[SECURITY] Fedora 7 Update: kdegraphics-3.5.8-7.fc7

updates at fedoraproject.org updates at fedoraproject.org
Tue Nov 13 00:05:02 UTC 2007


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-2985
2007-11-13 00:00:37.754783
--------------------------------------------------------------------------------

Name        : kdegraphics
Product     : Fedora 7
Version     : 3.5.8
Release     : 7.fc7
URL         : http://www.kde.org
Summary     : K Desktop Environment - Graphics Applications
Description :
Graphics applications for the K Desktop Environment, including
* kamera (digital camera support)
* kcoloredit (palette editor and color chooser)
* kdvi (displays TeX .dvi files)
* kghostview (displays postscript files)
* kiconedit (icon editor)
* kooka (scanner application)
* kpdf (displays PDF files)
* kruler (screen ruler and color measurement tool)
* ksnapshot (screen capture utility)
* kview (image viewer for GIF, JPEG, TIFF, etc.)

--------------------------------------------------------------------------------
Update Information:

This is an update to the latest kde-3.5.8 release.  For more details, see
http://kde.org/announcements/announce-3.5.8.php

This also addresses a security issue in kpdf, that can cause crashes or possibly execute arbitrary code, see
http://www.kde.org/info/security/advisory-20071107-1.txt
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  9 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-7
- CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 (#372581)
* Tue Oct 30 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-5
- -libs; Requires: %name (multilib upgrades again)
- scriptlets fixes
* Thu Oct 25 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-4
- -libs: Obsoletes: %name ... to help out multilib upgrades
* Tue Oct 16 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-3
- -libs: exclude libkpovmodeler
- -libs conditional (f8+)
* Mon Oct 15 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-2
- respin (for openexr-1.6.0)
- -libs: %post/%postun -p /sbin/ldconfig
* Sat Oct 13 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.8-1
- kde-3.5.8
- libs subpkg (more multilib friendly)
* Wed Sep  5 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.7-4
- respin (for poppler)
* Mon Aug 20 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.7-3
- (Build)Requires: kdelibs3(-devel)
- Provides: kdegraphics3(-devel)
* Mon Aug 13 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.7-2
- CVE-2007-3387 (#251509, #251511)
- License: GPLv2
* Mon Jun 11 2007 Rex Dieter <rdieter[AT]fedoraproject.org> - 7:3.5.7-1
- 3.5.7
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #352391 - kdepim: compacting mbox shows empty folder
        https://bugzilla.redhat.com/show_bug.cgi?id=352391
  [ 2 ] Bug #372561 - CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 Multiple kdegraphics vulnerabilities [f7]
        https://bugzilla.redhat.com/show_bug.cgi?id=372561
  [ 3 ] Bug #377321 - Broken upgrade path: kdelibs3 >= 3.5.8 is needed by package koffice-libs
        https://bugzilla.redhat.com/show_bug.cgi?id=377321
  [ 4 ] CVE-2007-4352
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4352
  [ 5 ] CVE-2007-5392
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5392
  [ 6 ] CVE-2007-5393
        http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5393
--------------------------------------------------------------------------------
Updated packages:

53b3bd519cc500a9c3e8946b76c3e689305989a2 kdegraphics-devel-3.5.8-7.fc7.ppc64.rpm
05dfb3aa4097a351e92593af3b2d511125f23115 kdegraphics-3.5.8-7.fc7.ppc64.rpm
6083b8262162db87630a244f09e133cdc08da7ae kdegraphics-debuginfo-3.5.8-7.fc7.ppc64.rpm
0a4dc4a93d1a564223725c4b021efe95d0a47274 kdegraphics-extras-3.5.8-7.fc7.ppc64.rpm
14b83926a75c7df558499a1207406312c8ce2ac6 kdegraphics-3.5.8-7.fc7.i386.rpm
2c91110fcb0c24f94a25105d591d5b7a29e95f22 kdegraphics-devel-3.5.8-7.fc7.i386.rpm
75d108d5f5b6820e065b3a74306ca8ed53e736db kdegraphics-extras-3.5.8-7.fc7.i386.rpm
95cc5b08fa81243815d513425211dcdc15ae620c kdegraphics-debuginfo-3.5.8-7.fc7.i386.rpm
aa772ab00bcdc95b77f85de6d56f24a93eadc102 kdegraphics-3.5.8-7.fc7.x86_64.rpm
1f1a301bac7d6ad05609f7422c0c15562ff231f7 kdegraphics-extras-3.5.8-7.fc7.x86_64.rpm
db45c131ffb3098079e0c547ac70dc3c49f9ce7e kdegraphics-debuginfo-3.5.8-7.fc7.x86_64.rpm
1542902356c0773a04e04ea30b363eb06edf2f42 kdegraphics-devel-3.5.8-7.fc7.x86_64.rpm
9ffa87662da95735ebe188faa4bbb5df69fa04f6 kdegraphics-debuginfo-3.5.8-7.fc7.ppc.rpm
d994b6b8e2c8df9bed0569b077fa5db27138f130 kdegraphics-devel-3.5.8-7.fc7.ppc.rpm
2aa54040f9db40d6f708794b1ff5a63836c7b859 kdegraphics-3.5.8-7.fc7.ppc.rpm
a2bee956003574c6ad397c132224158b4b4c6fbb kdegraphics-extras-3.5.8-7.fc7.ppc.rpm
1c9b9e5bc46d95a76e2545ae5fcf79428c0ee140 kdegraphics-3.5.8-7.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kdegraphics' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the package-announce mailing list