The Slackware Linux Project: Mailing List Info

Mailing List Info
News
Security Advisories
FAQ
Book
General Info
Get Slack
Install Help
Configuration
Packages
ChangeLogs
Propaganda
Ports
Other Sites
Support
Contact
Mailing Lists
Archives
About
From: Slackware Security Team <security@slackware.com>
To: slackware-security@slackware.com
Subject: [slackware-security] xpdf (SSA:2013-233-02)
Date: Wed, 21 Aug 2013 17:24:46 -0700 (PDT)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  xpdf (SSA:2013-233-02)

New xpdf packages are available for Slackware 12.1, 12.2, 13.0, 13.1, 13.37,
14.0, and -current to fix a security issue.


Here are the details from the Slackware 14.0 ChangeLog:
+--------------------------+
patches/packages/xpdf-3.03-i486-1_slack14.0.txz:  Upgraded.
  Sanitize error messages to remove escape sequences that could be used to
  exploit vulnerable terminal emulators.
  For more information, see:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2142
  Thanks to mancha.
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/xpdf-3.03-i486-1_slack12.1.tgz

Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/xpdf-3.03-i486-1_slack12.2.tgz

Updated package for Slackware 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/xpdf-3.03-i486-1_slack13.0.txz

Updated package for Slackware x86_64 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/xpdf-3.03-x86_64-1_slack13.0.txz

Updated package for Slackware 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/xpdf-3.03-i486-1_slack13.1.txz

Updated package for Slackware x86_64 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/xpdf-3.03-x86_64-1_slack13.1.txz

Updated package for Slackware 13.37:
ftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/xpdf-3.03-i486-1_slack13.37.txz

Updated package for Slackware x86_64 13.37:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/xpdf-3.03-x86_64-1_slack13.37.txz

Updated package for Slackware 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/xpdf-3.03-i486-1_slack14.0.txz

Updated package for Slackware x86_64 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/xpdf-3.03-x86_64-1_slack14.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/xpdf-3.03-i486-3.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/xpdf-3.03-x86_64-3.txz


MD5 signatures:
+-------------+

Slackware 12.1 package:
d98942c697d3fd10d89535155c67bbeb  xpdf-3.03-i486-1_slack12.1.tgz

Slackware 12.2 package:
1ea3172cd34a213fcee1c54f55628b37  xpdf-3.03-i486-1_slack12.2.tgz

Slackware 13.0 package:
f50ec6ccf0fe3c49096fce0ece553fa1  xpdf-3.03-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
47652a6e1ac5ec53694766359584ffa6  xpdf-3.03-x86_64-1_slack13.0.txz

Slackware 13.1 package:
7f01bf8c10915227805c05ad8a4a9eed  xpdf-3.03-i486-1_slack13.1.txz

Slackware x86_64 13.1 package:
6c90be81f9c9c68615bd24c137d89274  xpdf-3.03-x86_64-1_slack13.1.txz

Slackware 13.37 package:
1eeff76dad934506b28a82af5c27ea5f  xpdf-3.03-i486-1_slack13.37.txz

Slackware x86_64 13.37 package:
aba82ab68d7caa85512aa2bac896bae5  xpdf-3.03-x86_64-1_slack13.37.txz

Slackware 14.0 package:
39ed74f63313c498e872e3ff07a51db0  xpdf-3.03-i486-1_slack14.0.txz

Slackware x86_64 14.0 package:
c982dadbbf60bbcf96169dc738440e6c  xpdf-3.03-x86_64-1_slack14.0.txz

Slackware -current package:
a8e79843930403bbb2b15513ad3ec889  xap/xpdf-3.03-i486-3.txz

Slackware x86_64 -current package:
36198b91136ce737a94ac06d54ea3da3  xap/xpdf-3.03-x86_64-3.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg xpdf-3.03-i486-1_slack14.0.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

+------------------------------------------------------------------------+
| To leave the slackware-security mailing list:                          |
+------------------------------------------------------------------------+
| Send an email to majordomo@slackware.com with this text in the body of |
| the email message:                                                     |
|                                                                        |
|   unsubscribe slackware-security                                       |
|                                                                        |
| You will get a confirmation message back containing instructions to    |
| complete the process.  Please do not reply to this email address.      |
+------------------------------------------------------------------------+
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)

iEYEARECAAYFAlIUWtEACgkQakRjwEAQIjNrZgCdHBoSxcX+RbfyPDV1o3bC1J1s
Q/sAni4l6gz9CaegsTotMrr17+QxRuOf
=eHgv
-----END PGP SIGNATURE-----
Slackware™ is a trademark of Patrick Volkerding.