Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-710-1:E75A4
HistoryApr 18, 2005 - 3:49 p.m.

[SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service

2005-04-1815:49:26
lists.debian.org
6

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

Debian Security Advisory DSA 710-1 [email protected]
http://www.debian.org/security/ Martin Schulze
April 18th, 2005 http://www.debian.org/security/faq

Package : gtkhtml
Vulnerability : null pointer dereference
Problem-Type : remote
Debian-specific: no
CVE ID : CAN-2003-0541
Debian Bug : 279726

Alan Cox discovered a problem in gtkhtml, an HTML rendering widget
used by the Evolution mail reader. Certain malformed messages could
cause a cras due to a null pointer dereference.

For the stable distribution (woody) this problem has been fixed in
version 1.0.2-1.woody1.

For the unstable distribution (sid) this problem has been fixed in
version 1.0.4-6.2.

We recommend that you upgrade your gtkhtml package and restart
Evolution.

Upgrade Instructions

wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.0 alias woody

Source archives:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1.dsc
  Size/MD5 checksum:     1125 6988f7d4a99fb8d11718ffe378f43b3b
http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1.diff.gz
  Size/MD5 checksum:     7774 1c2ba9567085f2f53be68f90c83ca1b0
http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2.orig.tar.gz
  Size/MD5 checksum:  1303882 5276fcca2007f2d1a9da912f167da942

Architecture independent components:

http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-data_1.0.2-1.woody1_all.deb
  Size/MD5 checksum:   110140 201592f40c1af63858d3eeaa86199aff

Alpha architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_alpha.deb
  Size/MD5 checksum:   183820 5ee322b2a611a805024d111d4f09294b
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_alpha.deb
  Size/MD5 checksum:   471328 af1ab4aa1163476af6934311a17cc20a
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_alpha.deb
  Size/MD5 checksum:   265262 647cc727c44ea8f7b20deae2b92ecde9

ARM architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_arm.deb
  Size/MD5 checksum:   161032 cb49c5d6f69fe2586cdb67635e2389de
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_arm.deb
  Size/MD5 checksum:   369672 3f62dab704cbcbe4b42ca92f6ee9c8c2
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_arm.deb
  Size/MD5 checksum:   228732 d7c6e04d352fa685923897c90390124b

Intel IA-32 architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_i386.deb
  Size/MD5 checksum:   161342 764b98a643e95cd6c71c63321558f09b
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_i386.deb
  Size/MD5 checksum:   327032 73c654db1df353ceba333cb360fd4371
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_i386.deb
  Size/MD5 checksum:   211340 1121bd3c7c999475e29318d5b51d7893

Intel IA-64 architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_ia64.deb
  Size/MD5 checksum:   220844 a76275284742a70e1ef531f116031c41
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_ia64.deb
  Size/MD5 checksum:   521132 a2a818095e2b1269c76d51000e83a94d
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_ia64.deb
  Size/MD5 checksum:   365282 5b2435c82e113857df3f071b3523da9a

HP Precision architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_hppa.deb
  Size/MD5 checksum:   181092 840d582a8ccc53b53e8ae2a5386cb581
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_hppa.deb
  Size/MD5 checksum:   459262 0f1d29d73b8e3d4c4f0ac1cfaa9ca75f
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_hppa.deb
  Size/MD5 checksum:   301290 dda8c4920f558bc87db7d49516e1d0a8

Motorola 680x0 architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_m68k.deb
  Size/MD5 checksum:   156492 f1c02dc230f2015b44fa828d527d7284
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_m68k.deb
  Size/MD5 checksum:   321408 1d4eccc30bc5b16ec0226c26ff938491
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_m68k.deb
  Size/MD5 checksum:   218960 798d4773c9a416366aee3b8f8a20e96e

Big endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_mips.deb
  Size/MD5 checksum:   158670 48616031e2b54586d474574a15569330
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_mips.deb
  Size/MD5 checksum:   424980 0824af5b2aea3d06cbc26b74734deabc
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_mips.deb
  Size/MD5 checksum:   228374 f5b41b3662fc916ca55c33ee73853bde

Little endian MIPS architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_mipsel.deb
  Size/MD5 checksum:   157646 256efff4ab081d37dc693fc30384c30b
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_mipsel.deb
  Size/MD5 checksum:   418884 7fcfe4003100d1d59c51577eb76cbfb9
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_mipsel.deb
  Size/MD5 checksum:   226316 c8cd02352947788665d3a8ee341d5975

PowerPC architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_powerpc.deb
  Size/MD5 checksum:   159592 db5e3e20547b5d8ef7be23424d4b846f
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_powerpc.deb
  Size/MD5 checksum:   392412 a6c3956e372ce45f707e42c5fbe831de
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_powerpc.deb
  Size/MD5 checksum:   240908 a48a52556fb17012df3d6921982597c5

IBM S/390 architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_s390.deb
  Size/MD5 checksum:   160992 8c619e5d0bfb20ad019a332fd5057202
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_s390.deb
  Size/MD5 checksum:   350854 7b8292d0fd63d0f6857859db343ddcd0
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_s390.deb
  Size/MD5 checksum:   243026 8e27d879237c8c194bd3b4e74d80c63f

Sun Sparc architecture:

http://security.debian.org/pool/updates/main/g/gtkhtml/gtkhtml_1.0.2-1.woody1_sparc.deb
  Size/MD5 checksum:   165438 4d2ce3c43769b52723137ad5bf72430a
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml-dev_1.0.2-1.woody1_sparc.deb
  Size/MD5 checksum:   369240 76a7721207df6f4b9b9478d2bea4389f
http://security.debian.org/pool/updates/main/g/gtkhtml/libgtkhtml20_1.0.2-1.woody1_sparc.deb
  Size/MD5 checksum:   232952 ae95aec6f4e069ea36f7faf69ec888f7

These files will probably be moved into the stable distribution on
its next update.

For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: [email protected]
Package info: `apt-cache show <pkg>' and http://packages.debian.org/&lt;pkg&gt;

OSVersionArchitecturePackageVersionFilename
Debian3mipsellibgtkhtml-dev< 1.0.2-1.woody1libgtkhtml-dev_1.0.2-1.woody1_mipsel.deb
Debian3m68kgtkhtml< 1.0.2-1.woody1gtkhtml_1.0.2-1.woody1_m68k.deb
Debian3ia64libgtkhtml-dev< 1.0.2-1.woody1libgtkhtml-dev_1.0.2-1.woody1_ia64.deb
Debian3armgtkhtml< 1.0.2-1.woody1gtkhtml_1.0.2-1.woody1_arm.deb
Debian3s390gtkhtml< 1.0.2-1.woody1gtkhtml_1.0.2-1.woody1_s390.deb
Debian3m68klibgtkhtml-dev< 1.0.2-1.woody1libgtkhtml-dev_1.0.2-1.woody1_m68k.deb
Debian3m68klibgtkhtml20< 1.0.2-1.woody1libgtkhtml20_1.0.2-1.woody1_m68k.deb
Debian3hppalibgtkhtml20< 1.0.2-1.woody1libgtkhtml20_1.0.2-1.woody1_hppa.deb
Debian3armlibgtkhtml20< 1.0.2-1.woody1libgtkhtml20_1.0.2-1.woody1_arm.deb
Debian3alphagtkhtml< 1.0.2-1.woody1gtkhtml_1.0.2-1.woody1_alpha.deb
Rows per page:
1-10 of 351

Related

nessus 2
openvas 2
cve 1
debiancve 1
ubuntucve 1
securityvulns 1
debian 1
nessus
nessus
Mandrake Linux Security Advisory : gtkhtml (MDKSA-2003:093)
2004-07-31 00:00:00
Debian DSA-710-1 : gtkhtml - NULL pointer dereference
2005-04-18 00:00:00
openvas
openvas
Debian Security Advisory DSA 710-1 (gtkhtml)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-710-1)
2008-01-17 00:00:00
cve
cve
CVE-2003-0541
2003-09-17 04:00:00
debiancve
debiancve
CVE-2003-0541
2003-09-17 04:00:00
ubuntucve
ubuntucve
CVE-2003-0541
2003-09-17 00:00:00
securityvulns
securityvulns
[CLA-2003:737] Conectiva Security Announcement - gtkhtml
2003-09-13 00:00:00
debian
debian
[SECURITY] [DSA 710-1] New gtkhtml packages fix denial of service
2005-04-18 15:49:26

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON
Related for DEBIAN:DSA-710-1:E75A4
nessus2openvas2cve1debiancve1ubuntucve1securityvulns1debian1