Elders/PU_IAS security updates: kdebase, kdelibs, opal, pwlib

kdebase security update for 2/2WS and 5 Client/Server fixes a flaw in the way kdm handles logins when autologin and "shutdown with password" are enabled.  A local user could've then used this flaw to login as any other user (without their password).  It also fixes 2 konqueror address spoofing issues. kdebase advisory kdelibs security update for 2/2WS and 5 Client/Server fixes a number of flaws in konqueror. kdelibs advisory opal security update for 5 Client/Server fixes a flaw in handling certain SIP packets that could've been used to crash applications using opal libraries (like Ekiga). opal advisory pwlib security update for 5 Client/Server fixes a memory management flaw that could've been used to crash applications linked against pwlib (like Ekiga). pwlib advisory tzdata update for 1/1WS, 2/2WS and 5 Client/Server updates time zone information with latest info. tzdata advisory mplayer security update for 2WS and 5 Client/Server Addons fixes a heap based buffer overflow in mplayer's AVI handling code that could cause denial of service or maybe even arbitrary code execution when opening a carefully crafted AVI file.  mplayerplug-in was also updated to the latest version to fix multiple bugs when opening various multimedia links. mplayer cve info Sun Java security update for 1WS, 2WS and 5 Client/Server Addons fixes various Java security issues. libxine update for 1WS, 2WS and 5 Client/Server updates libxine to the latest version. libxine 1.1.8 release notes