[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
UNIRAS Brief - 250/05 - Red Hat - Two Security Advisories [RHSA-2005:344-01, 354-01]
-----BEGIN PGP SIGNED MESSAGE-----
- ----------------------------------------------------------------------------------
UNIRAS (UK Govt CERT) Briefing Notice - 250/05 dated 01.04.05 Time: 16:05
UNIRAS is part of NISCC (National Infrastructure Security Co-ordination Centre)
- ----------------------------------------------------------------------------------
UNIRAS material is also available from its website at www.uniras.gov.uk and
Information about NISCC is available from www.niscc.gov.uk
- ----------------------------------------------------------------------------------
Title
=====
Red Hat - Two Security Advisories:
1. Important: gtk2 security update [RHSA-2005:344-01]
2. Moderate: tetex security update [RHSA-2005:354-01]
Detail
======
Security Advisory summaries:
1. A bug was found in the way gtk2 processes BMP images. It is possible
that a specially crafted BMP image could cause a denial of service attack
on applications linked against gtk2.
2. A number of security flaws have been found affecting libraries used
internally within teTeX. An attacker who has the ability to trick a user
into processing a malicious file with teTeX could cause teTeX to crash or
possibly execute arbitrary code.
Security Advisory content follows:
1.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Important: gtk2 security update
Advisory ID: RHSA-2005:344-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-344.html
Issue date: 2005-04-01
Updated on: 2005-04-01
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-0891
- - ---------------------------------------------------------------------
1. Summary:
Updated gtk2 packages that fix a double free vulnerability are now available.
This update has been rated as having important security impact by the Red
Hat Security Response Team.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64
3. Problem description:
The gtk2 package contains the GIMP ToolKit (GTK+), a library for creating
graphical user interfaces for the X Window System.
A bug was found in the way gtk2 processes BMP images. It is possible
that a specially crafted BMP image could cause a denial of service attack
on applications linked against gtk2. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2005-0891 to
this issue.
Users of gtk2 are advised to upgrade to these packages, which contain
a backported patch and is not vulnerable to this issue.
4. Solution:
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
152317 - CAN-2005-0891 gdk-pixbuf BMP double free DoS
6. RPMs required:
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/gtk2-2.2.4-15.src.rpm
0a30c8ebefcfae17e5a19575bc328685 gtk2-2.2.4-15.src.rpm
i386:
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
066bddc2276dccfd7bb0b72517637662 gtk2-devel-2.2.4-15.i386.rpm
ia64:
baed53da0de7155699e61842ef41e3fc gtk2-2.2.4-15.ia64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
7a0b78f2dc0b6d31f2c9d1ed80f446e4 gtk2-devel-2.2.4-15.ia64.rpm
ppc:
a99bbccf1f40a4623fed1b95c46add10 gtk2-2.2.4-15.ppc.rpm
abfbf4e46c2a7d6493a6bfac1e4be816 gtk2-2.2.4-15.ppc64.rpm
02ea01802becb94924e2eb6ee516cd32 gtk2-devel-2.2.4-15.ppc.rpm
s390:
43b69fdf1aa8d9c2c887e3102de177b7 gtk2-2.2.4-15.s390.rpm
8af03aee1a14ec0369bd441a53921648 gtk2-devel-2.2.4-15.s390.rpm
s390x:
a8a651570741b86471a63ed94183f210 gtk2-2.2.4-15.s390x.rpm
43b69fdf1aa8d9c2c887e3102de177b7 gtk2-2.2.4-15.s390.rpm
9c485a6e78fa1d1d153c8786e4cf5532 gtk2-devel-2.2.4-15.s390x.rpm
x86_64:
e4ab1dddc4d0dc5e2f6db0905be62819 gtk2-2.2.4-15.x86_64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
90dabc5f8e3c4218b2e47c244b0bedbf gtk2-devel-2.2.4-15.x86_64.rpm
Red Hat Desktop version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/gtk2-2.2.4-15.src.rpm
0a30c8ebefcfae17e5a19575bc328685 gtk2-2.2.4-15.src.rpm
i386:
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
066bddc2276dccfd7bb0b72517637662 gtk2-devel-2.2.4-15.i386.rpm
x86_64:
e4ab1dddc4d0dc5e2f6db0905be62819 gtk2-2.2.4-15.x86_64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
90dabc5f8e3c4218b2e47c244b0bedbf gtk2-devel-2.2.4-15.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/gtk2-2.2.4-15.src.rpm
0a30c8ebefcfae17e5a19575bc328685 gtk2-2.2.4-15.src.rpm
i386:
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
066bddc2276dccfd7bb0b72517637662 gtk2-devel-2.2.4-15.i386.rpm
ia64:
baed53da0de7155699e61842ef41e3fc gtk2-2.2.4-15.ia64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
7a0b78f2dc0b6d31f2c9d1ed80f446e4 gtk2-devel-2.2.4-15.ia64.rpm
x86_64:
e4ab1dddc4d0dc5e2f6db0905be62819 gtk2-2.2.4-15.x86_64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
90dabc5f8e3c4218b2e47c244b0bedbf gtk2-devel-2.2.4-15.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/gtk2-2.2.4-15.src.rpm
0a30c8ebefcfae17e5a19575bc328685 gtk2-2.2.4-15.src.rpm
i386:
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
066bddc2276dccfd7bb0b72517637662 gtk2-devel-2.2.4-15.i386.rpm
ia64:
baed53da0de7155699e61842ef41e3fc gtk2-2.2.4-15.ia64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
7a0b78f2dc0b6d31f2c9d1ed80f446e4 gtk2-devel-2.2.4-15.ia64.rpm
x86_64:
e4ab1dddc4d0dc5e2f6db0905be62819 gtk2-2.2.4-15.x86_64.rpm
98a763c907f9cde57d447ecc9ce69252 gtk2-2.2.4-15.i386.rpm
90dabc5f8e3c4218b2e47c244b0bedbf gtk2-devel-2.2.4-15.x86_64.rpm
Red Hat Enterprise Linux AS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/gtk2-2.4.13-14.src.rpm
118cc192bec153115de78c71cfac9bba gtk2-2.4.13-14.src.rpm
i386:
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
af3138588aa04815a27d638ecbcb6c8b gtk2-devel-2.4.13-14.i386.rpm
ia64:
33d94f949a3b40af64c2b32d167ff228 gtk2-2.4.13-14.ia64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
73608a9226dd9dd4659160f38ce0fee4 gtk2-devel-2.4.13-14.ia64.rpm
ppc:
8c84158372ac0bcca09ab775eed2fee2 gtk2-2.4.13-14.ppc.rpm
3a61040d1dd81afa0dbca8ead7e125ee gtk2-2.4.13-14.ppc64.rpm
c9e7694d7514c897373ef6883abaebc5 gtk2-devel-2.4.13-14.ppc.rpm
s390:
3c1076cdca18a62dccab35d5e03371e2 gtk2-2.4.13-14.s390.rpm
1e0c97c0e3a75b7e6431de79dc471683 gtk2-devel-2.4.13-14.s390.rpm
s390x:
35b3be76b835158f9c0fb8046753ff47 gtk2-2.4.13-14.s390x.rpm
3c1076cdca18a62dccab35d5e03371e2 gtk2-2.4.13-14.s390.rpm
c3e93e8160bc0b79e101a959ebc55cfd gtk2-devel-2.4.13-14.s390x.rpm
x86_64:
0ce827bf741b096da96f49e0a461d228 gtk2-2.4.13-14.x86_64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
11876fb98d0f3d6d4dc8b767110298f8 gtk2-devel-2.4.13-14.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/gtk2-2.4.13-14.src.rpm
118cc192bec153115de78c71cfac9bba gtk2-2.4.13-14.src.rpm
i386:
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
af3138588aa04815a27d638ecbcb6c8b gtk2-devel-2.4.13-14.i386.rpm
x86_64:
0ce827bf741b096da96f49e0a461d228 gtk2-2.4.13-14.x86_64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
11876fb98d0f3d6d4dc8b767110298f8 gtk2-devel-2.4.13-14.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/gtk2-2.4.13-14.src.rpm
118cc192bec153115de78c71cfac9bba gtk2-2.4.13-14.src.rpm
i386:
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
af3138588aa04815a27d638ecbcb6c8b gtk2-devel-2.4.13-14.i386.rpm
ia64:
33d94f949a3b40af64c2b32d167ff228 gtk2-2.4.13-14.ia64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
73608a9226dd9dd4659160f38ce0fee4 gtk2-devel-2.4.13-14.ia64.rpm
x86_64:
0ce827bf741b096da96f49e0a461d228 gtk2-2.4.13-14.x86_64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
11876fb98d0f3d6d4dc8b767110298f8 gtk2-devel-2.4.13-14.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/gtk2-2.4.13-14.src.rpm
118cc192bec153115de78c71cfac9bba gtk2-2.4.13-14.src.rpm
i386:
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
af3138588aa04815a27d638ecbcb6c8b gtk2-devel-2.4.13-14.i386.rpm
ia64:
33d94f949a3b40af64c2b32d167ff228 gtk2-2.4.13-14.ia64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
73608a9226dd9dd4659160f38ce0fee4 gtk2-devel-2.4.13-14.ia64.rpm
x86_64:
0ce827bf741b096da96f49e0a461d228 gtk2-2.4.13-14.x86_64.rpm
48c40e37a9881922692c379a023f40c2 gtk2-2.4.13-14.i386.rpm
11876fb98d0f3d6d4dc8b767110298f8 gtk2-devel-2.4.13-14.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0891
8. Contact:
The Red Hat security contact is <secalert@xxxxxxxxxx>. More contact
details at https://www.redhat.com/security/team/contact/
Copyright 2005 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFCTV9nXlSAg2UNWIIRAqyUAJ4nX8OyUx4oplTnaP8Cd7xX9/7FbACfWeI+
qNkO6dqzlYCVfySatzndq7M=
=Eb3j
- -----END PGP SIGNATURE-----
- --
Enterprise-watch-list mailing list
Enterprise-watch-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/enterprise-watch-list
2.
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- - ---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Moderate: tetex security update
Advisory ID: RHSA-2005:354-01
Advisory URL: https://rhn.redhat.com/errata/RHSA-2005-354.html
Issue date: 2005-04-01
Updated on: 2005-04-01
Product: Red Hat Enterprise Linux
CVE Names: CAN-2004-0803 CAN-2004-0804 CAN-2004-0886 CAN-2004-0888 CAN-2004-1125
- - ---------------------------------------------------------------------
1. Summary:
Updated tetex packages that fix several integer overflows are now available.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
3. Problem description:
TeTeX is an implementation of TeX for Linux or UNIX systems. TeX takes
a text file and a set of formatting commands as input and creates a
typesetter-independent .dvi (DeVice Independent) file as output.
A number of security flaws have been found affecting libraries used
internally within teTeX. An attacker who has the ability to trick a user
into processing a malicious file with teTeX could cause teTeX to crash or
possibly execute arbitrary code.
A number of integer overflow bugs that affect Xpdf were discovered. The
teTeX package contains a copy of the Xpdf code used for parsing PDF files
and is therefore affected by these bugs. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the names CAN-2004-0888 and
CAN-2004-1125 to these issues.
A number of integer overflow bugs that affect libtiff were discovered. The
teTeX package contains an internal copy of libtiff used for parsing TIFF
image files and is therefore affected by these bugs. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
names CAN-2004-0803, CAN-2004-0804 and CAN-2004-0886 to these issues.
Also latex2html is added to package tetex-latex for 64bit platforms.
Users of teTeX should upgrade to these updated packages, which contain
backported patches and are not vulnerable to these issues.
4. Solution:
Before applying this update, make sure that all previously-released
errata relevant to your system have been applied. Use Red Hat
Network to download and update your packages. To launch the Red Hat
Update Agent, use the following command:
up2date
For information on how to install packages manually, refer to the
following Web page for the System Administration or Customization
guide specific to your system:
http://www.redhat.com/docs/manuals/enterprise/
5. Bug IDs fixed (http://bugzilla.redhat.com/):
137475 - CAN-2004-0888 xpdf integer overflows
137607 - CAN-2004-0803 multiple issues in libtiff (CAN-2004-0804 CAN-2004-0886)
137973 - tetex-latex package missing latex2html
145129 - CAN-2004-1125 xpdf buffer overflow
6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AS/en/os/SRPMS/tetex-1.0.7-38.5E.8.src.rpm
efdc50c77f165e2f8983817fc547a972 tetex-1.0.7-38.5E.8.src.rpm
i386:
87812010eb54719fa75946a9f422028f tetex-1.0.7-38.5E.8.i386.rpm
99979e8cb09dbc5f656c03b048f07a4a tetex-afm-1.0.7-38.5E.8.i386.rpm
774cb4e1b460beccd4f68e4d50253c6b tetex-doc-1.0.7-38.5E.8.i386.rpm
6d1f1ebf300610c4a91d45bde42ca564 tetex-dvilj-1.0.7-38.5E.8.i386.rpm
21726aabfaaadd6d35fb3b35bf9542f3 tetex-dvips-1.0.7-38.5E.8.i386.rpm
b5197b336e0d80217cf1b6a7578f60d5 tetex-fonts-1.0.7-38.5E.8.i386.rpm
93da69b331bc13c0092eed64184a213f tetex-latex-1.0.7-38.5E.8.i386.rpm
4abe6bf82b846b69a5278374f549243d tetex-xdvi-1.0.7-38.5E.8.i386.rpm
ia64:
65fa9f50ff34d83f16d930f4be8fd09f tetex-1.0.7-38.5E.8.ia64.rpm
32cab33699c3928e2c743538b02fb568 tetex-afm-1.0.7-38.5E.8.ia64.rpm
d2530b745bca8e100b10c351b07db66e tetex-doc-1.0.7-38.5E.8.ia64.rpm
088cf8bde9281498821c578418ba2c7b tetex-dvilj-1.0.7-38.5E.8.ia64.rpm
759261d6cb19e58d5ccd84aa4b8ff77f tetex-dvips-1.0.7-38.5E.8.ia64.rpm
aa145c8fc8f88176ca9958b1d25969c7 tetex-fonts-1.0.7-38.5E.8.ia64.rpm
59dd10dbea7a5761f0708faf38924b4d tetex-latex-1.0.7-38.5E.8.ia64.rpm
146fa129f82b229b3736de8646c88bba tetex-xdvi-1.0.7-38.5E.8.ia64.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1AW/en/os/SRPMS/tetex-1.0.7-38.5E.8.src.rpm
efdc50c77f165e2f8983817fc547a972 tetex-1.0.7-38.5E.8.src.rpm
ia64:
65fa9f50ff34d83f16d930f4be8fd09f tetex-1.0.7-38.5E.8.ia64.rpm
32cab33699c3928e2c743538b02fb568 tetex-afm-1.0.7-38.5E.8.ia64.rpm
d2530b745bca8e100b10c351b07db66e tetex-doc-1.0.7-38.5E.8.ia64.rpm
088cf8bde9281498821c578418ba2c7b tetex-dvilj-1.0.7-38.5E.8.ia64.rpm
759261d6cb19e58d5ccd84aa4b8ff77f tetex-dvips-1.0.7-38.5E.8.ia64.rpm
aa145c8fc8f88176ca9958b1d25969c7 tetex-fonts-1.0.7-38.5E.8.ia64.rpm
59dd10dbea7a5761f0708faf38924b4d tetex-latex-1.0.7-38.5E.8.ia64.rpm
146fa129f82b229b3736de8646c88bba tetex-xdvi-1.0.7-38.5E.8.ia64.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1ES/en/os/SRPMS/tetex-1.0.7-38.5E.8.src.rpm
efdc50c77f165e2f8983817fc547a972 tetex-1.0.7-38.5E.8.src.rpm
i386:
87812010eb54719fa75946a9f422028f tetex-1.0.7-38.5E.8.i386.rpm
99979e8cb09dbc5f656c03b048f07a4a tetex-afm-1.0.7-38.5E.8.i386.rpm
774cb4e1b460beccd4f68e4d50253c6b tetex-doc-1.0.7-38.5E.8.i386.rpm
6d1f1ebf300610c4a91d45bde42ca564 tetex-dvilj-1.0.7-38.5E.8.i386.rpm
21726aabfaaadd6d35fb3b35bf9542f3 tetex-dvips-1.0.7-38.5E.8.i386.rpm
b5197b336e0d80217cf1b6a7578f60d5 tetex-fonts-1.0.7-38.5E.8.i386.rpm
93da69b331bc13c0092eed64184a213f tetex-latex-1.0.7-38.5E.8.i386.rpm
4abe6bf82b846b69a5278374f549243d tetex-xdvi-1.0.7-38.5E.8.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS:
ftp://updates.redhat.com/enterprise/2.1WS/en/os/SRPMS/tetex-1.0.7-38.5E.8.src.rpm
efdc50c77f165e2f8983817fc547a972 tetex-1.0.7-38.5E.8.src.rpm
i386:
87812010eb54719fa75946a9f422028f tetex-1.0.7-38.5E.8.i386.rpm
99979e8cb09dbc5f656c03b048f07a4a tetex-afm-1.0.7-38.5E.8.i386.rpm
774cb4e1b460beccd4f68e4d50253c6b tetex-doc-1.0.7-38.5E.8.i386.rpm
6d1f1ebf300610c4a91d45bde42ca564 tetex-dvilj-1.0.7-38.5E.8.i386.rpm
21726aabfaaadd6d35fb3b35bf9542f3 tetex-dvips-1.0.7-38.5E.8.i386.rpm
b5197b336e0d80217cf1b6a7578f60d5 tetex-fonts-1.0.7-38.5E.8.i386.rpm
93da69b331bc13c0092eed64184a213f tetex-latex-1.0.7-38.5E.8.i386.rpm
4abe6bf82b846b69a5278374f549243d tetex-xdvi-1.0.7-38.5E.8.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3AS/en/os/SRPMS/tetex-1.0.7-67.7.src.rpm
854d764fdb5f6e46643ecbf99e6e731d tetex-1.0.7-67.7.src.rpm
i386:
c6585335e6d36db0949c1735d63b147b tetex-1.0.7-67.7.i386.rpm
805f8b3bd65b991f37d592cb4bf6f3fe tetex-afm-1.0.7-67.7.i386.rpm
1aa30f4a4d8453a25b71a3d49b1a5123 tetex-dvips-1.0.7-67.7.i386.rpm
2ba001752f221c3f66da9dd57b9482e8 tetex-fonts-1.0.7-67.7.i386.rpm
deab3926c5684a456421593440b5402d tetex-latex-1.0.7-67.7.i386.rpm
0cb399b58499b90c1b821c5d2c5de310 tetex-xdvi-1.0.7-67.7.i386.rpm
ia64:
3bfec159ab70183f6ec3cf6da7adbbf6 tetex-1.0.7-67.7.ia64.rpm
4e1e12be30d26c8e9da3f2ccd94f6b83 tetex-afm-1.0.7-67.7.ia64.rpm
8678f4ff52a508079c8c5d52073b0db3 tetex-dvips-1.0.7-67.7.ia64.rpm
f2e647528bce1e99699ce688e780b3a6 tetex-fonts-1.0.7-67.7.ia64.rpm
3648e058c29ff1f2ed8b465aa6c761b1 tetex-latex-1.0.7-67.7.ia64.rpm
e647055161692a9e8e9e0086443024be tetex-xdvi-1.0.7-67.7.ia64.rpm
ppc:
6840b4b9525d995f6a8d0cff49ad342d tetex-1.0.7-67.7.ppc.rpm
686b36322cced7700b251cb799a149d9 tetex-afm-1.0.7-67.7.ppc.rpm
4864ff1dfb6fe6b0c487051272e598be tetex-dvips-1.0.7-67.7.ppc.rpm
f49ebe65c04f7a6ef1758fe4bae993ed tetex-fonts-1.0.7-67.7.ppc.rpm
1ea30cb22124b4293d92ebf171b18372 tetex-latex-1.0.7-67.7.ppc.rpm
e4d2624d104cfcae449e86939df8f100 tetex-xdvi-1.0.7-67.7.ppc.rpm
s390:
06c6b4779930bb803b591af8f82014b7 tetex-1.0.7-67.7.s390.rpm
0cc859f1c101b0283cac22c8fa1f7029 tetex-afm-1.0.7-67.7.s390.rpm
82f0c5d4edc43b5592ee31580d3d2598 tetex-dvips-1.0.7-67.7.s390.rpm
5e24afa95c0c81b3f37ef9d58272a556 tetex-fonts-1.0.7-67.7.s390.rpm
3606c37243a599ed81b9193a9f7e2315 tetex-latex-1.0.7-67.7.s390.rpm
422d88e7e25fd240b2c58ec8f3454043 tetex-xdvi-1.0.7-67.7.s390.rpm
s390x:
fc0447b2810a6c4b88d3846b55eef1f7 tetex-1.0.7-67.7.s390x.rpm
01834580509ce3faa5f9ec40a50d9437 tetex-afm-1.0.7-67.7.s390x.rpm
8be653ea8a54e38df44405727b97221d tetex-dvips-1.0.7-67.7.s390x.rpm
2d9b29929e9e1e93e4b3054be00b109e tetex-fonts-1.0.7-67.7.s390x.rpm
9c693a28ad4f210e4a80faebe2610256 tetex-latex-1.0.7-67.7.s390x.rpm
54323c111589e10d0d19f62a45ae9e19 tetex-xdvi-1.0.7-67.7.s390x.rpm
x86_64:
f92595d5f66bc756925d8b7d4c3ce21e tetex-1.0.7-67.7.x86_64.rpm
4e422593568d8571c85e55e0ac863f78 tetex-afm-1.0.7-67.7.x86_64.rpm
ff48c2cac6f376a8de35153d66584385 tetex-dvips-1.0.7-67.7.x86_64.rpm
5f5920b9b756fe6fdde41a93765d948b tetex-fonts-1.0.7-67.7.x86_64.rpm
d5b5e98e220faf0c9a8c427ee9001f08 tetex-latex-1.0.7-67.7.x86_64.rpm
20fced0afb71e52bcdba17c96754daf4 tetex-xdvi-1.0.7-67.7.x86_64.rpm
Red Hat Desktop version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3desktop/en/os/SRPMS/tetex-1.0.7-67.7.src.rpm
854d764fdb5f6e46643ecbf99e6e731d tetex-1.0.7-67.7.src.rpm
i386:
c6585335e6d36db0949c1735d63b147b tetex-1.0.7-67.7.i386.rpm
805f8b3bd65b991f37d592cb4bf6f3fe tetex-afm-1.0.7-67.7.i386.rpm
1aa30f4a4d8453a25b71a3d49b1a5123 tetex-dvips-1.0.7-67.7.i386.rpm
2ba001752f221c3f66da9dd57b9482e8 tetex-fonts-1.0.7-67.7.i386.rpm
deab3926c5684a456421593440b5402d tetex-latex-1.0.7-67.7.i386.rpm
0cb399b58499b90c1b821c5d2c5de310 tetex-xdvi-1.0.7-67.7.i386.rpm
x86_64:
f92595d5f66bc756925d8b7d4c3ce21e tetex-1.0.7-67.7.x86_64.rpm
4e422593568d8571c85e55e0ac863f78 tetex-afm-1.0.7-67.7.x86_64.rpm
ff48c2cac6f376a8de35153d66584385 tetex-dvips-1.0.7-67.7.x86_64.rpm
5f5920b9b756fe6fdde41a93765d948b tetex-fonts-1.0.7-67.7.x86_64.rpm
d5b5e98e220faf0c9a8c427ee9001f08 tetex-latex-1.0.7-67.7.x86_64.rpm
20fced0afb71e52bcdba17c96754daf4 tetex-xdvi-1.0.7-67.7.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3ES/en/os/SRPMS/tetex-1.0.7-67.7.src.rpm
854d764fdb5f6e46643ecbf99e6e731d tetex-1.0.7-67.7.src.rpm
i386:
c6585335e6d36db0949c1735d63b147b tetex-1.0.7-67.7.i386.rpm
805f8b3bd65b991f37d592cb4bf6f3fe tetex-afm-1.0.7-67.7.i386.rpm
1aa30f4a4d8453a25b71a3d49b1a5123 tetex-dvips-1.0.7-67.7.i386.rpm
2ba001752f221c3f66da9dd57b9482e8 tetex-fonts-1.0.7-67.7.i386.rpm
deab3926c5684a456421593440b5402d tetex-latex-1.0.7-67.7.i386.rpm
0cb399b58499b90c1b821c5d2c5de310 tetex-xdvi-1.0.7-67.7.i386.rpm
ia64:
3bfec159ab70183f6ec3cf6da7adbbf6 tetex-1.0.7-67.7.ia64.rpm
4e1e12be30d26c8e9da3f2ccd94f6b83 tetex-afm-1.0.7-67.7.ia64.rpm
8678f4ff52a508079c8c5d52073b0db3 tetex-dvips-1.0.7-67.7.ia64.rpm
f2e647528bce1e99699ce688e780b3a6 tetex-fonts-1.0.7-67.7.ia64.rpm
3648e058c29ff1f2ed8b465aa6c761b1 tetex-latex-1.0.7-67.7.ia64.rpm
e647055161692a9e8e9e0086443024be tetex-xdvi-1.0.7-67.7.ia64.rpm
x86_64:
f92595d5f66bc756925d8b7d4c3ce21e tetex-1.0.7-67.7.x86_64.rpm
4e422593568d8571c85e55e0ac863f78 tetex-afm-1.0.7-67.7.x86_64.rpm
ff48c2cac6f376a8de35153d66584385 tetex-dvips-1.0.7-67.7.x86_64.rpm
5f5920b9b756fe6fdde41a93765d948b tetex-fonts-1.0.7-67.7.x86_64.rpm
d5b5e98e220faf0c9a8c427ee9001f08 tetex-latex-1.0.7-67.7.x86_64.rpm
20fced0afb71e52bcdba17c96754daf4 tetex-xdvi-1.0.7-67.7.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS:
ftp://updates.redhat.com/enterprise/3WS/en/os/SRPMS/tetex-1.0.7-67.7.src.rpm
854d764fdb5f6e46643ecbf99e6e731d tetex-1.0.7-67.7.src.rpm
i386:
c6585335e6d36db0949c1735d63b147b tetex-1.0.7-67.7.i386.rpm
805f8b3bd65b991f37d592cb4bf6f3fe tetex-afm-1.0.7-67.7.i386.rpm
1aa30f4a4d8453a25b71a3d49b1a5123 tetex-dvips-1.0.7-67.7.i386.rpm
2ba001752f221c3f66da9dd57b9482e8 tetex-fonts-1.0.7-67.7.i386.rpm
deab3926c5684a456421593440b5402d tetex-latex-1.0.7-67.7.i386.rpm
0cb399b58499b90c1b821c5d2c5de310 tetex-xdvi-1.0.7-67.7.i386.rpm
ia64:
3bfec159ab70183f6ec3cf6da7adbbf6 tetex-1.0.7-67.7.ia64.rpm
4e1e12be30d26c8e9da3f2ccd94f6b83 tetex-afm-1.0.7-67.7.ia64.rpm
8678f4ff52a508079c8c5d52073b0db3 tetex-dvips-1.0.7-67.7.ia64.rpm
f2e647528bce1e99699ce688e780b3a6 tetex-fonts-1.0.7-67.7.ia64.rpm
3648e058c29ff1f2ed8b465aa6c761b1 tetex-latex-1.0.7-67.7.ia64.rpm
e647055161692a9e8e9e0086443024be tetex-xdvi-1.0.7-67.7.ia64.rpm
x86_64:
f92595d5f66bc756925d8b7d4c3ce21e tetex-1.0.7-67.7.x86_64.rpm
4e422593568d8571c85e55e0ac863f78 tetex-afm-1.0.7-67.7.x86_64.rpm
ff48c2cac6f376a8de35153d66584385 tetex-dvips-1.0.7-67.7.x86_64.rpm
5f5920b9b756fe6fdde41a93765d948b tetex-fonts-1.0.7-67.7.x86_64.rpm
d5b5e98e220faf0c9a8c427ee9001f08 tetex-latex-1.0.7-67.7.x86_64.rpm
20fced0afb71e52bcdba17c96754daf4 tetex-xdvi-1.0.7-67.7.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package
7. References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0803
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0804
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0886
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0888
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1125
8. Contact:
The Red Hat security contact is <secalert@xxxxxxxxxx>. More contact
details at https://www.redhat.com/security/team/contact/
Copyright 2005 Red Hat, Inc.
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)
iD8DBQFCTV+FXlSAg2UNWIIRAvo4AJwIwq6+leLjXUc52GbXGiaLpkPn3gCdE24F
ydCjNYmyKebgEUmSG9ETUFg=
=+SRT
- -----END PGP SIGNATURE-----
- --
Enterprise-watch-list mailing list
Enterprise-watch-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/enterprise-watch-list
- ----------------------------------------------------------------------------------
For additional information or assistance, please contact the HELP Desk by
telephone or Not Protectively Marked information may be sent via
EMail to: uniras@xxxxxxxxxxxx
Office Hours:
Mon - Fri: 08:30 - 17:00 Hrs
Tel: +44 (0) 870 487 0748 Ext 4511
Fax: +44 (0) 870 487 0749
Outside of Office Hours:
On Call Duty Officer:
Tel: +44 (0) 870 487 0748 and follow the prompts
- ----------------------------------------------------------------------------------
UNIRAS wishes to acknowledge the contributions of Red Hat for the information
contained in this Briefing.
- ----------------------------------------------------------------------------------
This Briefing contains the information released by the original author. Some
of the information may have changed since it was released. If the vulnerability
affects you, it may be prudent to retrieve the advisory from the canonical site
to ensure that you receive the most current information concerning that problem.
Reference to any specific commercial product, process, or service by trade
name, trademark manufacturer, or otherwise, does not constitute or imply
its endorsement, recommendation, or favouring by UNIRAS or NISCC. The views
and opinions of authors expressed within this notice shall not be used for
advertising or product endorsement purposes.
Neither UNIRAS or NISCC shall also accept responsibility for any errors
or omissions contained within this briefing notice. In particular, they shall
not be liable for any loss or damage whatsoever, arising from or in connection
with the usage of information contained within this notice.
UNIRAS is a member of the Forum of Incident Response and Security Teams (FIRST)
and has contacts with other international Incident Response Teams (IRTs) in
order to foster cooperation and coordination in incident prevention, to prompt
rapid reaction to incidents, and to promote information sharing amongst its
members and the community at large.
- ----------------------------------------------------------------------------------
<End of UNIRAS Briefing>
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQCVAwUBQk1jRopao72zK539AQGnIwQAksT4ull+mAbXuGBL4+CHp0fTgAB/yoJ0
Qccdb1++EAiY4llQu8bYbMbNCobLkuTQboG+Ffc4oE0aokV6xIIJL27owDTUCEMf
Xr/H2+LvUsOE97Yxez2Gb2/g+lcsTJc9zB39xENvY5pdKRwzAY/Hi9ccBYzfAfEd
mhkhst+MEU8=
=3d1P
-----END PGP SIGNATURE-----
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________