Bug 78619 - kde-base/kdegraphics includes vulnerable xpdf again
Bug#: 78619 Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: All Status: RESOLVED Severity: major Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: jaervosz@gentoo.org
Component: Vulnerabilities
URL:  http://www.kde.org/info/security/advisory-20050119-1.txt
Summary: kde-base/kdegraphics includes vulnerable xpdf again
Keywords:  
Status Whiteboard: A2 [glsa] jaervosz
Opened: 2005-01-18 22:19 0000
Description:   Opened: 2005-01-18 22:19 0000 
kpdf includes xpdf code and therefore might be vulnerable CAN-2005-0064.
Please see bug 77888 for details.

------- Comment #1 From Sune Kloppenborg Jeppesen 2005-01-19 00:53:58 0000 ------- 
KDE team, please bump kdegraphics. Upstream patch is available on bug #77888.

------- Comment #2 From Carsten Lohrke 2005-01-19 04:43:03 0000 ------- 
<<< kdegraphics-3.2.3-r4.ebuild
<<< kdegraphics-3.3.2-r2.ebuild

herds, please mark stable - would be nice to have it in 2005.0

------- Comment #3 From Lars Weiler (RETIRED) 2005-01-21 10:16:37 0000 ------- 
ppc stable.

------- Comment #4 From Bryan Østergaard (RETIRED) 2005-01-21 10:21:03 0000 ------- 
Alpha stable.

------- Comment #5 From Sune Kloppenborg Jeppesen 2005-01-21 11:27:22 0000 ------- 
amd64, sparc please mark stable for 2005.0 if possible.

------- Comment #6 From Gustavo Zacarias (RETIRED) 2005-01-21 12:26:30 0000 ------- 
sparc stable.

------- Comment #7 From Marcus D. Hanwell 2005-01-21 12:33:43 0000 ------- 
Stable on amd64.

------- Comment #8 From Thierry Carrez (RETIRED) 2005-01-22 04:20:16 0000 ------- 
Hmm don't we also need kdegraphics-3.2.3-r4 stable on amd64 and alpha ?

------- Comment #9 From Sune Kloppenborg Jeppesen 2005-01-22 04:30:23 0000 ------- 
amd64 and alpha please mark both versions stable see comment #8.

------- Comment #10 From Bryan Østergaard (RETIRED) 2005-01-22 04:35:50 0000 ------- 
3.2.3-r4 stabled on alpha.

------- Comment #11 From Danny van Dyk (RETIRED) 2005-01-22 15:47:09 0000 ------- 
finally [;-)] stable on amd64. Sorry guys.

------- Comment #12 From Sune Kloppenborg Jeppesen 2005-01-22 23:54:17 0000 ------- 
Thx Danny.

------- Comment #13 From Guy Martin 2005-01-23 05:16:33 0000 ------- 
Stable on hppa.

------- Comment #14 From Sune Kloppenborg Jeppesen 2005-01-23 06:07:34 0000 ------- 
GLSA 200501-32

ia64 and ppc64 please remember to mark stable to benifit from the GLSA.

------- Comment #15 From Markus Rothe 2005-01-23 12:21:26 0000 ------- 
stable on ppc64