-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ______________________________________________________________________________ SCO Security Advisory Subject: Linux: REVISED: KDE SSL and XSS vulnerabilities Advisory number: CSSA-2002-047.1 Issue date: 2003 January 15 Cross reference: CSSA-2002-047.0 ______________________________________________________________________________ 1. Problem Description Konqueror's cross site scripting (XSS) protection fails to initialize the domains on sub-(i)frames correctly. As a result, Javascript can access any foreign subframe which is defined in the HTML source. KDE's SSL implementation fails to check the basic constraints on certificates and as a result may accept certificates as valid that were signed by an issuer who was not authorized to do so. This update addresses an installation problem with CSSA-2002-047.0. 2. Vulnerable Supported Versions System Package ---------------------------------------------------------------------- OpenLinux 3.1.1 Server prior to kdelibs2-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-static-2.2.1-6.2.i386.rpm prior to kdelibs2-doc-2.2.1-6.2.i386.rpm OpenLinux 3.1.1 Workstation prior to kdelibs2-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-static-2.2.1-6.2.i386.rpm prior to kdelibs2-doc-2.2.1-6.2.i386.rpm OpenLinux 3.1 Server prior to kdelibs2-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-static-2.2.1-6.2.i386.rpm prior to kdelibs2-doc-2.2.1-6.2.i386.rpm OpenLinux 3.1 Workstation prior to kdelibs2-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-2.2.1-6.2.i386.rpm prior to kdelibs2-devel-static-2.2.1-6.2.i386.rpm prior to kdelibs2-doc-2.2.1-6.2.i386.rpm 3. Solution The proper solution is to install the latest packages. Many customers find it easier to use the Caldera System Updater, called cupdate (or kcupdate under the KDE environment), to update these packages rather than downloading and installing them by hand. 4. OpenLinux 3.1.1 Server 4.1 Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-047.1/RPMS 4.2 Packages 88f28f4de990f1e65d9f0f96ce93e313 kdelibs2-2.2.1-6.2.i386.rpm 73834a6de77b551d39c89efab18d9228 kdelibs2-devel-2.2.1-6.2.i386.rpm bda370ae96a21af46bdb22ffb4395909 kdelibs2-devel-static-2.2.1-6.2.i386.rpm e6c835a7cefc6b90bb4f03c15b898dff kdelibs2-doc-2.2.1-6.2.i386.rpm 4.3 Installation rpm -Fvh kdelibs2-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-static-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-doc-2.2.1-6.2.i386.rpm 4.4 Source Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2002-047.1/SRPMS 4.5 Source Packages 448553e49104a14a5d1c3a30b893aef0 kdelibs2-2.2.1-6.2.src.rpm 5. OpenLinux 3.1.1 Workstation 5.1 Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-047.1/RPMS 5.2 Packages c3aa4ec31b8b88ac211d0cec2158d42a kdelibs2-2.2.1-6.2.i386.rpm 4d3e83c39001e29b839de0e160598d87 kdelibs2-devel-2.2.1-6.2.i386.rpm dd4978f526b686020db8f520ea2d64c0 kdelibs2-devel-static-2.2.1-6.2.i386.rpm 39e5e5e4b5021a5d6b3745c29c1b26b1 kdelibs2-doc-2.2.1-6.2.i386.rpm 5.3 Installation rpm -Fvh kdelibs2-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-static-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-doc-2.2.1-6.2.i386.rpm 5.4 Source Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2002-047.1/SRPMS 5.5 Source Packages a61d49c5e6a6a5286fbc2234d3e84a18 kdelibs2-2.2.1-6.2.src.rpm 6. OpenLinux 3.1 Server 6.1 Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-047.1/RPMS 6.2 Packages c11052736cd1e2e9578acec5ff7113f3 kdelibs2-2.2.1-6.2.i386.rpm 37424a62061d6c9073692658114b9527 kdelibs2-devel-2.2.1-6.2.i386.rpm 8e95baa0a80de32f81b479fffa4d6ea4 kdelibs2-devel-static-2.2.1-6.2.i386.rpm 8fafc1700151b0482f5a2567a052bc44 kdelibs2-doc-2.2.1-6.2.i386.rpm 6.3 Installation rpm -Fvh kdelibs2-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-static-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-doc-2.2.1-6.2.i386.rpm 6.4 Source Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Server/CSSA-2002-047.1/SRPMS 6.5 Source Packages cd375eab455bd7bcebbba4e855cc76f1 kdelibs2-2.2.1-6.2.src.rpm 7. OpenLinux 3.1 Workstation 7.1 Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-047.1/RPMS 7.2 Packages dd4468508675f89676209212510e1725 kdelibs2-2.2.1-6.2.i386.rpm ef4915edbc1285c0d2c966813884bab9 kdelibs2-devel-2.2.1-6.2.i386.rpm 040d71ad93794e1d1209f5e49a865ca8 kdelibs2-devel-static-2.2.1-6.2.i386.rpm e355877292fdcde358c5032f4b3f4295 kdelibs2-doc-2.2.1-6.2.i386.rpm 7.3 Installation rpm -Fvh kdelibs2-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-devel-static-2.2.1-6.2.i386.rpm rpm -Fvh kdelibs2-doc-2.2.1-6.2.i386.rpm 7.4 Source Package Location ftp://ftp.sco.com/pub/updates/OpenLinux/3.1/Workstation/CSSA-2002-047.1/SRPMS 7.5 Source Packages 35648c7db46eaf3b19ab1f67bd2b63e7 kdelibs2-2.2.1-6.2.src.rpm 8. References Specific references for this advisory: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-0970 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2002-1151 http://www.kde.org/info/security/advisory-20020908-2.txt http://www.kde.org/info/security/advisory-20020818-1.txt SCO security resources: http://www.sco.com/support/security/index.html This security fix closes SCO incidents sr868329, fz525911, fz525926, erg712110, erg712107, erg712111, sr869190, fz526085, erg712129. 9. Disclaimer SCO is not responsible for the misuse of any of the information we provide on this website and/or through our security advisories. Our advisories are a service to our customers intended to promote secure installation and use of SCO products. ______________________________________________________________________________ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEARECAAYFAj4l0yYACgkQbluZssSXDTE90wCfa+5ZRNs8oplZFlwvjThv5omw LAYAoIEWeD3jsFoVcB1ulJQh7XWaFa3R =DXoq -----END PGP SIGNATURE-----