- --------------------------------------------------------------------------
Debian-Edu/Skolelinux Security Advisory DESA 2007-001
http://www.skolelinux.org/security/                      Morten Werner Olsen
January 28th, 2007              debian-edu-security@lists.alioth.debian.org
- --------------------------------------------------------------------------

This DESA deals with several packages that the Debian Security Team
has fixed. Each section start with "Package" and includes a link to
the Debian Security Team's announce for the security upgrade.


Package             : openoffice.org (openoffice.org openoffice.org-bin
                      openoffice.org-debian-files openoffice.org-help-el
                      openoffice.org-help-en openoffice.org-help-es
                      openoffice.org-help-fr openoffice.org-l10n-ca
                      openoffice.org-l10n-de openoffice.org-l10n-en
                      openoffice.org-l10n-es openoffice.org-l10n-fr
                      openoffice.org-l10n-nb openoffice.org-l10n-nl
                      openoffice.org-l10n-nn ttf-opensymbol)
Vulnerability       : buffer overflow
Need reboot         : no
Debian-Edu-specific : no
CVE ID              : CVE-2006-5870
DSA ID              : DSA-1246-1
DSA URL             : http://www.debian.org/security/2007/dsa-1246

Package             : xfree86 (libdps1 libice6 libsm6 libx11-6 libxaw7
                      libxext6 libxft1 libxi6 libxmu6 libxmuu1 libxp6
                      libxpm4 libxrandr2 libxt6 libxtrap6 libxtst6 libxv1
                      x-window-system-core xbase-clients xfonts-100dpi
                      xfonts-75dpi xfonts-100dpi-transcoded xfonts-base
                      xfonts-75dpi-transcoded xfonts-scalable xfree86-common
                      xserver-xfree86 xfs xlibmesa-dri xlibmesa-gl
                      xlibmesa-glu xlibs xlibs-data xserver-common xutils)
Vulnerability       : several vulnerabilities
Need reboot         : no
Debian-Edu-specific : no
CVE ID              : CVE-2006-6101 CVE-2006-6102 CVE-2006-6103
DSA ID              : DSA-1249-1
DSA URL             : http://www.debian.org/security/2007/dsa-1249


Upgrade Instructions
- --------------------

Make sure the line

  deb http://security.debian.org/ sarge/updates main contrib non-free

is present in your /etc/apt/sources.list and run 'apt-get update' to
update your package lists. Then run

  'apt-get upgrade'

to upgrade all the packages mentioned above. This might upgrade other
packages too, and if you only want to upgrade the packages above, you
should run

  'apt-get install <pkg1> ... <pkgN>'

where <pkg1> to <pkgN> is the package names in paranthesis
from each package section above.

- --------------------------------------------------------------------------
Mailing lists: bruker@skolelinux.no, debian-edu@lists.debian.org,
               linuxiskolen@skolelinux.no, user@skolelinux.de,
               admin-discuss@skolelinux.org
Package info: `apt-cache show <pkg>'