Security Advisory Updated KDE packages fix security issues

Advisory: RHSA-2002:220-41
Type: Security Advisory
Severity: N/A
Issued on: 2002-11-27
Last updated on: 2002-12-04
Affected Products: Red Hat Linux 7.2
Red Hat Linux 7.3
Red Hat Linux 8.0
OVAL: N/A
CVEs (cve.mitre.org): CVE-2002-0838
CVE-2002-0970
CVE-2002-1151
CVE-2002-1152
CVE-2002-1223
CVE-2002-1224
CVE-2002-1247
CVE-2002-1281
CVE-2002-1282
CVE-2002-1306

Details

A number of vulnerabilities have been found that affect various versions of
KDE. This errata provides updates which resolve these issues.

KDE is a graphical desktop environment for the X Window System.
A number of vulnerabilities have been found in various versions of KDE.

The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify
the Basic Constraints for an intermediate CA-signed certificate. This
allows remote attackers to spoof the certificates of trusted sites via a
man-in-the-middle attack. The Common Vulnerabilities and Exposures project
has assigned the name CAN-2002-0970 to this issue.

Konqueror in KDE 3.0 through 3.0.2 does not properly detect the "secure"
flag in an HTTP cookie, which could cause Konqueror to send the cookie
across an unencrypted channel, potentially allowing remote attackers to
steal the cookie via sniffing. (CAN-2002-1152)

The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0
through 3.0.3 does not properly initialize the domains on sub-frames and
sub-iframes, which can allow remote attackers to execute scripts and steal
cookies from subframes that are in other domains. (CAN-2002-1151)

kpf is a file sharing utility that can be docked into the KDE kicker bar.
It uses a subset of the HTTP protocol internally and acts in a manner very
similar to a Web server. A feature added in KDE 3.0.1 accidentally allowed
retrieving any file, not limited to the configured shared directory, if it
is readable by the user under which kpf runs. (CAN-2002-1224)

KGhostview includes a parser from GSview, which is vulnerable to a buffer
overflow while parsing a specially crafted .ps input file.
(CAN-2002-1223). It also contains code from gv 3.5.x which is vulnerable
to another buffer overflow triggered by malformed postscript or Adobe PDF
files. (CAN-2002-0838)

A vulnerability in the rlogin KIO subsystem (rlogin.protocol) of
KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and
remote attackers to execute arbitrary code via a carefully crafted URL.
The Common Vulnerabilities and Exposures project has assigned the name
CAN-2002-1281 to this issue. A similar vulnerability affects KDE version
2.x through the telnet KIO subsystem (telnet.protocol). (CAN-2002-1282)

Multiple buffer overflows exist in the KDE LAN browsing implementation; the
resLISa daemon contains a buffer overflow vulnerability which could be
exploited if the reslisa binary is SUID root. Additionally, the lisa
daemon contains a vulnerability which potentially enables any local user,
as well any any remote attacker on the LAN who is able to gain control of
the LISa port (7741 by default), to obtain root privileges. In Red Hat
Linux, reslisa is not SUID root and lisa services are not automatically
started. (CAN-2002-1247, CAN-2002-1306)

Red Hat Linux 8.0 shipped with KDE 3.0.3 and is therefore vulnerable to
CAN-2002-0838, CAN-2002-1151, CAN-2002-1223, CAN-2002-1224, CAN-2002-1247,
and CAN-2002-1281. This errata includes new kdelibs and kdenetwork packages
which contain patches to correct these issues.

Red Hat Linux 7.3 shipped with KDE 3.0.0 and is therefore vulnerable to
CAN-2002-0838, CAN-2002-0970, CAN-2002-1151, CAN-2002-1152,
CAN-2002-1223, CAN-2002-1247, CAN-2002-1281, and CAN-2002-1306. This
errata upgrades Red Hat Linux 7.3 to KDE 3.0.3 with patches to correct
these issues.

Red Hat Linux 7.2 shipped with KDE version 2.2.2 and is therefore
vulnerable to CAN-2002-0838, CAN-2002-0970, CAN-2002-1151, CAN-2002-1223,
CAN-2002-1247, and CAN-2002-1306. This errata provides new kdelibs and
kdenetwork packages which contain patches to correct these issues.

Red Hat Linux 7.2 is also vulnerable to CAN-2002-1281 and CAN-2002-1282 but
these vulnerabilities are not fixed by these errata packages. At the
present time Red Hat recommends disabling both the rlogin and telnet KIO
protocols as a workaround. To disable both protocols, execute these commands:

rm /usr/share/services/rlogin.protocol
rm /usr/share/services/telnet.protocol


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

To update all RPMs for your particular architecture, run:

rpm -Fvh [filenames]

where [filenames] is a list of the RPMs you wish to upgrade. Only those
RPMs which are currently installed will be updated. Those RPMs which are
not installed but included in the list will not be updated. Note that you
can also use wildcards (*.rpm) if your current directory *only* contains the
desired RPMs.

Please note that this update is also available via Red Hat Network. Many
people find this an easier way to apply updates. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

Updated packages

Red Hat Linux 7.2
SRPMS:
kdegraphics-2.2.2-2.1.src.rpm
File outdated by:  RHSA-2003:002		     ea399e31bcca1df0b7aef78c303ca0a7
kdelibs-2.2.2-3.src.rpm
File outdated by:  RHSA-2003:235		     034a08a13b62f72b6a9603f52f16da25
kdenetwork-2.2.2-2.src.rpm
File outdated by:  RHSA-2003:002		     81714c79f92d1e9b6de4b38543a9bc83
 
IA-32:
arts-2.2.2-3.i386.rpm
File outdated by:  RHSA-2003:235		     c9be246b033cd8e17a0777183f060bdc
kdegraphics-2.2.2-2.1.i386.rpm
File outdated by:  RHSA-2003:002		     1668cdc5ff3cb4476626287cfff646ac
kdegraphics-devel-2.2.2-2.1.i386.rpm
File outdated by:  RHSA-2003:002		     1f7c2cc26b71d0bef278c29259b9e28d
kdelibs-2.2.2-3.i386.rpm
File outdated by:  RHSA-2003:235		     1753fcef6366b9c10dae05876855db5f
kdelibs-devel-2.2.2-3.i386.rpm
File outdated by:  RHSA-2003:235		     9c21f59d69acb690892fd13b02bd23aa
kdelibs-sound-2.2.2-3.i386.rpm
File outdated by:  RHSA-2003:235		     929bf62240d8e8129fb09a965dc4bc75
kdelibs-sound-devel-2.2.2-3.i386.rpm
File outdated by:  RHSA-2003:235		     cd858cb38ea684aaf6c22f0093dbbfad
kdenetwork-2.2.2-2.i386.rpm
File outdated by:  RHSA-2003:002		     567f7d10e7f11200a1ede4fc48ee6ba8
kdenetwork-ppp-2.2.2-2.i386.rpm
File outdated by:  RHSA-2003:002		     0181fc55d957f081697dec9ab3c4eef4
 
IA-64:
arts-2.2.2-3.ia64.rpm
File outdated by:  RHSA-2003:235		     4b7e057bd214027d4c492265b3a71d6a
kdegraphics-2.2.2-2.1.ia64.rpm
File outdated by:  RHSA-2003:002		     bf45c07ac04d081839934549f9fba336
kdegraphics-devel-2.2.2-2.1.ia64.rpm
File outdated by:  RHSA-2003:002		     07bb5515069e7d63470921b18a338989
kdelibs-2.2.2-3.ia64.rpm
File outdated by:  RHSA-2003:235		     189201842b61ec0eda4cd790e0eb8f9e
kdelibs-devel-2.2.2-3.ia64.rpm
File outdated by:  RHSA-2003:235		     e325b6fd962803c296320656e7a3579b
kdelibs-sound-2.2.2-3.ia64.rpm
File outdated by:  RHSA-2003:235		     aa788c8abe086b78cf16ffd0d4d26466
kdelibs-sound-devel-2.2.2-3.ia64.rpm
File outdated by:  RHSA-2003:235		     b58b22df69edd4b776ae1df8f641139d
kdenetwork-2.2.2-2.ia64.rpm
File outdated by:  RHSA-2003:002		     0f824cdab51bdbafc654081e2d8c9e56
kdenetwork-ppp-2.2.2-2.ia64.rpm
File outdated by:  RHSA-2003:002		     17ed308dac97dff15b511d55316523d9
 
Red Hat Linux 7.3
SRPMS:
arts-1.0.3-0.7.1.src.rpm
File outdated by:  RHSA-2003:002		     47dcc91fe8726cc45f31014a29b35a1c
kde-i18n-3.0.3-0.7.3.src.rpm
File outdated by:  RHSA-2003:002		     e2dbe16652886c5e938932e9db0b76ab
kdeaddons-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     1a1bf3945b93dca80460f9d0c496ded2
kdeadmin-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     88bd547a198b3b0ce44e4cfdc1b91bd2
kdeartwork-3.0.3-0.7.1.src.rpm
File outdated by:  RHSA-2003:002		     35508697a85ffaba96513085b18e77c7
kdebase-3.0.3-0.7.2.src.rpm
File outdated by:  RHSA-2003:269		     4252b1ec7cd6413b335702d15459f69a
kdebindings-3.0.3-0.7.1.src.rpm
File outdated by:  RHSA-2003:002		     2f77233d2019dcfdfaf5ba4e2294f47f
kdeedu-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     96b1c663ec0839e428b15f52e55a920b
kdegames-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     43fc3e29f684817f5f91242748e59181
kdegraphics-3.0.3-0.7.2.src.rpm
File outdated by:  RHSA-2003:002		     a260fca5c6f4b52ea89c445a386690d0
kdelibs-3.0.3-0.7.2.src.rpm
File outdated by:  RHSA-2003:235		     0bb5c62332785c2daf1f15597d71a890
kdemultimedia-3.0.3-0.7.1.src.rpm
File outdated by:  RHSA-2003:002		     09b000c0e7ac6b2754a74bf3c3ac4fa3
kdenetwork-3.0.3-0.7.2.src.rpm
File outdated by:  RHSA-2003:002		     6d4354214bf9c201a15ee809a9857e13
kdepim-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     f4f5657c7d14f05d01b00bb853c79c60
kdesdk-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     4b4527904b61e185d1805044a84953f1
kdetoys-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     430647cf44a607b6ac264060422f0f8d
kdeutils-3.0.3-0.7.src.rpm
File outdated by:  RHSA-2003:002		     e712ea2315ea0800a3933e1695968a98
ftp://updates.redhat.com/7.3/en/os/SRPMS/kdevelop-2.1.3-0.7.1.src.rpm
Missing file		     fb0ca7e6c97ffb3957728689a743b296
ftp://updates.redhat.com/7.3/en/os/SRPMS/qt-3.0.5-7.14.src.rpm
Missing file		     354d1a5d84ba9be926cd445d1f65cab3
 
IA-32:
ark-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     c31ac96ba6d0f3a9ebbb10d20985a5c8
arts-1.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     68f6dcc3c862b8de79092d9aa7618d36
arts-devel-1.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     ff569116c2e9f9476b6c967207b7dc57
cervisia-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     d35f569dfbfe3c8f64930f4d0b84e63d
kaboodle-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     6998bef27993940c4cfe628978fd3a22
kamera-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     e0e6b4869bef5c93628532d1957193fe
karm-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     9434391849bf3ecaa98e729565634a21
kcalc-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     59d8f61a6d57eb83fb29ea4ec9fb7e0d
kcharselect-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     b5b049e944cf27d481f40a05c64c124f
kcoloredit-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     4f67d858333d89be5959a6fd70197b2c
kde-i18n-Afrikaans-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     76d3acb0d7e3758ff415407b040460ba
kde-i18n-Brazil-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     5651ef9274ac8bccaa3c89ea355a1034
kde-i18n-British-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     ec8069f0b7616d7730c447445e041ee7
kde-i18n-Catalan-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     e777000dbc3cd37b40f7b4323ae9ca17
kde-i18n-Chinese-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     64db0d26bde24f65b0e5163060ff6cb4
kde-i18n-Chinese-Big5-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     f66bd48da82aa3643d541953ff9459fc
kde-i18n-Czech-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     9645c561baa0e594ee012a5e6a1a3e39
kde-i18n-Danish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     f66d111bd324a9921a32c760c88687de
kde-i18n-Dutch-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     d5cc68e887d942ed4d8d77e9284b3d25
kde-i18n-Estonian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     b4219af23091f247f00bd23dd162315d
kde-i18n-Finnish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     b238c826e2f3639201f36c13bb6d8087
kde-i18n-French-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     528298f1da0fe0edc0ef8ca448f09b14
kde-i18n-German-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     03d84ce8973153350225b7c43a661c96
kde-i18n-Greek-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     adf477bb06177d3576a4f1c0945bc97c
kde-i18n-Hebrew-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     8bb07aebbc58ddeb98c945440704cef5
kde-i18n-Hungarian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     998cb7b241b3e546c9324e812b56bd11
kde-i18n-Icelandic-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     8fa73aade5bd38c755054168c07a6e58
kde-i18n-Italian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     acd498970e42705be44c40869d5661ff
kde-i18n-Japanese-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     03c1c653f5d0f2847c5afd30907cf404
kde-i18n-Korean-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     0c1050c9f380237bc209b863d15329ff
kde-i18n-Norwegian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     1baad139032f94f6542a1842007aab09
kde-i18n-Norwegian-Nynorsk-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     50dc718b9e055d7aa8833460d0902037
kde-i18n-Polish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     bd6f52953224249e333810ab55f316b6
kde-i18n-Portuguese-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     bf93f41125ee60e1f9f9d9dc4d267a1b
kde-i18n-Romanian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     b8b1131bef479232717f51d05ac1c43d
kde-i18n-Russian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     f67cac0c2e27f05d4eb3c3cd35de89d9
kde-i18n-Serbian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     44d8d5ced0449aec83c6d5df68cab65b
kde-i18n-Slovak-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     07ec44ca5419000e45f69067c0c16b14
kde-i18n-Slovenian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     669badb617cb397c38a7c54b4b216561
kde-i18n-Spanish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     e9fa6efc7968ac95121c3878a88b4c27
kde-i18n-Swedish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     d8ab828348bf49d999164c042c749136
kde-i18n-Turkish-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     b99ee42310f1d2649bd6c7a24f43ca2a
kde-i18n-Ukrainian-3.0.3-0.7.3.noarch.rpm
File outdated by:  RHSA-2003:002		     abc085fc82a8e6388fd226965b80ae1a
kdeaddons-kate-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     7fe44981d9f0da00fd85d6dcdcd1e464
kdeaddons-kicker-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     154fd03b6325fc249b9d2db9f5c1bd3c
kdeaddons-knewsticker-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     7b958fa5c3aa0a15e5a8f82c6acac846
kdeaddons-konqueror-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     950f242a09d7bdf3ba77bd7ca6adcb23
kdeaddons-noatun-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     7d3fef5e022b4480ae662c20c48ac965
kdeadmin-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     bfe34d25e617c3e25dc2faf77e716621
kdeartwork-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     047c77f35776c564bca14cc4ffd146c4
kdeartwork-kworldclock-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     e59d14917ab3c03c897c3f92b53a758a
kdeartwork-locolor-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     96bed63324f3c40ef57bc7aaf32caef9
kdeartwork-screensavers-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     1a7c3633b753ca8effe5dfc046fd6ec5
kdebase-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:269		     2001ffaf4fcb9d56b25bff8f5b5d6c85
kdebase-devel-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:269		     db9f97bd5b5721fdd2062d0aa2965547
kdebindings-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     e33ee4cd2e9301915787b2f4720af43c
kdebindings-devel-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     344b64d1bca10210db411b32e01fb0f4
kdebindings-kmozilla-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     8feb90886d6ac404a42207b20ff523c5
kdegames-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     2c954338900c6894fbe1c45496bae318
kdegames-devel-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     e25d0a4def322accb91d3aa2aa1dafd0
kdelibs-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:235		     9a3d319eaadf9b0ff620c445eb6918e5
kdelibs-devel-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:235		     0f369a42384ace153710e585ce47e86e
kdemultimedia-arts-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     fe9794772b4c717fd7ac8ee94ab31b1b
kdemultimedia-devel-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     94571620f5161cf37097534c63a9bf4b
kdemultimedia-kfile-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     d5b599eeeedcb46954024e231aaf66f1
kdemultimedia-libs-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     135e008d033b7e78b45b8f4fe0250569
kdenetwork-devel-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     c53b4d182818205944fcf3612942c318
kdenetwork-libs-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     bb71a42d167e8539ecfd75156879f70c
kdepasswd-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     d65f4adea754e9ab38887c18f7cc4a8e
kdepim-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     8d833c32134f1ed60ee1fbc08262008e
kdepim-cellphone-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     a12608b4aa87f056aa95fa7aca7a1273
kdepim-devel-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     33b650a7088f065acc38f8b2558c7b67
kdepim-pilot-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     e137e8621fca2328d919b9735adbd719
kdesdk-gimp-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     708568ca332d5cb4c545da99090c74db
kdesdk-kapptemplate-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     915cb23acd612fb8879d8feb6d8e2cac
kdesdk-kbabel-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     83c195e1f5e5932138d489bb3dc14663
kdesdk-kbugbuster-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     228345769dd1cf1d3379906b215af9e2
kdesdk-kmtrace-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     38f2efa7b18452a63bf0fde26bb78803
kdesdk-kompare-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     9147d3be6cfb04f569c4f83e69c34d5e
kdesdk-kspy-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     60f394c650b46645e1f9b1c5852727f8
kdessh-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     8f1eda9703316c6638187b86e1c8c1e3
kdetoys-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     938c1325cb89c9dc49932f4ee55d7f48
kdeutils-laptop-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     4e0458b14e321cddb9820803516a3c4d
ftp://updates.redhat.com/7.3/en/os/i386/kdevelop-2.1.3-0.7.1.i386.rpm
Missing file		     828d671341da74f98207ccec83dd894d
kdf-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     a43492502f9724ef88e3757bd573c026
kdict-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     7ce89dde28bc8ae992395c24f2136905
kdvi-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     6a32f99fcf3f144a0ba79363dfe2c996
kedit-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     93fe10821b08641e964f1e3957e32d37
keduca-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     8a900a4900eb3c91bee96854c38f5896
kfax-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     632d3c454dbde139231dff3154af7af1
kfile-pdf-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     117c2803b365681a1bf91f682d725149
kfile-png-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     2bec4e9cde3695289ba6a237e47a9407
kfloppy-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     4c47d387dde4e63558d48bf84c72688c
kfract-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     7b74f1789b2dcfbde592ee812c12b19a
kgeo-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     b699923f0c3df235f4bd68c370452081
kghostview-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     3c2d55f5bdc429f89f110d10bb64b58d
khexedit-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     91655d96af4ca3a1ca9f50e4e7e90bc4
kiconedit-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     02c425ba7942358fd36be81db609088e
kit-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     26db442ffbbaa1553c5c138a209207ae
kjots-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     91fecfdefae0415b27339394d0f73be5
klettres-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     a0842ee9d0239070816f693ae4fdc2f6
kljettool-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     7ad3798fce63da97f8f96f3bbba8a3d4
klpq-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     4d747945f02676ffb75c978a57addb00
klprfax-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     937ea72d67edb7cea2f8cf68fe1e6ec3
kmail-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     e9ee917df07ea4a6d5c53e3a0bfe5f16
kmessedwords-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     d175e65b4af6524d0672c0df3d3fffa2
kmid-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     8cc3f07f5f2cc1c276af643b08233c22
kmidi-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     d5e79b13a53f09cc015e622911dc8fb4
kmix-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     dbec374bda1a631d3b886207204522fc
knewsticker-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     a020d8cd85bb2056789993eea951cecd
knode-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     48c293f3b92b2115b20b967671530964
knotes-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     d87ffc5428a2bf0d05dba1be73e16cbd
koncd-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     e3f31e79286cd764cc7cf23f8c79129d
kooka-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     c1140b9165e173bc386367c887f3596c
korn-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     88575c727577d629583b8db993e049ec
kpaint-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     efed4a1469974d3ef0eea80c83993050
kpf-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     b497fb2b80940ef02a1f56ed098fc326
kppp-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     3b65942be18126d51756ec33bb0ebebc
kregexpeditor-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     3c2c96eeb45e2882431c2ac8fa13b0ec
kregexpeditor-devel-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     c0973f7501ec7e0cccafcae0b16deae1
kruler-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     db88094cba76479eb3eb0c3c17f52398
kscd-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     2a299ae6cf5ad38552c00fe661732c6e
ksirc-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     929eb08ad90c06942db4f2ded6be06eb
ksnapshot-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     11a8bb6c42df541d6b22ded6a9e3f060
kstars-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     33085a4aba5134d5f16dad8b6f889837
ktalkd-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     b6f5bd8a53b07c8bd65fa009ba12afcf
ktimer-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     2c8dae3e5fa5d4a7d18d6497fa01b353
ktouch-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     91363efc95c0db868eb57ed89c4285fb
kuickshow-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     8b1ad52acabfa8ed28ae12efc6a7b0f7
kview-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     253c465d92fb923ec23dde728b3ef1e6
kviewshell-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     d41fb35ce2f805abffd42e2347029f13
kviewshell-devel-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     d3bc4f4b7c9c1516340a3b3f5c874439
kvoctrain-3.0.3-0.7.i386.rpm
File outdated by:  RHSA-2003:002		     4232a7548dad0e40f3b7e93d51951b5e
kxmlrpcd-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     9e393ddfc49472320dbcaa394bfbfc52
libkscan-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     71a0d83c0b8a1049d200743cac7be748
libkscan-devel-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     40169395af0b83079f550087f88bf17b
lisa-3.0.3-0.7.2.i386.rpm
File outdated by:  RHSA-2003:002		     107b12e7ec4f43c41a83c44a8c1728f6
noatun-3.0.3-0.7.1.i386.rpm
File outdated by:  RHSA-2003:002		     402c7189e0e9fa0dd4e79a6d41e061bb
ftp://updates.redhat.com/7.3/en/os/i386/qt-3.0.5-7.14.i386.rpm
Missing file		     960b252e140edd4fde5df0c33c32f724
ftp://updates.redhat.com/7.3/en/os/i386/qt-MySQL-3.0.5-7.14.i386.rpm
Missing file		     042a38aabf9ff94bad8fd025035805c2
ftp://updates.redhat.com/7.3/en/os/i386/qt-ODBC-3.0.5-7.14.i386.rpm
Missing file		     84238622cf26b074764229a89cb507db
ftp://updates.redhat.com/7.3/en/os/i386/qt-PostgreSQL-3.0.5-7.14.i386.rpm
Missing file		     6ea56e8b818aa41913de389e36a8cc10
ftp://updates.redhat.com/7.3/en/os/i386/qt-Xt-3.0.5-7.14.i386.rpm
Missing file		     8945494c65048dbb61dd413c44800945
ftp://updates.redhat.com/7.3/en/os/i386/qt-designer-3.0.5-7.14.i386.rpm
Missing file		     89e26bf00fd8c606673144ddfe613d9b
ftp://updates.redhat.com/7.3/en/os/i386/qt-devel-3.0.5-7.14.i386.rpm
Missing file		     279ff020001cd6605346256a030f3e28
ftp://updates.redhat.com/7.3/en/os/i386/qt-static-3.0.5-7.14.i386.rpm
Missing file		     aa7ad857e20ce146caf0f9cb53220ce7
 
Red Hat Linux 8.0
SRPMS:
ftp://updates.redhat.com/8.0/en/os/SRPMS/kde-i18n-3.0.3-2.src.rpm
Missing file		     382b75abdf9a6283816619bb6614f2a5
kdebase-3.0.3-14.src.rpm
File outdated by:  RHSA-2003:269		     eb94d5dcf07bfc59bc25af2e4c8b365d
kdegraphics-3.0.3-5.src.rpm
File outdated by:  RHSA-2003:002		     461fd60d1643e1c31a278234aafdb871
kdelibs-3.0.3-8.3.src.rpm
File outdated by:  RHSA-2003:235		     89bacf26defe3ff0c3ce42c2cbd01ac3
kdenetwork-3.0.3-3.2.src.rpm
File outdated by:  RHSA-2003:002		     9a239e421bb3a3f9d9d3d10f834081b2
 
IA-32:
kamera-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     1760f7c313bbaf68ba245e277dc0e311
kcoloredit-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     446cf584b68467d9b963ac772fafcbbb
kde-i18n-Afrikaans-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     98d9ae485c1be4fafd8c03017a2a0aa8
kde-i18n-Brazil-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     20968b70807f9be950b0f00c0ee9e76d
kde-i18n-British-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     4b32f230323111a1ed200d841c394055
kde-i18n-Catalan-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     c46f72b9c11cf645448e57fb950ad71b
kde-i18n-Chinese-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     1b51ff3850ef991251bd566ea1754650
kde-i18n-Chinese-Big5-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     fac230f697c8dec63940fb6665d7fb8b
kde-i18n-Czech-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     81e6ed1dd0ae6cab0ff3ee1c016ba5fa
kde-i18n-Danish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     ef103a14abf5e97f80d63384dede11aa
kde-i18n-Dutch-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     480ad8d4091f4e6f5ded483f9ba038ea
kde-i18n-Estonian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     0d6470bc19293f2fd7574a629ada5fca
kde-i18n-Finnish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     dedf9453207a581022186ccd635b029f
kde-i18n-French-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     1da3947b5e7866e3f6a8cdf13bce868a
kde-i18n-German-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     f94ed211d8ed801338a5d539ac976b46
kde-i18n-Greek-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     c378d2d489321c194bd31d6e2aac18de
kde-i18n-Hebrew-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     0af92889ad40114bdd0b301a8b51422f
kde-i18n-Hungarian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     d7d58b92af5110748aaa1142967e5608
kde-i18n-Icelandic-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     7209432c0630073f5dd42135b913d7b1
kde-i18n-Italian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     82b54a1df2ee94d9b62791233a976b6f
kde-i18n-Japanese-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     8c57ee3c8a7b1a3a5961675a34168b41
kde-i18n-Korean-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     28cdd305792f5cedb9ec6aa1f52e5c76
kde-i18n-Norwegian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     d176f2db3087b154695c9d9e52ccdfbb
kde-i18n-Norwegian-Nynorsk-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     5a3e72d832552ce1341b365460a273a9
kde-i18n-Polish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     ab02c20e9347ad173db119ae052bac5c
kde-i18n-Portuguese-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     58d7e5e83deba1b9ce00056a61b8e83f
kde-i18n-Romanian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     bd8fb9ecf8d0c2697f9d8a233f9bf874
kde-i18n-Russian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     881082de3ba29bc812e2836630714433
kde-i18n-Serbian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     de801b4041fb853ce0032be3c195c2d1
kde-i18n-Slovak-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     14f11d6f554dc22e0dc3dee4bbbbb265
kde-i18n-Slovenian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     f0c9fd9b82f2fa79dace023af32103af
kde-i18n-Spanish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     b678302a346fba4718b6ae511db548bc
kde-i18n-Swedish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     ce33f8e251a905dd73057f3ed8f00e08
kde-i18n-Turkish-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     7863672ca2f070a8394259564eb0bba2
kde-i18n-Ukrainian-3.0.3-2.noarch.rpm
File outdated by:  RHSA-2003:002		     ad4d1f435d31de3d1038474db615b64b
kdebase-3.0.3-14.i386.rpm
File outdated by:  RHSA-2003:269		     dae6d36badd1d95e2c158f1b0fbc4a8b
kdebase-devel-3.0.3-14.i386.rpm
File outdated by:  RHSA-2003:269		     8c89468704d83340dcd2d4e8c3701241
kdelibs-3.0.3-8.3.i386.rpm
File outdated by:  RHSA-2003:235		     60301f8226f8a7446046153722483712
kdelibs-devel-3.0.3-8.3.i386.rpm
File outdated by:  RHSA-2003:235		     b9e1c80782bfa0757e4464fb948d1dc2
kdenetwork-devel-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     06ce97289ab90412d186e19fc615ea0f
kdenetwork-libs-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     d3c939799ab6930fcb2d1f21fa108bf7
kdict-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     003adc9a793b09e7a628d5731970ddb3
kdvi-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     32619c7f1cfa9923975554ca6398120b
kfax-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     6cd4586916cd0d1188516d26060115c9
kfile-pdf-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     e5589af68b5a603e907b5f1bfb2490a2
kfile-png-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     e9a05f7b8d2568fc75c184c9426a58d2
kfract-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     13bdd632276190ab9a33aff390d626ab
kghostview-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     53b7219215d58dc474a134619c4ce27b
kiconedit-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     3bddeec68060feab62c78556e7e921b0
kit-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     90bb1850c6360a87a30a88028f08c265
kmail-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     d7fc1e03db312bccd31215b647b86e25
knewsticker-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     461b07e357650696f18a8b4f765c7882
knode-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     3a513107098e7352a7739468c46aa3aa
kooka-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     8a5598ce40edd6659d7894126847c50d
korn-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     9cc380ecfbd57870450474d3d24a6a68
kpaint-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     dacfc37a044a4a8f7ab641112d1e73d2
kpf-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     77e766459f3f5fe35433591ef940a3fc
kppp-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     7107a712a1fb3fbdc421905db2278c72
kruler-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     0cdd8d4aca4ef9073d20cbf8aba1a0d4
ksirc-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     ea39efb6deee4db448ad0967cd0a35c2
ksnapshot-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     0ded9db8efba14db92c46cc389fc35fe
ktalkd-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     3d5914e0e082ed8f8a1308a1df9cd834
kuickshow-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     4ebb9ccd7db8a147f09754972fe9c4f7
kview-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     689c7ec6268931fdc2d578a9bc93b06a
kviewshell-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     738ab6d68860a7c276e0557c137cc1e4
kviewshell-devel-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     81aa7b525199ec9aee14d709193804fd
kxmlrpcd-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     069eaeab2380daf632f605321ebe9938
libkscan-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     3a362ce3349312972cbb16248df1df37
libkscan-devel-3.0.3-5.i386.rpm
File outdated by:  RHSA-2003:002		     1cb0fad25b6f82fec9cd95f285c10980
lisa-3.0.3-3.2.i386.rpm
File outdated by:  RHSA-2003:002		     526dccfd590c76ff657dcf981cf4a44c
 

Bugs fixed (see bugzilla for more information)

73412 - KDE screensaver just blanks screen
74071 - Better way to handle desktop file renames
75085 - Banner of Taiwan


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0838
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0970
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1151
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1152
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1223
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1224
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1247
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1281
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1282
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1306
http://marc.theaimsgroup.com/?l=bugtraq&m=102977530005148
http://www.kde.org/info/security/advisory-20020908-1.txt
http://www.kde.org/info/security/advisory-20020908-2.txt
http://www.kde.org/info/security/advisory-20021008-1.txt
http://www.kde.org/info/security/advisory-20021008-2.txt
http://www.kde.org/info/security/advisory-20021111-1.txt
http://www.kde.org/info/security/advisory-20021111-2.txt

Keywords

flaw:buf, flaw:css, flaw:design, flaw:infoleak, flaw:spoof

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/