[Security Announce] [ MDKSA-2007:009 ] - Updated kdenetwork packages fix ksirc vulnerability
Posted on: 01/11/2007 07:15 AM

The Mandriva Security Team published a new security update for Mandriva Linux. Here the announcement:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2007:009
http://www.mandriva.com/security/
_______________________________________________________________________

Package : kdenetwork
Date : January 10, 2007
Affected: 2007.0, Corporate 3.0
_______________________________________________________________________

Problem Description:

KsIRC 1.3.12 allows remote attackers to cause a denial of service
(crash) via a long PRIVMSG string when connecting to an Internet Relay
Chat (IRC) server, which causes an assertion failure and results in a
NULL pointer dereference.

Updated packages are patched to address this issue.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6811
_______________________________________________________________________

Updated Packages:

Mandriva Linux 2007.0:
7f3f82bbe90b3fe4fb1db1e62d448342 2007.0/i586/kdenetwork-3.5.4-3.1mdv2007.0.i586.rpm
a24b61412393e54ffa834fb0f7228bb0 2007.0/i586/kdenetwork-common-3.5.4-3.1mdv2007.0.i586.rpm
a9e9706c52fc7ffad69d68f17d480c93 2007.0/i586/kdenetwork-kdict-3.5.4-3.1mdv2007.0.i586.rpm
038a946d098120ec464093c018a535be 2007.0/i586/kdenetwork-kget-3.5.4-3.1mdv2007.0.i586.rpm
9abf1217cc4e7a19feb4211c9adc4d8f 2007.0/i586/kdenetwork-knewsticker-3.5.4-3.1mdv2007.0.i586.rpm
7988391701d28b9b47d9e34c109d2e7f 2007.0/i586/kdenetwork-kopete-3.5.4-3.1mdv2007.0.i586.rpm
c2683bb8bc23ea7a5be134d20059da40 2007.0/i586/kdenetwork-kopete-latex-3.5.4-3.1mdv2007.0.i586.rpm
0a7e15b7be8ad813328f62b9db9fdd7b 2007.0/i586/kdenetwork-kppp-3.5.4-3.1mdv2007.0.i586.rpm
fd36dd53185c6326c97dcc6e85a09397 2007.0/i586/kdenetwork-kppp-provider-3.5.4-3.1mdv2007.0.i586.rpm
bbba60fea543c855b7540185145ea8f1 2007.0/i586/kdenetwork-krfb-3.5.4-3.1mdv2007.0.i586.rpm
24591ca5b36e657aedffdc644678a8c7 2007.0/i586/kdenetwork-ksirc-3.5.4-3.1mdv2007.0.i586.rpm
2895203c537399bb3ee7f9868c5ad024 2007.0/i586/kdenetwork-ktalk-3.5.4-3.1mdv2007.0.i586.rpm
0158c98fc7f25df7d6e12ba759236d72 2007.0/i586/kdenetwork-kwifimanager-3.5.4-3.1mdv2007.0.i586.rpm
85688e975c778f26c84ebfc22c640c7c 2007.0/i586/libkdenetwork2-common-3.5.4-3.1mdv2007.0.i586.rpm
000d1f86c7658324a58132fd588bf055 2007.0/i586/libkdenetwork2-common-devel-3.5.4-3.1mdv2007.0.i586.rpm
5636d5c8bf66afd28460dec93563004d 2007.0/i586/libkdenetwork2-kdict-3.5.4-3.1mdv2007.0.i586.rpm
fff59263f5945cc71fdefc0b0879143a 2007.0/i586/libkdenetwork2-knewsticker-3.5.4-3.1mdv2007.0.i586.rpm
d859274c7c51a9fd821690bf17b0e816 2007.0/i586/libkdenetwork2-kopete-3.5.4-3.1mdv2007.0.i586.rpm
02298980e316a6627fa404933426b610 2007.0/i586/libkdenetwork2-kopete-devel-3.5.4-3.1mdv2007.0.i586.rpm
299681211b9317a35ba4d5fd0e40b6ff 2007.0/i586/libkdenetwork2-ksirc-3.5.4-3.1mdv2007.0.i586.rpm
9a1312e18d832dfea70faf1f97747576 2007.0/i586/libkdenetwork2-kwifimanager-3.5.4-3.1mdv2007.0.i586.rpm
ffe3144d4662031cd5f3d1cebc4b6636 2007.0/i586/lisa-3.5.4-3.1mdv2007.0.i586.rpm
ce0d751431b70c32a86c97daab89bb56 2007.0/SRPMS/kdenetwork-3.5.4-3.1mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
9337067791cbe99cae2dcffde551a7f4 2007.0/x86_64/kdenetwork-3.5.4-3.1mdv2007.0.x86_64.rpm
5cd5dbd65e18c12436a6825b15025fc5 2007.0/x86_64/kdenetwork-common-3.5.4-3.1mdv2007.0.x86_64.rpm
c9b5240fa211a4a3fc14de6e12119521 2007.0/x86_64/kdenetwork-kdict-3.5.4-3.1mdv2007.0.x86_64.rpm
56b5407a0e659142c99f53790f7b48ce 2007.0/x86_64/kdenetwork-kget-3.5.4-3.1mdv2007.0.x86_64.rpm
96ed68da0e009bcab8334457d79c1ec2 2007.0/x86_64/kdenetwork-knewsticker-3.5.4-3.1mdv2007.0.x86_64.rpm
31d5af02aea380155e0c26e92f63cb3a 2007.0/x86_64/kdenetwork-kopete-3.5.4-3.1mdv2007.0.x86_64.rpm
f1830baa03dc8a52c1e053b71804e6b8 2007.0/x86_64/kdenetwork-kopete-latex-3.5.4-3.1mdv2007.0.x86_64.rpm
9bda96f9f4193ad624d21e256d588355 2007.0/x86_64/kdenetwork-kppp-3.5.4-3.1mdv2007.0.x86_64.rpm
f1b9898bc0aebbc996bed0ce06bb8e99 2007.0/x86_64/kdenetwork-kppp-provider-3.5.4-3.1mdv2007.0.x86_64.rpm
11bb32070876d7cd0e954da8405d8bac 2007.0/x86_64/kdenetwork-krfb-3.5.4-3.1mdv2007.0.x86_64.rpm
5c1c408b6c9adf1b43cfbd5a91232216 2007.0/x86_64/kdenetwork-ksirc-3.5.4-3.1mdv2007.0.x86_64.rpm
1f626db900a24ac6a7c21aa882b7d384 2007.0/x86_64/kdenetwork-ktalk-3.5.4-3.1mdv2007.0.x86_64.rpm
8c7f0f4dd7e8055d45ac19005c9fd7de 2007.0/x86_64/kdenetwork-kwifimanager-3.5.4-3.1mdv2007.0.x86_64.rpm
3896d6e5a95210d4e052494d29d710ab 2007.0/x86_64/lib64kdenetwork2-common-3.5.4-3.1mdv2007.0.x86_64.rpm
77e152bdf6f358f40941150adfe06a4e 2007.0/x86_64/lib64kdenetwork2-common-devel-3.5.4-3.1mdv2007.0.x86_64.rpm
4adbcf348e64d561e61b946df8458d14 2007.0/x86_64/lib64kdenetwork2-kdict-3.5.4-3.1mdv2007.0.x86_64.rpm
9430ad76831e71d328344bef9e8eef8f 2007.0/x86_64/lib64kdenetwork2-knewsticker-3.5.4-3.1mdv2007.0.x86_64.rpm
9766415fe039a7cc4a71a76f172d2de7 2007.0/x86_64/lib64kdenetwork2-kopete-3.5.4-3.1mdv2007.0.x86_64.rpm
4b45e48031d8e92fa0f555661ff20865 2007.0/x86_64/lib64kdenetwork2-kopete-devel-3.5.4-3.1mdv2007.0.x86_64.rpm
a0becdebbb7423c5d7c7cdf42fa2b9ac 2007.0/x86_64/lib64kdenetwork2-ksirc-3.5.4-3.1mdv2007.0.x86_64.rpm
35ece114d74877394a2a6caa401d5bbd 2007.0/x86_64/lib64kdenetwork2-kwifimanager-3.5.4-3.1mdv2007.0.x86_64.rpm
89813bd098e6c666b06153a97b2f8cff 2007.0/x86_64/lisa-3.5.4-3.1mdv2007.0.x86_64.rpm
ce0d751431b70c32a86c97daab89bb56 2007.0/SRPMS/kdenetwork-3.5.4-3.1mdv2007.0.src.rpm

Corporate 3.0:
56e34c3a88b838e54c1b64d7d63e23c6 corporate/3.0/i586/kdenetwork-3.2-17.3.C30mdk.i586.rpm
dc6cc8d88f01d062d0287882b84718b9 corporate/3.0/i586/kdenetwork-common-3.2-17.3.C30mdk.i586.rpm
cec7b286a40eb1e74f5539fe76d3c74b corporate/3.0/i586/kdenetwork-kdict-3.2-17.3.C30mdk.i586.rpm
396d82ec8d7ff6cff631947634c62dd6 corporate/3.0/i586/kdenetwork-kget-3.2-17.3.C30mdk.i586.rpm
920f35ee8807871b82e9ac0ab2ab040e corporate/3.0/i586/kdenetwork-knewsticker-3.2-17.3.C30mdk.i586.rpm
6770887102d26d37fc55a8807ff04ed7 corporate/3.0/i586/kdenetwork-kopete-3.2-17.3.C30mdk.i586.rpm
f8a495911b1e31b04564e1c20a56d90d corporate/3.0/i586/kdenetwork-kppp-3.2-17.3.C30mdk.i586.rpm
75cd6ce0ee680118672f72b5b22d40d3 corporate/3.0/i586/kdenetwork-krfb-3.2-17.3.C30mdk.i586.rpm
da43ce145d4a8d6b3043b17ed4037b6a corporate/3.0/i586/kdenetwork-ksirc-3.2-17.3.C30mdk.i586.rpm
0d81710aa8ebe947715299dab0905352 corporate/3.0/i586/kdenetwork-ktalk-3.2-17.3.C30mdk.i586.rpm
dbdd5b3659a0ab60679cc8cc37d82c3b corporate/3.0/i586/kdenetwork-kwifimanager-3.2-17.3.C30mdk.i586.rpm
3e4fb0e614e57302ab2b9d905d8a5c17 corporate/3.0/i586/libkdenetwork2-common-3.2-17.3.C30mdk.i586.rpm
1a5ab5ea8458dadc4c82ac4fed4151a4 corporate/3.0/i586/libkdenetwork2-common-devel-3.2-17.3.C30mdk.i586.rpm
62df119e8a4477703cd248b4e2ab20f4 corporate/3.0/i586/libkdenetwork2-knewsticker-3.2-17.3.C30mdk.i586.rpm
2574ec29fc14215ae4d0b2467f3afe8a corporate/3.0/i586/libkdenetwork2-kopete-3.2-17.3.C30mdk.i586.rpm
b745ffea2f681d2c8d49073ad15a85ac corporate/3.0/i586/libkdenetwork2-kopete-devel-3.2-17.3.C30mdk.i586.rpm
a20b29ab226bd9a701edf048edf661fc corporate/3.0/i586/libkdenetwork2-ksirc-3.2-17.3.C30mdk.i586.rpm
5b03de510d8e7ee8c47b19c4256f6d98 corporate/3.0/i586/libkdenetwork2-kwifimanager-3.2-17.3.C30mdk.i586.rpm
f3bf1ad2295f31a36357f527dc47943d corporate/3.0/i586/lisa-3.2-17.3.C30mdk.i586.rpm
3a583e8481a7f6cc7c5c5f117da8729f corporate/3.0/SRPMS/kdenetwork-3.2-17.3.C30mdk.src.rpm

Corporate 3.0/X86_64:
ae597019c0bd143d775852b77bd9821f corporate/3.0/x86_64/kdenetwork-3.2-17.3.C30mdk.x86_64.rpm
99be4174cb90ce115966c3dd02cf2ee0 corporate/3.0/x86_64/kdenetwork-common-3.2-17.3.C30mdk.x86_64.rpm
dab1030d8d612b8bc4c594374708ac51 corporate/3.0/x86_64/kdenetwork-kdict-3.2-17.3.C30mdk.x86_64.rpm
03159795801e5d16d3f416a5bf27c139 corporate/3.0/x86_64/kdenetwork-kget-3.2-17.3.C30mdk.x86_64.rpm
8ea70f82bdad8679a806bbee02e79235 corporate/3.0/x86_64/kdenetwork-knewsticker-3.2-17.3.C30mdk.x86_64.rpm
ef8d9306ddc12d440af8e0af1eeba142 corporate/3.0/x86_64/kdenetwork-kopete-3.2-17.3.C30mdk.x86_64.rpm
458a9a4ebb38c2a124139cfbd5d53f6d corporate/3.0/x86_64/kdenetwork-kppp-3.2-17.3.C30mdk.x86_64.rpm
f9432084ab87f6ff0244ca48ec89ee8e corporate/3.0/x86_64/kdenetwork-krfb-3.2-17.3.C30mdk.x86_64.rpm
e58eb402429d4ba36055976c02f741e7 corporate/3.0/x86_64/kdenetwork-ksirc-3.2-17.3.C30mdk.x86_64.rpm
bb188f8ce1151eb4094df74335746349 corporate/3.0/x86_64/kdenetwork-ktalk-3.2-17.3.C30mdk.x86_64.rpm
a15c4873ad7650099b3c63c3d14f09c4 corporate/3.0/x86_64/kdenetwork-kwifimanager-3.2-17.3.C30mdk.x86_64.rpm
c6d2a736c0f49c4c3eae33f7582a43d7 corporate/3.0/x86_64/lib64kdenetwork2-common-3.2-17.3.C30mdk.x86_64.rpm
972888db4a24bcc65bb7294e1ee37c69 corporate/3.0/x86_64/lib64kdenetwork2-common-devel-3.2-17.3.C30mdk.x86_64.rpm
a65215f840b97dc3d02d58a2e2711433 corporate/3.0/x86_64/lib64kdenetwork2-knewsticker-3.2-17.3.C30mdk.x86_64.rpm
9b69c1314edcfa5cf10316bb8ea7b5b8 corporate/3.0/x86_64/lib64kdenetwork2-kopete-3.2-17.3.C30mdk.x86_64.rpm
1c37a562d7c37b3f62da1f4747072eea corporate/3.0/x86_64/lib64kdenetwork2-kopete-devel-3.2-17.3.C30mdk.x86_64.rpm
2833d4f3f65b8f4881d47e75089283a1 corporate/3.0/x86_64/lib64kdenetwork2-ksirc-3.2-17.3.C30mdk.x86_64.rpm
0d072c0103bfbcb05e129f0565de0c30 corporate/3.0/x86_64/lib64kdenetwork2-kwifimanager-3.2-17.3.C30mdk.x86_64.rpm
d596bbaa7d187b07301a0fc10fbde517 corporate/3.0/x86_64/lisa-3.2-17.3.C30mdk.x86_64.rpm
3a583e8481a7f6cc7c5c5f117da8729f corporate/3.0/SRPMS/kdenetwork-3.2-17.3.C30mdk.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
lt;security*mandriva.comgt;
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFpZrOmqjQ0CJFipgRAhzdAKCq79fOPV9MFJAm3y0FUe1gSZxgLQCfe1jj
5o2bLIb8wt/a7rX1soBoJzA=
=bWnn
-----END PGP SIGNATURE-----



Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/security_announce_mdksa_2007009__updated_kdenetwork_packages_fix_ksirc_vulnerability.html)