A problem was discovered with the perl-base package during certain
conditions and which could prevent it from being installed correctly,
related to a dependency problem. The fixed packages resolves this
problem.

It was discovered php-xdebug-2.0.5 did not work properly for
php-5.3.2. This advisory upgrades php-xdebug to 2.1.0 RC1 which solves
this problem.

Espeak as shipped with Mandriva 2010.0 had no support for
pulseaudio. An updated package was provided that added pulseaudio
support, but didn't work anymore for systems that had pulseaudio
disabled. This update makes espeak work in both scenarios.

Additional packages has been added to this advisory to solve dependency
problems.

Development packages for i586 and x86_64 could not be installed at
the same time due to file conflicts on documentation. This update
moves documentation files into a separate package to fix that.

Additionally python-celementtree has been added to this advisory to
solve added dependancies.

It was discovered php-eaccelerator-0.9.6 did not work properly with
open_basedir for php-5.3.2. This advisory upgrades php-eaccelerator
to 0.9.6.1 which solves this problem.

Multiple vulnerabilities has been discovered and corrected in Path.pm
and Safe.pm which could lead to escalated privilegies (CVE-2008-5302,
CVE-2008-5303, CVE-2010-1168, CVE-2010-1447). The updated packages
have been patched to correct these issues.

Multiple vulnerabilities has been discovered and corrected in
Safe.pm which could lead to escalated privilegies (CVE-2010-1168,
CVE-2010-1447). The updated packages have been patched to correct
these issues.

A vulnerability has been found and corrected in dhcp:

ISC DHCP 4.1 before 4.1.1-P1 and 4.0 before 4.0.2-P1 allows remote
attackers to cause a denial of service (server exit) via a zero-length
client ID (CVE-2010-2156).

The updated packages have been patched to correct this issue.

This advisory updates wireshark to the latest version(s), fixing
several security issues:

The SMB dissector in Wireshark 0.99.6 through 1.0.13, and 1.2.0
through 1.2.8 allows remote attackers to cause a denial of service
(NULL pointer dereference) via unknown vectors (CVE-2010-2283).

Buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through
1.0.13 and 1.2.0 through 1.2.8 has unknown impact and remote attack
vectors (CVE-2010-2284).

The SMB PIPE dissector in Wireshark 0.8.20 through 1.0.13 and 1.2.0
through 1.2.8 allows remote attackers to cause a denial of service
(NULL pointer dereference) via unknown vectors (CVE-2010-2285).

The SigComp Universal Decompressor Virtual Machine dissector in
Wireshark 0.10.7 through 1.0.13 and 1.2.0 through 1.2.8 allows remote
attackers to cause a denial of service (infinite loop) via unknown
vectors (CVE-2010-2286).

Buffer overflow in the SigComp Universal Decompressor Virtual Machine
dissector in Wireshark 0.10.8 through 1.0.13 and 1.2.0 through 1.2.8
has unknown impact and remote attack vectors (CVE-2010-2287).

Fix typo in initscript headers of mmc-agent

Changes on the ICQ servers made the login impossible if the clientLogin
and SSL options were enabled. This update adds patches to restore
these options. Also add xdg patch from cooker.

Packages for 2008.0 and 2009.0 are provided as of the Extended
Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

This is a maintenance update that upgrades php to the latest upstream
version(s) for CS4/MES5/2008.0/2009.0/2009.1/2010.0.

Additionally some of the third party extensions and required
dependencies has been upgraded.

Corporate Server 4.0 with php-5.1.6 had the old Hardening-Patch
0.4.14 applied statically. The updated packages for Corporate Server
4.0 brings the successor of the Hardening-Patch named Suhosin which
loads the hardening features as a normal extension (suhosin.so),
and as such can be unloaded.

Suhosin is enabled by default for all Mandriva Linux products.

For Mandriva Linux 2010.0 the FPM SAPI has been added and will probably
appear in the next stable php-5.3.x version.

Packages for 2008.0 and 2009.0 are provided as of the Extended
Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

Multiple vulnerabilities was discovered and fixed in glibc:

Multiple integer overflows in the strfmon implementation in
the GNU C Library (aka glibc or libc6) 2.10.1 and earlier allow
context-dependent attackers to cause a denial of service (memory
consumption or application crash) via a crafted format string, as
demonstrated by a crafted first argument to the money_format function
in PHP, a related issue to CVE-2008-1391 (CVE-2009-4880).

nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6)
2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the
passwd.adjunct.byname map to entries in the passwd map, which allows
remote attackers to obtain the encrypted passwords of NIS accounts
by calling the getpwnam function (CVE-2010-0015).

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka
glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs,
does not properly handle newline characters in mountpoint names, which
allows local users to cause a denial of service (mtab corruption),
or possibly modify mount options and gain privileges, via a crafted
mount request (CVE-2010-0296).

Integer signedness error in the elf_get_dynamic_info function
in elf/dynamic-link.h in ld.so in the GNU C Library (aka glibc or
libc6) 2.0.1 through 2.11.1, when the --verify option is used, allows
user-assisted remote attackers to execute arbitrary code via a crafted
ELF program with a negative value for a certain d_tag structure member
in the ELF header (CVE-2010-0830).

The updated packages have been patched to correct these issues.

Multiple vulnerabilities was discovered and fixed in glibc:

Multiple integer overflows in the strfmon implementation in
the GNU C Library (aka glibc or libc6) 2.10.1 and earlier allow
context-dependent attackers to cause a denial of service (memory
consumption or application crash) via a crafted format string, as
demonstrated by a crafted first argument to the money_format function
in PHP, a related issue to CVE-2008-1391 (CVE-2009-4880).

Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l.c
in the strfmon implementation in the GNU C Library (aka glibc or
libc6) before 2.10.1 allows context-dependent attackers to cause a
denial of service (application crash) via a crafted format string,
as demonstrated by the %99999999999999999999n string, a related issue
to CVE-2008-1391 (CVE-2009-4881).

nis/nss_nis/nis-pwd.c in the GNU C Library (aka glibc or libc6)
2.7 and Embedded GLIBC (EGLIBC) 2.10.2 adds information from the
passwd.adjunct.byname map to entries in the passwd map, which allows
remote attackers to obtain the encrypted passwords of NIS accounts
by calling the getpwnam function (CVE-2010-0015).

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka
glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs,
does not properly handle newline characters in mountpoint names, which
allows local users to cause a denial of service (mtab corruption),
or possibly modify mount options and gain privileges, via a crafted
mount request (CVE-2010-0296).

Integer signedness error in the elf_get_dynamic_info function
in elf/dynamic-link.h in ld.so in the GNU C Library (aka glibc or
libc6) 2.0.1 through 2.11.1, when the --verify option is used, allows
user-assisted remote attackers to execute arbitrary code via a crafted
ELF program with a negative value for a certain d_tag structure member
in the ELF header (CVE-2010-0830).

Packages for 2008.0 and 2009.0 are provided as of the Extended
Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct these issues.

The latest update to openssh application caused it to display bogus
FAILED status when shutting down or restarting, when no clients are
connected to the ssh server. This update fixes this issue.

The find utility in Mandriva Linux 2010.0 could give bogus 'No such
file or directory' messages, when run from msec application. This
advisory updates the find application to the latest available version,
fixing this issue.

The heartbeat package in the 2010.0 release had wrong permissions
and ownership for /usr/bin/cl_status this prevented it from working
correctly. Also when peers were outdated heartbeat didn't failover
gracefully. This update fixes both these issues.

Tighten required packages versions on mmc.

This updates gdcm to version 20.0.14 and corrects some packaging
issues that rendered the python interface non functional.

Multiple vulnerabilities was discovered and fixed in clamav:

The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows
remote attackers to cause a denial of service (crash) via a malformed
PDF file, related to an inconsistency in the calculated stream length
and the real stream length (CVE-2010-1639).

Off-by-one error in the parseicon function in libclamav/pe_icons.c
in ClamAV 0.96 allows remote attackers to cause a denial of service
(crash) via a crafted PE icon that triggers an out-of-bounds read,
related to improper rounding during scaling (CVE-2010-1640).

Packages for 2008.0 and 2009.0 are provided as of the Extended
Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490

This update provides clamav 0.96.1 which is not vulnerable to these
issues.