[ubuntu/karmic-security] kdebase-workspace_4.3.2-0ubuntu7.2_amd64_translations.tar.gz, kdebase-workspace_4.3.2-0ubuntu7.2_sparc_translations.tar.gz (delayed), kdebase-workspace_4.3.2-0ubuntu7.2_lpia_translations.tar.gz, kdebase-workspace_4.3.2-0ubuntu7.2_armel_translations.tar.gz, kdebase-workspace_4.3.2-0ubuntu7.2_powerpc_translations.tar.gz, kdebase-workspace, kdebase-workspace_4.3.2-0ubuntu7.2_i386_translations.tar.gz, kdebase-workspace_4.3.2-0ubuntu7.2_ia64_translations.tar.gz 4:4.3.2-0ubuntu7.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Apr 19 23:03:41 BST 2010 

kdebase-workspace (4:4.3.2-0ubuntu7.2) karmic-security; urgency=low

  * SECURITY UPDATE: KDM Local Privilege Escalation Vulnerability (LP: #562440).
   - Add debian/patches/CVE-2010-0436_fix_kdm_local_exploit.diff
   - kdm/backend/ctrl.c: prevent race condition during user login which could
     allow execution of arbitrary code as root
   - CVE-2010-0436
   - http://www.kde.org/info/security/advisory-20100413-1.txt

Date: Fri, 16 Apr 2010 19:00:37 +0100
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/kdebase-workspace/4:4.3.2-0ubuntu7.2
-------------- next part --------------
Format: 1.8
Date: Fri, 16 Apr 2010 19:00:37 +0100
Source: kdebase-workspace
Binary: kdebase-workspace kdebase-workspace-bin kdebase-workspace-libs4+5 kdebase-workspace-data kdebase-workspace-wallpapers kdebase-workspace-dev plasma-dataengines-workspace plasma-widgets-workspace plasma-scriptengines plasma-scriptengine-qedje plasma-scriptengine-ruby plasma-scriptengine-python plasma-scriptengine-webkit kdm klipper ksysguardd ksysguard kde-window-manager libkdecorations4 libkwineffects1 systemsettings kdebase-workspace-dbg kwin kdebase-workspace-kgreet-plugins
Architecture: source
Version: 4:4.3.2-0ubuntu7.2
Distribution: karmic-security
Urgency: low
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Description: 
 kde-window-manager - the KDE 4 window manager (KWin)
 kdebase-workspace - base workspace components from the official KDE 4 release
 kdebase-workspace-bin - core binaries for the KDE 4 base workspace module
 kdebase-workspace-data - shared data files for the KDE 4 base workspace module
 kdebase-workspace-dbg - debugging symbols for the KDE 4 base workspace module
 kdebase-workspace-dev - development files for the KDE 4 base workspace module
 kdebase-workspace-kgreet-plugins - KDE greet libraries for authentication
 kdebase-workspace-libs4+5 - libraries provided by the KDE 4 base workspace module
 kdebase-workspace-wallpapers - extra wallpapers from the KDE 4 base module
 kdm        - KDE Display Manager for X11
 klipper    - clipboard utility for KDE 4
 ksysguard  - System Guard for KDE 4
 ksysguardd - System Guard Daemon for KDE 4
 kwin       - the KDE 4 window manager (KWin)
 libkdecorations4 - library used by decorations for the KDE 4 window manager
 libkwineffects1 - library used by effects for the KDE 4 window manager
 plasma-dataengines-workspace - KDE 4 base workspace Plasma data engines
 plasma-scriptengine-python - Python script engine for Plasma
 plasma-scriptengine-qedje - QEdje script engine for Plasma
 plasma-scriptengine-ruby - Ruby script engine for Plasma
 plasma-scriptengine-webkit - Web and MacOS X dashboard widget support for Plasma
 plasma-scriptengines - a metapackage to install all Plasma script engines
 plasma-widgets-workspace - KDE 4 base workspace Plasma widgets and containments
 systemsettings - KDE 4 System Settings
Changes: 
 kdebase-workspace (4:4.3.2-0ubuntu7.2) karmic-security; urgency=low
 .
   * SECURITY UPDATE: KDM Local Privilege Escalation Vulnerability (LP: #562440).
    - Add debian/patches/CVE-2010-0436_fix_kdm_local_exploit.diff
    - kdm/backend/ctrl.c: prevent race condition during user login which could
      allow execution of arbitrary code as root
    - CVE-2010-0436
    - http://www.kde.org/info/security/advisory-20100413-1.txt
Checksums-Sha1: 
 5f62f64c792e7c7d788580384da5fb108b71037a 3041 kdebase-workspace_4.3.2-0ubuntu7.2.dsc
 3a98e8a709441a2e9afd27bb6150b5be0547afd1 163899 kdebase-workspace_4.3.2-0ubuntu7.2.diff.gz
Checksums-Sha256: 
 5fc8fc348e31c8a95779a96677f482d1c7209142a5a6bf896b5581b1f771f24d 3041 kdebase-workspace_4.3.2-0ubuntu7.2.dsc
 ba8159fd3f896f9db6915abb05e447fcec01de4e271a9707941dc2838883550c 163899 kdebase-workspace_4.3.2-0ubuntu7.2.diff.gz
Files: 
 f45155f0182ae96aa4c51abb72653b27 3041 kde optional kdebase-workspace_4.3.2-0ubuntu7.2.dsc
 dd24c9340ce3026f545c6b9f3a184414 163899 kde optional kdebase-workspace_4.3.2-0ubuntu7.2.diff.gz
Launchpad-Bugs-Fixed: 562440
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

More information about the Karmic-changes mailing list