69936 2004-11-03 04:58 0000 kde-base/kdegraphics: kpdf 64bit security issues in xpdf patch 2004-11-09 22:09:03 0000 1 1 1 Unclassified Gentoo Security Vulnerabilities unspecified All All RESOLVED FIXED A2 [glsa] koon P2 major --- 69624 1 koon@gentoo.org security@gentoo.org kde@gentoo.org koon@gentoo.org 2004-11-03 04:58:50 0000 There was a problem with the recent xpdf-code patch. It introduces another vulnerability on 64-bit platforms. Patches are posted on bug 69662. carlo@gentoo.org 2004-11-03 09:39:34 0000 <<< kdegraphics-3.2.3-r2.ebuild <<< kdegraphics-3.3.0-r2.ebuild <<< kdegraphics-3.3.1-r2.ebuild Arch herds, please mark stable as necessary to safe our users from evil malicious pdf files flying around everywhere. Thank you. carlo@gentoo.org 2004-11-04 03:54:41 0000 Herds: Apparently the 3.3.0 patch is invalid. I did not care/test, since I don't have the box to do so in acceptable time. This is no excuse, though. :| If really needed, I'll fix it, otherwise mark KDE 3.3.1 stable, please. weeve@gentoo.org 2004-11-04 05:46:11 0000 sparc me amadeus carlo@gentoo.org 2004-11-04 06:08:34 0000 fyi: patch is fixed lv@gentoo.org 2004-11-04 09:42:37 0000 3.3.0-r2 stable on amd64 then beljemevanavond@hotmail.com 2004-11-04 11:13:12 0000 XRef.cc:126: error: no matching function for call to `EmbedStream::EmbedStream( Stream*, Object*, int, int&)' Stream.h:337: error: candidates are: EmbedStream::EmbedStream(const EmbedStream&) Stream.h:340: error: EmbedStream::EmbedStream(Stream*, Object*) XRef.cc:163: error: no matching function for call to `EmbedStream::EmbedStream( Stream*, Object*, int, int)' Stream.h:337: error: candidates are: EmbedStream::EmbedStream(const EmbedStream&) Stream.h:340: error: EmbedStream::EmbedStream(Stream*, Object*) XRef.cc:166: error: no matching function for call to `EmbedStream::EmbedStream( Stream*, Object*, int, int)' Stream.h:337: error: candidates are: EmbedStream::EmbedStream(const EmbedStream&) Stream.h:340: error: EmbedStream::EmbedStream(Stream*, Object*) XRef.cc: In constructor `XRef::XRef(BaseStream*, GString*, GString*)': XRef.cc:214: error: `objStr' undeclared (first use this function) XRef.cc:214: error: (Each undeclared identifier is reported only once for each function it appears in.) XRef.cc:219: error: `getStartXref' undeclared (first use this function) XRef.cc: At global scope: XRef.cc:284: error: no `Guint XRef::getStartXref()' member function declared in class `XRef' XRef.cc: In member function `GBool XRef::readXRef(Guint*)': XRef.cc:331: error: `readXRefTable' undeclared (first use this function) XRef.cc:347: error: `readXRefStream' undeclared (first use this function) XRef.cc: At global scope: XRef.cc:364: error: no `GBool XRef::readXRefTable(Parser*, Guint*)' member function declared in class `XRef' XRef.cc: In member function `GBool XRef::readXRefTable(Parser*, Guint*)': XRef.cc:405: error: 'struct XRefEntry' has no member named 'type' XRef.cc:405: error: `xrefEntryFree' undeclared (first use this function) XRef.cc:422: error: 'struct XRefEntry' has no member named 'type' XRef.cc:422: error: `xrefEntryUncompressed' undeclared (first use this function) XRef.cc:424: error: 'struct XRefEntry' has no member named 'type' XRef.cc:436: error: 'struct XRefEntry' has no member named 'type' XRef.cc: At global scope: XRef.cc:489: error: no `GBool XRef::readXRefStream(Stream*, Guint*)' member function declared in class `XRef' XRef.cc: In member function `GBool XRef::readXRefStream(Stream*, Guint*)': XRef.cc:514: error: 'struct XRefEntry' has no member named 'type' XRef.cc:553: error: `readXRefStreamSection' undeclared (first use this function) XRef.cc:575: error: no matching function for call to `Object::initDict(Dict*&)' Object.h:97: error: candidates are: Object* Object::initDict(XRef*) XRef.cc: At global scope: XRef.cc:587: error: no `GBool XRef::readXRefStreamSection(Stream*, int*, int, int)' member function declared in class `XRef' XRef.cc: In member function `GBool XRef::readXRefStreamSection(Stream*, int*, int, int)': XRef.cc:608: error: 'struct XRefEntry' has no member named 'type' XRef.cc:640: error: 'struct XRefEntry' has no member named 'type' XRef.cc:645: error: 'struct XRefEntry' has no member named 'type' XRef.cc:650: error: 'struct XRefEntry' has no member named 'type' XRef.cc:650: error: `xrefEntryCompressed' undeclared (first use this function) XRef.cc: In member function `GBool XRef::constructXRef()': XRef.cc:748: error: 'struct XRefEntry' has no member named 'type' XRef.cc:752: error: 'struct XRefEntry' has no member named 'type' XRef.cc:756: error: 'struct XRefEntry' has no member named 'type' XRef.cc: In member function `Object* XRef::fetch(int, int, Object*)': XRef.cc:929: error: 'struct XRefEntry' has no member named 'type' make[3]: *** [XRef.lo] Error 1 make[3]: Leaving directory `/var/tmp/portage/kdegraphics-3.3.0-r2/work/kdegraphics-3.3.0/kpdf/xpdf' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/var/tmp/portage/kdegraphics-3.3.0-r2/work/kdegraphics-3.3.0/kpdf' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/var/tmp/portage/kdegraphics-3.3.0-r2/work/kdegraphics-3.3.0' make: *** [all] Error 2 !!! ERROR: kde-base/kdegraphics-3.3.0-r2 failed. !!! Function kde_src_compile, Line 142, Exitcode 2 !!! died running emake, kde_src_compile:make !!! If you need support, post the topmost build error, NOT this status message. This is on x86 architecture. sejo@gentoo.org 2004-11-05 04:15:04 0000 stable on ppc koon@gentoo.org 2004-11-05 04:40:59 0000 Michiel: can you reproduce after a new emerge sync ? ppc64: please mark stable corsair@gentoo.org 2004-11-05 12:27:48 0000 tested and marked stable on ppc64. Markus koon@gentoo.org 2004-11-06 05:34:14 0000 GLSA 200410-30:02 update out