-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Trustix Secure Linux Bugfix Advisory #2004-0037

Package name:      libpng, mod_php4, openssl, rsync, slocate, swup
Summary:           Several minor issues fixed
Date:              2004-06-23
Affected versions: Trustix Secure Linux 1.5
                   Trustix Secure Linux 2.0
                   Trustix Secure Linux 2.1
                   Trustix Operating System - Enterprise Server 2

- --------------------------------------------------------------------------
Package description:
  libpng:
    libpng is a library of functions for creating and manipulating PNG
    (Portable Network Graphics) image format files.

  mod_php4:
    PHP is an HTML-embedded scripting language.  PHP attempts to make it
    easy for developers to write dynamically generated web pages.  PHP
    also offers built-in database integration for several commercial and
    non-commercial database management systems, so writing a
    database-enabled web page with PHP is fairly simple.  The most
    common use of PHP coding is probably as a replacement for CGI
    scripts.  The mod_php module enables the Apache web server to
    understand and process the embedded PHP language in web pages.

  openssl:
    A C library that provides various crytographic algorithms and
    protocols, including DES, RC4, RSA, and SSL. Includes shared
    libraries.

  rsync:
    Rsync uses a quick and reliable algorithm to very quickly bring
    remote and host files into sync.  Rsync is fast because it just
    sends the differences in the files over the network (instead of
    sending the complete files). Rsync is often used as a very powerful
    mirroring process or just as a more capable replacement for the rcp
    command.  A technical report which describes the rsync algorithm is
    included in this package.

  slocate:
    Slocate is a security-enhanced version of locate. Just like locate,
    slocate searches through a central database (which is updated
    nightly) for files which match a given pattern. Slocate allows you
    to quickly find files anywhere on your system.

  swup:
    SWUP - SoftWare UPdater is an extension for existing software
    packaging systems to facilitate automatic and secure update and
    install. SWUP handles dependencies between software packages, and is
    able to fetch additional required software when installing or
    upgrading.



Problem description:
  
  libpng: Jaakko Heinonen reported an old minor security issue that was
  not fixed correctly.  
  
  mod_php4: New upstream version that fixes several minor issues.

  openssl: Added a couple of missing files in the python library.
  
  rsync: Fixed a packaging issue in the rsync package of TSL 1.5

  stunnel: Jaakko Heinonen reported another old minor security issue
  that was not fixed correctly.
  
  swup: fixed a problem with multiple providers of same resource.
  (patch by Omar Kilani)

Action:
  We recommend that all systems with this package installed be upgraded.
  Please note that if you do not need the functionality provided by this
  package, you may want to remove it from your system.


Location:
  All Trustix Secure Linux updates are available from
  <URI:http://http.trustix.org/pub/trustix/updates/>
  <URI:ftp://ftp.trustix.org/pub/trustix/updates/>


About Trustix Secure Linux:
  Trustix Secure Linux is a small Linux distribution for servers. With focus
  on security and stability, the system is painlessly kept safe and up to
  date from day one using swup, the automated software updater.


Automatic updates:
  Users of the SWUP tool can enjoy having updates automatically
  installed using 'swup --upgrade'.


Public testing:
  Most updates for Trustix Secure Linux are made available for public
  testing some time before release.
  If you want to contribute by testing the various packages in the
  testing tree, please feel free to share your findings on the
  tsl-discuss mailinglist.
  The testing tree is located at
  <URI:http://tsldev.trustix.org/horizon/>

  You may also use swup for public testing of updates:
  
  site {
      class = 0
      location = "http://tsldev.trustix.org/horizon/rdfs/latest.rdf"
      regexp = ".*"
  }
  

Questions?
  Check out our mailing lists:
  <URI:http://www.trustix.org/support/>


Verification:
  This advisory along with all Trustix packages are signed with the
  TSL sign key.
  This key is available from:
  <URI:http://www.trustix.org/TSL-SIGN-KEY>

  The advisory itself is available from the errata pages at
  <URI:http://www.trustix.org/errata/trustix-1.5/>,
  <URI:http://www.trustix.org/errata/trustix-2.0/> and
  <URI:http://www.trustix.org/errata/trustix-2.1/>
  or directly at
  <URI:http://www.trustix.org/errata/2004/0037>


MD5sums of the packages:
- --------------------------------------------------------------------------
4e0092cc7f667a7a2a52b604e8f857c5  ES-2/libpng-devel-1.2.5-10tr.i586.rpm
3bded3fd4a119cb498f2c160f051d7de  ES-2/libpng-tools-1.2.5-10tr.i586.rpm
7520875f3c4c7dde263720757b32714a  ES-2/mod_php4-4.3.7-1tr.i586.rpm
255e7b7ae6b447769d063f8a2034665c  ES-2/mod_php4-cli-4.3.7-1tr.i586.rpm
041cf6c360a065346a208980c1625263  ES-2/mod_php4-domxml-4.3.7-1tr.i586.rpm
553d4fb7d5e75fe8f7baf2d2cbc38f77  ES-2/mod_php4-devel-4.3.7-1tr.i586.rpm
434bd2d4c14a55971777c1be6e811d3d  ES-2/mod_php4-exif-4.3.7-1tr.i586.rpm
fe7127eb78ce6d004c397b3cf213c274  ES-2/mod_php4-gd-4.3.7-1tr.i586.rpm
bcc2a33eb46c892853829f8b83eaee75  ES-2/mod_php4-imap-4.3.7-1tr.i586.rpm
5e376b4a1aba8070606ed4286e842143  ES-2/mod_php4-ldap-4.3.7-1tr.i586.rpm
c24e4b5b477acf50261bc66fbae708aa  ES-2/mod_php4-mysql-4.3.7-1tr.i586.rpm
b9ba8e443c90283119d30537d9893d18  ES-2/mod_php4-test-4.3.7-1tr.i586.rpm
10b34cd0bf43ebd6dd72b156684bd390  ES-2/mod_php4-pgsql-4.3.7-1tr.i586.rpm
eed99d79b15e7d42d46d3001b661eeba  ES-2/openssl-0.9.7c-13tr.i586.rpm
05c74c31c5a4e0dab065cd02012509df  ES-2/openssl-devel-0.9.7c-13tr.i586.rpm
b67776c599ab64bc1d48a62323a4b30c  ES-2/openssl-python-0.9.7c-13tr.i586.rpm
76028867ad592b8b33a562c7c74aa456  ES-2/openssl-support-0.9.7c-13tr.i586.rpm
7f483e4f7525d9867c89fa7147058678  ES-2/rdfgen-2.3.17-4tr.noarch.rpm
94edab0164dc3ebf269cf034bac18457  ES-2/slocate-2.7-4tr.i586.rpm
76fba3bb671700fc032797ba3e88d791  ES-2/swup-2.3.17-4tr.noarch.rpm
0f86da7e414d990e361c7ab43e15b6a5  ES-2/swup-libs-2.3.17-4tr.noarch.rpm
45e6afe2e30533d28591a37f33d0c38f  ES-2/swupconf-2.3.17-4tr.noarch.rpm
236ef388d6e1c27f8c806e169e77dcad  ES-2/swupcron-2.3.17-4tr.noarch.rpm

2b54cfc045b63cfe1be28fb1f140fa44  2.1/rpms/libpng-1.2.5-10tr.i586.rpm
59b7c869d305fc839b64d8b5594c918f  2.1/rpms/libpng-devel-1.2.5-10tr.i586.rpm
f0b71ced8b9a1ca9f8ce5bb2e6f2a3bc  2.1/rpms/libpng-tools-1.2.5-10tr.i586.rpm
443ab0f08c5669516a13d023b5eaa28b  2.1/rpms/mod_php4-4.3.7-1tr.i586.rpm
4dbacdb313027940294a449b3506b726  2.1/rpms/mod_php4-cli-4.3.7-1tr.i586.rpm
af607fee3220e8e07706ad570d7e9857  2.1/rpms/mod_php4-devel-4.3.7-1tr.i586.rpm
e3e4b9cd13b6e2f5101b0c9f2e74cfa0  2.1/rpms/mod_php4-domxml-4.3.7-1tr.i586.rpm
3f40d7edfc04875639fc6f6c02b65fd5  2.1/rpms/mod_php4-exif-4.3.7-1tr.i586.rpm
d59aff4ec522b6d6ca677bf4c5584c61  2.1/rpms/mod_php4-gd-4.3.7-1tr.i586.rpm
593c1785acbeb3780ec1c134c60608e6  2.1/rpms/mod_php4-imap-4.3.7-1tr.i586.rpm
fc42c0ac81a7a7aa0f0c1bd29fcb7d09  2.1/rpms/mod_php4-ldap-4.3.7-1tr.i586.rpm
a7fb29643bd91188d42682363b936945  2.1/rpms/mod_php4-mysql-4.3.7-1tr.i586.rpm
10070cf9f96f4b4185dea29812b54d9f  2.1/rpms/mod_php4-pgsql-4.3.7-1tr.i586.rpm
f406d937f7248552e5d665daf7e0aaf3  2.1/rpms/mod_php4-test-4.3.7-1tr.i586.rpm
78f9544aa86a9ee214ce7953cbd02943  2.1/rpms/openssl-0.9.7c-13tr.i586.rpm
ba03f1f15f5f47b3eb1d3225128f33b0  2.1/rpms/openssl-devel-0.9.7c-13tr.i586.rpm
9cbc740006277ea96ba68364d49f5ec9  2.1/rpms/openssl-python-0.9.7c-13tr.i586.rpm
7172cb66de26a442583145116c90939d  2.1/rpms/openssl-support-0.9.7c-13tr.i586.rpm
6f6908f38de0c0acb5167e82231f4f41  2.1/rpms/rdfgen-2.3.17-4tr.noarch.rpm
108730073f8468ad1206300de4c7c8f1  2.1/rpms/slocate-2.7-4tr.i586.rpm
5dd98726ed8751344bc7705f7f88198b  2.1/rpms/swup-2.3.17-4tr.noarch.rpm
6000eaa4f51b338307ff754b48fb7fef  2.1/rpms/swup-libs-2.3.17-4tr.noarch.rpm
9a632e503bbbf21cfb4c978401e0aeaf  2.1/rpms/swupconf-2.3.17-4tr.noarch.rpm
432a1ce40b27976ddabf2b48a8abd156  2.1/rpms/swupcron-2.3.17-4tr.noarch.rpm

4e3a5fe72350eae7f1ff2ba6d659c6c5  2.0/rpms/libpng12-1.2.5-5tr.i586.rpm
52721973933524a98a8785d53cb93189  2.0/rpms/libpng12-devel-1.2.5-5tr.i586.rpm
cea4106084ed2f40e712c41e78c7aba2  2.0/rpms/slocate-2.7-4tr.i586.rpm
bdddaa970ed19cd2484bccf89194940f  2.0/rpms/swup-2.3.17-3tr.noarch.rpm

e422630ffc423cf4a4ccc5feb5aa1c11  1.5/rpms/rsync-2.6.2-2tr.i586.rpm
b3c144bbeed4a9e2ca46af6ab59c5348  1.5/rpms/slocate-2.7-2tr.i586.rpm
- --------------------------------------------------------------------------


Trustix Security Team

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)

iD8DBQFA2r72i8CEzsK9IksRApqiAJ4jmFYK4js2PC2V07MV595T8155MQCgrdxK
BawcYtvXVZ/34TFX0GDJd0Y=
=fm5E
-----END PGP SIGNATURE-----