0e0da738b276567e9ee36aa824e86124 post-2.2.2-kdelibs-kssl.diff Fix for kssl forgetting to check basic constraints. See also: http://online.securityfocus.com/archive/1/286290/2002-07-31/2002-08-06/0 http://online.securityfocus.com/archive/1/287050/2002-08-07/2002-08-13/2 --- 1abff4a02381b5ca11273d02c6a5c6ca post-3.0-kdelibs-kcookiejar.diff Fix for detecting secure HTTP cookies. See also: http://www.kde.org/info/security/advisory-20020908-1.txt --- 523b2fb677310792cbb04861f358d08d post-3.0.3-kdelibs-khtml.diff b0b23c3caa062c60375a1160418a2810 post-2.2.2-kdelibs-khtml.diff Fix for cross side scripting domain check. See also: http://www.kde.org/info/security/advisory-20020908-2.txt --- 62a1178c6a1730cbab98bbc825adafe9 post-2.2.2-kdegraphics-kghostview.diff 9e33962406ac123e4fbdab20b4123ccf post-3.0.3-kdegraphics-kghostview.diff Fix for several possible buffer overflows. See also: http://www.kde.org/info/security/advisory-20021008-1.txt --- 2e8ddbb0d75cd63fd534ec001bb5a415 post-3.0.3-kdenetwork-kpf.diff Fix for directory traversal exploit. See also: http://www.kde.org/info/security/advisory-20021008-2.txt --- 5625501819f09510d542142aea7b85ab post-3.0.4-kdelibs-kio-misc.diff Fix for the rlogin protocol implementation vulnerability. See also: http://www.kde.org/info/security/advisory-20021111-1.txt --- 5b2334c689ae9412475f6b653a107401 post-3.0.4-kdenetwork-lanbrowsing.diff Fix for the resLISa / LISa Vulnerabilities. See also http://www.kde.org/info/security/advisory-20021111-2.txt --- 522331e2b47f84956eb2df1fcf89ba17 post-2.2.2-kdebase.diff 0dbd747882b942465646efe0ba6af802 post-2.2.2-kdegames.diff 4b9c93acd452d1de2f4f0bca5b05593f post-2.2.2-kdegraphics.diff 93a12594d0fb48c7b50bfd4a10a9935d post-2.2.2-kdelibs.diff d1d25b39ee98e340ac3730f7afe54f0c post-2.2.2-kdemultimedia.diff 59ac7be4995bed8b119a4e5882e54cff post-2.2.2-kdenetwork.diff 0a3ae9eeeceefb2f631a26ec787663a9 post-2.2.2-kdepim.diff 690c7fdab1bbc743eafac9b06997a03b post-2.2.2-kdesdk.diff 8174e328f47e18a8a52b13b34f5c54e5 post-2.2.2-kdeutils.diff Security audit fixes for KDE 2.2.2. Note that this supersedes the post-2.2.2 Patches which are mentioned above. See also http://www.kde.org/info/security/advisory/20021220-1.txt --- 002e297cb41705f9b744f6cc64e9d79e post-2.2.2-kdebase-thumbnail.diff a0a87a2f7617e83c831d1a9c2588830e post-2.2.2-kdegraphics-kdvi.diff 1e7520b590e6573446487efb3995d8a3 post-2.2.2-kdegraphics-kghostview-2.diff e2c50fb7c97e1fbc8939e30a30054e45 post-2.2.2-kdelibs-kimgio.diff 86bc41fd6e542320e5430fd4e30a8f99 post-2.2.2-kdelibs-kurl.diff b2e823b0a46ef2d949118f7fded7092e post-3.0.5a-kdebase-thumbnail.diff 8c783fbe36d25b30b4fc2c91777906a6 post-3.0.5a-kdegraphics-kdvi.diff 952ec6e4ddafd7d833106b78df2d342f post-3.0.5a-kdegraphics-kghostview.diff 604d8de4116d0a4c4896521b03884a06 post-3.0.5a-kdelibs-kimgio.diff a2ca01c77918b13464f2d1fc0858d6f0 post-3.1.1-kdebase-thumbnail.diff 38e2483c835239185c9c895e82079dea post-3.1.1-kdegraphics-kdvi.diff a64ab67e3d5ab5fdbfe444fd6e1764b7 post-3.1.1-kdegraphics-kghostview.diff 9ef02df4d21b9040ef488b6f97e3e93a post-3.1.1-kdelibs-kimgio.diff Fix for PS/PDF insecure handling vulnerability. See also http://www.kde.org/info/security/advisory/advisory-20030409-1.txt --- 4c252809dec8be73bbe55367350c27ca post-2.2.2-kdelibs-kssl-2.diff 441afec72fab406f8c1cd7d6b839b3e0 post-2.2.2-kdelibs-kio-2.diff Fix for flaw in KSSL certificate validation. --- 90d0a6064ee1ba99347b55e303081cd5 post-2.2.2-kdelibs-http.patch a2bd79b4a78aa7d51afe01c47a8ab6d2 post-3.0.5b-kdelibs-http.patch a5ed29d49c07aa5a2c63b9bbaec0e7b2 post-3.0.5b-kdelibs-khtml.patch 8ebafe8432e92cb4e878a37153cf12a4 post-3.1.2-kdelibs-http.patch 6f27515ca22198b4060f4a4fe3c3a6b1 post-3.1.2-kdelibs-khtml.patch Fix for http authentication credential leak. See also http://www.kde.org/info/security/advisory/advisory-20030729-1.txt --- 4672868343b26e0c0eae91fffeff1f7e post-2.2.2-kdebase-kdm.patch fde237203fc7b325c34d2f90a463db3f post-3.0.5-kdebase-kdm.patch 8553c20798b321e333d8c516636f2297 post-3.1.3-kdebase-kdm.patch Fix for two KDM vulnerabilities. --- 26469366cc393e50ff80d6dca8c74c58 post-3.1.4-kdepim-kfile-plugins.diff Fix for buffer overflow in .VCF reader. --- 5c573853ec3f426d33c559958baa2169 post-3.0.5b-kdelibs-kapplication.patch eaf9237b3af56b3b01df966b13fe2714 post-3.0.5b-kdelibs-ktelnetservice.patch 7c2bda942c4183d4163eb3f47f22e0bc post-3.1.5-kdelibs-kapplication.patch bde52aa0bba055c4f678540ec20bfe5a post-3.1.5-kdelibs-ktelnetservice.patch 7cebc1abb3141287db618486fd679b32 post-3.2.2-kdelibs-kapplication.patch 52e0e955204a77781505d33b9a3c341d post-3.2.2-kdelibs-ktelnetservice.patch Patch to fix problem with mailto and telnet URI handlers. See also http://www.kde.org/info/security/advisory-20040517-1.txt http://www.idefense.com/application/poi/display?id=104 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0411 http://www.securityfocus.com/archive/1/363225 --- da950a651e69cd810019efce284120fc post-3.0.5b-kdelibs-kstandarddirs.patch c97ab0cf014adb59e315047210316f5d post-3.1.5-kdelibs-kstandarddirs.patch 345ce2e01cfdfa4754c47894c0271dcc post-3.2.3-kdelibs-kstandarddirs.patch Patch to fix problem with unsafe use of temporary directory. See also http://www.kde.org/info/security/advisory-20040811-1.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0689 --- 0046c691fa833b2ff8d7eac15312a68b post-3.2.3-kdelibs-dcopserver.patch Patch to fix problem with unsafe creation of temporary directory. See also http://www.kde.org/info/security/advisory-20040811-2.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0690 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=261386 --- dc4dfff2df75d19e527368f56dc92abb post-3.0.5b-kdebase-htmlframes.patch aa3ac08a45851a1c33b2fcd435e1d514 post-3.0.5b-kdelibs-htmlframes.patch caa562da0735deacba3ae9170f2bf18f post-3.1.5-kdebase-htmlframes.patch e6cebe1f93f7497d720018362077dcf7 post-3.1.5-kdelibs-htmlframes.patch a60fd1628607d4abdeb930662d126171 post-3.2.3-kdebase-htmlframes.patch 8384f2785295be7082d9984ba8e175eb post-3.2.3-kdelibs-htmlframes.patch Patches to fix frame injection vulnerability in Konqueror. Please note that the kdelibs patch should be applied and installed before the kdebase patch. See also http://www.kde.org/info/security/advisory-20040811-3.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0721 http://secunia.com/advisories/11978/ http://www.heise.de/newsticker/meldung/48793 http://bugs.kde.org/show_bug.cgi?id=84352 --- 3d83e3235d608176f47d84abdf78e96e post-3.0.5b-kdelibs-kcookiejar.patch eec46dc123742c23819bd4c396eb87b6 post-3.1.5-kdelibs-kcookiejar.patch ca12b078c7288ce9b2653e639a5b3ee0 post-3.2.3-kdelibs-kcookiejar.patch Patches to fix cross-domain cookie injection vulnerability for certain country specific domains. See also http://www.kde.org/info/security/advisory-20040823-1.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0746 --- 4f854adb507f4d04e997702e44ffc2ea post-3.2.3-kdegraphics.diff 651fba579516ea947fbefee373f40a6c post-3.3.1-kdegraphics.diff Patches to fix xpdf integer overflows. See also http://www.kde.org/info/security/advisory-20041021-1.txt --- d080d9acf4d2abc5f91ccec8fc463568 post-3.2.3-kdebase-smb.diff d79d1717b4bc0b3891bacaaf37deade0 post-3.2.3-kdelibs-khtml.diff 94e76ec98cd58ce27cad8f886d241986 post-3.2.3-kdelibs-kio.diff 501852d12f82aebe7eb73ec5d96c9e6d post-3.3.1-kdebase-smb.diff 5b9c1738f2de3f00533e376eb64c7137 post-3.3.1-kdelibs-khtml.diff f287c900c637af2452c7a554f2df166f post-3.3.1-kdelibs-kio.diff d3658e90acec6ff140463ed2fd0e7736 post-3.3.2-kdelibs-kio.diff Patches to fix password exposure in various places. See also http://www.kde.org/info/security/advisory-20041209-1.txt --- 4d61d568e822d781308caa73050930bd post-3.2.3-kdelibs-htmlframes2.patch 7340cfd22ee46a6d65e001179c082b08 post-3.2.3-kdebase-htmlframes2.patch d2e513a039ba44becf5728b983b78fc4 post-3.3.2-kdelibs-htmlframes2.patch 31688394bea2dd685371d9d3da9ec2ab post-3.3.2-kdebase-htmlframes2.patch Patches to fix Konqueror window injection vulnerability. See also http://www.kde.org/info/security/advisory-20041213-1.txt --- 7fc001d010c640738ed7d2fe347f002d post-3.2.3-kdelibs-khtml-java.tar.bz2 kdelibs/khtml/java replacement to fix Konqueror Java Vulnerability. See also http://www.kde.org/info/security/advisory-20041220-1.txt --- 6f345c4b89f0bc27522f5d62bfd941cd post-3.2.3-kdegraphics-2.diff 0ac92868d3b84284e54877e32cde521f post-3.3.2-kdegraphics.diff fix for buffer overflow in xpdf. See also http://www.kde.org/info/security/advisory-20041223-1.txt --- a639b7b592f005e911c454a0a8c9c542 post-3.2.3-kdelibs-kioslave.patch fe67157b26a8cdf5bcfa1898cdf3b154 post-3.3.2-kdelibs-kioslave.patch fix for ftp kioslave command injection. See also http://www.kde.org/info/security/advisory-20050101-1.txt --- fc6fc7fa6886d6ff19037e7547846990 post-3.2.3-kdegraphics-3.diff fc6fc7fa6886d6ff19037e7547846990 post-3.3.2-kdegraphics-3.diff fix for buffer overflow in xpdf See also http://www.kde.org/info/security/advisory-20050119-1.txt --- 0e6194cbfe3f6d3b3c848c2c76ef5bfb post-1.3.5-koffice.diff fix for buffer overflow in KWord PDF Import filter (xpdf) See also http://www.kde.org/info/security/advisory-20050119-1.txt --- 36f8b6beac18a9d173339388d13e2335 post-0.15-konversation.diff fix for several vulnerabilities in Konversation See also http://www.kde.org/info/security/advisory-20050121-1.txt --- 2b9c8330bec2c0dc6669ccc40b24dd70 post-3.3.2-kdeedu-kstars.diff fix for privilege escalation vulnerabilities in kstars/indi/fliccd See also http://www.kde.org/info/security/advisory-20050215-1.txt --- 0e999df54963edd5f565b6d541f408d9 post-3.1.5-kdenetwork.diff fix kppp privileged fd leak vulnerability See also http://www.kde.org/info/security/advisory-20050228-1.txt --- 377c49d8224612fbf09f70f3c09d52f5 post-3.1.5-kdelibs-dcop.patch 0948701bffb082c65784dc8a2b648ef0 post-3.2.3-kdelibs-dcop.patch 7309e259ae1f29be08bbb70e580da3fb post-3.3.2-kdelibs-dcop.patch fix for local DCOP DOS vulnerability See also http://www.kde.org/info/security/advisory-20050316-1.txt --- 611bad3cb9ae46ac35b907c7321da7aa post-3.2.3-kdelibs-idn.patch b92182b7734e4ff145a08d9755448ec7 post-3.3.2-kdelibs-idn-2.patch fix for idn spoofing vulnerability See also http://www.kde.org/info/security/advisory-20050316-2.txt --- 43213bb9876704041af622ed2a6903ae post-3.2.3-kdelibs-dcopidlng.patch 43213bb9876704041af622ed2a6903ae post-3.3.2-kdelibs-dcopidlng.patch fix for insecure temporary filename creation by dcopidlng See also http://www.kde.org/info/security/advisory-20050316-3.txt --- 8366d0e5c8101c315a0bdafac54536d6 post-3.3.2-kdelibs-kimgio.diff 78473d4dad612e6617eb6652eec2ab80 post-3.4.0-kdelibs-kimgio.diff fix for input validation vulnerabilities in kimgio See also http://www.kde.org/info/security/advisory-20050421-1.txt --- d210c07121c1ba3a97660a6e166738e6 post-3.3.2-kdewebdev-kommander.diff c388b21d91c8326fc9757cd8786713db post-3.4.0-kdewebdev-kommander.diff fix for Kommander untrusted code execution See also http://www.kde.org/info/security/advisory-20050420-1.txt --- acc1153e58b45f92b43747dbc6693e41 post-3.3.2-kdelibs-kimgio-fixed.diff 13a20ddfff937f77e74cdfad6436ba72 post-3.3.2-kdewebdev-kommander-fixed.diff e6398f3326d782d2c9b1543fab683b43 post-3.4.0-kdelibs-kimgio-fixed.diff 80a64324816d321934feeb6638050e4f post-3.4.0-kdewebdev-kommander-fixed.diff Fixed Kommander and Kimgio patches. See also http://www.kde.org/info/security/advisory-20050504-1.txt --- 1f0a97dcdda6236acf79ceb823ff95a3 post-3.2.3-kdelibs-kate.diff 138c3252883171d55ec24ed0318950fd post-3.3.2-kdelibs-kate.diff 50f7bc6d8cf4b7aaa65e4e8062fc46c9 post-3.4.0-kdelibs-kate.diff Fixed Kate/kwrite backup file permission leak See also http://www.kde.org/info/security/advisory-20050718-1.txt --- 73ebcef42173bf567d473414693898b0 post-3.3.2-kdenetwork-libgadu.patch 675008c8bc9d7edf4d0034a398d15cf0 post-3.4.1-kdenetwork-libgadu.patch Update libgadu copy in kdenetwork to 0.6rc3 to fix integer overflow vulnerabilities See also http://www.kde.org/info/security/advisory-20050720-1.txt --- 4a4bcdcb2456ab92b7846b6646da1bcb post-3.3.1-kdegraphics-4.diff ec3b95efe9139f4259d6de213fe4b87b post-3.4.1-kdegraphics-4.diff Apply a patch to the xpdf sources in kpdf that fixes an infinitely growing temp file upon parsing a malformed pdf file. See also http://www.kde.org/info/security/advisory-20050809-1.txt --- 0e82c5810df3b04370188ba13cc50203 post-3.4.2-kdeedu.diff Fixes several temp file handling related errors in langen2kvtml. See also http://www.kde.org/info/security/advisory-20050815-1.txt --- 86f7d6fd68568dfd1edcae453958ba31 post-3.4.2-kdebase-kcheckpass.diff Fixes a local root vulnerability in kcheckpass on certain setups. See also http://www.kde.org/info/security/advisory-20050905-1.txt --- b36488a186aded0f5e812397af3c689a post-koffice-1.2.1-rtfimport.diff 71a1baa8244dbcc1bfc2bd3c3e3dd40f post-koffice-1.3.5-rtfimport.diff 9f77b327119fd1db0752dab785e2a975 post-koffice-1.4.1-rtfimport.diff Fixes a buffer overflow in KWord's RTF importer. See also http://www.koffice.org/security/advisory-20051011-1.txt --- 939b41e59cfb5f738e9b6fcfff4faf48 post-1.3-koffice-CAN-2005-3193.diff 51ae90242b7e65ba34c704b38c91cfbe post-3.2.3-kdegraphics-CAN-2005-3193.diff fe38b0728e5e2b000eb04e037536f330 post-3.3.2-kdegraphics-CAN-2005-3193.diff e8dde74416769d4589dcca25072aea3e post-3.4.3-kdegraphics-CAN-2005-3193.diff 17ea076e986be5e26a4feea3cd264f7e post-3.5.0-kdegraphics-CAN-2005-3193.diff Fixes several buffer overflows in xpdf code. See also http://www.kde.org/info/security/advisory-20051207-2.txt --- 9bca9b44ca2d84e3b2f85ffb5d30e047 post-3.2.3-kdelibs-kjs.diff ecc0ec13ce3b06e94e35aa8e937e02bf post-3.4.3-kdelibs-kjs.diff Fixes a heap based buffer overflow in kjs. See also http://www.kde.org/info/security/advisory-20060119-1.txt --- ebbce0a49537b694932b3c0efcf18261 post-3.4.3-kdegraphics-CVE-2006-0301.diff bc7dc2a5235f95a41fc1d7ab885899da post-3.5.1-kdegraphics-CVE-2006-0301.diff Fixes a heap based buffer overflow in xpdf code. See also http://www.kde.org/info/security/advisory-20060202-1.txt --- ea346b89a3b39915abbfd56841b9df23 post-3.3.2-kdegraphics-CVE-2006-0746.diff Fixes a heap based buffer overflow in kpdf code. See also http://www.kde.org/info/security/advisory-20060310-1.txt --- feb69d70388b0a4745b29a644a3f7779 kaffeine-0.4.x-CVE-2006-0051.patch 86109b6919cc2984f85dc6a463627c50 kaffeine-0.5.x-CVE-2006-0051.patch 45cdf59fc1d9d94b045915e9583187d8 kaffeine-0.7.x-CVE-2006-0051.patch Fixes a heap based buffer overflow in Kaffeine's streaming code. See also http://www.kde.org/info/security/advisory-20060404-1.txt --- 8aa6b41cccca4216c6eb1cf705c2370a post-3.2.0-kdebase-kdm.diff f2e1424d97f2cd18674bef833274c5e3 post-3.3.0-kdebase-kdm.diff 9daecff07d57dabba35da247e752916a post-3.5.0-kdebase-kdm.diff Fixes a symlink vulnerability that can be exploited to read files from other users including root. See also http://www.kde.org/info/security/advisory-20060414-1.txt --- 19b351f6bf3055591399edba1b6ccc01 arts-1.0.x-diff 64fcd7bf31d8b0ade22b8f98fbebe0fb arts-1.2.x.diff Fixes a return value checking vulnerability that can be exploited to gain root. See also http://www.kde.org/info/security/advisory-20060414-2.txt --- 1ce5fb77aff8f97ed21da046c1385000 post-3.5.5-kdegraphics.diff Fixes a simple DoS vulnerability in the kfile exif reading plugin. See also http://www.kde.org/info/security/advisory-20061129-1.txt --- 20dff20ccd2e184f1874aa60d85f4380 post-koffice-1.6.0.diff Fixes an integer overflow issue that could cause a heap based buffer overflow in Koffice. See also http://www.kde.org/info/security/advisory-20061205-1.txt --- 72897a581daa9f71bdf61238f4c3e693 post-3.5.5-kdenetwork-ksirc.diff Fixes a DoS in ksirc that could allow malicious irc servers to crash the client. See also http://www.kde.org/info/security/advisory-20070109-1.txt --- c2d4c2aa3aa990e2dba00f782a140a1b post-3.2.3-kdegraphics-CVE-2007-0104.diff a690ce46117257609c2b43485ea4d0d7 post-3.5.5-kdegraphics-CVE-2007-0104.diff dc28881c39f11c040f8c942e4af238d1 koffce-xpdf-CVE-2007-0104.diff Fixes a Dos in kpdf that could allow maliciously crafted PDF files to cause an endless loop. See also http://www.kde.org/info/security/advisory-20070115-1.txt --- edc2cba17795356e98eba6f3841c6277 post-3.5.6-kdelibs.diff Fixes a possible XSS issue in tag parsing of khtml/Konqueror. See also http://www.kde.org/info/security/advisory-20070206-1.txt --- 13535c902a6b3223005adfc1fccdd32f CVE-2007-1564-kdelibs-3.4.3.diff 62872147c2d369feb3d9077e9b32b03d CVE-2007-1564-kdelibs-3.5.6.diff See also http://www.kde.org/info/security/advisory-20070326-1.txt --- eb5e65cd5fadab128c1bc5ce2211126b koffice-xpdf-CVE-2007-3387.diff d1b3248c6a7843ad3265d25adcf7aa2f post-3.5.7-kdegraphics-CVE-2007-3387.diff See also http://www.kde.org/info/security/advisory-20070730-1.txt --- d9a07e8d9a138ef9da90b7af8e35d977 post-3.4.2-kdebase-konqueror.diff e15d6b5580c5a20ab935f8e553d113e0 post-3.5.7-kdebase-konqueror-2.diff 4c0fb2576875ded606f276421fc49752 post-3.5.7-kdelibs-kdecore-2.diff See also http://www.kde.org/info/security/advisory-20070913-1.txt --- ad7333a336bdbaef7fae5e74cd12119b post-3.4.2-kdebase-kdm.diff ee6c57046902c5b5a32a4699558baafc post-3.5.7-kdebase-kdm.diff See also http://www.kde.org/info/security/advisory-20070919-1.txt --- e7ff688250cee0e1d81f4d65fc0f9871 post-3.4.3-kdegraphics-CVE-2007-5393.diff b2214c8e8f6300e72bd92f9ba12a33c7 post-3.5.5-kdegraphics-CVE-2007-5393.diff eee08cb565c24ad645aad3136de5162d post-3.5.8-kdegraphics-kpdf.diff 1d6b58dbe1cab4b0168a8e4344f8d7af koffice-1.6.3-xpdf2-CVE-2007-4352-5392-5393.diff See also http://www.kde.org/info/security/advisory-20071107-1.txt --- f31a4bb0429149e27b4436f138eea471 post-kde-4.0.3-khtml.diff See also http://www.kde.org/info/security/advisory-20080426-1.txt --- 9d99d5f02b696e7a493836f285a319da post-kde-3.5.5-kinit.diff See also http://www.kde.org/info/security/advisory-20080426-2.txt --- 68c1dfe76e80812e5e049bb599b3374e kdebase-workspace-4.3.5-CVE-2010-0436.diff See also http://www.kde.org/info/security/advisory-20100413-1.txt