|
Elders/PU_IAS security updates: kdebase, kdelibs, opal, pwlib |
|
|
|
kdebase security update for 2/2WS and 5 Client/Server fixes a flaw in the way kdm handles logins when autologin and "shutdown with password" are enabled. A local user could've then used this flaw to login as any other user (without their password). It also fixes 2 konqueror address spoofing issues.
kdebase advisory
kdelibs security update for 2/2WS and 5 Client/Server fixes a number of flaws in konqueror.
kdelibs advisory
opal security update for 5 Client/Server fixes a flaw in handling certain SIP packets that could've been used to crash applications using opal libraries (like Ekiga).
opal advisory
pwlib security update for 5 Client/Server fixes a memory management flaw that could've been used to crash applications linked against pwlib (like Ekiga).
pwlib advisory
tzdata update for 1/1WS, 2/2WS and 5 Client/Server updates time zone information with latest info.
tzdata advisory
mplayer security update for 2WS and 5 Client/Server Addons fixes a heap based buffer overflow in mplayer's AVI handling code that could cause denial of service or maybe even arbitrary code execution when opening a carefully crafted AVI file. mplayerplug-in was also updated to the latest version to fix multiple bugs when opening various multimedia links.
mplayer cve info
Sun Java security update for 1WS, 2WS and 5 Client/Server Addons fixes various Java security issues.
libxine update for 1WS, 2WS and 5 Client/Server updates libxine to the latest version.
libxine 1.1.8 release notes
|
