headers
Eric Sandall | 1 Aug 2007 18:47
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Tue, 31 Jul 2007 14:10:50 -0700 (PDT)
<noreply <at> freshmeat.net> wrote:
> This email is to inform you about the release of version '3.02pl1' of
> 'Xpdf' through freshmeat.net. All URLs and other useful information can be
> found at
> 
>     http://freshmeat.net/projects/xpdf/
> 
> The changes in this release are as follows:
> One security hole (CVE-2007-3387) has been fixed. 

I only see binary files updated for this, not source, so I did a quick
look at the actual report at http://www.securityfocus.com/bid/25124 and
found that only the following versions (we have xpdf 3.02) are
vulnerable:
Xpdf Xpdf 3.0 pl3
Xpdf Xpdf 3.0 pl2
Xpdf Xpdf 3.0 1pl1
Xpdf Xpdf 3.0 1
Xpdf Xpdf 3.0 0
Xpdf Xpdf 2.0.3
Xpdf Xpdf 2.0.2 pl1
Xpdf Xpdf 2.0.2
Xpdf Xpdf 2.0.1
Xpdf Xpdf 2.0 3
Xpdf Xpdf 2.0 2
Xpdf Xpdf 2.0 1
Xpdf Xpdf 2.0
Xpdf Xpdf 1.0 1
Xpdf Xpdf 1.0 0a
(Continue reading)

Permalink | Reply | 502 comments |
headers
Treeve Jelbert | 1 Aug 2007 19:55
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Wednesday 01 August 2007 18:47:13 Eric Sandall wrote:
> On Tue, 31 Jul 2007 14:10:50 -0700 (PDT)
>
> <noreply <at> freshmeat.net> wrote:
> > This email is to inform you about the release of version '3.02pl1' of
> > 'Xpdf' through freshmeat.net. All URLs and other useful information can
> > be found at
> >
> >     http://freshmeat.net/projects/xpdf/
> >
> > The changes in this release are as follows:
> > One security hole (CVE-2007-3387) has been fixed.
>
> I only see binary files updated for this, not source, so I did a quick
> look at the actual report at http://www.securityfocus.com/bid/25124 and
> found that only the following versions (we have xpdf 3.02) are
> vulnerable:
> Xpdf Xpdf 3.0 pl3
> Xpdf Xpdf 3.0 pl2
> Xpdf Xpdf 3.0 1pl1
> Xpdf Xpdf 3.0 1
> Xpdf Xpdf 3.0 0
> Xpdf Xpdf 2.0.3
> Xpdf Xpdf 2.0.2 pl1
> Xpdf Xpdf 2.0.2
> Xpdf Xpdf 2.0.1
> Xpdf Xpdf 2.0 3
> Xpdf Xpdf 2.0 2
> Xpdf Xpdf 2.0 1
> Xpdf Xpdf 2.0
(Continue reading)

Permalink | Reply | 4 comments |
headers
Eric Sandall | 1 Aug 2007 20:17
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Wed, 1 Aug 2007 19:55:21 +0200
Treeve Jelbert <treeve <at> scarlet.be> wrote:
<snip>
> there is also a patch file 
> 
> ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch

Should we apply it even though our version is not listed as being
vulernable? It looks like a fairly simple patch, only 11 lines changed.

-sandalle

--

-- 
Eric Sandall                     |  Source Mage GNU/Linux Developer
eric <at> sandall.us PGP: 0xA8EFDD61  |  http://www.sourcemage.org/
http://eric.sandall.us/          |  http://counter.li.org/  #196285

_______________________________________________
SM-Spell-Submit mailing list
SM-Spell-Submit <at> lists.ibiblio.org
http://lists.ibiblio.org/mailman/listinfo/sm-spell-submit
Permalink | Reply | 2 comments |
headers
Treeve Jelbert | 1 Aug 2007 21:02
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Wednesday 01 August 2007 20:17:51 Eric Sandall wrote:
> On Wed, 1 Aug 2007 19:55:21 +0200
> Treeve Jelbert <treeve <at> scarlet.be> wrote:
> <snip>
>
> > there is also a patch file
> >
> > ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch
>
> Should we apply it even though our version is not listed as being
> vulernable? It looks like a fairly simple patch, only 11 lines changed.
>
> -sandalle

the pathces  for kde were tiny as well

--

-- 
Regards, Treeve

_______________________________________________
SM-Spell-Submit mailing list
SM-Spell-Submit <at> lists.ibiblio.org
http://lists.ibiblio.org/mailman/listinfo/sm-spell-submit
Permalink | Reply | 1 comment |
headers
Eric Sandall | 1 Aug 2007 21:08
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Wed, 1 Aug 2007 21:02:22 +0200
Treeve Jelbert <treeve <at> scarlet.be> wrote:

> On Wednesday 01 August 2007 20:17:51 Eric Sandall wrote:
> > On Wed, 1 Aug 2007 19:55:21 +0200
> > Treeve Jelbert <treeve <at> scarlet.be> wrote:
> > <snip>
> >
> > > there is also a patch file
> > >
> > > ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch
> >
> > Should we apply it even though our version is not listed as being
> > vulernable? It looks like a fairly simple patch, only 11 lines changed.
> >
> > -sandalle
> 
> the pathces  for kde were tiny as well

A'ight, I'll apply it. :)

-sandalle

--

-- 
Eric Sandall                     |  Source Mage GNU/Linux Developer
eric <at> sandall.us PGP: 0xA8EFDD61  |  http://www.sourcemage.org/
http://eric.sandall.us/          |  http://counter.li.org/  #196285

_______________________________________________
(Continue reading)

Permalink | Reply | 0 comments |
headers
Eric Sandall | 1 Aug 2007 21:13
Picon
Favicon

Re: [fmII] Xpdf 3.02pl1 released (Default branch)

On Wed, 1 Aug 2007 19:55:21 +0200
Treeve Jelbert <treeve <at> scarlet.be> wrote:
<snip>
> there is also a patch file 
> 
> ftp://ftp.foolabs.com/pub/xpdf/xpdf-3.02pl1.patch

Actually, that's not the security patch, that's the 3.01pl1 version
update patch.

-sandalle

--

-- 
Eric Sandall                     |  Source Mage GNU/Linux Developer
eric <at> sandall.us PGP: 0xA8EFDD61  |  http://www.sourcemage.org/
http://eric.sandall.us/          |  http://counter.li.org/  #196285

_______________________________________________
SM-Spell-Submit mailing list
SM-Spell-Submit <at> lists.ibiblio.org
http://lists.ibiblio.org/mailman/listinfo/sm-spell-submit
Permalink | Reply | 0 comments |
headers
SourceForge.net | 2 Aug 2007 00:02
Picon
Favicon

[SourceForge.net Release] tuxmath : tuxmath-source

Project: Tux of Math Command  (tuxmath)
Package: tuxmath-source
Date   : 2007-08-01 17:02

Project "Tux of Math Command" ('tuxmath') has released the new version of package
'tuxmath-source'. You can download it from SourceForge.net by following this
link:
<https://sourceforge.net/project/showfiles.php?group_id=34443&release_id=51796>
or browse Release Notes and ChangeLog by visiting this link:
<https://sourceforge.net/project/shownotes.php?release_id=51796> 

You receive this email because you requested to be notified when new versions
of this package were released. If you don't wish to be notified in the future,
please login to SourceForge.net and click this link:
<https://sourceforge.net/project/filemodule_unmonitor.php?filemodule_id=26526>
If you lost your SourceForge.net login name or password, refer to this document:
<https://sourceforge.net/docman/display_doc.php?docid=760&group_id=1>

Note that you may receive this message indirectly via one of your mailing list
subscriptions. Please review message headers before reporting unsolicited
mailings.
Permalink | Reply | 0 comments |
headers
noreply | 2 Aug 2007 00:10
Favicon

[rmagick Release] rmagick


Project "RMagick" ('rmagick') has  
released the new version of package 'rmagick' 
You can download it by following this link:
 <http://rubyforge.org/project/showfiles.php?group_id=12&release_id=13395>

You receive this email because you
requested to be notified when new versions of this package
were released. If you don't wish to be notified in the
future, please login to RubyForge and click this link: 
 <http://rubyforge.org/frs/monitor.php?filemodule_id=9&group_id=12&stop=1>
Permalink | Reply | 1 comment |
headers
Pol Vinogradov | 2 Aug 2007 01:08
Picon

Re: [rmagick Release] rmagick

updated in test at 815c9f26c46680f90d3be3e2aa05df3bf0825efa

В Wed,  1 Aug 2007 18:10:03 -0400 (EDT)
<noreply <at> rubyforge.org> пишет:

> 
> 
> Project "RMagick" ('rmagick') has  
> released the new version of package 'rmagick' 
> You can download it by following this link:
>  <http://rubyforge.org/project/showfiles.php?group_id=12&release_id=13395>
> 
> You receive this email because you
> requested to be notified when new versions of this package
> were released. If you don't wish to be notified in the
> future, please login to RubyForge and click this link: 
>  <http://rubyforge.org/frs/monitor.php?filemodule_id=9&group_id=12&stop=1>
> _______________________________________________
> SM-Spell-Submit mailing list
> SM-Spell-Submit <at> lists.ibiblio.org
> http://lists.ibiblio.org/mailman/listinfo/sm-spell-submit

--
Sincerely yours Pol Vinogradov
E-mails: public <at> sourcemage.org; vin.public <at> gmail.com; pol-vinogradov <at> mail.ru
Jabber ID: vinpol <at> jabber.ru
Registered as #384571 at Linux Counter (http://counter.li.org/)

_______________________________________________
(Continue reading)

Permalink | Reply | 0 comments |
headers
SourceForge.net | 2 Aug 2007 02:57
Picon
Favicon

[SourceForge.net Release] ghostscript : GPL Ghostscript

Project: Ghostscript  (ghostscript)
Package: GPL Ghostscript
Date   : 2007-08-02 00:57

Project "Ghostscript" ('ghostscript') has released the new version of package
'GPL Ghostscript'. You can download it from SourceForge.net by following this
link:
<https://sourceforge.net/project/showfiles.php?group_id=1897&release_id=529280>
or browse Release Notes and ChangeLog by visiting this link:
<https://sourceforge.net/project/shownotes.php?release_id=529280> 

You receive this email because you requested to be notified when new versions
of this package were released. If you don't wish to be notified in the future,
please login to SourceForge.net and click this link:
<https://sourceforge.net/project/filemodule_unmonitor.php?filemodule_id=108733>
If you lost your SourceForge.net login name or password, refer to this document:
<https://sourceforge.net/docman/display_doc.php?docid=760&group_id=1>

Note that you may receive this message indirectly via one of your mailing list
subscriptions. Please review message headers before reporting unsolicited
mailings.
Permalink | Reply | 0 comments |

Gmane