Bug 198409 - app-office/{koffice,kword}, kde-base/{kdegraphics,kpdf} Multiple XPDF issues (CVE-2007-{4352,5392,5393})
|
Bug#:
198409
|
Product: Gentoo Security
|
Version: unspecified
|
Platform: All
|
|
OS/Version: Linux
|
Status: RESOLVED
|
Severity: normal
|
Priority: P2
|
|
Resolution: FIXED
|
Assigned To: security@gentoo.org
|
Reported By: rbu@gentoo.org
|
|
Component: Vulnerabilities
|
|
|
URL:
http://www.kde.org/info/security/advisory-20071107-1.txt
|
|
Summary: app-office/{koffice,kword}, kde-base/{kdegraphics,kpdf} Multiple XPDF issues (CVE-2007-{4352,5392,5393})
|
|
Keywords:
|
|
Status Whiteboard: B2 [glsa]
|
|
Opened: 2007-11-07 23:50 0000
|
Multiple issues in XPDF, which our four KDE packages bundle.
See bug 196735 for details.
KDE, please advise. Any word from upstream?
The patches are linked from the KDE advisory in $URL.
This is fixed in the following packages that require no further work:
kde-base/kpdf-3.5.8-r1
kde-base/kdegraphics-3.5.8-r1
These four packages are fixed, too, but need to be stabilised:
kde-base/kpdf-3.5.7-r3
kde-base/kdegraphics-3.5.7-r3
app-office/kword-1.6.3-r2
app-office/koffice-1.6.3-r2
Arches, please test and mark stable kde-base/kpdf-3.5.7-r2:
Target keywords : "alpha amd64 ia64 ppc ppc64 sparc x86"
kde-base/kdegraphics-3.5.7-r3:
Target keywords : "alpha amd64 hppa ia64 mips ppc ppc64 sparc x86"
app-office/kword-1.6.3-r2:
Target keywords : "alpha amd64 hppa ia64 ppc ppc64 sparc x86"
app-office/koffice-1.6.3-r2:
Target keywords : "alpha amd64 hppa ia64 ppc ppc64 sparc x86"
It's kde-base/kpdf-3.5.7-r3, *not* -r2. :-)
Marked all four stable on amd64.
(In reply to comment #3)
> Arches, please test and mark stable kde-base/kpdf-3.5.7-r2:
> app-office/kword-1.6.3-r2:
> Target keywords : "alpha amd64 hppa ia64 ppc ppc64 sparc x86"
Done on x86, rest for someone else.
kdegraphics stable on x86, we are out.
Does not affect current (2008.0) release. Removing release.
