DSA-1866-1

Name	DSA-1866-1
Source	Debian
Description	kdegraphics - several vulnerabilities
References	CVE-2009-0945, CVE-2009-1709
Debian/oldstable	package kdegraphics is fixed in oldstable-security.
Debian/stable	not vulnerable
Debian/testing	not known to be vulnerable
Debian/unstable	not known to be vulnerable.

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
kdegraphics (PTS)	etch	4:3.5.5-3etch2	vulnerable
	etch (security)	4:3.5.5-3etch4	fixed
	lenny, lenny (security)	4:3.5.9-3+lenny2	fixed

The next table lists affected binary packages.

Binary Package	Release	Version	Status	Architecures
kamera, kcoloredit, kdegraphics-dbg, kdegraphics-dev, kdegraphics-kfile-plugins, kdvi, kfax, kfaxview, kgamma, kghostview, kiconedit, kmrml, kolourpaint, kooka, kpdf, kpovmodeler, kruler, ksnapshot, ksvg, kuickshow, kview, kviewshell, libkscan-dev, libkscan1	etch	4:3.5.5-3etch2	vulnerable	alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
	etch (security)	4:3.5.5-3etch3	vulnerable	hppa, s390
	etch (security)	4:3.5.5-3etch4	fixed	alpha, amd64, arm, i386, ia64, mips, mipsel, powerpc, sparc
	lenny, lenny (security)	4:3.5.9-3+lenny2	fixed	alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390, sparc
kdegraphics, kdegraphics-doc-html	etch	4:3.5.5-3etch2	vulnerable	all
	etch (security)	4:3.5.5-3etch4	fixed	all
	lenny, lenny (security)	4:3.5.9-3+lenny2	fixed	all

The information above is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
kdegraphics	source	etch	4:3.5.5-3etch4	unknown
kdegraphics	source	lenny	4:3.5.9-3+lenny2	unknown

Home - Testing Security Team - Debian Security - Imprint