Format: 1.8
Date: Fri, 15 Oct 2010 21:19:11 +0200
Source: kdelibs
Binary: kdelibs kdelibs-data kdelibs4c2a kdelibs4-dev kdelibs-dbg
Architecture: sparc sparc_translations
Version: 4:3.5.10.dfsg.1-3ubuntu2.10.04.1
Distribution: lucid
Urgency: low
Maintainer: Ubuntu/sparc Build Daemon <buildd@sejong.buildd>
Changed-By: Felix Geyer <debfx-pkg@fobos.de>
Description: 
 kdelibs    - core libraries from the official KDE release
 kdelibs-data - core shared data for all KDE applications
 kdelibs-dbg - debugging symbols for kdelibs
 kdelibs4-dev - development files for the KDE core libraries
 kdelibs4c2a - core libraries and binaries for all KDE applications
Launchpad-Bugs-Fixed: 661416
Changes: 
 kdelibs (4:3.5.10.dfsg.1-3ubuntu2.10.04.1) lucid-security; urgency=low
 .
   * SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability. (LP: #661416)
     - Ark and KMail performs insufficient validation which leads to
       specially crafted archive files, using unknown MIME types, to be
       rendered using a KHTML instance, this can trigger uncontrolled
       XMLHTTPRequests to remote sites.
     - Add debian/patches/security_05_XMLHttpRequest_vulnerability.diff,
       restricts xmlhttprequest to http protocols only.
       This patch has been accidentally dropped in 4:3.5.10.dfsg.1-3ubuntu1.
     - http://www.kde.org/info/security/advisory-20091027-1.txt
     - oCert: #2009-015 http://www.ocert.org/advisories/ocert-2009-015.html
     - CVE n/a
   * Fix FTBFS: disable parallel building.
Checksums-Sha1: 
 5bb2cc68a4a4d775cce2b69c9c5536765534a522 10022226 kdelibs4c2a_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 0b967f91ff5083638c069ecd09ef3ff02c605f74 179373 kdelibs_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc_translations.tar.gz
 afb4149bfcdf724f8f1fbe6ac71972903807032a 1361254 kdelibs4-dev_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 52342b5a6be5c20d98759d1b9a5103e8a59ff856 25801906 kdelibs-dbg_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
Checksums-Sha256: 
 12ced61fe7fada557c375ab536ed0e6e6f6e495df84cdf75a1383fac2a5b330e 10022226 kdelibs4c2a_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 d3c8325a9703e3ea1de9ae7860fdc0e7802a402ac3248ecfce5febe385727fb3 179373 kdelibs_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc_translations.tar.gz
 19b653b77d9242d16b69a88ba33210256a333b99689f9c582da7f4afaaff1d2c 1361254 kdelibs4-dev_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 b0c9a96a8caa7811e7cff4e72f3cb0fcd990f995315a4bb267ff3558ebf5820b 25801906 kdelibs-dbg_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
Files: 
 4cd09c727eec70c66baf527008a783df 10022226 libs optional kdelibs4c2a_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 66649d08b59c909854cceb0ff5dff895 179373 raw-translations - kdelibs_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc_translations.tar.gz
 b86d9890bb234fbbde1f398cfb3d4b1d 1361254 libdevel optional kdelibs4-dev_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
 e1f12794dc94a47e43e66f59e12eb2d3 25801906 libdevel extra kdelibs-dbg_3.5.10.dfsg.1-3ubuntu2.10.04.1_sparc.deb
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org>