[PLDSA 41-1] New mozilla packages fix several vulnerabilities

Krzysiek Taraszka dzimi at pld.org.pl
Sat May 3 15:44:07 CEST 2003


- --------------------------------------------------------------------------
PLD Security Advisory PLDSA 41-1                        security at pld.org.pl
http://www.pld.org.pl/security/                          PLD Security Team
10 March 2003				http://www.pld.org.pl/security/faq
- --------------------------------------------------------------------------

Package        : prior to mozilla-1.0-10
Vulnerability  : several
Problem-Type   : remote
PLD-specific   : no

Mozilla 1.0.2 contains stability and security improvements. 1.0.2 also has 
fixes for standards support, UI correctness and polish, performance, 
and site compatibility.

We recommend that you upgrade your mozilla packages.

wget -c url
	will fetch the file for you
rpm -Uhv file(s)*.rpm
        will upgrade the referenced file.

If you are using "poldek" - the package manager, use the line as given below
for upgrade packages

poldek --update
        will update the internal database
poldek --upgrade 'mozilla*'
        will install corrected packages

If you are using "apt" - the package manager, use the line as given below
for upgrade packages

apt-get update
        will update the internal database
apt-get upgrade 'mozilla*'
        will install corrected packages

PLD Linux 1.0 alias ra
- --------------------

  Source archives:

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/mozilla-1.0.2-1.src.rpm
       MD5 checksum: 7b7a9d633cc8408b7f08ca375ed971d7

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/nspr-4.2.2-2.src.rpm
       MD5 checksum: b6299299ee9cceb9bee388c9a4d922b0

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/nss-3.6-1.src.rpm
       MD5 checksum: bad578ede5704db8bf5a2998141b8ca4

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/galeon-1.2.7-2.src.rpm
       MD5 checksum: 1c3f8a8602f53caa3d1cb12a5daefe87

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/light-1.4.12-2.src.rpm
       MD5 checksum: 9f7dee02f9637eac2fe7987c49c27e2d

ftp://ftp.pld.org.pl/dists/ra/updates/security/SRPMS/skipstone-0.8.3-5.src.rpm
       MD5 checksum: b58630e40719e0f9b5b0e51ef8b9c510

  I386 Architecture components:

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/mozilla-1.0.2-1.i386.rpm
       MD5 checksum: 7c3575fd989b4706723d883cb9cf5f47

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/mozilla-devel-1.0.2-1.i386.rpm
       MD5 checksum: 1a5ba96c928ea7bbe725f1a8ab1ee0e6

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/mozilla-mailnews-1.0.2-1.i386.rpm
       MD5 checksum: 1662dc268fa59283aa8a3d50c9042193

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nspr-4.2.2-2.i386.rpm
       MD5 checksum: f92bcd07927bee74cadd298488f9c8a6

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nspr-devel-4.2.2-2.i386.rpm
       MD5 checksum: fbcddc08508bfa1c6b2bfbc51fab78e7

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nspr-static-4.2.2-2.i386.rpm
       MD5 checksum: 20ea5fc760f8ecb669157e19472d77e6

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nss-3.6-1.i386.rpm
       MD5 checksum: ee65ab5fb2b9cf3a5dfe4253761ad855

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nss-devel-3.6-1.i386.rpm
       MD5 checksum: cfc5ff34f519d62e3796b0e98ac2c3e0

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nss-static-3.6-1.i386.rpm
       MD5 checksum: 966cdaaea494e030b4d0f8492278b466

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/nss-tools-3.6-1.i386.rpm
       MD5 checksum: d8560f7d7475b24cce5430c7aedaf16f

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/galeon-1.2.7-2.i386.rpm
       MD5 checksum: 2bf9da74405d2b21cfa270735198e665

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/light-1.4.12-2.i386.rpm
       MD5 checksum: 2bcc35da1777f84809a97427a0c508bf

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/skipstone-0.8.3-5.i386.rpm
       MD5 checksum: c72932b27affc3a4fc495c7aa9245797

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/skipstone-plugins-0.8.3-5.i386.rpm
       MD5 checksum: 17db592152b17c60b892e96756bfcaa5

ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/skipstone-plugins-gdkpixbuf-0.8.3-5.i386.rpm
       MD5 checksum: e7bb07044fa97bf4705c55d90000957c


  I586 Architecture components:

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/mozilla-1.0.2-1.i586.rpm
       MD5 checksum: 192d53acb05d7fa9b9d8fafeff8a3d0f

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/mozilla-devel-1.0.2-1.i586.rpm
       MD5 checksum: a219410a9a7f154a64d62ec23a2845b7

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/mozilla-mailnews-1.0.2-1.i586.rpm
       MD5 checksum: 1c9901070ba575e3819ec9751c52abf3

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nspr-4.2.2-2.i586.rpm
       MD5 checksum: d42bec022ab6e56bfea325ccd1e6d5cc

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nspr-devel-4.2.2-2.i586.rpm
       MD5 checksum: 7298ba62a041cebb1f8b38742a859902

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nspr-static-4.2.2-2.i586.rpm
       MD5 checksum: 97b9f25bd6283c1ba25424b7d3840d98

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nss-3.6-1.i586.rpm
       MD5 checksum: dc005ccc0381a388629665d50f8266e3

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nss-devel-3.6-1.i586.rpm
       MD5 checksum: 555a287df2ddd50b66f2078043790fab

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nss-static-3.6-1.i586.rpm
       MD5 checksum: 2aef462930a524e43d92f0909b70f3d4

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/nss-tools-3.6-1.i586.rpm
       MD5 checksum: aaadcd04dcc471e78f497c5fc1d915f1

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/galeon-1.2.7-2.i586.rpm
       MD5 checksum: 68d28a36fae298c165c44b26754b40c0

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/light-1.4.12-2.i586.rpm
       MD5 checksum: 84eda3b2e127f4465161f268c59ba3b1

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/skipstone-0.8.3-5.i586.rpm
       MD5 checksum: 3136c69ffcdac1c17d4eb72a6c4af58a

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/skipstone-plugins-0.8.3-5.i586.rpm
       MD5 checksum: 9246016fc84137a260a66c3fb123d7c0

ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/skipstone-plugins-gdkpixbuf-0.8.3-5.i586.rpm
       MD5 checksum: a9f1fc9d1870a95b561e0b0e1a252190


  I686 Architecture components:

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/mozilla-1.0.2-1.i686.rpm
       MD5 checksum: 27397534eb8c1c0f4e7e321e31999143

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/mozilla-devel-1.0.2-1.i686.rpm
       MD5 checksum: fde3455be89e79827fda3155b601b00a

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/mozilla-mailnews-1.0.2-1.i686.rpm
       MD5 checksum: d4a8a092def1faa6408326afc484d915

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nspr-4.2.2-2.i686.rpm
       MD5 checksum: abdd5298d94e6cfd64d8135d269f4932

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nspr-devel-4.2.2-2.i686.rpm
       MD5 checksum: ac0d738d77ed320c86cb73d1c897f214

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nspr-static-4.2.2-2.i686.rpm
       MD5 checksum: e32cd5c556819a5079b2528597509b9f

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nss-3.6-1.i686.rpm
       MD5 checksum: 5b562696f73341ff50e262b3c440626c

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nss-devel-3.6-1.i686.rpm
       MD5 checksum: 38b07270c2134a7d12fc5b91708ba1ba

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nss-static-3.6-1.i686.rpm
       MD5 checksum: aa4b19ab6aaff0c10477abcfa220c857

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/nss-tools-3.6-1.i686.rpm
       MD5 checksum: 853eb46d68624833dc7529874b11c3db

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/galeon-1.2.7-2.i686.rpm
       MD5 checksum: 82e0c81d8affdda843f77cafb884edfc

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/light-1.4.12-2.i686.rpm
       MD5 checksum: 33ebbd1c042fe629f75039913c2234b5

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/skipstone-0.8.3-5.i686.rpm
       MD5 checksum: fa2ae3f325e2572ecfdc51900e10357a

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/skipstone-plugins-0.8.3-5.i686.rpm
       MD5 checksum: 3666bfa441493125f3f530e96dc7e1c4

ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/skipstone-plugins-gdkpixbuf-0.8.3-5.i686.rpm
       MD5 checksum: 68242ca5472c99a8490658ce06167417


  PowerPC Architecture components:

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/mozilla-1.0.2-1.ppc.rpm
       MD5 checksum: df1a7dccb8c669255a53484a31b8a500

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/mozilla-devel-1.0.2-1.ppc.rpm
       MD5 checksum: 19f475adc4d75f7c8d67b19d61e19803

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/mozilla-mailnews-1.0.2-1.ppc.rpm
       MD5 checksum: 192024f4b7423a278c9d5e8f8b4cc6cb

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nspr-4.2.2-2.ppc.rpm
       MD5 checksum: f36df7e298bfd285e1f87288b4933977

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nspr-devel-4.2.2-2.ppc.rpm
       MD5 checksum: 48455790ace82c380e990dd034173a45

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nspr-static-4.2.2-2.ppc.rpm
       MD5 checksum: 40bc7322f8e0085a8f02097ad6b76d49

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nss-3.6-1.ppc.rpm
       MD5 checksum: 6ea1176aabc2939a3b177a82199967cb

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nss-devel-3.6-1.ppc.rpm
       MD5 checksum: f6e3ed2d7d0aedc958bc04517be85ea9

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nss-static-3.6-1.ppc.rpm
       MD5 checksum: 0555382f6eeca278e55e5b9d37cbd568

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/nss-tools-3.6-1.ppc.rpm
       MD5 checksum: 18da203d6131c15a809159c42e0bbdd8

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/galeon-1.2.7-2.ppc.rpm
       MD5 checksum: ac04cad0022b4a4c82a980de34b674c7

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/light-1.4.12-2.ppc.rpm
       MD5 checksum: 2864599ac19fe2c51cd0f1658555c49e

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/skipstone-0.8.3-5.ppc.rpm
       MD5 checksum: 8ea34d3ea402b1a0d1c27ace8ffdc73c

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/skipstone-plugins-0.8.3-5.ppc.rpm
       MD5 checksum: d8547892617f114b84d19db4c308a6c1

ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/skipstone-plugins-gdkpixbuf-0.8.3-5.ppc.rpm
       MD5 checksum: 7c600ba99b11bdfe718525fc10f6bdbd


-
--------------------------------------------------------------------------------
-
If you are using poldek add this line to poldek.conf.
If you are using apt-get add this line to sources.list.

For i386 architecture
poldek:         source = ra-updates-security ftp://ftp.pld.org.pl/dists/ra/updates/security/i386/
apt-get:        rpm ftp://ftp.pld.org.pl/dists ra/apt/i386 base updates-security
For i586 architecture
poldek:         source = ra-updates-security ftp://ftp.pld.org.pl/dists/ra/updates/security/i586/
apt-get:        rpm ftp://ftp.pld.org.pl/dists ra/apt/i586 base updates-security
For i686 architecture
poldek:         source = ra-updates-security ftp://ftp.pld.org.pl/dists/ra/updates/security/i686/
apt-get:        rpm ftp://ftp.pld.org.pl/dists ra/apt/i686 base updates-security
For ppc architecture
poldek:         source = ra-updates-security ftp://ftp.pld.org.pl/dists/ra/updates/security/ppc/
apt-get:        rpm ftp://ftp.pld.org.pl/dists ra/apt/ppc base updates-security



More information about the pld-security-announce mailing list