt hívás
kernel memóriatartalomhoz nyújtott hozzáférést, az skfddi meghajtó
hibásan ellenőrizte a hozzáférési jogokat, az ext4 fájlrendszer kezelő
DoS-olható volt az átméretezés alatt, valamint hibásan kezelte a sérült
fájlrendszert.
Megfelelően preparált PNG állományokkal a libpng csomag több helyen is
összeomlasztható, valamint kód futtatás is lehetséges inicializálatlan
memória használat miatt.
Több biztonsági hibát is találtak a xulrunner csomagban.
Format string hibát találtak a webcit csomagban.
Az etch rendszerekben megszűnt az Iceweasel csomag további frissítése,
aki használni kívánja, az térjen át lenny-re.
A systemtap csomag stap eszköze race-t tartalmazott, a stapusr csoport
tagjai root jogokat szerezhettek.
SQL injection hibát találtak az auth2db IDS naplózó és napló elemző
programban.
Az nss-ldapd (hasonló mint az nss-ldap, csak ez önálló daemon saját
jogokkal) rossz jogokkal hozza létre a konfigurációs állományt, bárki
hozzáférhet.
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1740-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 14, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : yaws
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE Id : CVE-2009-0751
It was discovered that yaws, a high performance HTTP 1.1 webserver, is
prone to a denial of service attack via a request with a large HTTP
header.
For the stable distribution (lenny), this problem has been fixed in
version 1.77-3+lenny1.
For the oldstable distribution (etch), this problem has been fixed in
version 1.65-4etch1.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem has been fixed in version 1.80-1.
We recommend that you upgrade your yaws package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1.diff.gz
Size/MD5 checksum: 15050 de600331ea301eb9a8cd82987bbecac1
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1.dsc
Size/MD5 checksum: 742 5ff0d18eaf5b0982cab087a0da30546b
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65.orig.tar.gz
Size/MD5 checksum: 775978 4c08ba6abb40e41a49066a4c35d66102
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_alpha.deb
Size/MD5 checksum: 920326 bcdde19abfa0509a7fec5980ae4c6977
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_amd64.deb
Size/MD5 checksum: 922808 f69d7ec4e1082067e8ce2c5b35088ed7
arm architecture (ARM)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_arm.deb
Size/MD5 checksum: 921284 74360fb5c5ace09cde4a0afe9612b35e
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_i386.deb
Size/MD5 checksum: 923758 b6f68cab4953d114197eecef7e89a5d7
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_ia64.deb
Size/MD5 checksum: 921190 be465d69af82a67b1d0a5e4bf6e21984
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_mips.deb
Size/MD5 checksum: 923582 fa6d77670fee39cfc6bd1cd0c5532786
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_mipsel.deb
Size/MD5 checksum: 919572 a235d55de32b60a838b0ca92fa2e5308
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_powerpc.deb
Size/MD5 checksum: 920814 23d52c172afae1269fccc7a536418fbe
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_s390.deb
Size/MD5 checksum: 919460 39fca419254eaca0a843e4d5a8abfd5e
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.65-4etch1_sparc.deb
Size/MD5 checksum: 784600 ab81930fb47510802e13cd26cad09c73
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77.orig.tar.gz
Size/MD5 checksum: 838170 7e01d9e8f4fe12895c76081ee4cf7754
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1.dsc
Size/MD5 checksum: 1206 6b5844871553c42a824f401586aa46a1
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1.diff.gz
Size/MD5 checksum: 19814 253cfc5da27428df313c4e8b4dfbf93a
Architecture independent packages:
http://security.debian.org/pool/updates/main/y/yaws/yaws-wiki_1.77-3+lenny1_all.deb
Size/MD5 checksum: 200784 8731c7f94f6f3550f142f21d225d918d
http://security.debian.org/pool/updates/main/y/yaws/yaws-chat_1.77-3+lenny1_all.deb
Size/MD5 checksum: 65076 65681b94bf96027c0684bb2d29db00e8
http://security.debian.org/pool/updates/main/y/yaws/yaws-mail_1.77-3+lenny1_all.deb
Size/MD5 checksum: 160840 efdcebae480d452dc628eb715e7f8b22
http://security.debian.org/pool/updates/main/y/yaws/yaws-yapp_1.77-3+lenny1_all.deb
Size/MD5 checksum: 66196 b281bb1587101a3e83d50ffe1e92f6fd
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_alpha.deb
Size/MD5 checksum: 652508 3e474dff842f080a6897958243c6c0d8
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_amd64.deb
Size/MD5 checksum: 652258 03053ee15e1b92456785a08e91e5d7e5
arm architecture (ARM)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_arm.deb
Size/MD5 checksum: 651702 06e61922443dc30ab4c0b144c34a7a2e
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_armel.deb
Size/MD5 checksum: 649654 d752e8341ad8797bd0fb5879e53f07dd
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_hppa.deb
Size/MD5 checksum: 652286 a87d4e8c7ed413812f8b59311c55a689
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_i386.deb
Size/MD5 checksum: 652642 de9b389be1cb7842b0d8584e0d0a1b18
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_ia64.deb
Size/MD5 checksum: 653308 f9b75201e1191fb8dd7cf158631a9c89
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_mips.deb
Size/MD5 checksum: 653008 874547bac10ca979bfeeb065ed895bff
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_mipsel.deb
Size/MD5 checksum: 651392 37c53dd40471f02f2dfea75c788ea5f5
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_powerpc.deb
Size/MD5 checksum: 654140 c90a7a7f66fd0e2093d502a5893d9e08
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_s390.deb
Size/MD5 checksum: 651624 e7ecaf982f7f027475b3c8275e63c8c8
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/y/yaws/yaws_1.77-3+lenny1_sparc.deb
Size/MD5 checksum: 651006 6fbb95dace09ead71d6f335322de5171
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkm7LO4ACgkQ62zWxYk/rQdLPwCgiQCckKhuLsS4B83cecLEAJDZ
UW4AnR9/NGpPSBMOujTAco1HIyN63bu1
=oT4G
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1741-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 14, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : psi
Vulnerability : integer overflow
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2008-6393
Debian Bug : 518468
Jesus Olmos Gonzalez discovered that an integer overflow in the PSI
Jabber client may lead to remote denial of service.
The old stable distribution (etch) is not affected.
For the stable distribution (lenny), this problem has been fixed in
version 0.11-9.
For the unstable distribution (sid), this problem has been fixed in
version 0.12.1-1.
We recommend that you upgrade your psi package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9.dsc
Size/MD5 checksum: 1010 ebc7d52229204de80bd31de70c7f7c59
http://security.debian.org/pool/updates/main/p/psi/psi_0.11.orig.tar.gz
Size/MD5 checksum: 2315401 637941349f1c28ed88242d7e3e5abcbc
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9.diff.gz
Size/MD5 checksum: 11710 d2c26bc079fc6a2661f3a23cc90d34e7
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_alpha.deb
Size/MD5 checksum: 3104112 7b3df70383c49ed53db3f44d8c5c04be
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_amd64.deb
Size/MD5 checksum: 2791050 5787e7983a52abfa5fdfa9433d0f8cee
arm architecture (ARM)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_arm.deb
Size/MD5 checksum: 3286870 a2ab92e18cbd3a9dc81a5a2854cb6024
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_armel.deb
Size/MD5 checksum: 2762622 192af86f8ec8f86480106a7813a2e723
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_hppa.deb
Size/MD5 checksum: 3051074 01ccd196064b6c6c9ec471e35778f197
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_i386.deb
Size/MD5 checksum: 2724144 084ef85145891ed87765637aa0424bb3
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_ia64.deb
Size/MD5 checksum: 3362584 a91a96f869b2dd368acb36e5d827c91c
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_mips.deb
Size/MD5 checksum: 2873922 55ee75703c414d4b9e4d3bf12c83782a
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_mipsel.deb
Size/MD5 checksum: 2837348 b8241b110f23cd31e4125655fca8d591
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_powerpc.deb
Size/MD5 checksum: 2798776 4a09637ea8fad49165935c53dd68203e
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_s390.deb
Size/MD5 checksum: 2697752 5b58a82c9aaec2c1ddfdaf24c2c60ff0
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/p/psi/psi_0.11-9_sparc.deb
Size/MD5 checksum: 2817968 773db6e6f9e4225f546f9351e20718ea
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkm7mN0ACgkQXm3vHE4uylpIoACguWVIXV0D/akUMDatOKjC1tim
6rUAnRl4q+LU//Mq8b3s7MJ1FWX7cZPS
=EYGv
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --------------------------------------------------------------------------
Debian Security Advisory DSA-1742-1 security@debian.org
http://www.debian.org/security/ Nico Golde
March 16th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : libsndfile
Vulnerability : integer overflow
Problem type : local
Debian-specific: no
CVE ID : CVE-2009-0186
Debian Bug : none
BugTraq ID : 33963
Alan Rad Pop discovered that libsndfile, a library to read and write
sampled audio data, is prone to an integer overflow. This causes a
heap-based buffer overflow when processing crafted CAF description
chunks possibly leading to arbitrary code execution.
For the oldstable distribution (etch) this problem has been fixed in
version 1.0.16-2+etch1.
For the stable distribution (lenny) this problem has been fixed in
version 1.0.17-4+lenny1.
For the unstable distribution (sid) this problem has been fixed in
version 1.0.19-1.
We recommend that you upgrade your libsndfile packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.16-2+etch1.dsc
Size/MD5 checksum: 659 2782d11c87eb6cdbcbb4757bdcba3582
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.16.orig.tar.gz
Size/MD5 checksum: 857117 773b6639672d39b6342030c7fd1e9719
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.16-2+etch1.diff.gz
Size/MD5 checksum: 5872 94c24295ef3f6461e417f7953e3df405
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_amd64.deb
Size/MD5 checksum: 322418 5590289019e10655b831451a93b10d43
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_amd64.deb
Size/MD5 checksum: 187326 a873f6260972d3f18bb5bfcefc355894
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_amd64.deb
Size/MD5 checksum: 70686 3cbb5bbe4f0af88cd8f33e5296427cc3
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_arm.deb
Size/MD5 checksum: 342342 d2f15699c1f3d6d3a5460385ea9b99b6
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_arm.deb
Size/MD5 checksum: 72166 e691a87d6803f4e877c12fdc7ba13e25
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_arm.deb
Size/MD5 checksum: 221378 b4843f23c1079a4a7ea0fc2324c680fc
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_hppa.deb
Size/MD5 checksum: 74914 1f96f0eee8d6a3eb34d24a433546fd57
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_hppa.deb
Size/MD5 checksum: 236094 ce6c840fbd31cd9d715c8525616ac54c
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_hppa.deb
Size/MD5 checksum: 373868 bef1859b9f1266093be1c95531351eff
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_i386.deb
Size/MD5 checksum: 320672 3ed0f57f391284d9d7cb0b3eb95d48fb
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_i386.deb
Size/MD5 checksum: 70872 818ad0f2460d4cc6d902809bb0d9bf4a
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_i386.deb
Size/MD5 checksum: 197906 eba6df6a2658f8b95ed31c38c3a3ef40
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_ia64.deb
Size/MD5 checksum: 270732 de8da4d9acfe054e5e1e9a9367d50cac
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_ia64.deb
Size/MD5 checksum: 75896 230edd89ad51fd4c4f064815f661b4c8
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_ia64.deb
Size/MD5 checksum: 416258 aecbfa75aae59f97ef88b98c805fe935
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_mips.deb
Size/MD5 checksum: 217258 a252e3e6dfa3a82429b1f0f614408f85
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_mips.deb
Size/MD5 checksum: 72898 15032de6be2605a07ddcc8c1534f26c9
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_mips.deb
Size/MD5 checksum: 374318 27cb3879cb552c881f9c52127bbe5670
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_mipsel.deb
Size/MD5 checksum: 72948 02486480aa641705aca406a7f8dd0ed8
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_mipsel.deb
Size/MD5 checksum: 216892 9c13d9332ad74db6a6a84cb018f333b0
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_mipsel.deb
Size/MD5 checksum: 373456 8cef61c9e296b2134c25245133a69884
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_powerpc.deb
Size/MD5 checksum: 207898 47b604aebf08ad004589587b6a977dbd
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_powerpc.deb
Size/MD5 checksum: 75942 98415fef5f56e16713c23c96a2e15445
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_powerpc.deb
Size/MD5 checksum: 346488 eacb480134790f9e39b1332e6e84e4ee
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_s390.deb
Size/MD5 checksum: 72940 c92ba36d5ec4b092a0f07e6db712de30
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_s390.deb
Size/MD5 checksum: 220998 a1489d9687ad8b804244a741fdd7cb35
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_s390.deb
Size/MD5 checksum: 346540 8f2784ab3ba80709ef6f00b84194fa2a
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.16-2+etch1_sparc.deb
Size/MD5 checksum: 207890 7788155fa7338ac0c7ede3f3c8808e9e
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.16-2+etch1_sparc.deb
Size/MD5 checksum: 70836 ce42b9f5eaf08d484c4b136833575491
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.16-2+etch1_sparc.deb
Size/MD5 checksum: 338816 17c6a3b095be526617571a9a2631e762
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.17-4+lenny1.diff.gz
Size/MD5 checksum: 9969 a06409102bd304eedb0bd6634bceefa1
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.17.orig.tar.gz
Size/MD5 checksum: 819456 2d126c35448503f6dbe33934d9581f6b
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile_1.0.17-4+lenny1.dsc
Size/MD5 checksum: 1131 b44551174131c95a8cfae919907d3efa
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_amd64.deb
Size/MD5 checksum: 332902 bb2e2e44a1a399bf089481a9facc4e19
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_amd64.deb
Size/MD5 checksum: 73016 93aef598d40745fc4531955441223ab5
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_amd64.deb
Size/MD5 checksum: 191504 6b54a2e1a53d09464c4b65d258a5deb3
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_arm.deb
Size/MD5 checksum: 347414 6c52b00fc235e1ae0a47666f31c0b212
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_arm.deb
Size/MD5 checksum: 74216 708985007e2bb5a2426a268e6685950b
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_arm.deb
Size/MD5 checksum: 217154 9b070d74cf8f2f0386f21bb7808bf080
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_armel.deb
Size/MD5 checksum: 355992 e1c35063b71ec530cb04e78fd28cea0e
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_armel.deb
Size/MD5 checksum: 220856 4da3e1b0575f958ad80d111a8e50f604
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_armel.deb
Size/MD5 checksum: 76350 aa51f771719ec6015035ebe98007c2d5
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_hppa.deb
Size/MD5 checksum: 236450 094cc8743665a6514b4ff9bc24186d03
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_hppa.deb
Size/MD5 checksum: 378900 cf6fa563b615042fc8d506043dd227ac
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_hppa.deb
Size/MD5 checksum: 76788 d175a6e5bd172eca340ac85a2d18c645
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_i386.deb
Size/MD5 checksum: 72806 5860626d1af8814f8eee7162fb3d4ea0
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_i386.deb
Size/MD5 checksum: 196406 69991bf3467c31d730472b29c368dfef
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_i386.deb
Size/MD5 checksum: 326094 30572ad1df19e37d3d8cfc991f2835ca
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_ia64.deb
Size/MD5 checksum: 274480 924a7ae71b9a33be513a2ae3fd8f6d5c
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_ia64.deb
Size/MD5 checksum: 77656 e61068d4526fa2a6fa11723d6dd54d11
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_ia64.deb
Size/MD5 checksum: 430756 6674fe583f5bbe41eb796d4659ec8093
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_mips.deb
Size/MD5 checksum: 378808 7deca929594ab128abcffc66eb4394d0
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_mips.deb
Size/MD5 checksum: 215100 668818f04fe4ab74a43d6c8012b96912
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_mips.deb
Size/MD5 checksum: 74824 d06343d42dfd969c74ca9de2e805cc66
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_mipsel.deb
Size/MD5 checksum: 74832 ded63b4fd471a3043512f57ff80247a5
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_mipsel.deb
Size/MD5 checksum: 215256 777dc5b744908a615db38d6331184b17
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_mipsel.deb
Size/MD5 checksum: 379332 b137cbe97da0ae209f667020a001d041
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_s390.deb
Size/MD5 checksum: 219930 46c286135742fc81b8e912bc31152165
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_s390.deb
Size/MD5 checksum: 355566 76dfe36e9fd16c88b3c57aa57a07fba5
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_s390.deb
Size/MD5 checksum: 75106 9a01e6255f4898e572e8239ae00da738
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1_1.0.17-4+lenny1_sparc.deb
Size/MD5 checksum: 206230 e4e000f15013781e5c525ef86197ed27
http://security.debian.org/pool/updates/main/libs/libsndfile/libsndfile1-dev_1.0.17-4+lenny1_sparc.deb
Size/MD5 checksum: 342738 387686095f690170b6339d3945e0b57f
http://security.debian.org/pool/updates/main/libs/libsndfile/sndfile-programs_1.0.17-4+lenny1_sparc.deb
Size/MD5 checksum: 73494 78e59cb96a9dc8747c4bc0578853faa9
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkm9oUgACgkQHYflSXNkfP/TcQCeJM5uqpejgBVL/091IAJiHk60
x2AAniu3noikDJRsrjXCtyFHvABP0Anb
=xRYd
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1743-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 17, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : libtk-img
Vulnerability : buffer overflows
Problem type : local (remote)
Debian-specific: no
CVE Ids : CVE-2007-5137 CVE-2007-5378
Debian Bug : 519072
Two buffer overflows have been found in the GIF image parsing code of
Tk, a cross-platform graphical toolkit, which could lead to the execution
of arbitrary code. The Common Vulnerabilities and Exposures project
identifies the following problems:
CVE-2007-5137
It was discovered that libtk-img is prone to a buffer overflow via
specially crafted multi-frame interlaced GIF files.
CVE-2007-5378
It was discovered that libtk-img is prone to a buffer overflow via
specially crafted GIF files with certain subimage sizes.
For the stable distribution (lenny), these problems have been fixed in
version 1.3-release-7+lenny1.
For the oldstable distribution (etch), these problems have been fixed in
version 1.3-15etch3.
For the testing distribution (squeeze) and the unstable distribution
(sid), these problems have been fixed in version 1.3-release-8.
We recommend that you upgrade your libtk-img packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3.diff.gz
Size/MD5 checksum: 245234 735f4c10ef82cb9d871351b180ae47dc
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3.orig.tar.gz
Size/MD5 checksum: 3918119 ee19a7fdaaa64e9d85eeecd3b78bce8f
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3.dsc
Size/MD5 checksum: 663 3a273d841105b8978f96eca6533eeefd
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_alpha.deb
Size/MD5 checksum: 491110 07e4cdac4f3fba01a3b7d84648c6809d
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_amd64.deb
Size/MD5 checksum: 461822 cae988f3575b2087b7d04eea38a25440
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_arm.deb
Size/MD5 checksum: 436356 7ef635df0204508e8e883eb4a54ae58f
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_i386.deb
Size/MD5 checksum: 430104 b00a0cb661ea599ce296796547520fe0
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_ia64.deb
Size/MD5 checksum: 601608 49309def501db030330443b5bb955d38
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_mips.deb
Size/MD5 checksum: 441054 026d2c2af3bed4b7f3452a7bddfaaee3
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_mipsel.deb
Size/MD5 checksum: 441044 24d9bc504e550643afd51fe1f3fff1e1
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_powerpc.deb
Size/MD5 checksum: 452226 3769f2ee4ac052602db18ad14e5a33d0
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_s390.deb
Size/MD5 checksum: 457496 870628476aec308c566d3f4bea697730
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-15etch3_sparc.deb
Size/MD5 checksum: 424242 5ff1ceda5f92c0ce34398ad1a375b3ce
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1.diff.gz
Size/MD5 checksum: 31608 9aa3a3da9d17f06545411973eb66cf81
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release.orig.tar.gz
Size/MD5 checksum: 3969630 964a692db8a120dc5ed8779521a70bc8
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1.dsc
Size/MD5 checksum: 1207 83e0a72a0c54c38a38f1acc6006dd881
Architecture independent packages:
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-doc_1.3-release-7+lenny1_all.deb
Size/MD5 checksum: 89232 963cfc7f3b480f65d23da12086099bdb
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_alpha.deb
Size/MD5 checksum: 147218 3818c8a511e96717a159608ecffdcc90
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_alpha.deb
Size/MD5 checksum: 59322 fc4813740e77630bb9c69cf3f4636342
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_amd64.deb
Size/MD5 checksum: 136130 2807ef2c010419b0daa1a10bbcf26cfa
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_amd64.deb
Size/MD5 checksum: 61522 b32861939b7bb9e5cb7dd0a0468e46f2
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_arm.deb
Size/MD5 checksum: 129814 ab2b0b3b5ae507ef3aa0f8ad218513a7
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_arm.deb
Size/MD5 checksum: 59210 0a1b9b43cef09ddc4613e5ca1afb9435
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_i386.deb
Size/MD5 checksum: 119526 a7ab424a2a7ad7ec5b2a58097b96b206
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_i386.deb
Size/MD5 checksum: 58924 3a65c23ecc11b3e581cb64d26912daab
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_ia64.deb
Size/MD5 checksum: 59430 e54e0eb23f40d0d197db99d0dd04e651
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_ia64.deb
Size/MD5 checksum: 186630 ebcca2c511bf43f1ef3b12e3adaae97d
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_mips.deb
Size/MD5 checksum: 59338 fde2040f51b9bdb782382bb6bb21e74b
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_mips.deb
Size/MD5 checksum: 128314 fa953d1ad555ba495f4e58ca824d83bc
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_mipsel.deb
Size/MD5 checksum: 59340 9f570ecd96eba5b0c672113e7433c204
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_mipsel.deb
Size/MD5 checksum: 128246 547d8c58d76735d00d93701028d05de7
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_powerpc.deb
Size/MD5 checksum: 59248 95180c3c45dfbdc4dc4356253f915441
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_powerpc.deb
Size/MD5 checksum: 156072 36b72aa56e99d26cfc773f2f5c916970
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_s390.deb
Size/MD5 checksum: 131008 f4401f63947dd3a80f64c4b9abd80924
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_s390.deb
Size/MD5 checksum: 59280 b0784e2a4579dff140ed9c65a7e75997
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img-dev_1.3-release-7+lenny1_sparc.deb
Size/MD5 checksum: 59192 947382bad7ce91d54a477d59a3cd94d4
http://security.debian.org/pool/updates/main/libt/libtk-img/libtk-img_1.3-release-7+lenny1_sparc.deb
Size/MD5 checksum: 121050 000240ceaa3638b39b3ee71bcee37406
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkm/Y2UACgkQ62zWxYk/rQecoQCdHQoi9/jessJFVBz6HYxPEiRF
bR8AoLE6EB7xB6GRXj9asWl5UH3AwuG3
=eRJ3
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- --------------------------------------------------------------------------
Debian Security Advisory DSA-1744-1 security@debian.org
http://www.debian.org/security/ Nico Golde
March 18th, 2009 http://www.debian.org/security/faq
- --------------------------------------------------------------------------
Package : weechat
Vulnerability : missing input sanitization
Problem type : remote
Debian-specific: no
CVE ID : CVE-2009-0661
Debian Bug : 519940
BugTraq ID : 34148
Sebastien Helleu discovered that an error in the handling of color codes
in the weechat IRC client could cause an out-of-bounds read of an internal
color array. This can be used by an attacker to crash user clients
via a crafted PRIVMSG command.
The weechat version in the oldstable distribution (etch) is not affected
by this problem.
For the stable distribution (lenny), this problem has been fixed in
version 0.2.6-1+lenny1.
For the testing distribution (squeeze), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in
version 0.2.6.1-1.
We recommend that you upgrade your weechat packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/w/weechat/weechat_0.2.6.orig.tar.gz
Size/MD5 checksum: 1615289 96fec32d773e650fed0eb21d51a9a945
http://security.debian.org/pool/updates/main/w/weechat/weechat_0.2.6-1+lenny1.diff.gz
Size/MD5 checksum: 2987 5a823583d320e0112fbf6f65c8d9d5a9
http://security.debian.org/pool/updates/main/w/weechat/weechat_0.2.6-1+lenny1.dsc
Size/MD5 checksum: 1288 95517e879e64485b1d8d2f0d93c231dc
Architecture independent packages:
http://security.debian.org/pool/updates/main/w/weechat/weechat_0.2.6-1+lenny1_all.deb
Size/MD5 checksum: 19814 3dc3c119f404e9c06f01a2433058431e
http://security.debian.org/pool/updates/main/w/weechat/weechat-common_0.2.6-1+lenny1_all.deb
Size/MD5 checksum: 431768 8ba3ac668a829fcb4a5bdeb282249fc8
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_amd64.deb
Size/MD5 checksum: 214810 96cd728e453b0e2c24681fbdd51c376f
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_amd64.deb
Size/MD5 checksum: 119354 c6f0ac09b5ee2b32d3fabf7515501c4a
arm architecture (ARM)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_arm.deb
Size/MD5 checksum: 192764 1ba5ba2f44affa3ea338cd230acde438
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_arm.deb
Size/MD5 checksum: 106736 f395304b5289245684ec30837bded1c1
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_armel.deb
Size/MD5 checksum: 195740 39cfcdb47694c7883979d2da7ab619aa
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_armel.deb
Size/MD5 checksum: 108830 ea4f281358563ac7e3cc396f0ee10501
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_hppa.deb
Size/MD5 checksum: 223536 a83b056f959796e74629b5efd3617616
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_hppa.deb
Size/MD5 checksum: 130270 7451de93d928fbd453eaf3a95dde1b65
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_i386.deb
Size/MD5 checksum: 107776 ec239c51343e0ace3479559d9d7eaa7b
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_i386.deb
Size/MD5 checksum: 189350 c95243a796896dde0b87f0da1aecfc7d
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_ia64.deb
Size/MD5 checksum: 149346 8f430bd31e411583fdbca07a11f9be27
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_ia64.deb
Size/MD5 checksum: 315132 4a2f20117d12ccf245c798f7ed77da50
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_mips.deb
Size/MD5 checksum: 214212 bae1939afacb219991d1a96ba79fd61c
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_mips.deb
Size/MD5 checksum: 95196 6bb1cc04140c54080782765e2449dbe3
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 214114 a37aa2884f081d654caceda230c19fab
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 94412 8cdd416097d5c5c7a3372cf74fe0868e
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 213552 b6388948dd607888576328cfab3d5ffe
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 130426 5dad2dd2db74cd00cbcd8f408a607a23
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_s390.deb
Size/MD5 checksum: 208666 c5e3a27466af91c297fb11187fe1fb31
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_s390.deb
Size/MD5 checksum: 112248 921633d25598e4db478f8623a1b509e2
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/w/weechat/weechat-curses_0.2.6-1+lenny1_sparc.deb
Size/MD5 checksum: 188520 f7354ec16c2629cc2ca8976afe5fd057
http://security.debian.org/pool/updates/main/w/weechat/weechat-plugins_0.2.6-1+lenny1_sparc.deb
Size/MD5 checksum: 109596 0d6bf31e83729c47b7598aee5d3f87e0
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknA4RgACgkQHYflSXNkfP8KoACeLU43jCX5NRfWquvJhSzTMQOC
TNYAoIq0vrmPnTfSzp616AUrkIl5ZMAu
=gaRd
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1745-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 20, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : lcms
Vulnerability : several vulnerabilities
Problem type : local (remote)
Debian-specific: no
CVE Ids : CVE-2009-0581 CVE-2009-0723 CVE-2009-0733
Several security issues have been discovered in lcms, a color management
library. The Common Vulnerabilities and Exposures project identifies
the following problems:
CVE-2009-0581
Chris Evans discovered that lcms is affected by a memory leak, which
could result in a denial of service via specially crafted image files.
CVE-2009-0723
Chris Evans discovered that lcms is prone to several integer overflows
via specially crafted image files, which could lead to the execution of
arbitrary code.
CVE-2009-0733
Chris Evans discovered the lack of upper-gounds check on sizes leading
to a buffer overflow, which could be used to execute arbitrary code.
For the stable distribution (lenny), these problems have been fixed in
version 1.17.dfsg-1+lenny1.
For the oldstable distribution (etch), these problems have been fixed
in version 1.15-1.1+etch2.
For the testing distribution (squeeze) and the unstable distribution
(sid), these problems will be fixed soon.
We recommend that you upgrade your lcms packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15.orig.tar.gz
Size/MD5 checksum: 791543 95a710dc757504f6b02677c1fab68e73
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15-1.1+etch2.diff.gz
Size/MD5 checksum: 4632 9a790aa45cdeb69aa46f584689a99f98
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15-1.1+etch2.dsc
Size/MD5 checksum: 644 d4cb8388b8c902a533506ec16ca63501
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_alpha.deb
Size/MD5 checksum: 181050 b27152b25309aa9e6ad1c34bb3c26366
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_alpha.deb
Size/MD5 checksum: 60202 53d74752d434e3c9ee30aa9129f0a1e8
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_alpha.deb
Size/MD5 checksum: 154196 d4fa9270d9a8ca7de7129192ef998506
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_amd64.deb
Size/MD5 checksum: 149428 30c41aaae075c75890eebc1ce4e5a210
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_amd64.deb
Size/MD5 checksum: 141048 0c6fa8d6f1d39976480ffc5a835a998a
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_amd64.deb
Size/MD5 checksum: 53166 df6375dd38801b739fbc160e1eb57eaf
arm architecture (ARM)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_arm.deb
Size/MD5 checksum: 136286 d21fb48afe1c612b88a3cc65f6500e44
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_arm.deb
Size/MD5 checksum: 51050 1c7d4e76aaf8c7ec7d9090ca04a492f5
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_arm.deb
Size/MD5 checksum: 136060 20069a3b809cef749d92da5b0e04c583
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_hppa.deb
Size/MD5 checksum: 169382 3ed56562edaa688b42cd108a3ac468c3
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_hppa.deb
Size/MD5 checksum: 158440 1616cbcfd9e8fcc8f1774b4aabb0bcf9
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_hppa.deb
Size/MD5 checksum: 59212 602d13389c04ceba66b5a3f73dfc9f1b
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_i386.deb
Size/MD5 checksum: 50220 c5d54e09d401fa67c09112d1a63095f1
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_i386.deb
Size/MD5 checksum: 144120 8d61daf63bcd2bc55d865713df0e70f1
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_i386.deb
Size/MD5 checksum: 138154 6fc69c606a043b5bf111df8054535aa8
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_ia64.deb
Size/MD5 checksum: 205574 07b6686ad608cec0196b2c9c2498a485
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_ia64.deb
Size/MD5 checksum: 78526 9d6a2701a89fc4bfa2a56a44f50f11df
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_ia64.deb
Size/MD5 checksum: 196306 3e160f4f09edeb0c24d3e5fcd0ce09b1
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_mips.deb
Size/MD5 checksum: 173910 dcbde36d08fc2a2b293026b2eaaa67ab
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_mips.deb
Size/MD5 checksum: 52050 27ba6a77d1fbb36be26592184b0f6f93
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_mips.deb
Size/MD5 checksum: 149722 3068317aa4edb7e3cd44f281587ace03
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_mipsel.deb
Size/MD5 checksum: 52248 94b99a161a4ea3faab08eecbe620385b
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_mipsel.deb
Size/MD5 checksum: 174898 1d2e9754ac64a7a8a3d1e3e27367643a
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_mipsel.deb
Size/MD5 checksum: 150970 267828e1f21b737517901c9380141174
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_powerpc.deb
Size/MD5 checksum: 148314 9ab68867aea970dbcb01992055423ac9
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_powerpc.deb
Size/MD5 checksum: 57720 5ab4eca4f14608a232a553f0c7adb065
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_powerpc.deb
Size/MD5 checksum: 148290 8b96012fc7d91c7d5b7deddc75070b58
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_s390.deb
Size/MD5 checksum: 143134 c6ef35eb3dc84c734d01599e05d961c1
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_s390.deb
Size/MD5 checksum: 54244 9c263f1f9203d4a6d305c19e06b1230b
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_s390.deb
Size/MD5 checksum: 145254 143267794dd79c47eb1780c7da7cc0f0
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch2_sparc.deb
Size/MD5 checksum: 138060 428610a45bae30b34b4d601984673996
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch2_sparc.deb
Size/MD5 checksum: 51510 72bd4d4cd0a6d32db0ade110ab856cf5
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch2_sparc.deb
Size/MD5 checksum: 147438 5e81bea7ae78c89cc45981e738e13103
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg-1+lenny1.dsc
Size/MD5 checksum: 1299 3505bcba39e0a80f26a2f42c5122cc8c
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg-1+lenny1.diff.gz
Size/MD5 checksum: 11798 1b985227402f9af971951e467292e9c8
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg.orig.tar.gz
Size/MD5 checksum: 883148 efe7467bac4f10d9b354d5733489334d
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_alpha.deb
Size/MD5 checksum: 66016 22786233868f92faad781c0a92bfb8a0
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_alpha.deb
Size/MD5 checksum: 153634 3501c774ebaf52f772d7345e8367d39e
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_alpha.deb
Size/MD5 checksum: 117190 9d58c3be6fbea76127c193b188f7cf01
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_alpha.deb
Size/MD5 checksum: 227620 7310da52353bbede62272efe75820152
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_amd64.deb
Size/MD5 checksum: 59294 b4ca82cc8eb4905edf7dc17c9a0d84db
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_amd64.deb
Size/MD5 checksum: 198504 f87ca23705138281756a32697703375d
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_amd64.deb
Size/MD5 checksum: 109380 63eda1ea2f42edcfcd85b8843f6ab55d
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_amd64.deb
Size/MD5 checksum: 156566 079b0a1bb58e667bd8557a0eeef2ae2a
arm architecture (ARM)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_arm.deb
Size/MD5 checksum: 56566 6d3eba08d53781c30601f3cc86576533
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_arm.deb
Size/MD5 checksum: 100680 7ad59f90f81db1a8378c142eb4a352cf
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_arm.deb
Size/MD5 checksum: 134774 87a3a2d18457e6b58afdc782b50de560
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_arm.deb
Size/MD5 checksum: 186138 32faadb5661f8f87c8c4fb89309f41b6
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_armel.deb
Size/MD5 checksum: 60240 880ffd0256291e1abec31f23fa2da713
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_armel.deb
Size/MD5 checksum: 195002 65e5825e14762221f87021780663b569
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_armel.deb
Size/MD5 checksum: 136468 28945f3fc7cb8493f6e9461d328c2dc7
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_armel.deb
Size/MD5 checksum: 108432 442926873ad8ce0d318dc48ae5c82186
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_hppa.deb
Size/MD5 checksum: 63604 8e3b039d9b2954d35cd058000941befd
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_hppa.deb
Size/MD5 checksum: 217168 ab7e3df16d771cd79e621c3a0dcc5fe5
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_hppa.deb
Size/MD5 checksum: 120752 27153198ab1fa0b05f30f3da607b16c5
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_hppa.deb
Size/MD5 checksum: 181802 46305917d990a4f259c48478f0888ebe
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_i386.deb
Size/MD5 checksum: 191656 c117aa038f09460eb7231cf9f8673008
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_i386.deb
Size/MD5 checksum: 102490 de10b738cea9379067d5275b992b3e42
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_i386.deb
Size/MD5 checksum: 149270 ac065c443d32dc37dffe85551f444c83
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_i386.deb
Size/MD5 checksum: 55276 20a559f00def3d6edfaaaeca9347af11
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_ia64.deb
Size/MD5 checksum: 261214 afd56e4f2a91b840c967a27d24e1870b
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_ia64.deb
Size/MD5 checksum: 184426 e4d372899dd0ab70aca16e2173fea57b
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_ia64.deb
Size/MD5 checksum: 168294 104c524b70ad59ff2e171c6daa84d664
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_ia64.deb
Size/MD5 checksum: 85042 f46c9571e6e16f37fc1bcb9c88335b17
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_mips.deb
Size/MD5 checksum: 57022 96b6c6932da8dbbf1150bf9c65d735b1
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_mips.deb
Size/MD5 checksum: 133560 7f5f22ee075eb34cf87c34f4b4c62625
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_mips.deb
Size/MD5 checksum: 113764 cb4b0927752d34308f473fb2d8600bf3
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_mips.deb
Size/MD5 checksum: 221324 ee83c4072f154fec48c21c89eade164f
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_mipsel.deb
Size/MD5 checksum: 224786 c3ff099d42214eacc742ef78d2df8f66
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_mipsel.deb
Size/MD5 checksum: 116748 23c81abbcb940bdbb0f203392cad317f
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_mipsel.deb
Size/MD5 checksum: 130008 7083ea0a69711e8fa79a5ed53ee10106
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_mipsel.deb
Size/MD5 checksum: 57132 083032fb1ce11174f4cc164ea25df2a5
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_powerpc.deb
Size/MD5 checksum: 197112 4f6be36a225ec79f4cdfa4d57eef670d
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_powerpc.deb
Size/MD5 checksum: 163150 cb8d38a42d07ef3ad829bd4140882c39
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_powerpc.deb
Size/MD5 checksum: 115860 436dd885cc57da35bbee6e800bfc0995
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_powerpc.deb
Size/MD5 checksum: 70888 302ecb2a5f9bc10e478cd62274e9c424
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_s390.deb
Size/MD5 checksum: 109040 c3955b35a41325290b76a3ca6dc513fb
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_s390.deb
Size/MD5 checksum: 60982 2add6e3c4a906355f916384f50d7a546
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_s390.deb
Size/MD5 checksum: 137542 b028e8fdf16563d2717ee6db3af60c6f
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_s390.deb
Size/MD5 checksum: 191174 26c1a55ade747e3bb348e1bb5525c2a5
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny1_sparc.deb
Size/MD5 checksum: 194758 2c08dd94dec80598094177afb2811b56
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny1_sparc.deb
Size/MD5 checksum: 102160 9ed81fc4462e796d655f73075246a340
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny1_sparc.deb
Size/MD5 checksum: 156756 1ddc8d890038f569ca4ea792fc586131
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny1_sparc.deb
Size/MD5 checksum: 58018 304d1db0563a0fadfb8524e8fd5dc4ea
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknDXp0ACgkQ62zWxYk/rQeKdwCgt5RF49keIENFQHdlWE+ATTVg
ZLoAoLYfWeD1TFRbmi5xHelXglhwqQ0+
=Kpnr
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1746-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 20, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : ghostscript
Vulnerability : several vulnerabilities
Problem type : local (remote)
Debian-specific: no
CVE Ids : CVE-2009-0583 CVE-2009-0584
Two security issues have been discovered in ghostscript, the GPL
Ghostscript PostScript/PDF interpreter. The Common Vulnerabilities and
Exposures project identifies the following problems:
CVE-2009-0583
Jan Lieskovsky discovered multiple integer overflows in the ICC library,
which allow the execution of arbitrary code via crafted ICC profiles in
PostScript files with embedded images.
CVE-2009-0584
Jan Lieskovsky discovered insufficient upper-bounds checks on certain
variable sizes in the ICC library, which allow the execution of
arbitrary code via crafted ICC profiles in PostScript files with
embedded images.
For the stable distribution (lenny), these problems have been fixed in
version 8.62.dfsg.1-3.2lenny1.
For the oldstable distribution (etch), these problems have been fixed
in version 8.54.dfsg.1-5etch2. Please note that the package in oldstable
is called gs-gpl.
For the testing distribution (squeeze) and the unstable distribution
(sid), these problems will be fixed soon.
We recommend that you upgrade your ghostscript/gs-gpl packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1.orig.tar.gz
Size/MD5 checksum: 11695732 05938e26bfa8769e28cf2bb38efd9673
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2.diff.gz
Size/MD5 checksum: 222025 2c1bc048ef7c965631c44e4f5fdf2421
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2.dsc
Size/MD5 checksum: 837 548225280e3ea0cc9f0752a0b84ee16a
Architecture independent packages:
http://security.debian.org/pool/updates/main/g/gs-gpl/gs_8.54.dfsg.1-5etch2_all.deb
Size/MD5 checksum: 14404 acbacfffd7964c8d7e2efc6d7b0c5fff
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_alpha.deb
Size/MD5 checksum: 5838820 d4e38d1dbc1265ca2b4ad8e49b8700cb
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_amd64.deb
Size/MD5 checksum: 5617322 f9d719e1c72e869f0aa530057d5da244
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_arm.deb
Size/MD5 checksum: 5509682 3581a6fa9c7e1b7eecb139a69bad831d
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_hppa.deb
Size/MD5 checksum: 5766684 408f1bc20285d13ebdaa1e92be345004
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_i386.deb
Size/MD5 checksum: 5526514 3f23df691da756cd3dbd7a56b1f7baae
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_ia64.deb
Size/MD5 checksum: 6551116 f0204f85d0c2342ce1df8a877b09ee68
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_mips.deb
Size/MD5 checksum: 5737602 48b8a1cd5c68383cb2bd673845a26a4c
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_mipsel.deb
Size/MD5 checksum: 5744092 cc66db4d6319f3115bebbe7a530950e0
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_powerpc.deb
Size/MD5 checksum: 5581730 cacef2383b679cecc01b5f8b039c6a5f
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_s390.deb
Size/MD5 checksum: 5536144 043ff8f2871620435156699cb28ab897
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/g/gs-gpl/gs-gpl_8.54.dfsg.1-5etch2_sparc.deb
Size/MD5 checksum: 5460146 74f43838cbe0cc7e33e75f46a3ea209a
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1.dsc
Size/MD5 checksum: 1535 2f2559433a5e6996e514dafcca7dd69c
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1.diff.gz
Size/MD5 checksum: 100462 83f637fa1b723157588d60b00a6b3a24
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1.orig.tar.gz
Size/MD5 checksum: 12212309 42fc1b31aa745c3765c2fcd2da243236
Architecture independent packages:
http://security.debian.org/pool/updates/main/g/ghostscript/gs_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 28512 ade6aa8af31b6bac6c452ea151db60b8
http://security.debian.org/pool/updates/main/g/ghostscript/gs-common_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 28726 10ba84f9f9385457a238ed77d89ed5c1
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-doc_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 2790286 6c42b8804fe67c08afac4844c132c885
http://security.debian.org/pool/updates/main/g/ghostscript/gs-esp_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 28514 539902aa120256407c4d8e865b1c5904
http://security.debian.org/pool/updates/main/g/ghostscript/gs-gpl_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 28514 cb5278471b25206d79427cabc4ce2ea3
http://security.debian.org/pool/updates/main/g/ghostscript/gs-aladdin_8.62.dfsg.1-3.2lenny1_all.deb
Size/MD5 checksum: 28522 9443d3a57981788d7c307ecd77f7ab1c
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_alpha.deb
Size/MD5 checksum: 762156 4e36f7ff8af994054cffabb253c51ba9
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_alpha.deb
Size/MD5 checksum: 2628412 1238c1f69916afdd72ef4ad265437844
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_alpha.deb
Size/MD5 checksum: 65272 e0db66adbdc1ecf15cf0bc07b331d72c
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_alpha.deb
Size/MD5 checksum: 35280 dbaeb18e5f652d20f9756acdd16285bc
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_amd64.deb
Size/MD5 checksum: 2324530 f5b409aaa3a652c232c6dc1c5c31b824
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_amd64.deb
Size/MD5 checksum: 35292 8589ff0d11cf1df9e8af3407cdd23ec2
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_amd64.deb
Size/MD5 checksum: 798148 311a2a0375b14bdfabb7a49c4ee5a388
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_amd64.deb
Size/MD5 checksum: 62126 286cad4bbf646f4c3db19528cde748ed
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_arm.deb
Size/MD5 checksum: 2176974 3053978d7f749cba4ce6b68580b3733f
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_arm.deb
Size/MD5 checksum: 59684 c758e0c50cc23195b1b588054591a56d
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_arm.deb
Size/MD5 checksum: 34654 18d4896df4df84814f27fc8f4aa5594c
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_arm.deb
Size/MD5 checksum: 796402 b04ba32752a0a9ba9c645c921100535f
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_armel.deb
Size/MD5 checksum: 35296 e8e3031e8005ac8a6d312b24d5dbff23
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_armel.deb
Size/MD5 checksum: 63276 a525fc26418e4bc95bdfaa55a1bea7d6
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_armel.deb
Size/MD5 checksum: 799534 029d1ca77de78e6c123246db94f23726
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_armel.deb
Size/MD5 checksum: 2211746 d5deb1d2d75e62c41804b88c52021e1d
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_hppa.deb
Size/MD5 checksum: 2568152 d57efabc1fc8076c2d31793fb7f8a4ac
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_hppa.deb
Size/MD5 checksum: 796056 738411624ecf1cedf40c6437db6bbeaa
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_hppa.deb
Size/MD5 checksum: 36130 9c629bb5ac49d922e0dd19bc201260af
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_hppa.deb
Size/MD5 checksum: 65802 926ddc29fc040141841f7ad9939010f4
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_i386.deb
Size/MD5 checksum: 60650 09929bd54215e145ccbb400bd5fd64b4
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_i386.deb
Size/MD5 checksum: 2221498 bf1da8385d836970119e02ee8ba2679d
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_i386.deb
Size/MD5 checksum: 36130 ae0ac01db0c9d94dcaafd66891a19fcd
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_i386.deb
Size/MD5 checksum: 797038 2b334a1592e6b8c41803a3dd350ef514
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_ia64.deb
Size/MD5 checksum: 762564 b4e9e1bb352813d8598ed0820dc6d563
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_ia64.deb
Size/MD5 checksum: 80240 96679a948d589619d83926074c11a99b
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_ia64.deb
Size/MD5 checksum: 35278 385266dfdf5cca6bcfe5076b6d78b804
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_ia64.deb
Size/MD5 checksum: 3615012 5be855cf7988372e69017ef193eaea81
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_mips.deb
Size/MD5 checksum: 798528 2c06f890ab0f951623609c10a13ef20c
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_mips.deb
Size/MD5 checksum: 36222 adef63b494296202b32fe81d979b0999
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_mips.deb
Size/MD5 checksum: 2307372 4b41acf75b32134f2bd92685a3a7ccb4
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_mips.deb
Size/MD5 checksum: 61622 f0a94415338960e5bb59ae495e395801
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_mipsel.deb
Size/MD5 checksum: 35294 fe6687e3f2166d7985d117255c26540b
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_mipsel.deb
Size/MD5 checksum: 61584 945878bc6fec2d0b68b726bc425a2b67
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_mipsel.deb
Size/MD5 checksum: 761978 9d56a58f19cd1822925e0f4cfd76e69f
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_mipsel.deb
Size/MD5 checksum: 2299918 8c54526e2c0b82dda98fe20c5c056e92
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_powerpc.deb
Size/MD5 checksum: 764044 60515f78c9c727c220d0d29bfa25a5ae
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_powerpc.deb
Size/MD5 checksum: 35284 68b7094bd9cb97a252b256037c9d0594
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_powerpc.deb
Size/MD5 checksum: 2408840 63bb2dd93f575c7e66fbdc767804b4e4
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_powerpc.deb
Size/MD5 checksum: 64990 8302cc72305a647e63e1120dd310e18d
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_s390.deb
Size/MD5 checksum: 762026 910f881d6eaccffd26934a949c888ca9
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_s390.deb
Size/MD5 checksum: 2436778 afd004cbeddcb57e86eb49093493d5f7
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_s390.deb
Size/MD5 checksum: 35278 40f1a8eaedf95e6b8043bff48a7dabfa
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_s390.deb
Size/MD5 checksum: 63232 b847b55b28214772602aca9caa72cecd
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/g/ghostscript/libgs8_8.62.dfsg.1-3.2lenny1_sparc.deb
Size/MD5 checksum: 2186660 d6f70af487a94d9a8d15bc04b2907171
http://security.debian.org/pool/updates/main/g/ghostscript/libgs-dev_8.62.dfsg.1-3.2lenny1_sparc.deb
Size/MD5 checksum: 35288 7f7ffd352ce32f219136cfaa596928f7
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript-x_8.62.dfsg.1-3.2lenny1_sparc.deb
Size/MD5 checksum: 59170 01a70b61316be217c9e1eaadd452dedd
http://security.debian.org/pool/updates/main/g/ghostscript/ghostscript_8.62.dfsg.1-3.2lenny1_sparc.deb
Size/MD5 checksum: 761898 bd1f18ac686723643cff62993f96bfd7
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknDYjAACgkQ62zWxYk/rQclLACcDDO2+mB5s0zdhmctk9FPspWt
j/EAoLc2NmgwHuDuB6U2jbxpNcoWqCc9
=bm0f
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1747-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 20, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : glib2.0
Vulnerability : integer overflow
Problem type : local (remote)
Debian-specific: no
CVE Id : CVE-2008-4316
Debian Bugs : 520046
Diego Petten discovered that glib2.0, the GLib library of C routines,
handles large strings insecurely via its Base64 encoding functions. This
could possible lead to the execution of arbitrary code.
For the stable distribution (lenny), this problem has been fixed in
version 2.16.6-1+lenny1.
For the oldstable distribution (etch), this problem has been fixed in
version 2.12.4-2+etch1.
For the testing distribution (squeeze), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in
version 2.20.0-1.
We recommend that you upgrade your glib2.0 packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.12.4.orig.tar.gz
Size/MD5 checksum: 3838981 d121999e4cdfdc68621e3eb23f66cd66
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.12.4-2+etch1.dsc
Size/MD5 checksum: 1499 18cae69e02a1227e09226857626c0533
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.12.4-2+etch1.diff.gz
Size/MD5 checksum: 18438 9b22fc1fa8d82aded0a08cc9a7a6f55d
Architecture independent packages:
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-data_2.12.4-2+etch1_all.deb
Size/MD5 checksum: 285378 f30d726d7a8aa293c9b4c5b864b61ce6
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-doc_2.12.4-2+etch1_all.deb
Size/MD5 checksum: 737208 275321184f9ed1e0edb0a6a26f477836
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_alpha.udeb
Size/MD5 checksum: 660018 7eb178037a58b0aa675b02caab127538
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_alpha.deb
Size/MD5 checksum: 561114 f564925a0a93600dd07e336ab3414077
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_alpha.deb
Size/MD5 checksum: 772822 6617975204dd5a8b96549bab7edb05d4
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_alpha.deb
Size/MD5 checksum: 600216 fd6feec3f3d92b19ab6736c059f9adbf
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_amd64.deb
Size/MD5 checksum: 595848 44d3bded85806ec86c1da38350791e39
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_amd64.deb
Size/MD5 checksum: 605210 561ab303f654edd1c3da1e854eb1c162
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_amd64.deb
Size/MD5 checksum: 547570 4796b12af73cbe7c18ce91cf300f9049
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_amd64.udeb
Size/MD5 checksum: 656440 735a0b44ed7edf2eac961beae0046b43
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_arm.udeb
Size/MD5 checksum: 622256 dc73ea0f82d4268fc00a7cedb0e38ab0
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_arm.deb
Size/MD5 checksum: 513506 a8d4f32a3193c7c020782c4b838e3494
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_arm.deb
Size/MD5 checksum: 537132 95ba75ae0b010885405b892f4a091c4f
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_arm.deb
Size/MD5 checksum: 554820 f2b3e61b465bb077da5d871b73f1064b
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_hppa.deb
Size/MD5 checksum: 584818 06d00ef19400440a20a3590332bbebd2
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_hppa.deb
Size/MD5 checksum: 678246 e752013d28a0cd142b272cd0b07d1e01
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_hppa.deb
Size/MD5 checksum: 577464 5035801a0d2495f4410b0730ef6294f5
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_hppa.udeb
Size/MD5 checksum: 692998 f8fc11ac6cf2c19cd6428053065edd7e
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_i386.deb
Size/MD5 checksum: 572604 dc952ccba42c2e28506e95ffdb328cc9
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_i386.deb
Size/MD5 checksum: 504146 d47f9ab4a1b92d810b5caebc5eb1bb57
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_i386.deb
Size/MD5 checksum: 542130 3bd53805a2e18efe9ad0517200f40e0e
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_i386.udeb
Size/MD5 checksum: 617804 814c6becbdead8fc110f03aa38233692
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_ia64.udeb
Size/MD5 checksum: 775542 5426ed5dde982327419b7c11709831b0
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_ia64.deb
Size/MD5 checksum: 675700 edc97c9e93fe5551e4a6aabaa639f664
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_ia64.deb
Size/MD5 checksum: 823214 db779a6159a45c7b08ccd976aaabcc89
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_ia64.deb
Size/MD5 checksum: 553172 cca719465dd1a5a9b3fca46f2cde29bd
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_mips.udeb
Size/MD5 checksum: 618746 6dc6beb4d8b103097a86fdf20f7e01cc
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_mips.deb
Size/MD5 checksum: 664972 e666d4f859588ba3502858d488cf389a
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_mips.deb
Size/MD5 checksum: 519790 91261c5061a4af1ebc716d984a036655
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_mips.deb
Size/MD5 checksum: 620362 a25783de84a6fed345196200b72e643b
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_mipsel.udeb
Size/MD5 checksum: 615858 4266787b97a6c39d583a2f719d49d8fa
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_mipsel.deb
Size/MD5 checksum: 516978 d07d1c7143a220dc266317ca46d6418a
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_mipsel.deb
Size/MD5 checksum: 660188 487187ec7ad60d5eee8bc7eac7e41172
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_mipsel.deb
Size/MD5 checksum: 601544 c602457e3226b7180fbdbc926783d798
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_powerpc.deb
Size/MD5 checksum: 604394 e95bb4fc683971d049963f202c1f3b24
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_powerpc.deb
Size/MD5 checksum: 536720 a93585031b8a6c2cf7972ecf10c9965d
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_powerpc.deb
Size/MD5 checksum: 633886 e33c35a1785eed680dac20753e655889
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_powerpc.udeb
Size/MD5 checksum: 636080 3c5dbf194f3997a7d75346f4c3ab8b24
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_s390.deb
Size/MD5 checksum: 560072 50bcc237c745feba70c49de0f02e2b19
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_s390.udeb
Size/MD5 checksum: 658940 64edce8303048523d35d2dec7e5a2977
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_s390.deb
Size/MD5 checksum: 593990 d3acb08fe0726c3ecb33666e3d043829
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_s390.deb
Size/MD5 checksum: 586524 9609be9f39811f46e0fcd1ac37a0b28e
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.12.4-2+etch1_sparc.udeb
Size/MD5 checksum: 626188 b5826dc12267f801fb696fea9d195cef
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.12.4-2+etch1_sparc.deb
Size/MD5 checksum: 527680 e7407bcc9e83d86ce87fa51fbd701bf8
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.12.4-2+etch1_sparc.deb
Size/MD5 checksum: 523110 1a31a70f5f00493e089e337ceeb65834
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.12.4-2+etch1_sparc.deb
Size/MD5 checksum: 590100 989dc5ea3b46bb74e7d1bc8b47a90084
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.16.6.orig.tar.gz
Size/MD5 checksum: 6491460 65c594a471406a377bee8171a2ea43d4
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.16.6-1+lenny1.dsc
Size/MD5 checksum: 1475 59ca34e703bf0a798746cdeca3a2c051
http://security.debian.org/pool/updates/main/g/glib2.0/glib2.0_2.16.6-1+lenny1.diff.gz
Size/MD5 checksum: 32351 22cac59cf4481cdddc9802be93dc4100
Architecture independent packages:
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-data_2.16.6-1+lenny1_all.deb
Size/MD5 checksum: 699192 9edb95995e450eb2609589b2606c8e6b
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-doc_2.16.6-1+lenny1_all.deb
Size/MD5 checksum: 1157604 ab17084a6d7d448c1316d6e247ae5cdc
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_alpha.deb
Size/MD5 checksum: 48144 42829ec5a479bc1c261e45c5f081cf57
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_alpha.deb
Size/MD5 checksum: 1168176 1fabc7d811618647b73deccc2455c807
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_alpha.udeb
Size/MD5 checksum: 1340028 17257a012f6697e578e434f5204ff71c
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_alpha.deb
Size/MD5 checksum: 855652 8fb764ffe204dc53cc3c7215a7ce3302
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_alpha.deb
Size/MD5 checksum: 1305662 d580244555cfb00065dfa4e990329cc6
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_amd64.deb
Size/MD5 checksum: 826938 87687e0cd4a03c7fbcaebad25ca07436
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_amd64.deb
Size/MD5 checksum: 46542 8cbe7a8cd81a83ac4362b85b6c8b563c
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_amd64.deb
Size/MD5 checksum: 1206420 16cfc02b6ff9d1c25ecd72a25c0dd404
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_amd64.deb
Size/MD5 checksum: 989946 66e6c9941573937ffc015fe4356d1b81
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_amd64.udeb
Size/MD5 checksum: 1310078 14bbc4e19f36469df8d57ab454a5daf0
arm architecture (ARM)
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_arm.deb
Size/MD5 checksum: 44216 193ae5a572f657643336727255903acd
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_arm.deb
Size/MD5 checksum: 1114848 ae22838c5dc08519246d7a47de18fdda
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_arm.deb
Size/MD5 checksum: 879064 ca385238c2f3cc0e0cf1fd8a4321101c
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_arm.deb
Size/MD5 checksum: 754714 fded0b0a29661d508feb4b396769ddb3
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_arm.udeb
Size/MD5 checksum: 1241438 ec0eb4cee4d7c35aee435f826cbfa13e
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_armel.deb
Size/MD5 checksum: 45008 f1b5f41ba2ff4343fe9bc98c23512d7b
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_armel.deb
Size/MD5 checksum: 760756 9c220de8a899a48d62edaf159b7a464d
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_armel.deb
Size/MD5 checksum: 881884 57c1be74d90eea74504ee6f4bc0de710
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_armel.deb
Size/MD5 checksum: 1125068 f2bfe40c3f9e27ed802001e074add3e7
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_armel.udeb
Size/MD5 checksum: 1247792 c5ba104a4979a6971bce84769c7debec
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_hppa.deb
Size/MD5 checksum: 1146756 7c27c6a31734fb85f2b35fc754cd47e2
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_hppa.deb
Size/MD5 checksum: 47768 4542b3e09b7ef54e3ab1fe272a6042f4
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_hppa.deb
Size/MD5 checksum: 867244 093cba5e2c82d3b09c157c884a9c09db
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_hppa.udeb
Size/MD5 checksum: 1351116 ff89e43dc1f82ea565c50de2319be25a
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_hppa.deb
Size/MD5 checksum: 1109946 a411fa4e251b11767766725047030b23
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_i386.deb
Size/MD5 checksum: 44986 4c5a710552b3329cc2e35d3872a79b49
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_i386.udeb
Size/MD5 checksum: 1242020 8ade245d65708696056cf5f1d9ee46dd
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_i386.deb
Size/MD5 checksum: 1133696 49867c28e81a7f0f890e3e336a365114
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_i386.deb
Size/MD5 checksum: 875572 03c8c2e283e9208646ccb9b7f2d23d1c
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_i386.deb
Size/MD5 checksum: 757404 2f82e374c1a6d0e2f5c9036d10b3ecaa
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_ia64.deb
Size/MD5 checksum: 1341098 512e890f3f863073936c2e3fa74a90aa
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_ia64.udeb
Size/MD5 checksum: 1517072 f41e9e0d7af732d0631cbdb5f3cfabf9
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_ia64.deb
Size/MD5 checksum: 1033016 a10cbb31110f8c08f6a73ec653003e15
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_ia64.deb
Size/MD5 checksum: 48660 8e30c1662007d7b5fa3e3ca2748875b3
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_ia64.deb
Size/MD5 checksum: 1066564 82eeaa77b3604794fe2d104a80231ac6
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_mips.deb
Size/MD5 checksum: 765606 dc38fe41b9ff26a76c5be413921ae675
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_mips.deb
Size/MD5 checksum: 1109400 d3a8702c9ba35635b91e0a9b28171c9a
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_mips.deb
Size/MD5 checksum: 1208172 c8b057ffbc17d1d22441d60e22385923
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_mips.udeb
Size/MD5 checksum: 1249840 57027659c0d9b4ccf61f143830e4be8e
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_mips.deb
Size/MD5 checksum: 46300 bd0452428e7ad483823709131ca041eb
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 762054 296ed0568d52e2269858e9bc95781f09
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 1103662 a187d014180c5ca0a90118ec6fbb2d3e
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 46234 04fbb46ead5b0a5b6298daaf3027bdab
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_mipsel.udeb
Size/MD5 checksum: 1246236 bb51d0f9d011a392bd30effc5f36cdbe
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_mipsel.deb
Size/MD5 checksum: 1180250 b8dff999366e8668bbb34244ea54c287
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 1036550 298e96d7ca00305320ec37b630072e46
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 828168 37c583fbc4b92709d36d40f1d94852b9
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 1190934 3f426ba1d4f4d02bbfd2a22caf28b07e
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_powerpc.udeb
Size/MD5 checksum: 1312094 2ddd933a05b3d11179c6a3d4a35ccabb
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_powerpc.deb
Size/MD5 checksum: 46412 6ab96dbd649904660c21a296eccb3ca4
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_s390.deb
Size/MD5 checksum: 976948 312fca5d0c6c295df8bf6205debd4674
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_s390.deb
Size/MD5 checksum: 1203208 efcf9510f437ab4ac17ab4c36390a45f
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_s390.deb
Size/MD5 checksum: 46418 c4227d7ca4f5d2ecad94280a8ef294ed
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_s390.deb
Size/MD5 checksum: 848036 39078eedb2f402c3ecdffc6a48baf223
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_s390.udeb
Size/MD5 checksum: 1332566 04c6e0c0dd0c605f78edbb65b1479c69
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-dev_2.16.6-1+lenny1_sparc.deb
Size/MD5 checksum: 944480 6c68c1556414d83568a16ce6bc24d614
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0-dbg_2.16.6-1+lenny1_sparc.deb
Size/MD5 checksum: 1036602 9cc7e6e15911c61406de1c45a1176e29
http://security.debian.org/pool/updates/main/g/glib2.0/libgio-fam_2.16.6-1+lenny1_sparc.deb
Size/MD5 checksum: 45516 498de22f23fcdd99f7c7d1a553042a79
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-udeb_2.16.6-1+lenny1_sparc.udeb
Size/MD5 checksum: 1261410 26e6d6a646ca371aec4042bd7fd23c18
http://security.debian.org/pool/updates/main/g/glib2.0/libglib2.0-0_2.16.6-1+lenny1_sparc.deb
Size/MD5 checksum: 776472 31dfa0d8e3c70cab166b8a632ff2a167
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknDo5oACgkQ62zWxYk/rQd1MwCfe0H2DP34EjxW6bC+p8+2VEpz
7zoAoIapWjToxxJw3W7B8Hd0TGqAkpZE
=ETqn
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1748-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 20, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : libsoup
Vulnerability : integer overflow
Problem type : local (remote)
Debian-specific: no
CVE Id : CVE-2009-0585
Debian Bugs : 520039
It was discovered that libsoup, an HTTP library implementation in C,
handles large strings insecurely via its Base64 encoding functions. This
could possibly lead to the execution of arbitrary code.
For the oldstable distribution (etch), this problem has been fixed in
version 2.2.98-2+etch1.
The stable distribution (lenny) is not affected by this issue.
The testing distribution (squeeze) and the unstable distribution (sid)
are not affected by this issue.
We recommend that you upgrade your libsoup packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup_2.2.98-2+etch1.diff.gz
Size/MD5 checksum: 6510 65ab0f023a150170e8a181890a00b023
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup_2.2.98-2+etch1.dsc
Size/MD5 checksum: 1537 cd5b947c0b3b9203aa52f6d0ec40821c
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup_2.2.98.orig.tar.gz
Size/MD5 checksum: 692665 b20e2a41ab0d21cc8d84fd76b4dbf47b
Architecture independent packages:
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-doc_2.2.98-2+etch1_all.deb
Size/MD5 checksum: 148102 b1e78a8f3396ae6d58f3cf3889c8c6ff
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_alpha.deb
Size/MD5 checksum: 143528 45221b9485dd0b1d7a5b2a0dc68b1dc0
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_alpha.deb
Size/MD5 checksum: 225664 646feecbfdae326e7e131682c87eb490
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_amd64.deb
Size/MD5 checksum: 173460 91bbd9ff1aba8b8a5739fee06c67d5c8
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_amd64.deb
Size/MD5 checksum: 134338 4f0863cdc2d1d2b11020ea48d383da47
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_arm.deb
Size/MD5 checksum: 156102 5b9fc9b512df31fc13545b1ad5b58b59
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_arm.deb
Size/MD5 checksum: 122166 1f7ffd4f62f0e3da5dfda7bba9b6cf8e
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_i386.deb
Size/MD5 checksum: 159014 ceff344964f226cbe0c3d9fe33d269c1
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_i386.deb
Size/MD5 checksum: 127618 233269397ec53a7728efbbe4bb5ffdbf
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_ia64.deb
Size/MD5 checksum: 166682 3e731257e90366342668ae79a62d765c
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_ia64.deb
Size/MD5 checksum: 224356 ef42597d156076f2c8b14719ba86b6f7
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_mips.deb
Size/MD5 checksum: 123812 4cf102e455c0dbd0b216ba566a0c0ab8
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_mips.deb
Size/MD5 checksum: 186234 cd10eebffdc0cd2d3054312e33e4ce8e
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_mipsel.deb
Size/MD5 checksum: 123834 98548a14e5ce79bebb383a6aecee4c98
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_mipsel.deb
Size/MD5 checksum: 184598 95aaf80730c26f9d8d157946b2ac5647
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_powerpc.deb
Size/MD5 checksum: 129934 eed29efd7504d5773dfc3f9e63b86a8f
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_powerpc.deb
Size/MD5 checksum: 174982 d03e2f8a85f8e3f34f66adcd828cc96e
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_s390.deb
Size/MD5 checksum: 138932 6cddb3baf9116f406a24b3a9a0704bbf
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_s390.deb
Size/MD5 checksum: 173034 152912e389a2e79703e7b99754815f8d
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-8_2.2.98-2+etch1_sparc.deb
Size/MD5 checksum: 127078 ce5d52474147b2df700df515920bd392
http://security.debian.org/pool/updates/main/libs/libsoup/libsoup2.2-dev_2.2.98-2+etch1_sparc.deb
Size/MD5 checksum: 163488 07d3e61ff2b929e005f9a66a2ad8354d
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknDpHcACgkQ62zWxYk/rQcqxwCgiR0gBbnd2D+e2NPMcAW2LRLL
jZoAoL4Plgu8bTUw0AgqacvBkUt7bwk4
=tp9e
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ----------------------------------------------------------------------
Debian Security Advisory DSA-1749-1 security@debian.org
http://www.debian.org/security/ dann frazier
March 20, 2009 http://www.debian.org/security/faq
- ----------------------------------------------------------------------
Package : linux-2.6
Vulnerability : denial of service/privilege escalation/sensitive memory leak
Problem type : local/remote
Debian-specific: no
CVE Id(s) : CVE-2009-0029 CVE-2009-0031 CVE-2009-0065 CVE-2009-0269
CVE-2009-0322 CVE-2009-0676 CVE-2009-0675 CVE-2009-0745
CVE-2009-0746 CVE-2009-0747 CVE-2009-0748
Several vulnerabilities have been discovered in the Linux kernel that
may lead to a denial of service or privilege escalation. The Common
Vulnerabilities and Exposures project identifies the following
problems:
CVE-2009-0029
Christian Borntraeger discovered an issue effecting the alpha,
mips, powerpc, s390 and sparc64 architectures that allows local
users to cause a denial of service or potentially gain elevated
privileges.
CVE-2009-0031
Vegard Nossum discovered a memory leak in the keyctl subsystem
that allows local users to cause a denial of service by consuming
all of kernel memory.
CVE-2009-0065
Wei Yongjun discovered a memory overflow in the SCTP
implementation that can be triggered by remote users.
CVE-2009-0269
Duane Griffin provided a fix for an issue in the eCryptfs
subsystem which allows local users to cause a denial of service
(fault or memory corruption).
CVE-2009-0322
Pavel Roskin provided a fix for an issue in the dell_rbu driver
that allows a local user to cause a denial of service (oops) by
reading 0 byts from a sysfs entry.
CVE-2009-0676
Clement LECIGNE discovered a bug in the sock_getsockopt function
that may result in leaking sensitive kernel memory.
CVE-2009-0675
Roel Kluin discovered inverted logic in the skfddi driver that
permits local, unprivileged users to reset the driver statistics.
CVE-2009-0745
Peter Kerwien discovered an issue in the ext4 filesystem that
allows local users to cause a denial of service (kernel oops)
during a resize operation.
CVE-2009-0746
Sami Liedes reported an issue in the ext4 filesystem that allows
local users to cause a denial of service (kernel oops) when
accessing a specially crafted corrupt filesystem.
CVE-2009-0747
David Maciejak reported an issue in the ext4 filesystem that
allows local users to cause a denial of service (kernel oops) when
mounting a specially crafted corrupt filesystem.
CVE-2009-0748
David Maciejak reported an additional issue in the ext4 filesystem
that allows local users to cause a denial of service (kernel oops)
when mounting a specially crafted corrupt filesystem.
For the stable distribution (lenny), these problems have been fixed in
version 2.6.26-13lenny2.
For the oldstable distribution (etch), these problems, where applicable,
will be fixed in future updates to linux-2.6 and linux-2.6.24.
We recommend that you upgrade your linux-2.6 packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26-13lenny2.diff.gz
Size/MD5 checksum: 7582454 57f388d55f402654ff834b30b22aadef
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26.orig.tar.gz
Size/MD5 checksum: 61818969 85e039c2588d5bf3cb781d1c9218bbcb
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-2.6_2.6.26-13lenny2.dsc
Size/MD5 checksum: 5777 6bc12d58cd44d1965c3407ea2b1d9e77
Architecture independent packages:
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-support-2.6.26-1_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 117120 d801fa4d8fe73c8e8cbaa751e90e65e8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-patch-debian-2.6.26_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 2119816 9d47a407a3776ff118fa001a296637b2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-manual-2.6.26_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 1791570 b4d9768d893217fab73ae97671a67b0f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-doc-2.6.26_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 4839432 7cbd07be5f1151314956fb140222f4fe
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-tree-2.6.26_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 101012 1390d6893523763bcdaf6fa027e00df8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-source-2.6.26_2.6.26-13lenny2_all.deb
Size/MD5 checksum: 49373366 fd387b044907eb8790ec5de77c6fbd99
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-alpha-smp_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 359408 f2114f6b9993649ff7c68377a415720d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-alpha-smp_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 29037748 d3eb6a17a81b069aadf0e6337b5ed175
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 3537284 07f52b2c33e58815bf1b0cb23e8ab685
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 100690 2f461b903298324fd2800f0b6d280247
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 735136 5a96b37d713b08aca2f1e76d3ed1e7e4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-alpha-generic_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 359332 33dc1ad2de67839f782c6a26d3e99b15
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-alpha-legacy_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 358560 0d25cf1164f05ea74b9ae73ded1ce138
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-alpha_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 100710 8f5925ca09d3bea0db33553cf0b3327c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-alpha-generic_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 28340606 4ef401665201b527218aa8bab99881c1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-alpha-legacy_2.6.26-13lenny2_alpha.deb
Size/MD5 checksum: 28319388 1eebddb5b7a6380d75b0b018ab77d1b3
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-xen-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 384486 ec589dcb03b4d6c99e0fe73eae1d0a89
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 20898920 514e992547bcb32c27f23d854078369b
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-openvz-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 21061346 14f95ff082d72e8e7e3dcba866629065
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-openvz_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 3848196 f892a258a15542ebfd32a3076431e7d1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 758938 d170123856cdd9f640030e9894dac632
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 3827752 dbc6d06a99a7dac64261be7fb9486bfc
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-xen-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 1798532 073bfaeee8ffcf352edf6ed4b6de9a08
http://security.debian.org/pool/updates/main/l/linux-2.6/xen-linux-system-2.6.26-1-xen-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 100666 61ba1753bc05bf1c25637329986c7932
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 20925582 420b5ea13af5ba149ee50b8a315f10ae
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-modules-2.6.26-1-xen-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 19294988 41ab6b69c93d6d830b8b9ffaf208e425
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 3791534 86cb2b581089e86285bab62dd5576f86
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 100680 148324b2b5468c3777ab4fa4ca1680df
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-xen_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 3932422 e08966d7aa505df718c2b4d779e5c5ba
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 389866 c69115fe9306f5eeaf85d1390e34ae86
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 388788 2cb3e462c96b4301605e69ffc2bff4f9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 100716 b694e83baec747d58e90a37039d41763
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-openvz-amd64_2.6.26-13lenny2_amd64.deb
Size/MD5 checksum: 394994 119e85aadee68e89f951ce716a5b3123
arm architecture (ARM)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-footbridge_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 344188 e40ec8b9cf763fbd6acc9a7de8ef6b2f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 100582 bfee3dfbd4444fa1864036d42cc93df6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-orion5x_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 351748 2b507b15473afe44df64d5ccc157791a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-orion5x_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 11167860 de74faea715aaee2755e86d42e45df21
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-ixp4xx_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 11466532 d6f8aefa3f0e4a5995fff64b20a05ba4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-iop32x_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 12187796 3b1c8e55a0f023d83ea73734cf2db0ff
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-arm_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 100610 2068fc765ec5998132fa23dcd2326f81
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-ixp4xx_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 354788 24c8c94f6c7fcff346503556c6209fac
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-iop32x_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 358316 cf42ed4467f4636cd514dd7f53bd4f06
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 741708 4239c4ddffc168020fe070ce4ae42362
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-footbridge_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 10236258 13bab8504d1c26a35c79b406b8fc7529
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_arm.deb
Size/MD5 checksum: 4129136 8c7bc759f2a1632fd4bacca8735b1de7
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 4125704 34432a73f81ca9c120d4f4aecbb5d078
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 100702 5cb91fed45e9083452ef4209939826c5
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-orion5x_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 11127614 bd27327e8b3433a0c9b733f681fa0bcd
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-ixp4xx_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 355828 c7d7298975cdbc980726c18b8ace5552
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-versatile_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 9404458 65d4104e8e98d22221a645e1dc527b58
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-iop32x_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 358548 8fedf72706f88e3a35cfa2503951da53
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-ixp4xx_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 11432578 4c793a13130137db2c39dc417d7eb91a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 741378 c481b5aaf58a2de7b6ce41839ff365ec
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-armel_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 100734 0a8304621d58a6376e211a118efd6df9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-iop32x_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 12147690 3ae6a14fd310eefc18271736597ca223
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-orion5x_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 352876 eafdf84b0f693435d626112ee426ccb1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-versatile_2.6.26-13lenny2_armel.deb
Size/MD5 checksum: 328610 2d485d81ccab49e1d7793bdef13a46f2
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-parisc64_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 16935920 6d13045e0b12d2371a64b33ce30b6e38
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-parisc-smp_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 16198412 f2e96f20c6c0961cb6d473d05dbfc3cf
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-hppa_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 100716 992c365939a00d758b2132b1b38d5cd2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 752478 b590e2c61c0c5e759b1ef59d91524623
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-parisc64-smp_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 17488560 0094ffeb1fcbdc65bec66a4810e0be8a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 3587486 1548dcf7f2f7cd53e03559cd4dc8045e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-parisc64_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 292034 ed3e849087da2acaf689ad18c7378407
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-parisc_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 15608878 13b6885d3174d6b2a517584303417521
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-parisc-smp_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 292900 854458ca3fc90965c94054b9139b41ca
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 100692 0e49837f52ff7a22be6985c5ec5039be
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-parisc_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 291258 fd32dcf3ee713e1b7bcd9523ea011547
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-parisc64-smp_2.6.26-13lenny2_hppa.deb
Size/MD5 checksum: 293418 18fa10ffb774ab15ea71af159da4d3dd
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-686-bigmem_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20388130 6ebd096d2843719770894cf44ac15b9b
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-openvz-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 404488 8a5e77df63044b5bdb1f8f7a3f42a7d4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-686-bigmem_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20362130 784721fb557989325586e4d780f66082
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-amd64_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 387174 557ce7e8f0d1f92e8348912b0bee8573
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 398560 707e13aadffb7fd24ca154838ff32064
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-686-bigmem_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 397744 adb185b12dcb09e4e08b68dc24b9ec98
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-xen-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 385026 44387ad960bc5403e856c4e58aeacbc1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 100568 c7585ec7af4240a2ea70eadc11b294d9
http://security.debian.org/pool/updates/main/l/linux-2.6/xen-linux-system-2.6.26-1-xen-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 100562 80c4d273b16b73278ca07e0362096ab3
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-xen_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 3932472 ca20b333ee42443cf01f0ca0b5fd1749
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-686-bigmem_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 397958 fb6e3a3258135e001333789f2caaf1f4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-modules-2.6.26-1-xen-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 18060354 de8643dc84eb94af0fa1f4c20b5c8f43
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 756434 c91c4fc0d4621ed38633a959e31eafc7
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-xen-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 1585752 bf72cc1851c7637c9d10ce19e1d0e95e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-openvz_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 3850580 c64877c1681a1603636d488bace7efce
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20251438 8aff20c68f11679878926151f2a13ce1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-amd64_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20884304 8f798106a4b65bb5352b28b1d4f22631
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 397218 b5f23ef6f9ba1cf809046249f84760b5
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-i386_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 100618 ed74be7795fa9421975e00c027077c0e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-486_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 397248 c3dc9d344927b1cd3a2b86b450fb0579
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20270484 1e09b4af4766bd891b1245924f59699e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-486_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20212758 b5b9c8ce939c2fb8a33ca99499c7255d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 3792102 d587a4cb2790c63904c6aa0992c235c1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-openvz-686_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 20524538 432fc891e5e861a71289335fe5fdd927
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_i386.deb
Size/MD5 checksum: 3827226 bed45339a0753fbbdd36031c770eb3e4
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-itanium_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 34068326 b27cb8efeca382d34cfb905084380cc0
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-mckinley_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 356424 e83b53a46e3d7cbf9d56ebcea6b6fcea
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 100570 69e2bc66133f6dd1da57f8fee5028e67
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-mckinley_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 34250170 109a07d1dbaae34f3c8d779bac39c980
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-itanium_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 354794 37fb81b45f4a1a993daf851804911581
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-mckinley_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 34176526 619321793ed714d480c875fbac22a227
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-ia64_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 100606 a36c463bf27e1d9d323ec07d2aa34a65
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-itanium_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 33995932 3b1615bf92e0770444197b6a5619116d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 3717600 8abb16a4724080eeb65fefea0604add3
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-itanium_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 354208 7f58a3fab7a63b05862116d486313c77
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 756170 85d062a9d6ce206cae33b61a02bc12bb
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 3753402 1b84e2b361e66c0d1726b9e9e9c69a55
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-mckinley_2.6.26-13lenny2_ia64.deb
Size/MD5 checksum: 354938 a51e7dd92f8f23263c13ae7425b3c0be
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 3956146 e137e10b540dcfdd342831dd9375cc09
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-4kc-malta_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 347970 934922596d04edb47bc23dbe86d03051
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 100578 3d574653bdce5f93b858615e5ac90413
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sb1-bcm91250a_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 19990578 e53e9d9d291e1b6e315b49086783505c
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-r5k-ip32_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 15683128 91d6994a6cb8a604f0d758cdcd831443
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-mips_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 100628 e92940cbee96e371e0e488bd7d45d2d5
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sb1a-bcm91480b_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 291790 988851c7b39981eccba10691b3bc6005
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-r4k-ip22_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 251428 12c62a9f54cf5fbba1946fd3da08ff39
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-5kc-malta_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 29175140 7f01b2468f1dd1c932ac700da6f655dd
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-r4k-ip22_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 11425960 1f14f31d47d465292eb92d498d9cf024
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sb1-bcm91250a_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 292372 c6a43a5470ea33b1db6d59954f6d2e2f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sb1a-bcm91480b_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 19982212 97e7fa658462e982e865b77cc1b884e3
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-r5k-ip32_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 275558 a90b7c316db36895e7782ae5c6303519
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-4kc-malta_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 23314832 14867a92d5142c0ca59f4ca25bc509ba
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 751788 f923d34e1493ab302aa1cef96f5a76ea
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-5kc-malta_2.6.26-13lenny2_mips.deb
Size/MD5 checksum: 347264 090c66958d6b79b8849b3182737835eb
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-5kc-malta_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 28232344 6dce2b56e7ca29a6eb3e87ef0b172365
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sb1a-bcm91480b_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 19367502 a4c11d0004261e29de4ac4cf662795fd
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-mipsel_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 100740 068848ab87ed111d4c19e0d5053dace2
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-r5k-cobalt_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 284480 04e32302cfb38441046d19b6ff8d524d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sb1a-bcm91480b_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 288908 c750c63a1743fb2ffe013dbe3006dae1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-r5k-cobalt_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 14876318 5da2813673b251e955cf9da33d8299d8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 736256 38cf4bdce3d8218faa8319d4b11af81e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sb1-bcm91250a_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 289388 3d20bc6ddc838b30a5074a5ef3f3ff4b
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-5kc-malta_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 343064 d68eed9acea6eeb7912ed4a0fa6043cf
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sb1-bcm91250a_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 19380782 1cfddadbde5c6eedd1cf2d0336ab5a1b
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-4kc-malta_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 22767252 382c5dfc0d862a1a01b6cbd3a2c130c6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-4kc-malta_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 343836 94c4c48161066836b85dd120e46e4c6e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 100692 9a54e78790c22ecf8a635b4b611c74d6
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_mipsel.deb
Size/MD5 checksum: 3884246 a7e02c6dc2b37da40138a86161bebbaf
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 100694 124e595c1db7de1065e5cf23e811ff7f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-powerpc_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 100730 0f4829650838d82811f3e62e25e9de6a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-powerpc64_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 363744 f6961e0c7cb557b12068f0ebb5a3d6b8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-powerpc-smp_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 354956 951d6558231983c9b1be645c8cf96ffa
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-powerpc_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 22992862 ba9afa2d7128564d6b2d5fcb02a640fa
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-powerpc64_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 23295112 b4f45978a7b565087b2146740409d723
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 737192 e06b4fd4fb58ddedc976b1c973c22c96
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-powerpc_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 354380 e096b54de7b17f481057afccea2d45a8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 3771432 9aba629e50cf1566a94899bf865e6c57
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-powerpc_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 356106 fc8965e71ebc2b87be8aede9cbf6c2a8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-powerpc64_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 23244470 6cb850f9582d091c926d9020e0cadda1
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-powerpc64_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 362352 4431d782cbb3f9f8d5d274a42a5573af
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 3803836 a2fdf7846ed073e7bf3198a55c7d372e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-powerpc_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 23422286 2730b7a99f751f7fb9932cc9e6723cb8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-powerpc-smp_2.6.26-13lenny2_powerpc.deb
Size/MD5 checksum: 23393024 a8568338080f5f5be2956778b27d20e8
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-s390x_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 7827212 1a5af98f62e42522799931c43075b5b4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-s390x_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 224768 6e6b2b68c37631ae29a944422a5100c9
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-s390_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 222558 3736d9f7c3303291ec09f786bd98a7bb
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-s390_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 7477888 add4801a8418ab9854d7812d6af89260
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 100682 067cee9ff62051af29277b4f54f1a1a8
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 3523842 6d5fd42ba38fc281bf4c68051c72a587
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-s390x_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 7767294 d6c291da9a3879d4634431418bc8f5b4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-s390_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 100706 68fbdc44000943af320042252a28d672
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-s390-tape_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 1622348 11ad583e58fa8d4eba54b23cfd0bf560
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 3556304 eb0519f76feb5211e9de7ae76ff5e0e4
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-s390x_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 223346 9f96abba127b23313e7f31fa7e960a3f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_s390.deb
Size/MD5 checksum: 735538 82042fef45b388e4eb76a2197fbbeac3
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-vserver-sparc64_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 292200 aa99b1bc1dc23cb10fc7d0478806ec59
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common-vserver_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 3742130 8912a3b91fe0ad8dd1726412cd204071
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all-sparc_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 100714 4094c074d5626f7ac357e3a6df9b845f
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sparc64-smp_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 292026 8ed9e9d5d74911cb8f8d1f8123de473d
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sparc64-smp_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 14398846 233a5d29e496643375b34a6e1f7e9148
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-sparc64_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 290506 a10e1597b5c6cb914356175d02453019
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-vserver-sparc64_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 14418770 d891b8c66b424f390d2ac878835a1a7e
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-image-2.6.26-1-sparc64_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 14079956 4c3758dc19be4952fd3f2b9da2743854
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-libc-dev_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 776932 f420be96f189ca7d7487318f6d60b447
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-all_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 100692 d35685d5d0854fc7a00419f0a3f4e46a
http://security.debian.org/pool/updates/main/l/linux-2.6/linux-headers-2.6.26-1-common_2.6.26-13lenny2_sparc.deb
Size/MD5 checksum: 3709384 23067445d5f81b81dafbe8bbf8fd548d
These changes will probably be included in the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFJxAKnhuANDBmkLRkRAjf+AJsHAnEq+FNvNz/ftcveUlIuI20i+gCfXUUH
Wgi6pIG+secChhZTzT6oGyg=
=ELqi
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1750-1 security@debian.org
http://www.debian.org/security/ Florian Weimer
March 22, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : libpng
Vulnerability : several
Problem type : local (remote)
Debian-specific: no
CVE Id(s) : CVE-2007-2445 CVE-2007-5269 CVE-2008-1382 CVE-2008-5907 CVE-2008-6218 CVE-2009-0040
Debian Bug : 446308 476669 516256 512665
Several vulnerabilities have been discovered in libpng, a library for
reading and writing PNG files. The Common Vulnerabilities and
Exposures project identifies the following problems:
The png_handle_tRNS function allows attackers to cause a denial of
service (application crash) via a grayscale PNG image with a bad tRNS
chunk CRC value. (CVE-2007-2445)
Certain chunk handlers allow attackers to cause a denial of service
(crash) via crafted pCAL, sCAL, tEXt, iTXt, and ztXT chunking in PNG
images, which trigger out-of-bounds read operations. (CVE-2007-5269)
libpng allows context-dependent attackers to cause a denial of service
(crash) and possibly execute arbitrary code via a PNG file with zero
length "unknown" chunks, which trigger an access of uninitialized
memory. (CVE-2008-1382)
The png_check_keyword might allow context-dependent attackers to set the
value of an arbitrary memory location to zero via vectors involving
creation of crafted PNG files with keywords. (CVE-2008-5907)
A memory leak in the png_handle_tEXt function allows context-dependent
attackers to cause a denial of service (memory exhaustion) via a crafted
PNG file. (CVE-2008-6218)
libpng allows context-dependent attackers to cause a denial of service
(application crash) or possibly execute arbitrary code via a crafted PNG
file that triggers a free of an uninitialized pointer in (1) the
png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit
gamma tables. (CVE-2009-0040)
For the old stable distribution (etch), these problems have been fixed
in version1.2.15~beta5-1+etch2.
For the stable distribution (lenny), these problems have been fixed in
version 1.2.27-2+lenny2. (Only CVE-2008-5907, CVE-2008-5907 and
CVE-2009-0040 affect the stable distribution.)
For the unstable distribution (sid), these problems have been fixed in
version 1.2.35-1.
We recommend that you upgrade your libpng packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Source archives:
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.15~beta5.orig.tar.gz
Size/MD5 checksum: 829038 77ca14fcee1f1f4daaaa28123bd0b22d
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.15~beta5-1+etch2.diff.gz
Size/MD5 checksum: 18622 e1e1b7d74b9af5861bdcfc50154d2b4c
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.15~beta5-1+etch2.dsc
Size/MD5 checksum: 1033 a0668aeec893b093e1f8f68316a04041
Architecture independent packages:
http://security.debian.org/pool/updates/main/libp/libpng/libpng3_1.2.15~beta5-1+etch2_all.deb
Size/MD5 checksum: 882 eb0e501247bd91837c090cf3353e07c6
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_alpha.deb
Size/MD5 checksum: 214038 1dd9a6d646d8ae533fbabbb32e03149a
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_alpha.deb
Size/MD5 checksum: 204478 d04c5a2151ca4aa8b1fa6f1b3078e418
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_alpha.udeb
Size/MD5 checksum: 85270 1fcfca5bfd47a2f6611074832273ac0b
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_amd64.deb
Size/MD5 checksum: 188124 703758e444f77281b9104e20c358b521
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_amd64.deb
Size/MD5 checksum: 179186 d2596f942999be2acb79e77d12d99c2e
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_amd64.udeb
Size/MD5 checksum: 69056 4bd8858ff3ef96c108d2f357e67c7b73
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_arm.udeb
Size/MD5 checksum: 63714 14bd7b3fa29b01ebc18b6611eea486d1
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_arm.deb
Size/MD5 checksum: 168764 54a349016bbdd6624fe8552bd951fee0
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_arm.deb
Size/MD5 checksum: 182720 79e501f9c79d31b0f9c8b5a4f16f6a2e
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_hppa.udeb
Size/MD5 checksum: 74440 e240adb3f2b0f8ed35a3c2fe2dd35da1
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_hppa.deb
Size/MD5 checksum: 187052 e5f7162d516fc3d8e953726d7fb5b6ae
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_hppa.deb
Size/MD5 checksum: 194360 83928ed4057deade50551874a6a85d27
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_i386.udeb
Size/MD5 checksum: 67656 66d9d533e26e4f74fbdd01bf55fa40b1
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_i386.deb
Size/MD5 checksum: 187710 20da5a533679aee19edf5cd0c339f2c9
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_i386.deb
Size/MD5 checksum: 170784 b19d4f0f8be4d65dbb847079ce2effa8
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_ia64.deb
Size/MD5 checksum: 227792 eb01ade8e4b4dba3215832b8c632548a
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_ia64.udeb
Size/MD5 checksum: 108076 cb3ae7c7c66dcafce969608a437fdade
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_ia64.deb
Size/MD5 checksum: 227388 83fa9e2ba1a370fe1b973688ab6096dd
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_mips.deb
Size/MD5 checksum: 187814 daa3c7c3aeae294c661324528e0f6c3e
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_mips.deb
Size/MD5 checksum: 187016 e556557c1c570c66656232422af38c8e
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_mips.udeb
Size/MD5 checksum: 67730 ae7ea1cd95eacae754ba35e9fae19818
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_mipsel.udeb
Size/MD5 checksum: 67996 4be0aa40152ac55a7355aea2204d7888
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_mipsel.deb
Size/MD5 checksum: 187852 19a6eddae81d4f9d768f8c0ef442b0ed
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_mipsel.deb
Size/MD5 checksum: 187282 119ae6083edd419fed3fe970cc507919
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_powerpc.deb
Size/MD5 checksum: 178452 e48dc544abc3df3ec474930639e29469
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_powerpc.deb
Size/MD5 checksum: 186636 b8319bb815dec618288cdd35cd37c191
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_powerpc.udeb
Size/MD5 checksum: 67430 a3717e7c30011e60be99ce04983f2984
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_s390.deb
Size/MD5 checksum: 178548 790f01dc85511343a4ef9b4832f3b1fa
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_s390.deb
Size/MD5 checksum: 190648 a79ea20f0b8af58765d2b14ec276aa5a
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_s390.udeb
Size/MD5 checksum: 71438 aa83c3a2ab4da51670da3eafcedddac9
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.15~beta5-1+etch2_sparc.udeb
Size/MD5 checksum: 64914 13bcdda845e00493e1b25413452302d0
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.15~beta5-1+etch2_sparc.deb
Size/MD5 checksum: 184734 0f0e7865607948f07a604c86fd4f94bb
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.15~beta5-1+etch2_sparc.deb
Size/MD5 checksum: 172558 2853d84c9f9823d0bfe77b1fca00348d
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Source archives:
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.27-2+lenny2.diff.gz
Size/MD5 checksum: 16783 64d84ee2a3098905d361711dc96698c9
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.27.orig.tar.gz
Size/MD5 checksum: 783204 13a0de401db1972a8e68f47d5bdadd13
http://security.debian.org/pool/updates/main/libp/libpng/libpng_1.2.27-2+lenny2.dsc
Size/MD5 checksum: 1492 8c82810267b23916b6207fa40f0b6bce
Architecture independent packages:
http://security.debian.org/pool/updates/main/libp/libpng/libpng3_1.2.27-2+lenny2_all.deb
Size/MD5 checksum: 878 8d46f725bd49014cdb4e15508baea203
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_alpha.deb
Size/MD5 checksum: 287802 470918bf3d543a1128df53d4bed78b3f
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_alpha.deb
Size/MD5 checksum: 182372 df321c1623004da3cf1daacae952e8b6
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_alpha.udeb
Size/MD5 checksum: 86746 975dccb76f777be09e8e5353704bf6bf
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_amd64.udeb
Size/MD5 checksum: 71944 3f3bdfdee4699b4b3e5c793686330036
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_amd64.deb
Size/MD5 checksum: 254598 122c139abf34eb461eca9847ec9dffe7
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_amd64.deb
Size/MD5 checksum: 167190 1c17a5378b2e6b8fa8760847510f208b
arm architecture (ARM)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_arm.deb
Size/MD5 checksum: 245788 9d3fe182d56caad3f9d8a436ca109b57
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_arm.udeb
Size/MD5 checksum: 64754 81ee041de30e2e5343d38965ab0645c1
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_arm.deb
Size/MD5 checksum: 160222 5741adc357ec8f3f09c4c8e72f02ec88
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_armel.udeb
Size/MD5 checksum: 67178 71747c7d6f7bffde46bb38055948b781
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_armel.deb
Size/MD5 checksum: 246680 bb9df968f72c62d5adceab0079c86e02
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_armel.deb
Size/MD5 checksum: 163028 60bf255a23031c9c105d3582ed2c21bd
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_hppa.deb
Size/MD5 checksum: 261298 a0bac6595474dc5778c764fab4acd9be
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_hppa.deb
Size/MD5 checksum: 170170 de217ce54775d5f648ad369f4ce7cb72
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_hppa.udeb
Size/MD5 checksum: 74124 affd4f1155bd1d571615b6c767886974
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_i386.udeb
Size/MD5 checksum: 70314 865ea6726b205467e770d56d1530fdd2
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_i386.deb
Size/MD5 checksum: 165892 cfcd37b7eee72625d13f09328bc24e23
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_i386.deb
Size/MD5 checksum: 247056 bc860a52608d966576f581c27e89a86c
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_ia64.deb
Size/MD5 checksum: 305532 d6f329a47a523353fcd527c48abb078c
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_ia64.deb
Size/MD5 checksum: 207604 78b003ade0b48d1510f436f2e5008588
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_ia64.udeb
Size/MD5 checksum: 112070 a0f1e5e8a85bcc1995faa1e031f5e16e
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_mips.udeb
Size/MD5 checksum: 68198 a68e0ba1f7a39bd9984414f4160de5bc
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_mips.deb
Size/MD5 checksum: 262138 f3580912592abe14609134cab2242728
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_mips.deb
Size/MD5 checksum: 163666 0c9f75230c396553e6062eb397d6b95c
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_mipsel.deb
Size/MD5 checksum: 163956 dfda7e322af96e8ae5104cfd9f955e92
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_mipsel.udeb
Size/MD5 checksum: 68468 9c357d2d831dca03ed0887c58a18c523
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_mipsel.deb
Size/MD5 checksum: 262162 a1d0ba1b7adb92a95180e6d65b398b5b
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_powerpc.udeb
Size/MD5 checksum: 70814 3053467f8b8864802cc7261742abfa00
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_powerpc.deb
Size/MD5 checksum: 166240 13acfd773d2a31bd555ac1936411fe95
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_powerpc.deb
Size/MD5 checksum: 253322 d4a722d84e5c2f263d72a59dea00ce17
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_s390.deb
Size/MD5 checksum: 253696 bc748b49195dcd01b5288349e3e85510
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_s390.udeb
Size/MD5 checksum: 73624 f35735be37fc376c56941795a185c742
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_s390.deb
Size/MD5 checksum: 169052 4cf962619d634ea59a39d14c32134594
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0-udeb_1.2.27-2+lenny2_sparc.udeb
Size/MD5 checksum: 66216 07bcad5c11908d2fe6d358dfc94d9051
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-dev_1.2.27-2+lenny2_sparc.deb
Size/MD5 checksum: 247212 f388365559e6b9313aa6048c6fa341f9
http://security.debian.org/pool/updates/main/libp/libpng/libpng12-0_1.2.27-2+lenny2_sparc.deb
Size/MD5 checksum: 162316 16f01a96b1fec79e9614df831dba6a05
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJJxnKQAAoJEL97/wQC1SS+7ecIAK6BKrPXLVq6hmj7dJLZWixA
4HMxumeGDUKuJBAxgQzB1jj1y4M3lnNVcVvOSfelxSO8lQLbFH1A3NGOthP1552h
sjkFurJBpDDoAQWnfG8pHvUuou7/BWis/E0Av3JCLVV9CBfPHX2QVHHK4MvU/btY
fHqm8ye00ae+CIzkpWpPpBJjsGIWOrLGVhrUGVxN/1nwu4cvBRj1Np/sCUo+3A0o
OFwc/5RGwh4HMV7E3LyarlDQTkAQ0prMepxDe1mFalz2UA0zgqIZclUvq8JX2Y1S
s0WWPLVFu+1uEBkAe4MvhoM7FH3K0NbKsfl214DVasUKFIMTR1kywh44Dho2j7g=
=mMEO
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1751-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 22, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : xulrunner
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CVE-2009-0771 CVE-2009-0772 CVE-2009-0773 CVE-2009-0774 CVE-2009-0775 CVE-2009-0776
Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications, such as the Iceweasel web
browser. The Common Vulnerabilities and Exposures project identifies
the following problems:
CVE-2009-0771
Martijn Wargers, Jesse Ruderman and Josh Soref discovered crashes
in the layout engine, which might allow the execution of arbitrary
code.
CVE-2009-0772
Jesse Ruderman discovered crashes in the layout engine, which
might allow the execution of arbitrary code.
CVE-2009-0773
Gary Kwong, and Timothee Groleau discovered crashes in the
Javascript engine, which might allow the execution of arbitrary code.
CVE-2009-0774
Gary Kwong discovered crashes in the Javascript engine, which
might allow the execution of arbitrary code.
CVE-2009-0775
It was discovered that incorrect memory management in the DOM
element handling may lead to the execution of arbitrary code.
CVE-2009-0776
Georgi Guninski discovered a violation of the same-origin policy
through RDFXMLDataSource and cross-domain redirects.
For the stable distribution (lenny), these problems have been fixed
in version 1.9.0.7-0lenny1.
As indicated in the Etch release notes, security support for the
Mozilla products in the oldstable distribution needed to be stopped
before the end of the regular Etch security maintenance life cycle.
You are strongly encouraged to upgrade to stable or switch to a still
supported browser.
For the unstable distribution (sid), these problems have been fixed in
version 1.9.0.7-1.
We recommend that you upgrade your xulrunner packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7-0lenny1.diff.gz
Size/MD5 checksum: 115363 a077fce4011900bca3eb9e29d28eb156
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7-0lenny1.dsc
Size/MD5 checksum: 1777 126e1707100d3ece9b99a02a81513b4d
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7.orig.tar.gz
Size/MD5 checksum: 43683292 f49b66c10e021debdfd9cd3705847d9b
Architecture independent packages:
http://security.debian.org/pool/updates/main/x/xulrunner/libmozillainterfaces-java_1.9.0.7-0lenny1_all.deb
Size/MD5 checksum: 1480194 620fc7b640eb5c63f49faf6d0273700f
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 164564 c0fd815c4bc62979145b677ce27b80b9
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 50856168 1cfd2129fdc1ca3a315bc2535ffff1d4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 931396 b3d0b53f040d6eca7df0aedd0be3b1c4
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 71264 3020f67741813bc7bad96ec40e4a29ba
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 9454574 983086d1b4955ad7f4005a18b88cae03
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 112468 4b09f161e1e14636b3e1c35bb90c3cb7
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 222116 9f061216f1515d1fec49bf1518514345
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 429174 cda6eafe993cba8eea7c2c5542e51d07
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_alpha.deb
Size/MD5 checksum: 3350056 68af1a8546c0c057992982e56d723183
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 3585686 9cf3e7a022eef14cd6ad4cbf045187bf
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 7725014 d2c6f63ffb8f4f7e64334922c4a6f6a7
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 222938 f5ab6707450239cf8b174f152bd6bb5c
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 884738 e40c8d2a2124f432dd563fd5a125a474
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 372702 09f6a6b6b26810e2d2d2300cea4214c2
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 100906 9740761c3310e359b835750393d9bff3
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 50089312 7bed62ba6c681f8471349067b49a21e2
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 150788 ee0af9ae8d7d0de977519ade100816de
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_amd64.deb
Size/MD5 checksum: 69536 0ff41a18d4f5882ceda600df64824986
arm architecture (ARM)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 3577066 27719e4f71eb2e5b481fa0f3d7912bce
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 66984 8c679ebba32b1384af3a5750465320c7
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 222462 f4a7d49354a748f8830294948a7b8f04
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 49032344 0c05d7175e9eb22094469fc9de6f2a98
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 348220 b0927e0140c489f5c3f4b09564133af9
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 83276 2004387ddc73135e25a67c138317d7cb
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 814128 eecb02f7ef826ad4741a713765f2440e
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 141012 7f077dcd313b0f640d1e7340ce8b774a
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_arm.deb
Size/MD5 checksum: 6786524 5fafacbb4dde702dcc1c1773bb199d50
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 142040 2c1eae7a96c613fee3732c913b43adac
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 350054 cb36bc0c50f0dffc791e427adbb2f8ff
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 6936596 927276975d4714ab8520f7cb945f1cf1
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 83708 7ed5af9fe74ffcfa9a71cc85021c3b69
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 69486 ec64732e668c780f8ccb4f78ac7f64c0
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 3566506 a33c277b7d635b7043218bb2ce05e190
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 819682 f783514a4de2459f49390e42b6d6447b
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 222460 17f2114e6163b4791f961686fe89a31d
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_armel.deb
Size/MD5 checksum: 49868760 5c75352b7ef5316a34b6e67d11e9d8e1
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 70404 4760f85c0f04f072eede4b4c993dc038
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 105120 59fcbdf19602eadde509c857c6611511
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 50962534 4e2122f350c3899f0e33c174aa65e064
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 220312 6730d3f02bd85e667578eff3ba3f7880
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 409572 6507c866cd3041722cce0e7207430267
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 9489732 ccc8bd8c33552249db59ab482b2fc85b
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 158444 02479aa20123f80bf84e733a88740a46
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 900116 f43a05fce0c6f737050f2787bc4176d1
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_hppa.deb
Size/MD5 checksum: 3612456 69480768a70e8c513056a1632d715719
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 49253286 a8efd19e7bb8008e42bcab702f49ac65
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 3560196 c8f88642731a342281e4abac8159969d
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 6584450 1adc7a600221da6e0313b5df52ac4b99
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 78424 7584ebab2c66bde81cf2de1cd2a60a65
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 347690 3d7d9e4d22c025474b02b25f01a10ce4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 222096 beaca0c2e1ed1686e5934aeee0924fd4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 847956 4441b1303937f9c7b3a4144a301e9ac3
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 67116 7d6fed955ffe93aa0d5c3c9185de6d19
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_i386.deb
Size/MD5 checksum: 140758 d0a9d5b44c672873895dfd46acdd71df
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 75374 1d9263ff70da1e02ae9349915511851e
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 3391498 3f2cd5e728ec8554791f9bef836766a4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 222110 0c00014265961c8949e23fb96d0dfc09
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 49419014 87248376eab071d07031f24688b91145
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 11270906 42ca2d74d8831d3cd1e8e19f48bc6389
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 808954 707431b1a1267703425dbace2e5c1a28
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 538408 ab19b31e20be1fa77dc349402eeed551
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 120858 ced6b90e73cf3e7cc27a92fc39e9c75a
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_ia64.deb
Size/MD5 checksum: 179372 c4a804f4971b1b3a72b4894d6233081a
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 96414 6c8171ad03a06a3bc1123c9fe2c5d08d
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 222124 c9675f735e3acb3b2a0ac7115a7fc2c5
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 68950 41e83fca37a1226743255a58a5d74c97
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 3301768 3ba5887b03da79d395279a116eae5950
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 51597006 03323bff63d234839d8379372e76a7ee
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 377204 9431e3f1eed2875724ce3a1ce4109a7a
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 914694 225f03925a4854fd44c40c963c1c7220
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 144624 5a3164adbed9b29bca8d357e34f020a9
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_mips.deb
Size/MD5 checksum: 7628860 f246218eaa05b3b68bc6e4c24508fefc
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 49718234 fd08349c08f096d10c17dcd4f6940c6c
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 896428 7e82b46f300f734a3752a74829553a01
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 222118 4bde9aa0bc7cde7cfc42c50cf2c4da9e
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 144338 1dfe2f8820685451187c3f9e5569b668
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 374968 4147d27ebd79a8aaf964e77dd37c3cf7
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 7359526 3677db2270e5af3a0db404d19b01f02e
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 96098 5e1934cd40bdc304e981e9d51c7ed2fb
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 3302942 10093ab41c2ed71435fdf06096c72574
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_mipsel.deb
Size/MD5 checksum: 68868 d59f630146380712affa185d33efa3e2
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 3278568 9d8f127a1e2f32ae90733a10aef5fb45
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 94100 02b51a465ecfde9f6f9d2805318d7b7c
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 884998 ab510619eaf290934542966cdcd581ba
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 51145988 83afaf73dda95ceb31712648e0ea4294
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 359528 cd54efa7739fa3444d0c20732bcdf1b0
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 222128 1cfc1b60f237b96ea119905285904977
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 72050 cdc63404724032b6ea9d4a502cff0c8f
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 151550 b466d593850fbacdb8234226a6dd0023
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_powerpc.deb
Size/MD5 checksum: 7259288 21a4fabd2ce581b0b34a329cf6a2ec04
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 71864 f0f904e2919c3279a99f87af3bcb3ebd
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 50926048 9b248f7c28fb69fa7ef4861d2bfc46c5
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 155472 4de500c06c47686624e0d600835081c4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 906128 e3130f9710b58ecd94989678a8de0efb
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 8371282 5ce14c488364cdbd5b8fc21f82c7ba8f
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 104890 8923ecdec8fa88f5160d5a89d0822d70
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 222110 85e754f75f041290b0f145a90b5e8b14
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 404008 2eb7ce2a970e1b80daf8b39a9544dc01
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_s390.deb
Size/MD5 checksum: 3300828 79a033d7507ad304763da2f0eace04eb
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 222126 b916ccb55d2025e57c4a5c9a0cc0e36b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 7129850 d098285d531f5b079500df87b92ae2c8
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 87528 9cef0ff7237588817ffee311cd8ee309
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 49113068 44ecb5d08a583cdc1452a51607f0d86c
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 347092 5db06002270413ee9a3a83cf6e3b7f74
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 3267612 36ebb254a0061d52d214a351fff218b2
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 142674 4a10eae4fa6ba4a1d69485cdf845cf73
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 68892 7d76094b0617f2170009171da49476aa
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny1_sparc.deb
Size/MD5 checksum: 818644 17d2ad45f42c1dc0e73f85e6da5ce138
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknGragACgkQXm3vHE4uylr1yACeNG4bha3ulx+ITo82TnipDXsD
HLcAnjnRX9lTe8rez0gMo9uKDw3ocE0V
=iAww
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1752-1 security@debian.org
http://www.debian.org/security/ Florian Weimer
March 23, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : webcit
Vulnerability : format string vulnerability
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2009-0364
Wilfried Goesgens discovered that WebCit, the web-based user interface
for the Citadel groupware system, contains a format string
vulnerability in the mini_calendar component, possibly allowing
arbitrary code execution (CVE-2009-0364).
For the stable distribution (lenny), this problem has been fixed in
version 7.37-dfsg-7.
For the unstable distribution (sid), this problem has been fixed in
version 7.38b-dfsg-2.
We recommend that you upgrade your webcit packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Source archives:
http://security.debian.org/pool/updates/main/w/webcit/webcit_7.37-dfsg.orig.tar.gz
Size/MD5 checksum: 1192317 e3e47149a6553e43694e826f4885ba46
http://security.debian.org/pool/updates/main/w/webcit/webcit_7.37-dfsg-7.diff.gz
Size/MD5 checksum: 18735 f30f31bff85ef9cc40aba5bf5f3c1278
http://security.debian.org/pool/updates/main/w/webcit/webcit_7.37-dfsg-7.dsc
Size/MD5 checksum: 1253 f2b409fdfbde0c38af85070180a4321f
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_alpha.deb
Size/MD5 checksum: 547908 84e6dfa88008d2c51070803d0af04148
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_amd64.deb
Size/MD5 checksum: 509426 4e9e9b518be1a1e87cd08d0def32f612
arm architecture (ARM)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_arm.deb
Size/MD5 checksum: 505092 a3027a329b7a17166eddafe66eff5fde
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_armel.deb
Size/MD5 checksum: 504990 d6df9145a39f0be111667d14528a0a52
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_hppa.deb
Size/MD5 checksum: 527860 f46e26bac6a926b6b7a28f9f7557077b
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_i386.deb
Size/MD5 checksum: 496954 43aac6120f334b606edddd9f9a182b44
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_ia64.deb
Size/MD5 checksum: 605578 2231aac4aaa8ef730485ea8d40c5019b
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_mips.deb
Size/MD5 checksum: 512552 cc2904da25b4ec9e70d56b63d50e57aa
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_mipsel.deb
Size/MD5 checksum: 511294 e0e4de0530cb84f0472765fb2bd6b62f
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_powerpc.deb
Size/MD5 checksum: 522134 a8b1970f336c836884eddb62c614f436
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_s390.deb
Size/MD5 checksum: 505406 621a33e619037bd739bf45451ef589eb
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/w/webcit/citadel-webcit_7.37-dfsg-7_sparc.deb
Size/MD5 checksum: 507950 1d22cf3b4f1faf910d031acb6504bfae
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iQEcBAEBAgAGBQJJx9GWAAoJEL97/wQC1SS+B5IH/0VU0lwZRnboSO0h+2UErLAR
inTlMrxrLx3csJqWsmdhur/qKTH5pmQMSFHc8SylhEQS8z8aVh/nA4PsbdJElPnc
8s+0P+jgphlEbdHo4G15vTDsoKPDwqHsh2v8vwnxBNEkOak0sUOfcnqoDn8Pc9VH
m7jOqiTa5FINCU441in0O1jAhCsyPw3pArnB1FZjTVgHS9O/BjbUXpf56esthigE
sk94wpImCGPQRul07oOR04VliagXaI+QbkZ2la3igOjO21IRuOtDHGNrL/+zlxMn
ViCTPOoGEJ6APe+/hthoERvYpS9F0Xg8yw6XnPwh1LVXT6oYRlk7bTqeKUM3jww=
=wwV7
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1753-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 24, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : iceweasel
As indicated in the Etch release notes, security support for the
Iceweasel version in the oldstable distribution (Etch) needed to be
stopped before the end of the regular security maintenance life cycle.
You are strongly encouraged to upgrade to stable or switch to a still
supported browser.
On a side note, please note that the Debian stable/Lenny version of
Iceweasel - the unbranded version of the Firefox browser - links
dynamically against the Xulrunner library. As such, most of the
vulnerabilities found in Firefox need only be fixed in the Xulrunner
package and don't require updates to the Iceweasel package any longer.
- ------------------------------------------------------------------------
Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknJTk0ACgkQXm3vHE4uyloEewCgxBSva03+zoz5H1vIKhxwXFGS
Bf8AoJQAvTeBN9KAo4v50cwEa4LgT57S
=gle/
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1745-2 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 25, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : lcms
Vulnerability : several vulnerabilities
Problem type : local (remote)
Debian-specific: no
CVE Ids : CVE-2009-0581 CVE-2009-0723 CVE-2009-0733
This update fixes a possible regression introduced in DSA-1745-1 and
also enhances the security patch. For reference the original advisory
text is below.
Several security issues have been discovered in lcms, a color management
library. The Common Vulnerabilities andi Exposures project identifies
the following problems:
CVE-2009-0581
Chris Evans discovered that lcms is affected by a memory leak, which
could result in a denial of service via specially crafted image files.
CVE-2009-0723
Chris Evans discovered that lcms is prone to several integer overflows
via specially crafted image files, which could lead to the execution of
arbitrary code.
CVE-2009-0733
Chris Evans discovered the lack of upper-gounds check on sizes leading
to a buffer overflow, which could be used to execute arbitrary code.
For the stable distribution (lenny), these problems have been fixed in
version 1.17.dfsg-1+lenny2.
For the oldstable distribution (etch), these problems have been fixed
in version 1.15-1.1+etch3.
For the testing distribution (squeeze) and the unstable distribution
(sid), these problems will be fixed soon.
We recommend that you upgrade your lcms packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15-1.1+etch3.diff.gz
Size/MD5 checksum: 5160 16d7404b4dc2f31cfe8c83336013cddd
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15-1.1+etch3.dsc
Size/MD5 checksum: 644 5fe77039701cfa261d3ef84842d0e81e
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.15.orig.tar.gz
Size/MD5 checksum: 791543 95a710dc757504f6b02677c1fab68e73
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_alpha.deb
Size/MD5 checksum: 181316 b06ba5e4b64f5199ef241bd9fe8f293c
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_alpha.deb
Size/MD5 checksum: 60246 89c087c9dd7e2d5dd2d78cbfb80c4017
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_alpha.deb
Size/MD5 checksum: 154378 9ab10ab4eae2ad103b2a7abc18e6cfc4
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_amd64.deb
Size/MD5 checksum: 149534 1c06e35f87a683ad05c0fb1503859b4b
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_amd64.deb
Size/MD5 checksum: 141016 f957d77d929d2e5ab9a4749cafab3b65
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_amd64.deb
Size/MD5 checksum: 53242 52fe759a62f8b111a65550f074c5037b
arm architecture (ARM)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_arm.deb
Size/MD5 checksum: 136610 d7c849cdf0eef3e2c0c1318a31f9e7c1
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_arm.deb
Size/MD5 checksum: 135176 501beeb4b4309ae863c8c0d46fde6b1a
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_arm.deb
Size/MD5 checksum: 51742 bc7e60d9b5ac44efdf24a0b384f0f173
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_hppa.deb
Size/MD5 checksum: 169464 312f7f7f841c09396a6c30ca76a35754
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_hppa.deb
Size/MD5 checksum: 158496 9d0fa35be0159f82709447b53df2a003
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_hppa.deb
Size/MD5 checksum: 59260 88e7279014e0482a797d54140e74e828
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_i386.deb
Size/MD5 checksum: 50258 fa63f21e62c9fc8b863b60a3b470a840
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_i386.deb
Size/MD5 checksum: 144134 58a63611f27e80b39537c28171211699
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_i386.deb
Size/MD5 checksum: 138128 4c01410bae1d6508a77708206032871d
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_ia64.deb
Size/MD5 checksum: 78588 17da81143523be8e6ea70be3c4044422
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_ia64.deb
Size/MD5 checksum: 196180 68a05087486894adae92031ed3c7d510
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_ia64.deb
Size/MD5 checksum: 205450 66244f6ebdf34dd656cf7bbbe649e110
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_mips.deb
Size/MD5 checksum: 149686 8d5cb21c8f47d5576aa8d7aa5bfc6aa8
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_mips.deb
Size/MD5 checksum: 173982 7101d5218722dc09f7c89e09b93bd9be
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_mips.deb
Size/MD5 checksum: 52094 72ec336e06cf4042648d9ddd00509f35
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_mipsel.deb
Size/MD5 checksum: 150926 c6a286b60bc31d2f48f3fb05209f0c83
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_mipsel.deb
Size/MD5 checksum: 52290 91070dc723d6e000a7b78cb3221ef280
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_mipsel.deb
Size/MD5 checksum: 175070 6f59ce0571035853680e96134062857d
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_powerpc.deb
Size/MD5 checksum: 148372 30e1c544cbe11d7b207a361d0f8fadc7
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_powerpc.deb
Size/MD5 checksum: 148342 68e7d1bd20e8a05ea8edc165e746a784
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_powerpc.deb
Size/MD5 checksum: 57778 ac6467e6d888c9e64aed8612f0ec0f16
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_s390.deb
Size/MD5 checksum: 54298 37e6c4d12f4f33b9b0e95119a27e9714
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_s390.deb
Size/MD5 checksum: 143172 a95270d1b8a7c1f282fabdf349bea783
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_s390.deb
Size/MD5 checksum: 145324 619d5b581922e40d17de03b31db02faf
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.15-1.1+etch3_sparc.deb
Size/MD5 checksum: 51562 bf67e60a217cf1157fcd0a29a8ac1907
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.15-1.1+etch3_sparc.deb
Size/MD5 checksum: 147482 cfef0937ca2d432f04bacbd1e7f8472a
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.15-1.1+etch3_sparc.deb
Size/MD5 checksum: 138088 e40a9fb196fd26caec11619fbaf60cda
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg-1+lenny2.dsc
Size/MD5 checksum: 1299 196c0beecdeffca26d4fd76bfa1f13fa
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg.orig.tar.gz
Size/MD5 checksum: 883148 efe7467bac4f10d9b354d5733489334d
http://security.debian.org/pool/updates/main/l/lcms/lcms_1.17.dfsg-1+lenny2.diff.gz
Size/MD5 checksum: 11880 df69500e72128def5994ef29c66a213a
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_alpha.deb
Size/MD5 checksum: 153634 0e6eec2a3310e2e1f700b2a05fd9130d
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_alpha.deb
Size/MD5 checksum: 66082 d78ea1ba9b77d499abfcd32762a1cb4d
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_alpha.deb
Size/MD5 checksum: 227824 daa5711586870a1c9ed8d3e522e13a5f
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_alpha.deb
Size/MD5 checksum: 117318 d9a92db2a1208ce29f0907156c0f21ec
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_amd64.deb
Size/MD5 checksum: 109436 ca441d44b110249b98976d93ee948968
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_amd64.deb
Size/MD5 checksum: 156844 eeaac6c774c317469343296904f2d8f2
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_amd64.deb
Size/MD5 checksum: 198650 cba03a4c26fbf1d306d669301375d741
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_amd64.deb
Size/MD5 checksum: 59352 5d8f067f54a1a1d1236100ec3198e07b
arm architecture (ARM)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_arm.deb
Size/MD5 checksum: 187620 69df7534d2350b0d746a4c54c822a272
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_arm.deb
Size/MD5 checksum: 100818 03391efaf6b0e8a2a557fa18fb593a96
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_arm.deb
Size/MD5 checksum: 56184 d40c2a788175ea465fddf9695ae0c74e
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_arm.deb
Size/MD5 checksum: 135840 b184dfae5d2bc6f63118183b70746792
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_armel.deb
Size/MD5 checksum: 136226 0bbf79f1a6a8be0ff7543c3cd4e42140
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_armel.deb
Size/MD5 checksum: 108536 e28f48cfbca91daa41344b019cf7d5c0
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_armel.deb
Size/MD5 checksum: 195116 6460336eb5a0445b0c03d9696fb5fcbc
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_armel.deb
Size/MD5 checksum: 60304 e851d20fb24e31bde2831f74c1fd73d8
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_hppa.deb
Size/MD5 checksum: 217310 640dccdf2c7840500c4d4df9f53d1764
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_hppa.deb
Size/MD5 checksum: 181886 dff1392a724aec6efe449767176dfd48
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_hppa.deb
Size/MD5 checksum: 63650 6108c4ddbb4d2b168fb9579e263d89ec
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_hppa.deb
Size/MD5 checksum: 120824 fa7b2afd7746de92c8dbbf777a63be00
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_i386.deb
Size/MD5 checksum: 149512 a52ab7fa8e0e8b7876770443f7b33d26
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_i386.deb
Size/MD5 checksum: 191776 67f020fc2fee74112c13c67b62bd33ac
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_i386.deb
Size/MD5 checksum: 55334 d67ca2db867df6f180f370ea71352ba9
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_i386.deb
Size/MD5 checksum: 102528 fce72bbf31189287d737104df10fb860
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_ia64.deb
Size/MD5 checksum: 85106 bdb601f8e0628a183552ca9662395003
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_ia64.deb
Size/MD5 checksum: 261388 1f4587b160e1417f7862062607aa9428
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_ia64.deb
Size/MD5 checksum: 168410 32803bd752ab02745c1f5421d77e76e4
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_ia64.deb
Size/MD5 checksum: 184744 c1fc1cfab42a15f14069c7b4291b58d5
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_mips.deb
Size/MD5 checksum: 113914 720820898fadfe0f5c9577b94d7d596d
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_mips.deb
Size/MD5 checksum: 133806 7c5158967ab58f8361c728470a8cf3ca
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_mips.deb
Size/MD5 checksum: 57094 0c5f8a8e4b11636ee422e67a400d276a
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_mips.deb
Size/MD5 checksum: 221442 cf73eb40bf7fca081eb72164cbad007b
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_mipsel.deb
Size/MD5 checksum: 116858 5cc0672b4e6631a065822c4dbef8f6dd
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_mipsel.deb
Size/MD5 checksum: 57180 e788b1715e993fd87bd450c05c8a4edb
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_mipsel.deb
Size/MD5 checksum: 224906 9af1ae4fd0719c03af6bcd20c06fe8b1
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_mipsel.deb
Size/MD5 checksum: 130228 d0ab9d0595147cc05012d6d85c649c16
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_powerpc.deb
Size/MD5 checksum: 197118 e968b8dc68cade76a972984ee7be6a42
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_powerpc.deb
Size/MD5 checksum: 115862 6c63f6f6e720988973299bb7aaf16be1
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_powerpc.deb
Size/MD5 checksum: 70946 87bf7ecd279df9b7a4378ad2aa0568b9
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_powerpc.deb
Size/MD5 checksum: 163524 888ccce8725b23b03e19ff03cd7c1dba
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_s390.deb
Size/MD5 checksum: 61034 91931f080c60c2bed98b07c93a1d815c
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_s390.deb
Size/MD5 checksum: 137822 57fe47c765d8dd2bd68282180786a22a
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_s390.deb
Size/MD5 checksum: 109236 12d604eb4030d11e5396cab3ad2be461
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_s390.deb
Size/MD5 checksum: 191326 ab66b338cb32e84f441c45d07e44c744
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/l/lcms/liblcms-utils_1.17.dfsg-1+lenny2_sparc.deb
Size/MD5 checksum: 58624 973b4ab50eaf18dbb55648a3b49e982c
http://security.debian.org/pool/updates/main/l/lcms/python-liblcms_1.17.dfsg-1+lenny2_sparc.deb
Size/MD5 checksum: 156994 d5a82f96ef78ee2739e35548c1d89953
http://security.debian.org/pool/updates/main/l/lcms/liblcms1_1.17.dfsg-1+lenny2_sparc.deb
Size/MD5 checksum: 102080 5aa8adf1027ae2a771f538b0630bcc77
http://security.debian.org/pool/updates/main/l/lcms/liblcms1-dev_1.17.dfsg-1+lenny2_sparc.deb
Size/MD5 checksum: 195704 5040b60f738977f0686ab32e1b705bcc
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknKFP4ACgkQ62zWxYk/rQdg0gCeNPzrr/e/sg+UdyIwtEPTanhl
sS0Ani3D50rMKSZXBNaZIg5GygAk8Lio
=F3JP
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1755-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 25, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : systemtap
Vulnerability : race condition
Problem type : local
Debian-specific: no
CVE Id(s) : CVE-2009-0784
Erik Sjoelund discovered that a race condition in the stap tool shipped
by Systemtap, an instrumentation system for Linux 2.6, allows local
privilege escalation for members of the stapusr group.
The old stable distribution (etch) isn't affected.
For the stable distribution (lenny), this problem has been fixed in
version 0.0.20080705-1+lenny1.
For the unstable distribution (sid), this problem has been fixed in
version 0.0.20090314-2.
We recommend that you upgrade your systemtap package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705.orig.tar.gz
Size/MD5 checksum: 880805 8f14c7b79561392e7ec91187ed09f3be
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1.diff.gz
Size/MD5 checksum: 12603 b08a9943746e474ed2aa6ed4bc9fc438
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1.dsc
Size/MD5 checksum: 1420 bfbaeb5d86bfd6876a04e562dc8c69ec
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_amd64.deb
Size/MD5 checksum: 1250966 d8368769f30ecaa915839a1fc937899d
arm architecture (ARM)
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_arm.deb
Size/MD5 checksum: 1309852 7e006ca8bfa2bd36484bd25dda6dcb4c
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_i386.deb
Size/MD5 checksum: 1249882 ed02a4eb92c671f18702b69df5ade6d5
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_ia64.deb
Size/MD5 checksum: 1441448 7da28afa66b41d81322cf5614cb9af93
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_powerpc.deb
Size/MD5 checksum: 1269934 3016e60eb5dbab1b617bf088d807489c
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/s/systemtap/systemtap_0.0.20080705-1+lenny1_s390.deb
Size/MD5 checksum: 1227546 9edb1baaa6a126a405674be0a9dcf12c
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknKnv4ACgkQXm3vHE4uylrGJwCg0zjilkzsim8hlQlZbA66IYPM
o5wAoJh9K6qOLsHRa4CqwJ2eRiK40lkb
=UMKo
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1756-1 security@debian.org
http://www.debian.org/security/ Noah Meyerhans
March 29, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : xulrunner
Vulnerability : multiple
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2009-1169 CVE-2009-1044
Several remote vulnerabilities have been discovered in Xulrunner, a
runtime environment for XUL applications, such as the Iceweasel web
browser. The Common Vulnerabilities and Exposures project identifies
the following problems:
CVE-2009-1169
Security researcher Guido Landi discovered that a XSL stylesheet could
be used to crash the browser during a XSL transformation. An attacker
could potentially use this crash to run arbitrary code on a victim's
computer.
CVE-2009-1044
Security researcher Nils reported via TippingPoint's Zero Day Initiative
that the XUL tree method _moveToEdgeShift was in some cases triggering
garbage collection routines on objects which were still in use. In such
cases, the browser would crash when attempting to access a previously
destroyed object and this crash could be used by an attacker to run
arbitrary code on a victim's computer.
Note that after installing these updates, you will need to restart any
packages using xulrunner, typically iceweasel or epiphany.
For the stable distribution (lenny), these problems have been fixed in version
1.9.0.7-0lenny2.
As indicated in the Etch release notes, security support for the
Mozilla products in the oldstable distribution needed to be stopped
before the end of the regular Etch security maintenance life cycle.
You are strongly encouraged to upgrade to stable or switch to a still
supported browser.
For the unstable distribution (sid), these problems have been fixed in
version 1.9.0.8-1
We recommend that you upgrade your xulrunner package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7-0lenny2.dsc
Size/MD5 checksum: 1777 be107e8cce28d09395d6c2b0e2880e0b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7.orig.tar.gz
Size/MD5 checksum: 43683292 f49b66c10e021debdfd9cd3705847d9b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner_1.9.0.7-0lenny2.diff.gz
Size/MD5 checksum: 115665 4886b961a24c13d9017e8f261b7a4ad4
Architecture independent packages:
http://security.debian.org/pool/updates/main/x/xulrunner/libmozillainterfaces-java_1.9.0.7-0lenny2_all.deb
Size/MD5 checksum: 1480030 c12b4d6d534c0f12ec8e19760ca52a9b
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 69048 cbcfc3f9addacdd2a6641980876910f1
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 7725982 c5075bc0634cb5b2cfc8b64649f9511e
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 3587626 1ce3de601c764c9bfb0c3998566f2baa
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 887434 d373f8ed294bc6184a188bc820e04d6b
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 220394 8ac87390e12115281d335b8773fb5733
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 152152 76761d21f53d017af1ff349e528664ea
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 372048 ba88e43241ab33621169f2e352bdf634
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 50084206 d44a3028e5049f2b8051a5f6ed632fe6
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_amd64.deb
Size/MD5 checksum: 100434 d20e7c595e15ca0831d62d13d19c9d25
arm architecture (ARM)
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 814182 2fe30b4c614a8dad20d6daa5e8156193
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 83324 b2b5e1e0850ceb17bf60471435a751f8
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 6786494 017302b5a56bdd55d3d1ffe18bd61832
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 49032638 2343b97ac1a895a00c65d7c7d4854bf3
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 67078 5891e17e7a7abe4b9b3ff3b06d1c5bf8
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 348306 7cacc5c36e3139afa7e93cce23e55bdc
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 141074 ddfcdb101f24b626caede43f36667ebb
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 222552 099c35e0a9fc845e12d97e05dc5cefbe
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_arm.deb
Size/MD5 checksum: 3577622 a45883aa5a860e9ceaccd1507b1e2b4d
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 106132 b21e7b60ef507b75d4e75cecf01507b4
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 409632 8ad83b2450a8224287708d08fb0e3349
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 222406 cc644de6ffb2987c4d3290760d851c3f
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 50959494 30e6201361ab450cce9c1ae5767b7d00
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 900224 98b504ea16f93598810cff8dd753c7cc
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 3625060 bb06476c2dfef959c573a67f910f500a
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 71008 d61063712c37cfde51b3944f1dbd311f
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 157864 c9b9587d5b0582b35a1ccff76445f13f
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_hppa.deb
Size/MD5 checksum: 9487824 ebcb840996d1d69d6836e6d1aec2f81d
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 6581370 480961b3e126e36c1d4087df2c2fb6d9
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 141498 729642753ad2a51d17983b3583f740b6
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 3572938 f0bf3224b2c681417ba6dd8dcac5f96d
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 846308 06e3b0690f2f3a868375f4d58a7b8614
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 348812 acc2f219abb68286432720315861ed53
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 82002 77b4ffe73322bf5ead4bc24ee3fc76d2
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 222556 85fee1ce9133cb7ab9ce99f62b70e447
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 67810 0eb6b02984351fa3bf02640d7ff1d4e6
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_i386.deb
Size/MD5 checksum: 49248242 64fb21f6c3a2411743222fc26e304b76
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 49419026 7cb040fbbef113cd5c8a1c5c443df6fd
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 179458 82249a7cb150fce22af5f5681d3164fe
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 11270206 be3c0b80f22210fa2a53236cbde9ceb9
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 538492 e75c766e0666c1604805f8c4c97cc256
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 75446 94f2c55150101f7a5811c9429364bd1b
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 222198 62ba8960b8326d21523dc7c76cc1f9d8
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 808982 3038817adea449b7715164cad73a5f16
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 3391518 26decf00e4fb05e3dbfc61c9dd933f5b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_ia64.deb
Size/MD5 checksum: 120932 e3af6d0b86f8d21a9fbb43986a5c79b3
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 914808 749779b5620ceffb2845ac170699a866
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 221900 63c93f91cf4ee34e307bd06c5675c460
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 377372 1c527a4b63e3eb729124f54764261310
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 51596012 c6b8d6fed635039a75e553a59164b0de
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 7652050 4464324acfeaf2019722f4bddc980a64
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 144160 3217dab8582a83c2e8db5ed0a2894c9a
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 69328 7d17be8a925e42469ce3d46009eb0437
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 3607854 683f1204c14aa14f72927e2babf2afc2
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_mips.deb
Size/MD5 checksum: 96506 95148e457d3a554935ae2771553378d8
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 896502 7293da4f42af7c5faadaff3d00e024ad
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 222202 8ab7c65e1b6e67481b885951bf7b06ee
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 96170 02b28ff5c4af5b3c5ab241e6ada57895
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 144424 34f4f9236099f217f309dd3404cd32fc
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 375064 c324513cb22e6bf942308fec5d6ffc44
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 3303026 c9f09e3ac15cea9522e16d7606832417
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 7359744 20955f26918492c6060f5196608cecca
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 68948 e564d5ad298fa7f2eb43c3d142421b23
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_mipsel.deb
Size/MD5 checksum: 49718170 f305c87d9f9f0a4bb25c782fbca0e553
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 51145940 d4450ede3188d085537b34912a130fc8
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 222214 a193661cfee9a9baf937e51fa8927852
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 7259520 7a5a2eb42cf43a3859c886f6604e7bb0
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 94176 0f27b080d4ef6e907e97926d9bde09d8
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 151634 eb3b55bb033dd21e3a395b5455fed3a3
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 72114 856bcc9a079008a00f502c037f7e075b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 3278706 141fbb356a9b0ee7ddee52b32b250021
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 359602 e678dd18f6fac0aad286a5d455e6d84f
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_powerpc.deb
Size/MD5 checksum: 885062 6682354b8d0e8f25e6897bcfee801579
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 50926930 5066e277c6bb2f1435cd92ba4c09dc8f
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 222190 c62253da00b92ab339f524ef6d525767
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 404064 4f0c71caf3242ca9f1878ac6df71b414
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 104972 ecefd67cf04623d0bd9deb66645ece52
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 155536 33869ff68336fde0594bb45661f85c03
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 3300930 9cf7bde0ab1e0c507566a88fd2a6562f
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 906248 a03086436351f5085905acd1d4084f40
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 8371150 b731e930186033123c928eeb52c186ba
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_s390.deb
Size/MD5 checksum: 71936 426ddd3166525fdf235448bddcba413b
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/x/xulrunner/spidermonkey-bin_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 68258 8c14ad467b7a590f0262ad0636b7a90b
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-gnome-support_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 87020 d7241f5f6ae1a92e9bfe819955c42b88
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-dev_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 3571244 a50b84de8fe3f268e33882b5b325945d
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d-dbg_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 817342 554bd07b8f90071d36ac57c01c24b6a9
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs-dev_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 220812 1edcd284a1520e8fdfdf68f015dd2211
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 7152698 d33c5b929d5d98a02f0ce021b5bb1531
http://security.debian.org/pool/updates/main/x/xulrunner/libmozjs1d_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 346378 e617288c62da4165ed5230adbc9d7890
http://security.debian.org/pool/updates/main/x/xulrunner/python-xpcom_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 141340 606be0ab05095515bbb3070d7543e1ca
http://security.debian.org/pool/updates/main/x/xulrunner/xulrunner-1.9-dbg_1.9.0.7-0lenny2_sparc.deb
Size/MD5 checksum: 49112986 1c799dc5e9059379adadf2380bf5d0e2
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iD8DBQFJz7e0YrVLjBFATsMRAqErAJ9G+BuPEzepVX1SyrbSfGFG+k9yOACfZzE6
CR8tiMWR7RD51xVEfCsbY/I=
=Ax89
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1757-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 30, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : auth2db
Vulnerability : SQL injection
Problem type : remote
Debian-specific: no
CVE Id : no CVE id yet
Debian Bug : 521823
It was discovered that auth2db, an IDS logger, log viewer and alert
generator, is prone to an SQL injection vulnerability, when used with
multibyte character encodings.
For the stable distribution (lenny), this problem has been fixed in
version 0.2.5-2+dfsg-1+lenny1.
The oldstable distribution (etch) doesn't contain auth2db.
For the testing distribution (squeeze), this problem will be fixed soon.
For the unstable distribution (sid), this problem has been fixed in
version 0.2.5-2+dfsg-1.1.
We recommend that you upgrade your auth2db packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Source archives:
http://security.debian.org/pool/updates/main/a/auth2db/auth2db_0.2.5-2+dfsg-1+lenny1.dsc
Size/MD5 checksum: 1124 6a583f694b1d8925e134c09aa093bbe2
http://security.debian.org/pool/updates/main/a/auth2db/auth2db_0.2.5-2+dfsg.orig.tar.gz
Size/MD5 checksum: 1648457 30187f48d223c6eb43a4c4a050a210bf
http://security.debian.org/pool/updates/main/a/auth2db/auth2db_0.2.5-2+dfsg-1+lenny1.diff.gz
Size/MD5 checksum: 660051 22884e0a64958362dd10fb9d95cc605c
Architecture independent packages:
http://security.debian.org/pool/updates/main/a/auth2db/auth2db_0.2.5-2+dfsg-1+lenny1_all.deb
Size/MD5 checksum: 29286 92513e873ad82b08553b96185d3619ea
http://security.debian.org/pool/updates/main/a/auth2db/auth2db-filters_0.2.5-2+dfsg-1+lenny1_all.deb
Size/MD5 checksum: 13970 897b87dfe350e656c05a944e7d2b1fc9
http://security.debian.org/pool/updates/main/a/auth2db/auth2db-common_0.2.5-2+dfsg-1+lenny1_all.deb
Size/MD5 checksum: 648700 7421594af2889badd95f52fc11e600aa
http://security.debian.org/pool/updates/main/a/auth2db/auth2db-frontend_0.2.5-2+dfsg-1+lenny1_all.deb
Size/MD5 checksum: 566262 7753eb86bcb06358042702547008110e
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknQmVIACgkQ62zWxYk/rQfMxwCgrfOSyNYmcqWPSWllt6aS6ylj
f8MAn2qv88TKwVjinJF/yOCPVqP9JfTO
=bs+/
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1758-1 security@debian.org
http://www.debian.org/security/ Moritz Muehlenhoff
March 30, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : nss-ldapd
Vulnerability : insecure config file creation
Problem-Type : local
Debian-specific: yes
CVE ID : CVE-2009-1073
Debian Bug : 520476
Leigh James that discovered that nss-ldapd, an NSS module for using
LDAP as a naming service, by default creates the configuration file
/etc/nss-ldapd.conf world-readable which could leak the configured
LDAP password if one is used for connecting to the LDAP server.
The old stable distribution (etch) doesn't contain nss-ldapd.
For the stable distribution (lenny) this problem has been fixed in
version 0.6.7.1.
For the unstable distribution (sid) this problem has been fixed in
version 0.6.8.
We recommend that you upgrade your nss-ldapd package.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/n/nss-ldapd/nss-ldapd_0.6.7.1.dsc
Size/MD5 checksum: 996 31232235dc6d5e0abb448e56f5f6f8ad
http://security.debian.org/pool/updates/main/n/nss-ldapd/nss-ldapd_0.6.7.1.tar.gz
Size/MD5 checksum: 373338 4cf1160a9626c51ee584f5b66ae1d33a
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_alpha.deb
Size/MD5 checksum: 115612 13d15bd8992624a7c41dfdac3c307202
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_amd64.deb
Size/MD5 checksum: 116262 f994f9e688ce6b97a9dfa4df31fa8fd6
arm architecture (ARM)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_arm.deb
Size/MD5 checksum: 109704 d525a237c689e726bd4d5923d976c936
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_armel.deb
Size/MD5 checksum: 110092 aae74517ffb749d86835d9562cb08c6c
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_hppa.deb
Size/MD5 checksum: 115350 08874099547bab40079ecaf89230f478
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_i386.deb
Size/MD5 checksum: 109212 d8245739c6796420c11ed945f9300cfe
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_ia64.deb
Size/MD5 checksum: 135638 e3e749ec11135fe721a2ee92e2468ae4
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_mips.deb
Size/MD5 checksum: 110722 a06cf2942f801c1f9703e72ec0f8c7d5
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_mipsel.deb
Size/MD5 checksum: 109942 dbd6bfe96097c33d55f1913e412e4768
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_powerpc.deb
Size/MD5 checksum: 117700 25c2aaf21ef3e61c278b2f6349153429
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_s390.deb
Size/MD5 checksum: 112830 3e95bd1c614983aafa36a81da5a599b4
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/n/nss-ldapd/libnss-ldapd_0.6.7.1_sparc.deb
Size/MD5 checksum: 107640 60c23c4f57accb6977019ba18eef3f06
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknRPW0ACgkQXm3vHE4uylrABQCfSut3rSYwx135GnSG/Z/B8GmJ
gwYAni9iHmz9N8F5zWmEBTIivjcwuu35
=xzjE
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1759-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 30, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : strongswan
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE Id : CVE-2009-0790
Gerd v. Egidy discovered that the Pluto IKE daemon in strongswan, an
IPSec implementation for linux, is prone to a denial of service attack
via a malicious packet.
For the stable distribution (lenny), this problem has been fixed in
version 4.2.4-5+lenny1.
For the oldstable distribution (etch), this problem has been fixed in
version 2.8.0+dfsg-1+etch1.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.
We recommend that you upgrade your strongswan packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1.dsc
Size/MD5 checksum: 811 15760a0423c8cf0829c0f71d5424ab27
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg.orig.tar.gz
Size/MD5 checksum: 3155518 8b9ac905b9bcd41fb826e3d67e90a33d
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1.diff.gz
Size/MD5 checksum: 57545 276bae2bae3230bcef527b44f3b9fb99
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_alpha.deb
Size/MD5 checksum: 1197696 7fc7c6438f1c2739373c193784934461
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_amd64.deb
Size/MD5 checksum: 1100438 4004ce8cfc2b2de41712a4d73a520de2
arm architecture (ARM)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_arm.deb
Size/MD5 checksum: 1070794 dc1e10007ea82d547591052d032e0216
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_hppa.deb
Size/MD5 checksum: 1136062 9f5996ea05d930e0a7a361336263be58
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_i386.deb
Size/MD5 checksum: 1051780 25b41b38e8698a6f61b3f4f523ca52c7
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_ia64.deb
Size/MD5 checksum: 1454480 19818a3ec7756710ea1abfdbd9ebadcc
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_mips.deb
Size/MD5 checksum: 1124636 be7189aac59d98fbec7a9bf9a5f7b74d
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_mipsel.deb
Size/MD5 checksum: 1130402 25bdc2ca2651db73a88f079902a35f43
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_powerpc.deb
Size/MD5 checksum: 1097994 e1eb29c9c4dd776259178308a6b40a04
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_s390.deb
Size/MD5 checksum: 1084268 90b6459bb59a264eaf1aa2b26ed82acd
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_2.8.0+dfsg-1+etch1_sparc.deb
Size/MD5 checksum: 1024106 9ad2a093d9efad364a0eb80a0f20057f
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1.dsc
Size/MD5 checksum: 1310 c6dc3521aee080f275ea0f65ded35bca
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1.diff.gz
Size/MD5 checksum: 57299 b6d1af4a7144d5289400f35dcd18eb5e
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4.orig.tar.gz
Size/MD5 checksum: 3295212 92ddfaedd6698bc6640927def271d476
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_alpha.deb
Size/MD5 checksum: 1301122 7c83dcbdcdb177e9bc83361d4c064f6d
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_amd64.deb
Size/MD5 checksum: 1178112 875f877f564c88b885ebf68be2478f0c
arm architecture (ARM)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_arm.deb
Size/MD5 checksum: 1034248 3c20d44508cc5255c3e6ad74cf9cac9c
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_armel.deb
Size/MD5 checksum: 1034868 457ca8749ced0c177c5825ca953423e7
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_hppa.deb
Size/MD5 checksum: 1214270 353bde7aacb7e5a875ba8d715da70caa
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_i386.deb
Size/MD5 checksum: 1099806 02a117d38e15ecf3e0b2667985b7710e
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_ia64.deb
Size/MD5 checksum: 1615308 d0f1ed5581a772eecf3801a45d57ab95
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_mips.deb
Size/MD5 checksum: 1158540 656a66202077e4f55d24433af6ab3ce5
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_mipsel.deb
Size/MD5 checksum: 1157848 614cad1bdd081160a3fe74e3d1e4e902
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_powerpc.deb
Size/MD5 checksum: 1228470 6dbb9fa6379444c2f0cebba7fc417027
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_s390.deb
Size/MD5 checksum: 1258802 d92712a84cbb2d2c181546927d4f9f36
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/s/strongswan/strongswan_4.2.4-5+lenny1_sparc.deb
Size/MD5 checksum: 1142494 cd69f7750be1e6cc0e83003e74480bde
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknRWVUACgkQ62zWxYk/rQcthACguH1lywBH1O1XrntR2Vocpnh2
yhwAn36Y2AGH1gdtwYxXMggU37a35Izc
=WEU7
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------
Debian Security Advisory DSA-1760-1 security@debian.org
http://www.debian.org/security/ Steffen Joeris
March 30, 2009 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : openswan
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE Id : CVE-2008-4190 CVE-2009-0790
Debian Bug : 496374
Two vulnerabilities have been discovered in openswan, an IPSec
implementation for linux. The Common Vulnerabilities and Exposures
project identifies the following problems:
CVE-2008-4190
Dmitry E. Oboukhov discovered that the livetest tool is using temporary
files insecurely, which could lead to a denial of service attack.
CVE-2009-0790
Gerd v. Egidy discovered that the Pluto IKE daemon in openswan is prone
to a denial of service attack via a malicious packet.
For the stable distribution (lenny), this problem has been fixed in
version 2.4.12+dfsg-1.3+lenny1.
For the oldstable distribution (etch), this problem has been fixed in
version 2.4.6+dfsg.2-1.1+etch1.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem will be fixed soon.
We recommend that you upgrade your openswan packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 4.0 alias etch
- -------------------------------
Debian (oldstable)
- ------------------
Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1.diff.gz
Size/MD5 checksum: 92351 d43193ea57c9ba646aa9a2ae479c65dd
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2.orig.tar.gz
Size/MD5 checksum: 3555236 e5ef22979f8a67038f445746fdc7ff38
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1.dsc
Size/MD5 checksum: 887 0bb9a0b8fda2229aed2ea1e7755259db
Architecture independent packages:
http://security.debian.org/pool/updates/main/o/openswan/linux-patch-openswan_2.4.6+dfsg.2-1.1+etch1_all.deb
Size/MD5 checksum: 598920 7f24c626025d0725409fc5f282834859
http://security.debian.org/pool/updates/main/o/openswan/openswan-modules-source_2.4.6+dfsg.2-1.1+etch1_all.deb
Size/MD5 checksum: 525862 69a5d63858abbde46369f1178715bb23
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_alpha.deb
Size/MD5 checksum: 1742492 a6a7ab937c9a172c74e19bf85ed5af15
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_amd64.deb
Size/MD5 checksum: 1744812 6c1cd62d31174fce3dae9b8393594c73
arm architecture (ARM)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_arm.deb
Size/MD5 checksum: 1719132 30678772efa350b67ba19b7eb5ebc4c2
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_hppa.deb
Size/MD5 checksum: 1758480 cc2108239ed20143d7dc8ead6c6cb6c0
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_i386.deb
Size/MD5 checksum: 1712448 07a390d204baaf83a5fb4cb6745a786a
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_ia64.deb
Size/MD5 checksum: 1930720 1c95baf380d131f78767af55841566ab
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_mips.deb
Size/MD5 checksum: 1692214 90f1710f68414a17fb4d29168746bbed
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_mipsel.deb
Size/MD5 checksum: 1697294 ce452a37b284bd1c49925482c4be6554
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_powerpc.deb
Size/MD5 checksum: 1667818 786f2533b336ced17cb15b988586c224
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_s390.deb
Size/MD5 checksum: 1671506 d8981c0fd7db865ae7a2172b7d6a4ffa
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.6+dfsg.2-1.1+etch1_sparc.deb
Size/MD5 checksum: 1622248 f6cd4abafd3ddfdcc50ad4a346bde5cf
Debian GNU/Linux 5.0 alias lenny
- --------------------------------
Debian (stable)
- ---------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1.dsc
Size/MD5 checksum: 1315 df7cd3ea125815e36b74b98857b3d5be
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg.orig.tar.gz
Size/MD5 checksum: 3765276 f753413e9c705dee9a23ab8db6c26ee4
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1.diff.gz
Size/MD5 checksum: 127288 eaed626706af274b44a51210f8eb9d13
Architecture independent packages:
http://security.debian.org/pool/updates/main/o/openswan/openswan-modules-source_2.4.12+dfsg-1.3+lenny1_all.deb
Size/MD5 checksum: 544388 a26397193d910b2b469fba692760e4a2
http://security.debian.org/pool/updates/main/o/openswan/linux-patch-openswan_2.4.12+dfsg-1.3+lenny1_all.deb
Size/MD5 checksum: 609908 dbbd73cc5402dc1b3e1ae205546f4d9f
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_alpha.deb
Size/MD5 checksum: 1754216 1b179d83df0d9efa17f6987e9c9501d8
amd64 architecture (AMD x86_64 (AMD64))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_amd64.deb
Size/MD5 checksum: 1772492 f330caae76805540227bf51974dbd6c6
arm architecture (ARM)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_arm.deb
Size/MD5 checksum: 1756426 ca71fca809dd7268ae73365bfe13fd12
armel architecture (ARM EABI)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_armel.deb
Size/MD5 checksum: 1736800 0d22e152defbd8f1c71831ac407ae34a
hppa architecture (HP PA RISC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_hppa.deb
Size/MD5 checksum: 1775916 a9fc238495fe9c5c7f770d08e677639b
i386 architecture (Intel ia32)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_i386.deb
Size/MD5 checksum: 1730858 3187b4ea1c4b4827e2016abb8ff44eae
ia64 architecture (Intel ia64)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_ia64.deb
Size/MD5 checksum: 1964194 6fbf238ebc2e1294349985fb42ccab28
mips architecture (MIPS (Big Endian))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_mips.deb
Size/MD5 checksum: 1703004 61a50f377061161973b841833752aafb
mipsel architecture (MIPS (Little Endian))
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_mipsel.deb
Size/MD5 checksum: 1709240 a0f724d83f9435684af2aec5a2386545
powerpc architecture (PowerPC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_powerpc.deb
Size/MD5 checksum: 1710422 41aab00fccc6b17ae3d6a9a4aaccd729
s390 architecture (IBM S/390)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_s390.deb
Size/MD5 checksum: 1694918 31692764017d63e6a86f595ed9366e15
sparc architecture (Sun SPARC/UltraSPARC)
http://security.debian.org/pool/updates/main/o/openswan/openswan_2.4.12+dfsg-1.3+lenny1_sparc.deb
Size/MD5 checksum: 1649130 681f2aa23b6d79c5ecf0e2dec3ffbd7f
These files will probably be moved into the stable distribution on
its next update.
- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknRWVgACgkQ62zWxYk/rQdM1ACgid0sGfS1kqadJoHaEW7L0pxI
Wh0An1+M7370NzQhtKcdCemYnVYfBjLK
=CeJG
-----END PGP SIGNATURE-----
--- End Message ---