[SECURITY] Fedora 13 Update: kdenetwork-4.4.3-3.fc13

updates at fedoraproject.org updates at fedoraproject.org
Wed May 26 21:42:53 UTC 2010

Fedora Update Notification
2010-05-15 19:19:23

Name        : kdenetwork
Product     : Fedora 13
Version     : 4.4.3
Release     : 3.fc13
URL         : http://www.kde.org
Summary     : KDE Network Applications
Description :
Networking applications, including:
* kget: downloader manager
* kopete: chat client
* kppp: dialer and front end for pppd
* krdc: a client for Desktop Sharing and other VNC servers
* krfb: Desktop Sharing server, allow others to access your desktop via VNC

Update Information:

This update set updates the KDE Software Compilation (KDE SC) to KDE SC 4.4.3,
which has a number of improvements:  * Numerous fixes in Konsole, KDE's terminal
emulator, among them two possible crashers in session management   * Flash
plugin support in KHTML has been enhanced to work with newest Youtube skins   *
Case-sensitivity in renaming fixes in KIO, KDE's network-transparent I/O library
* Hiding the mouse cursor in some special cases in presentation mode and two
possible crashers have been fixed  and more bugfixes and translation updates.
See http://kde.org/announcements/announce-4.4.3.php for more information.    In
addition, the security issues CVE-2010-1000 and CVE-2010-1511 (improper
sanitization of metalink attribute for downloading files) in KGet have been
fixed, and Kppp now prompts for the root password instead of failing with a
cryptic error when run as a regular user.

* Thu May 13 2010 Jaroslav Reznik <jreznik at redhat.com> - 7:4.4.3-3
- security fixes: CVE-2010-1000, CVE-2010-1511 (#591966)
* Wed May 12 2010 Than Ngo <than at redhat.com> - 7:4.4.3-2
- add consolehelper
* Fri Apr 30 2010 Jaroslav Reznik <jreznik at redhat.com> - 7:4.4.3-1
- 4.4.3

  [ 1 ] Bug #591631 - CVE-2010-1000 CVE-2010-1511 kdenetwork: improper sanitization of metalink attribute for downloading files

This update can be installed with the "yum" update program.  Use 
su -c 'yum update kdenetwork' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at

More information about the package-announce mailing list