-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

______________________________________________________________________________

                        SUSE Security Announcement

        Package:                php4,php5
        Announcement ID:        SUSE-SA:2007:032
        Date:                   Wed, 23 May 2007 12:00:00 +0000
        Affected Products:      SUSE LINUX 9.3
                                SUSE LINUX 10.0
                                SUSE LINUX 10.1
                                openSUSE 10.2
                                UnitedLinux 1.0
                                SuSE Linux Enterprise Server 8
                                SuSE Linux Openexchange Server 4
                                SuSE Linux Standard Server 8
                                SuSE Linux School Server
                                SUSE LINUX Retail Solution 8
                                SUSE SLES 9
                                Open Enterprise Server
                                Novell Linux POS 9
                                SLE SDK 10
                                SUSE SLES 10
        Vulnerability Type:     remote code execution
        Severity (1-10):        7
        SUSE Default Package:   yes
        Cross-References:       CVE-2007-0988, CVE-2007-1001, CVE-2007-1375
                                CVE-2007-1376, CVE-2007-1380, CVE-2007-1383
                                CVE-2007-1453, CVE-2007-1454, CVE-2007-1460
                                CVE-2007-1461, CVE-2007-1484, CVE-2007-1521
                                CVE-2007-1522, CVE-2007-1583, CVE-2007-1700
                                CVE-2007-1717, CVE-2007-1718, CVE-2007-1824
                                CVE-2007-1889, CVE-2007-1900

    Content of This Advisory:
        1) Security Vulnerability Resolved:
             Several security problems in PHP
           Problem Description
        2) Solution or Work-Around
        3) Special Instructions and Notes
        4) Package Location and Checksums
        5) Pending Vulnerabilities, Solutions, and Work-Arounds:
            See SUSE Security Summary Report.
        6) Authenticity Verification and Additional Information

______________________________________________________________________________

1) Problem Description and Brief Discussion

   Numerous numerous vulnerabilities have been fixed in PHP.

   Most of them were made public during the "Month of PHP Bugs" project
   by Stefan Esser and we thank Stefan for his reports.

   The vulnerabilities potentially lead to crashes, information leaks
   or even execution of malicious code.

   A lot of them are fixed in the last PHP security releases, 5.2.2
   and 4.4.7.

   CVE-2007-0988 / MOPB-05-2007: A unserialize problem in the zend_hash_init
   function could be used for a denial of service attack.

   CVE-2007-1001: Multiple integer overflows in the GD library embedded
   in PHP could potentially be used to execute code via crafted Wireless
   Bitmap images.

   CVE-2007-1375 / MOPB-14-2007: An integer overflow in the substr_compare
   function allows context-dependend attackers to read out memory of
   the PHP interpreter.

   CVE-2007-1376 / MOPB-15-2007: The shmop function does not validate
   its arguments, allowing context-dependend attackers to read and write
   arbitrary memory locations.

   CVE-2007-1380 / MOPB-10-2007: The php_binary serialization handler
   in the session extension allows context-dependend attackers to obtain
   sensitive information via a buffer over-read.

   CVE-2007-1383 / MOPB-01-2007: An integer overflow in the 16 Bit
   reference counter in PHP4 allows context-dependend attackers to
   execute arbitrary code by causing a value to be destroyed twice.

   CVE-2007-1453 / MOPB-19-2007: A buffer underflow in the
   PHP_FILTER_TRIM_DEFAULT macro in the ext/filter extension allows
   context-dependend attackers to potentially execute arbitrary code.

   CVE-2007-1454 / MOPB-18-2007: The ext/filter extension in PHP when
   used with the FILTER_FLAG_STRIP_LOW flag does not properly strip HTML
   tags, allowing cross site scripting.

   CVE-2007-1460 / MOPB-20-2007: The zip:// URL wrapper provided by
   the PECL zip extension did not implement safemode or open_basedir
   checks, allowing attackers to read ZIP files outside of the intended
   directories.

   CVE-2007-1461 / MOPB-21-2007: The bzip2:// URL wrapper did not
   implement safemode or open_basedir checks, allowing attackers to read
   BZIP2 archives outside of the intended directories.

   CVE-2007-1484 / MOPB-24-2007: The array_user_key_compare function
   makes erroneous calls to zval_dtor which triggers memory corruption
   and allows local users to bypass safe_mode and potentially
   execute arbitrary code via a certain unset operation after
   array_user_key_compare has been called.

   CVE-2007-1521 / MOPB-22-2007: A double free vulnerability in PHP
   allows context-dependend attackers to potentially execute arbitrary
   code by interrupting the session_regenerate_id function. Note the
   double free attacks are no longer possible in newer SUSE Linux versions
   (major version 10 and better).

   CVE-2007-1522 / MOPB-23-2007: A double free vulnerability in the
   session extension in PHP5 allows context-dependend attackers to execute
   arbitrary code via illegal characters in a session identifier. Note the
   double free attacks are no longer possible in newer SUSE Linux versions
   (major version 10 and better) so this does not affect SUSE Linux.

   CVE-2007-1583 / MOPB-26-2007: The mb_parse_str function did set the
   internal register_globals flag and in some error cases did not reset
   it back to its original value, allowing further attacks which require
   register_globals to be enabled.

   CVE-2007-1700 / MOPB-30-2007: The session extension calculates the
   reference count for the session variables incorrectly, potentially
   allowing context-dependend attackers to execute arbitrary code via
   a crafted string the session_register function.

   CVE-2007-1717 / MOPB-33-2007: The mail function truncated E-Mail
   messages at the first ASCIIZ (\0) byte, which might allow context
   dependend attackers to prevent intended information being delivered.

   CVE-2007-1718 / MOPB-34-2007: CRLF injection in the mail function
   allowed remote attackers to inject arbitrary headers and so potentially
   conduct SPAM attacks.

   CVE-2007-1824 / MOPB-42-2007: A buffer overflow in the
   php_stream_filter_create function allows remote attackers to cause
   a crash via a php://filter/ URL that has a name ending in the '.'
   character.

   CVE-2007-1889 / MOPB-43-2007 / MOPB-44-2007: Integer signedness
   errors in the _zend_mm_alloc_int function in PHP 5.2.0 allows remote
   attackers to execute arbitrary code via a large emalloc request and
   so potentially execute arbitrary code.

   CVE-2007-1900 / PMOPB-45-2007: A CRLF injection vulnerability in the
   FILTER_VALIDATE_EMAIL filter in ext/filter in PHP 5.2.0 and 5.2.1
   allows context-dependend attackers to inject arbitrary e-mail headers   via an e-mail address with a '\n' character.

2) Solution or Work-Around

   There is no known workaround, please install the update packages.

3) Special Instructions and Notes

   None.

4) Package Location and Checksums

   The preferred method for installing security updates is to use the YaST
   Online Update (YOU) tool. YOU detects which updates are required and
   automatically performs the necessary steps to verify and install them.
   Alternatively, download the update packages for your distribution manually
   and verify their integrity by the methods listed in Section 6 of this
   announcement. Then install the packages using the command

     rpm -Fhv 

   to apply the update, replacing  with the filename of the
   downloaded RPM package.


   x86 Platform:

   openSUSE 10.2:
             78de28e9624083dd9e40b5399652da81
             c33bd5475e8fd93e9a2b3f3eb083d713
             78bf90c5205b9d79464b09993e0a0727
             a68ad4239f59242819843ea6f55403ae
             ed82400fbcdfd3b9369ce1e0a582c85f
             e692bf8e4aa42f612eeb4281514567b3
             8972a736c01297ae108c1507bd78ebd4
             1e4c7a4f1ba6affcc6a1caaa654263fd
             7dba1da43a9eb51c97b77587fb272317
             f2bc20a447ec3bfe52665d75c65c632f
             3d1858764803bec605bc2a45077d6c96
             5280e9ec5df7a3bab0b5c8d2b9703b38
             a087f98629528040d02376ee547d9de0
             7543028b471257bba249968b1e779afa
             99bf38994b2c84e13324c3da3992ee58
             368e6264426b2ce8a8fba610017ca47e
             73fc59e737bc20e302e5c75868d8bdf7
             47d48276cfd662a447c18090b0646fad
             b64ffdc82339c1eba85ebef762961300
             759f71ef7989c420b501a0b9c793d33d
             6b0523553368b6ce177ebbb1fd502177
             9977787091a7a95d3ab94e4b39eec471
             8f3e36fecc81a9fdf8e7786bc930f36d
             eefc5523b27e0870f7877e1d558c3e2f
             c5966c3f9a4c6a269d80c672f0cd7360
             1e54a8be753a4a15cca162db5d1acff9
             6224021319ac7b9e03be1fe9668edad8
             d7dce1d74fa9da77c0a5ef840f4cbe8a
             e9178349422c0288f98909e3d0f11575
             ffb8eb2bb31a4012725bc0a5b9ad7e04
             b060670d3e13506ab84e667a8cafd002
             eb88832bb8e658369c2b3ba9d487d81a
             3a4d199da35997d6d8392806580d9b02
             6270b6c0540e19cbbb75a96f4e5bb8ce
             6861aa3aedfebc0f97b57a131fda3964
             bef6683eb498cbc11d4e18ec8ee47503
             55ecd340a4820e0103e74e971e9c7e39
             b819a0507b55cdb4018c075dadb8b357
             a4dc36c729accd6c6c687d7f1f8d0b17
             210a8b6ff1d7d3000c1d87a02a00236f
             aabc28aed2f743e43d379a9254d90ca4
             7d9fd5941fdd25013d45f4473cad142c
             8268ff014450d98979dd2bb072aae15a
             26e0ea8b1efcb2504b501264d34b677b
             f7fc26da0dda20e458a8744702f0741e
             5caad8ffbda163e59bb5ffada35c3388
             529e7ce99b07794f22250603531a477a
             70fdc25de555fc6a47e4d13d7d5cfa78
             412e66110bb669d0979e19ce5eff5518
             14517ee15ec585ad0650489f4973276d
             be47059d5f3e2d633dc6a54a5b5ade17
             05b0562f91310a7a3490b6bb56f8deae
             4452ea046914f707b1cb909e278872eb

   SUSE LINUX 10.1:
             cfa61cdccfc6ac68f199a42e339dfa7a
             c6617f00500ed1e74a675ae2430a9825
             d726692b355cbb0693aa8c1d14e97b02
             319a88550814c8b3a1800fc662e598e3
             1f8e15d379fc569f155a27a31d6d4ad7
             c0835d1c704dc480f6a7b2330c87151a
             2a40f2c2ee1e7600e163e84f1627500e
             c9af1359b21dc8fb915324b06b9089bb
             250886e1aa15a344606168f38afd1c5e
             20ae973077f655eca2fa07f3d948f26b
             c5afae2cee3b6c865c837b3857923906
             3dbd3d136e3976ba378604b1338434bb
             c90510ad5e15b56d2de3f11623aa84e6
             8a4b7722437dfc98fd36f8a8b718e82a
             d01c159371e4d41e029c327775768afa
             0415819e9d0b6ab3104ecd409648864f
             19adcd5b598fe953f569e7aff80da96f
             355cea44c7d0871522ec40cfd0920321
             1b557e8007ff6fd0caca286cf39bf087
             cad03c4e79940ced660aa8c40db433dd
             3a90fb22beb6abcea4c11a700366ee2b
             a3a216196f8d4a835705d4da60e4658e
             9b325dbdbe39228b264e827c2f3ade5e
             cdb76f32e079720f96a76b0ea07803c6
             c10ec624142e4378e5e1cc8d242717ea
             256821a62db71b4e0eb2affe9462bf96
             cba752b7b363920a6764959d947bcf3c
             2e0136222861fcbd61d84458c8a015dc
             13efd735ebdbb417cac017d1158979f1
             8ee43c5527c6eb3a714448ffc5acd3cd
             e11f1e7c08a51a89629e4134d5ee26f0
             eaedcb82b28b1c076f93dd2573070311
             eef6f473332b509e894f6130ca992d30
             ffc51d88e907d8ff609527cfaa7ffedf
             1fc796702fbca35dfca9c53ffb947b20
             4eb395829f66393da32847486564b727
             8d903f1e437c825d4f715591b4e82776
             d0e8624adfb3fea55c1c28fd9451e41e
             035c6dcd2df47f5e31ba1f0675d21c77
             213922b044579bba975e396adf1035d5
             675a80908dcabdfbe1785b24beda71c0
             cedaaaa2326c6f506747cc9d691eb464
             bb1c1c243b269f106c2d17ac2fec6d63
             2958302815a1d44b0c15f75e03f606ed
             a2b17aa3890763e79cae3385ab27c976
             be1b67992e93f1b217c806a782e26f76
             154251f4b3195707055272f5141014f6
             d71d741be80f932aa551bd29ed245a5a
             eb26325d66763beced5878139dffafe8
             b1ab38e1f46e2db1fafeabc8d0182b3a
             9321243b31fdae07752cc2353eff0d1c
             861d87348bcb01438eb37e8107fa2c8e
             f6be5c541bbdde6e46efd5f17cbb2744
             381bb9f51d38cab2bbe9b809e69eb981

   SUSE LINUX 10.0:
             8c5b6132d5680c60673125485ba6eeb2
             9b4c4d4a3980cdcc56a0b32d5bc0b88d
             8bfbed06cd83d93ea212f4b4ee6a7d2a
             c5d334e0e383d6791e1445509d8667fb
             3cd4f6d7d1f4854a409c490c720c45bc
             e0b6351e66d45b75623a5243a169af13
             b7b67816e5ff0470319086a29b29d820
             20fa8984530f1944bd74a8eea858d815
             3223dea25e8984c897a57b2ba6a8973e
             f25d3af72c3f9e90dcc34318e280c378
             33ff45d6b75bb240929f3ef5f8e433b0
             169594f5bfe535cb066f9a656f838dec
             bc4f96ab9d8a19f5fa2cfaca1f6a793d
             41d67323190bf82e1c9c26f99dc3d708
             de3807d21dee0c4b7b404ce435606105
             13bb3829087567c872b41140e96db3f4
             ea729efcf53dea21bda218d462cfc1b3
             fac6c6011f837f88a39b4eeb97845ae7
             83d543cc5404df15e3da3c01a3c50dae
             8f053954a20ca75008b941208c9f2350
             d22fd7d13b25dfc35ff16e28e65c9676
             303b335f652991656de297a3da5c8a6b
             2206f66ed95cd4194fd3776ba2a88b22
             49dd800f61e8548a9066054520e29d69
             7202f49c52cb63a9bb530611f0ab2bd4
             2a4c4d37ed784dc883db6f40e96957fb
             9bb742ffd3d257a6ccc5f71b5acef573
             7dd1b8a4cbccb4cb8ded7b3659fbf86c
             4990a86f133f940ce3539c4d0af67cfc
             cc7651c62b8d689148c7df1f1f540dc1
             3b5c45d1a0d75c41c76f3d7a48c2e475
             d429f8246e8c57d411c6e7ba24d73aa5
             6bb6114e76b5f2d4140c44043de9ef6b
             3bda874e0e283f21fe7481120ac94521
             e23a3a4522547098f10ce92fb558e29b
             ef362c1c688728d37707d9b0fc94be13
             c27c14dd2921ae8bc24b76768e294ee9
             4b357a4fb7ce1e372c5e2d073ec7e48b
             d01680455f2eb184d9c8c90e72efb5cc
             0dc7d3bfff9a84e7fbd06e76dfc9dd0a
             67672088f282906758335ac0791e9638
             33a08a9a2ea3db5c20c51c5fa22f163b
             05bd2a7235756d82df1f551ccde36ce0
             38cc73efc77e65c3789f14f710c21b54
             ccd6c69b5be14d109c0cad58384ec449
             cc5a9dde8d5f1c4b6e6ce1d58f80a744
             b18c8561764c1d6c2d9a234adf68d4ea
             2c823e9584fbfbf8b751c0c9fd2ba369
             f68c9075309aeacd674d314151da59b8
             049fbb4432fd85b026a8a3694b2ae17f
             91bbb79d0a538f93eef7255bfe7e4d98
             1aa31342d71f40b978eeb9a08f01a19d
             1832b292820aadaa8c218a926b600e92
             2e88fd104acec5348f5212c1fc6cd126
             b13b3a94d6b8c1cc0ef25f555200c57b
             4718659110dcc89911e3472cde897f78
             2e00e79606e0d18dbfbf55357b2ca135
             d6ee5a9e1261b5b5b080f35076cd33bc
             3e49ad474bb9405472ffead20ca550a6
             eed03bd7a64b2c20326dcd536a89aa3a
             9f111ff7cdd655d19fa80ae0fdc0a37a
             7feaeb572126c5ac64b59241f0426a6e
             7ff78589e7b856f3868dd5af9084eb9d
             e0bd6e43c2bcfdd19f94f92f8065aedc
             67eb5fcfe5683247964afc3213142d2d
             b3d3106388d39deb79fae8b72b3534fe
             95428e5826c7b54f58840c6e1e146b84
             706ad7078fe868daed4864b67d87ef0b
             9c8deb807ef279d06f2391e8df0d015d
             7c8d2854f8e1c319f6294201f9153b52
             d6396557e1e44faf6d5b41d2c2950197
             a22110abf7cf0c1e1dbf5e4dda06d069
             c2e96141c112d534b7d4651c16a88301
             a140dd890e26980e1420fb57617d269e
             0c3d776ab8b8e857a3abab8c3b103b93
             9f03bd3b8519b594caf085bdf55717e3
             a48df5f0055e26803318199fc51ed55a
             5b68adc285953c0d6f42ed58db8c5c2e
             7540c03c6bdc768f8d8b7609c794b499
             4cc6612b8be16688d234f80712b4f23a
             8d428408e1d793d0930018ea524048f5
             604c062339c7b5aa21fc9823acc5c434
             c819acfa929aba460f7df8ae0c3c3487
             5a0db7a68256189a1afc3764fb9dd89e
             78699037181f5bdbfad44c18d6f15f2d
             f5f52c22892abd5fe935bb13ca827b5a
             a26b500c336bcc07ca3afdddef6a05ae
             0a50bf9802b855964002eaf9367fc9de
             7f683fb227ebf08629551a5aaa5fbc5b
             19e932839de8f8623887e2572ae7931a
             6dc4fae3a3511d279e448957fe7eb478
             ad9f591c7cc243510add464e02bc525f
             33a05e653ac63dbf9dafa20873a44b31
             0b2bf6b56e3089f27cdb28f5a981647c
             4053663ea116bb926075ff3857644f56
             d7ece98f786039f80b3c25b1e429f8fa
             f509dc9e57f166b3166e52e34ffc1e54

   SUSE LINUX 9.3:
             f3af103fe6ecceecab7771fdd7930716
             91f3acf9016b7171e9b69e0e124910d2
             1ccf96cb9cd704e54820fa6b150afa96
             16564db4fd14d0c139639009873633a5
             9f480403e5bb457c76708c1d511b2ca8
             5ac2c675f5c1faf87dff02fa070287db
             66e7042e5b844eca3689d526ba05ddd2
             94181bbb1cdd690e9e8ecb774ebc7cc2
             c9a2b77f3052b3f674e2c89eeea3f12d
             2c0290c99e1cc8ced936c11022ef2c54
             4198be927553b3fe2572d2189a6ba0b8
             46a59f1e8ba84c4ff58b2d5645ee1ae9
             b3caa473169464eeb69a1397631bc6c4
             c79660fc6f7777d4f2fb8c61d8d07e7d
             ccece28a76b6122ffb0ab060eb107b54
             525c9b31016ae35a23d949ff78460166
             ca35fd0e9392c8115355f0f538b672ca
             ceb00acd6f816883b3cb64f27efe032c
             6c4ae6224a2a8e28a6feb62f21f64006
             b410007c84d41f623858f3cd4fda1b8a
             952758749e45acecae29321781a59422
             daa0b719e54c6cd02c798044fab0a299
             0c218da2c8db3ee446c8fa60f65a1cc1
             e2fa611fc168e74b0a12a0545902ee25
             4a5da6bdad257a263af9c628d641737e
             ee474ed75617b7aeb74270a38937a916
             6e2318b4e7cee914e8e3b5670bdffdc3
             154895ef571191089e8e0f72446d6cac
             c2277b2bb5d9750854d240969921278a
             d3ad78d36fc5385a88d1192d0b033706
             95893661688ddda409116e7d438cba86
             19a1788713bbb3b4c9aecd2accb0106b
             81b4b151ce653c1399ca2472f9f83503
             2da91dcd3820e25aac421b4d42148ec4
             81bb7af17e3e75ce3592731a4f8cac03
             15ca3a16cb1ba6207e886147126f0e8a
             7e11f88b8c260ec298bb0f578e088881
             10974278591a2b0190a7e8c090fac682
             c81083cc5f3fb4dcf2120e424a0c6824
             214644d2aa8dda8fe2043953aec86fdb
             addd109d0743ced2ed0629ab32b986ac
             c102e3c283813530873d1281bce976fb
             de89ef33813485b94a0fe94f0fd22e12
             6a848a68a53968b1a0cc9c14614137d6
             d31797c8ccfeed9cda86ef96f41c3020
             7fd9f4d2f7c65fdefb8381b3d2117107
             3f20e926daabdcd14ec9981a4bdb7652
             14de5fc95b996324954f67e6523e1e02
             7ade700794f97f2d6c68c74cc705d13a
             d168e01ed2a627b2063ff1ff1fc4c7c5
             d7337c204095413123c0345e5a662dc8
             1085934d265fec0069641ba542eef4c4
             520216e322850bd6828abd724622b2f5
             edeb2f44fd7f371d688998caccc2561f
             9bddee10cd1f294d1386066232bb0dfb
             6867218c10072957f82cbf36d5b8e381
             f60b67dc73e901d819ef38ed842d9dc7
             9f57574c979bb2fd1e8a573dc36328a9
             fff69706b5df58b8a21a3ab40b620d07
             92a44d8fc78c7a3a25dcd468aa8a99c5
             4b6a6804a2bdcb89c9333333115ca522
             6e8e26622cd459bffda503ec6ca401b5
             af061b6fa27ff88ae9f8440dcde805a9
             87809f7ca0d180688bcceecf80640d6f
             15b86b4bd21b57c171c9f8ec2997ecfc
             80d0bc70f9a7a316eab7ab6b29802fa0
             8a33cc7d944f277ac33ddbc3f3924570
             a29ad6ff21290ff6e4acb344674dc59e
             73bfc4c364f8c5e72a93451ddaa2945f
             c44b64fa40fddc6353915ee01ae723e8
             09049a6fdae96c55d81919e03ff0ed12
             e4955773c133613a62210254eb68ab8e
             7397d1a7a7f11371ce9cf137b7a1ace1
             2222a003918e14ecbf98973c4f97a78a
             cebccb52eb3f5a33969bccb25383757d
             d2b0863cc0c48ff72dd61d8c3a586c25
             9c5e131d6859a9e617387a3af1b58a88
             64ad1e413cd3864165bb4480de133853
             30704f46b01163df79244274c2d1bff6
             79309f22fbcf6ae43a9ce828032c3269
             2e61aa83d966de260433438ed4ba3bc2
             030ca0328def277ac668b2720fd7f092
             3ed333f983aeb0b4a74c474f3c20e015
             59b9a457604556cca41fd585aa37ce07
             c77b3104b28b289929a6bae0fbbc5808
             68c1eec21cb0b5463e1451718d39bd65
             9feca03c6a8c1d9f8fff68e3f87c2a0a
             c5cf79c03507882db3fb365444022748
             1e2c2b9267f6941f21b8cde78e36b3ae
             88ab25d03d66f4cd960fbe8aa704c24d
             1ae644f51b7502bfd8ab25f201137d6a
             e22b4117c6204a32ab066e1462052be7
             88fc5cfc075faaa25d9960b36876df15
             fc5e33191a1874a423c7861bf24f1fb2
             1b54d64a5a0b2d445022016e79c6e73f
             42fb01da263b746544e253fd75c74d8d
             8159e935d8da7183b40d367b938a7727
             cadac59c8c70fde8219f7205c945879b

   Power PC Platform:

   openSUSE 10.2:
             97edccaa0cc0c9500be7a8ccd0c2cdeb
             ea81b88485cfb3740b6692176b3a0c56
             883036792a8543e9132a51a948fe4e15
             8f603d53790dbb11dcb15431abc10b7a
             7034fcb1bfd8c7fc92664a3728494350
             5adfcf0473ccb735adb8e79a12850629
             d140ae42bed18b9c4ff0c4deebc58879
             a2041c140d9b9263330b9aefc313ee45
             6a2a91d2321c1de757b9b74e26103172
             7478a01656323fdf344c7a455cebadd5
             aa331d5ef1d176e381195f1289b80a89
             4dcccfe29ffefe0e978eeb5b2468cf65
             972fb27646adc369fa7f58902d55578a
             068bfd8f451b616d244e135d16652632
             3344044022fe0231a5bc526268a86052
             6905a7d168cf324406496ab1976ad3f5
             7d0bf20e633d444918afe07915504cca
             f011c26831d5f8c72071ffa8a05acc13
             82f00dad0e07ec1be82d3fe0931953c5
             c7ee0e1ff74bd4099685256c395b05aa
             ddb26c0e9b1f7d2c7a22096b7d7c3242
             c755922093030b237d644fdbfc6d189e
             b06e0c3659d4831c6b0c58e145fb3fbf
             068169bd4b94b267b6a282b4cd97484c
             bc40b0ffebef74ce4f01f3a63d4f2235
             785213bbd146d0a0cd800d4438c05bf9
             2d77a70f57dcbf55ec66c3dca5eab38f
             0e13a6eefe7a46ecc33671048e6c5b44
             fe57cd8f436cc67bcc177bb83ebc5606
             32f9256b34b59ff9bd600e074b94de38
             34a9c0b8a94b4e98c4efb78a5ff83487
             78dc62e07773cac5be15b573c6bdd0e1
             aa9b835f3e2a9781b38754cf6518b3f9
             20dc6f76178935d08b80f6f26119473d
             386795cc252f8132a77270a5354aa1d8
             87389cc9272126e73e5c587ca085f737
             a8b35abf037c59d181cd1da96f002200
             7354be32ec5798bce0a5597313458264
             8429a40da455937670d2e2550bbcf220
             bebe5da880277004d3752e334a247205
             ca2f05c3a1523777ac19b33292d5ea96
             3653f55c376d1bcd989ecc90359edee9
             1b4fcfe260a6c235c68f8ab2bcfa3c20
             c9a133e04ffa336b15acade5e0797f62
             f7859248d25a473184ba8ac6799236b6
             576c02b10451e3ce3e83fd2576da3d59
             bd15ae8ce81aca05be8dc9e9d3df7509
             383b7e63e195a9c8a523d672fe516d7c
             de3fc0a068441dc8019a2bf8b46fe013
             ab54c1957be363c5a9c32b1170f7a436
             1009dcc6b2e10f5eb33788655f460b6d
             4ab48611fa26a835a2be3607fd4737ae
             08fa8db25756056471621a0a26a7e552

   SUSE LINUX 10.1:
             e424e4540c190733f08cb7d4ac6250e0
             6a037bd0fe9770bafe6aa025de35d29b
             d7b420622f31a957ba073108dc34498f
             a649560bca8b08fcc28c8da2519ea59a
             bb3eed050063fba33c751e8b8e0a5df8
             0eb32762416ce16f87504b19b5649dcb
             022dc5923db42932b29a0ed387df77ea
             eff6ad2468bfba2b68a66af518c7eeb9
             5ba0df1e6193a714d7e35f5e29a25d7f
             2e832bf81072d3a2b1e572d352d571ea
             01aa7424fe46d580c59bd51d0d8337ee
             d3205cd0064cc2af89d12cbf7e2aac21
             afad3ee32496c4972b50c4934f5c1b39
             62a892cc2da1362cbf2c86055c6cbdb1
             8bca7cc2b3be4c553edd1cfab943adcf
             b967015b4414ee8418eea671698ed23f
             31965a77f4d5026602ffc67e7415599e
             acd3e3627e53fb1cb34e97a8fa73ecce
             32720977c10f2b5dc810c7fd1df3cbf6
             1c247d318a5ff513bc5a563d7e553acc
             a31e3334686d880022f8cbae0ed37f46
             c3af029beb3b821c2a0755aab8cf9de0
             8e8f5f803961e6905fb048211c1dd7bf
             9ca823798cb8c24b74c421c34397fc18
             c288165446315e2f9f769849a050b8a5
             ea91792eedfa374e5ccf77bdf9236237
             4545c31417a7218cbb2987a13ef58092
             db573cd65963d94539fb0aa4b2c29e80
             8b7d1092d961146ddf2500213a1c903b
             35dfc760175327b927955c0ce983af6f
             34c34e7d14fb1674c8f9e026f85fc300
             d534918ae4b011560a204d178d4d733a
             eaec3a8c4cc6358fa40e5af85ffef893
             f7c922fd635f3d73599d995d8ada58d3
             2ad265009c01392b01dafcc5a4896a23
             71de2a8761cb61256e0f0297473e13fa
             9e24be7371a75db1b763f689d56a433b
             e190360f5bc6ba3ea0929e3d46d0dd06
             eba2d51d938942130d36cc5a14c07467
             092ff81b7463de03c168251b292e825d
             734ed2b5182585aac690fcd896ac8835
             5fffcdf7743a392d2b6683f604b825f8
             7955649f7470abcb95081dabc5e97462
             3a01ac620c8be6f5fc950194a4d659d9
             9a9cf1fd0f63ca6b9d2b00f210c4e35d
             05e5724f9b8d6fdab6c7a9c594c4a32e
             ade18d76a6a9e7105f7925ad99a423c7
             ecf060bb0800a0f40528424dabd1b0b9
             412e79f8bb431d055e662990e9a8d5b5
             937cd69c9df4ae66f2eb0947f027e417
             7811b9c2cb3ac103f6ddbecd9f16df2d
             f9bb0f8f0e09ea430a478ae0bd5f4465
             e5a188cb6e10596a55aea81ab156f67a
             5fe3326a59d6b29fcb3bf1adf2484836

   SUSE LINUX 10.0:
             03a1503be2b540430c6d7516ef4da241
             73bdaad0bfe6446cb0db00e5419c4d76
             12318d6c118193f6d591a9ced1f25171
             86f40cbacd92be9fec441718ac3986f1
             2525b225d974813fcf6f5917a4c941db
             8ff71f03d1f76f6db79b76f8dabb81fe
             e8bfc8f7b00e4e2a3e86ee2e30b5f14b
             78e7862316ee9425f37f0442ec58df04
             41967fdef76b0a5acb5b38729cffa849
             3cc285796e708ea305a8ffd7c367f2e9
             300472d44c194b1012591a53d613148d
             c776195ee83d8ff46c12601072e64e36
             48804aac5d362fed21be5ad6c2ea8721
             9e8adb3f5645aac9401f9244d7138295
             21bab8b376adb3f60e29011447b87e75
             f03ddb710b52106b965f1d5c4f66f44c
             5d473969ed860141d8ce17c79f223b95
             45af2db94740e39c8ee06a68f504b4f8
             f9fffe1530b3aad9094e78c901487bbb
             99f745d472b9474ee0edea744cab754e
             bccf8e6695d98d693eb1963f39d45002
             e47607c5125121217ecbcd55a9e91eaf
             d074ec4c0b7a84bdf1843dc071b8c394
             b00b9b571ca8f93698b36449623c2688
             f621badef483c01963ba42ab040de954
             85ef0091528f1efd854097f11472eedc
             d375ba95b7b7342965d0139c4f0e8280
             a463cf60243c4e2cda8fb35c437fef32
             bf80fc4c6d1fce74d048433a5f100691
             25c61f25876963aec7810ec76991db72
             bb7e9c81f909f8ae6847fb26eac4cb5a
             b0802b53c1aba5f07bbe2cebd98bb0aa
             1dcb98dadaf54a84f5fb4f193eda6226
             4efd8a5a425f89bf061258e4b2ae2fb1
             099c0bbb077b6aaf6b7179c090e633ad
             8e84dde8db04ba519fcc8fff340bd8f9
             7bc427415e8212d8f496ca1d54160746
             4ba334b2073f58674cb8b670678be5a1
             b9934a524024d0a50c1540776a9caec9
             a0112880c79855228d519faa7e196b0f
             423305f71c1133054868356c9d920777
             232b41ba3c76f707251e78a6d8780811
             7c04d3855426387d380a0d0faa2d0458
             c869193c668b6a1d27b50c564cc07c54
             8c73af3076b08d6d815e1b0bcf447d54
             eaf0856b8e4471d6612995e9a1929987
             f035a73e91be0af65658f42902ffee3e
             daad374d023f0611e040dd07e2159c0a
             1b7a64d9c775a9b8973e0d55336cbece
             d6575ef7c735b126c07ec503b74be9e6
             471757df83cc5b607da7f6360138af02
             98faeb31eb3c652339e0a8206237f92d
             d0b97ff85ef6385b3bfbf4f1714cfc26
             8882f8fe8f79e20e60c66ded9e1a1cdd
             4e5cebab9dd76882778c15ab36d5aa4c
             6e922b97f3ab76ee53ddc8a0698cdac9
             9d0dcd2c6b6024966ffbe2518f7c6677
             973bbcb0ae857af9cd896b39445d2bff
             6a9d42d625a0da44bfa71d9d0c60f00d
             ba30f3bf87e4503f115f66502005a104
             ebdbddf95cb556160c93af0345401e32
             97f1f3aff84649415c5723f8e8cd390a
             939a6dc9a89e8f5d01d6a7f90394e309
             a8287ad07b49e23544f4e514fba2cdf1
             9b901eb7e9aa7af9348eb3e799bdbb52
             78394540ebb1a85320487e0f87041a48
             939dba4bae2e7724160bedf2dd8c2a83
             308b5bdf8769184611996b216f5cd187
             ce5bf7387779f8d1616b8f2362b3a93e
             220074a4dab407af37209176c66e0dc2
             555fdf8bb1a83234c458f2152fdb3029
             a3ad1ee014be9639b8ac1753612d8e22
             e009ee054591361f97c93dbcea3311b8
             56c69a0ae1afffc41c0cdd9e3c90a8fd
             2528540dcbf0fe193b7919d30de0a6a7
             32d0f84c42f154f2f1baee82f818c40f
             c50e72e6b453b60939f991dff0d4a283
             729b81ac7ceddae7afb7bf9d2f363380
             c744f88afadaa51b3368fe7be615c013
             c3d28aa9f92da6b8384e3d92f659222c
             50e1bfda476e3a481e618f1c9b872dee
             b33d4e109044f48edafae0daa2c675d1
             bd6d8a061f9e4f7209e9150e42224263
             751c737d882b27257d1b5899a3f8c6d3
             fa9b9402ae2920f7ad502813b5f730b9
             1d2ca0606c6c4092ebe6f8f47af83b66
             aecd021f59f544ed088e6687be2579b7
             fbdd6875e1ea4bc24a6a87697512ada6
             631598f745c51ba0d7a33d81113480a1
             69eecdab50da62d0fd7de7d4e54bba27
             c63b486b19c3ea18fe2ef90ad00c5ae1
             8f3b94b34cfb96badf47ec26826106c6
             1ba11be42a5581b70ed9646ff87b4125
             c8de5fab8d785dd939e9ed1c321343ac

   x86-64 Platform:

   openSUSE 10.2:
             14f41cac7bfcb20000c3fd7eb9dcbefc
             fd48ec7f4859861511ae63f3fc3f17ee
             5bfef7c37298192013030d76c936509f
             9aee460227b7335cf5b0f110ea00835e
             5c4c7797cbaa45c1d9abc3c7a1852105
             be8239f4444fc6c9ebbeb256a2fe0437
             fb35c8af9b48ee4d845233ae2374fee9
             d1e61486808be87e94c924c5f8487385
             b4a8a97b306c3ab099cc1da0aba3708b
             704f268bf2f0fb9c5eb4f069519c41e6
             f351170d4784de312b561b2aebc828c5
             523ac49d8f8757e7acd3cb297a683c8c
             fe37d2c613b23d987ddaf3284154418d
             0a7101fbb349f1d2d3bdc539ba875e62
             eeacbf6bb127f78442d563a6282a9c5b
             260bf70b390061c56f221ae58c0e5467
             f0a1ca60a1d53cf91107c9119f19e3e9
             22115f5e734adb07e049e54b4de2dd26
             829edd78bb599f457bc7946eddc4a50d
             2bde2180783484f2dcbfa3437cd03b73
             57a50022f0bf1b43dd1b63c64bf8624c
             9639b904a502505a7cd231d668baaa33
             2ca63e61f8c274f9a93ec0e425b1c56d
             6f48a89ff5aa19cc5e645a03184a62ca
             8c62d3892f676ef3606443939fd2bc03
             e0537d74214ad3681389e07f58ebd78f
             2fd63aa3adf70f0daac20920594ff191
             ea5159a98f3245a50e1f0fa403f5fc5f
             ac32eab2f7c1196e5c82c4bdf321ec17
             1e82fc8c2ad523430f4856dc6cc71e85
             22e99d5c0841fcccec5d31ce81c57bf3
             2303d48696ce56c40b33d87cf1d40b0e
             8039c980c0cb5c89330dffb01d1e7648
             9657fcaa13af3ec9901b30c56b30716b
             cbed323805302585dd2389421717fc7a
             9e55fc30b82e6a7fd9b1b3fc991530e0
             d3d3af7b93c948896176f7a9a0c3242a
             6798386d490556cbc12c52251ad68bbb
             66c5e37b8633b8a7ac4db30659b7a6f9
             f2be58198bce31ac8a42be1bc8714cec
             d6fcb147b57a93db4cec4d68c88ca6f4
             c05b21c4b37b9453e38e301d1b21b35e
             9dcca603a210058b76f2ca89618a7758
             dacb0eca4f0a6073c56c32179169bf71
             9fb28afe2655613e390be64da7cd4ce5
             3b56474eb01868f0f4ff3c4c6ff3bd82
             4f2695e33399086618d245bbd3b75084
             9a2c98acdf83956cbc8b5f8d224e9b17
             358f6754278030bea3c94f2d0b6ccdd0
             19fd2fb89ef9c47efa208981ec069edc
             105f48aa2668989596561cdc358a4f38
             eae144593ba91e89f5b310b05182e390
             36af1ccc5ae8c37f35ac546a367b32e1

   SUSE LINUX 10.1:
             40dbcbe0641ddd3b2297ecc509301ae1
             d08da73966c6164cb1f8d4e191cb2c8c
             93c627a584f19ba37278e3386d8349ee
             d7e0952cce5abcfd6af96ddd14969cda
             0d93c13caa12a644d520958fa8f9023e
             94411f06f7cd02364a3f97378bbba28d
             c8c8d5773ccafaf05b8b3a8ec52fdcd4
             bf3277293b3fff3e96d199a3a999e9eb
             3335249c0e50fefefe591e0fe24cfc59
             73fc88de0983b3a906cb57e217b55b86
             1ead8927c9802ea9f7a6cec8c52e9c56
             6dc2c04bf7a9f53f19d53c6447605f1a
             963ce74856d276f7488e57d3b8afbee5
             40c9f8df39a10fca47422823eec9cf29
             cc4572c711f6b0acfe83f49c4943054f
             a846ce83416d78b8a66c2489e19ad514
             1acfb763c804390dedc5f778602880f4
             acc9399dab324cd5ebd58a7118a17e68
             1a288a6b326787329b90a6249258869f
             71d57de75abb2407ea64041cef021c8f
             53075981fe368d4814178ffd9fc6db04
             d79dc83f5a96a3011840cb49b26bb599
             f748f13c23081d54dbd1f9bff7d32a66
             1100458d624c596842f0a7995ec89de1
             e4e762e2f80e99734f2ac336e52c1a79
             a9aa7dc5fcb3bfd57c430457bee39ef4
             702023f1c8b4dc078be57728ee58c91f
             58b9d8c8100b2679132e250ca191caac
             0753946b5902052e8bd8db62f0b77e77
             2ea657761e4a5bdcd537c73c32b50f5f
             92e0f09733192b374a3326983372f0fd
             9d2265e47b42f942a5fd72760fec6429
             e1525a8b1bd9f9e62b4144a33b78ab59
             97ec0b44e82a3435a831548dfcb3595a
             a4014c2fcc9ec5253863a5d2f7640903
             bde20e33ac1e5ec8ba975ddb4b2baa0e
             9fb666c4c5da670b0ca0c8bd47f4215e
             77df46bf409a4d6ce3dabdb714d2ff19
             e8067bff0fa1a75233969020d8452d19
             4b99cb8403b0aad309f415fd92091845
             3c8919acd679d0eb2942788cb2a9e286
             299dabaaf9197a0b64bbe0e822c175fc
             d2efa151089b2578daceed3418b6c35e
             e1f974306762c48bead32ac63bfbd769
             19589522ba7817aec1aa4b10f98547d6
             bd482dd34b31301879d7ee05165f3e45
             c035a580b865706bd85010d02ff67d76
             50fdef6fdfdb616d6e54703e1cf16af8
             cf24b688e2141055f829ca8fa1e3e42f
             11027ad574b0eb7082967e2e17fe2ea6
             ece01b08ea21f3150f70206090efd309
             34a9e91f56526a46120ce84c63ae7251
             9cf968ca28b6e200d337b4af98f415d0
             aaadf1f57167cc6463dd540952d58642

   SUSE LINUX 10.0:
             75f5d28f7f6f6a0171a189c9b562dfec
             f519c9ac612ddb824d26b52ab6fa232a
             b8febabd588b792c953dcb2ab967a04e
             0b868036752fd5e4c2274a6eb14520b8
             d86e779a6283f258c09396e076e0f745
             36c50837a543b5f38b621b6807425f29
             c6e7ac86432dc7aca235d0c5e6cb7bad
             7b0871aa67709701c7fcc745ebf7934e
             18d87e1ab6704489f01d6b87d22929f7
             8018751460863af2b40ec33982641266
             6d038637b167446bbbf9aca8993574a4
             38e4b440bda6942a4d99ec8f8ff4b380
             034fe63c03cc0e219bf64a298f1dfd59
             8d221aa62f00b6e355516355d47830d9
             54a6c3f6191e2f2581a30a2b78de2fff
             c99b910032b541465f8cd70d73f1a43b
             a7b85ac6380afe8c2e677337b18de564
             cc0151d88d66171c772a1235de130d21
             77bb42b33c3d585fed674b1dec854806
             7485056c9ae4abe2b7723c9f1826ae72
             cfdfc928f6c2e8eb1e9eaaf91db00c60
             48a74f2bacef9b92b9b1f5b5dea89d31
             2e1148d6a47bbda96617e7d52c1ca9a4
             309ec0716eb1b1db0a381967de38f246
             eb4565f7e12f5d2876c1726f4cc67a8e
             40c931eae28049f57ed1fedf1a1d79f5
             800b4f96ac19cd5831312f1a7c95d587
             87340b43e01df6a046eb4336e73aa7d6
             a2b6e226f4191882dced679e7d86351f
             1b71ef9fae40546759bb080566529165
             7678342498be322233cb0fdab6b555cb
             c8abf6882966e477cb64e2b65cb15941
             3a9d3985f2dc7cd4a9fcca5c6c6153e3
             25f9853f60e6cf3611905ab258fcfa60
             058b3a3a964ff511ecfa635e842f19b5
             2a79d8e36d22d0c73e55eabc141b1723
             a8617f46a673e251a1917d25433ee996
             5f911a3fc32ff35fc4fb73e1f2addfe8
             be089e25eb40dd6c51ddbc8963150676
             d3324b5d5c96bab57d62f812ee1c3241
             2780aacb38f046eac8212774de0855ea
             26bd1b5c0a11ffd9fb7b695ca1ba6e54
             b46752cc61be4c394195e7d47ecdb0ff
             efb4cca4d0e2940f545be8431421a0b3
             419495c7be7caf73d81c8dd77a97c2ba
             de6d78c4c5fff218788acdbe26152318
             6ffcc052acdaff00ad91161cbb438c9a
             fedc329fe634811effbcab956a101af5
             a447f08c1d9d1106527fb02ab80c46e8
             e98c81978e028050f1ce30504bc74535
             0181efa3c6c3ed2e8160cb60466c31f5
             d1afe7bf2a347b08cd0508b786b73629
             4bb82c99a867a8d5954e37d9e0f9a051
             3acc280946e1564f9b32277038736d85
             40386ed22c9506909e9560ba66e583a9
             c87b38dd2568ef9ba11631271cbde4cd
             fd3c16631f2d762958efbc560946325a
             8587bbfacf6b46a6cdb1fbe0a1374fbc
             fc01d047635dd95e76eba0c496481d6e
             7310a606548e60af99b3e6b4c0aec6ba
             40e2dca61fd9908e0021e72797a15d95
             f2d9522a76234eb93929b8b7dbfde8d8
             3f23fb6869ab5eb28d2b76a964759124
             fddb53ab204902c41c5430661de3a7b0
             dce9dd863aa678e5a6a01531312a8a95
             22a380fd7dcb508fe7edbe6e5c84ccf3
             b6907ac661e7ce7e8ceb11dec3803200
             7375ab5093bb0a070f3e7877e0c121d2
             cc0359d29cf54e73b2200abb30568b58
             0f6e40f72fc8bd96f2568720c6fea6a5
             b9d63332f98774ed044cedecc12bf013
             a35d3b1675d6330cf0c2425a64237027
             5d67ff677763bec4f6eee8afabffa508
             367aa8b0aeab4f0b680c249e8584efc3
             ef32325141d64c400bfaf2996c084640
             b90b846410431a433c12363684a403d2
             1f4626a7eaeba1cdbbb03c731e0646a2
             82cc2c22e6bcdd8dd553ac55d06c5e9e
             ccf8f8fb6b85316744523a1d789e5fa0
             1c647921da295c0a13e325b0f3fcc7af
             0b4b0f48bde642dccb44fb2d2b9e8224
             095e15d8d7d8adc1f90fd68bff31ca4b
             52b832c1594f1c56eee596c66176b492
             d24e9f9b33240b14f5378d5be21871ba
             412da23e3d8e5c8b00132ac024be72b7
             011356fdcd334557c9da11ea4990b1ca
             67d05c228d2e18ce45c3cc1291ab3a22
             c93a8ede9896936859a596db0ba69546
             1ee6cc9a04c62db5914a47557f2d410d
             f7c98a2dd2be3ab9782ab5cf9512dcef
             df48b93acd64bfa173bf83b3c5420765
             39999fa4deb6dd521a461dfa446c5c31
             2b4cb24a29de9320f379d53ebc7609bc
             3f172f86135311db15e5d217bebe06a4
             b7f06aaef67d86f5dcac9a00ead0d99e
             66cc8724f14910ad1ad23359bae86682
             3d74f496e17cb5c933f3e746c18bec82

   SUSE LINUX 9.3:
             9a09d3241c32d1fdf7337ef7e5554e64
             b4d6b35f5a740ad04892319b914895a0
             597635cc4c0774a894baa6bca1c4af37
             3fa2f1ea6c8aa4abf79cce2f50128071
             737083cdd24e375069229f57388ca6b6
             bad30f2138b311933cda9c8c1229ab82
             e364e473cdf116fc4030e49a4f429169
             98b2da72df03d50fea8ca9d148c5d6df
             699a74a9beaf2987779cbec72f74603d
             7faf1b2809bf6480a02beece4d52424b
             dd5d581d226ca5e06ef33b6d032446b6
             f43925245ba231571b7645bd2427605d
             8fa85e839d69da19bf41cac5364bdcde
             2f05318e24f70f9388f3478f309e1e8f
             b48ab05111ccf6bb99af6166a238f35b
             f3e5911e94bd96680a233c67032c7b4a
             0a8674a52825faac1efcd4ac51a6d7b9
             ea5efb8d8e4799ee213c56c4d2a6e694
             0be1e1d007d8394eca27548d0d20cfe0
             13079655d51bccb7819930651f3b8ecc
             c0ca8651d9cf4af74012946657a10af3
             c379268b0766dd6589cc6322c51833af
             6d35392a923b1cafff314796979be9be
             da986ee7daade9f0f6301c5e7bdbf20e
             2bb1fd763a2ebf520519ab05d9de52c3
             2fa2593d0a206525d70541adea89ccf6
             260d9b26e0ca7fa7b5f6c2e7c063aee9
             675f88c87b146d62741536f6f2e1f75c
             d4c6e95794737126d3b9175f7d64f8ef
             56ec14a541a99e272258aaecebd15497
             014b1117308619e7be279047317d8412
             60ebe32c6e349fa0d0c10b38e87adfd0
             861d6ea0409aec4c23891443fc9cc78f
             b9b39fdf008ae836c705ababfa0cc052
             7c944676d041ade7357d0583aa753a47
             35f14c610d0515e5a15d1fbda968254c
             2b718ff9bc4e92cc0e98df7f7343df72
             ac3a26cb9bbd99efa924fab784c89d41
             e80254d872797d8fbbaf03de43187089
             62fafbba3d113e75cf0332fc625d1c5b
             48b49b81d2086e32bc21a3e2921d0787
             271c14eca773b906552f825b633a17a2
             dd43d7838c0c987a560455add46cd49c
             d1eb8adc53e65031914b2a063060c466
             0df76b46213b8e9a3426e47fcf978f42
             a374097a7f4866422c1c049a05f1b0a1
             c921b40fbfd0ae7cdc328c98abaa5d47
             d93f83392380429bfe18fc648f50f9bc
             65af5b874451250841968659e7822041
             3a8b440a824b2f58bf54db6b06a39493
             077305a2131f022928ec9c99e1f76093
             eb45fe4f2a85aeae88fdfe819b54ec3f
             316119eb6bb879982d09be8820524331
             6fcac9e1ef5ed72e95fee2a75703e77b
             905550605e2c16895c7ef9f3aae198e0
             218747e8e88b895bfade6ac66fd0d23a
             e5f7254a0331f0b4d6f598cde19ddb59
             444877be976cf3bfdd94d0ffe1b89b80
             26af746426d069c2a2f6087728346ecf
             0724d820f11df4f87540f43beab2f142
             c73f095309b9a3552649ffb1e4a27d1c
             93dcac156526de506b4a01cc6fa80c4e
             d9ca9d53deaa0dc908117d98ac46ecc6
             b667f79a594ce8d6bf5bba73a0fc7d56
             252d2ffc48aadb564785baee6bd24882
             6abc790048180ec6da9accfe2da95807
             1227f4ec02b8c8e8209663a2ca7e82e0
             dcba4862eca29e63cb680b1b4b959ef9
             e87250e23e60a46edca8a3c71584a9af
             66714fa8ec9e5977e5d38964ce1dbcd9
             cc20a47a3cd08fd685604d159691cfad
             494c5d3a42dd7e0e6ab92c8f24cd7803
             70bd950386579ae58e55987505ebd624
             548fede8ab904ba31bdff3b04a661775
             992c5681781ed7cd1c167d40b5ac644b
             a08d00ec5d6a381867a2030b889970b2
             f4daeae40b365aad90ec7f83896563fe
             d5f9da97344b214f7b5a2d581f2c80ff
             83dd3591e3da21f0dd0cde7444c3feb0
             e63f368a27fb72c3477acccbf156a091
             61a5b4c48f9042c7f4c55d9d4f21cc3a
             5cfd1f4249cf336b8b793cf92d0356a6
             0bfc915c35b7ffaeb4d788d702cccba0
             c6a8a3c97265388b3fe2a4e5fa72e561
             9c00b679c90349040f768c147e0b1e4b
             b340660bfa9088d2531ee269317c557d
             561fe484d9e9179db7d1602ff87ff017
             f7208577be0c483404c5e4d68ce41f5c
             bb8afa7b1518c92248ebcb121ea3dd98
             59e0ce57cc71b778aa253d1aabe5bb3f
             e2ea4de3350010d36e770352d398acf4
             58144f579d43f3501275191401062cac
             485f98931d695a323b203117058a0d70
             6f7be364737ffe76563e5459e2181ca5
             8b0b0a304528e61eddeaf74780381d84
             a951c7c272d19b573108846a921366bd
             c66637f5a8514b3dcac31d2f6501e939
             a461aa2905a95da64b4faf1060202f1c

   Sources:

   openSUSE 10.2:
             480f6a395a9966f0c852ddeeb2a8432e

   SUSE LINUX 10.1:
             a5ffdcdebae36e3ead00f3bd0c9e7abc

   SUSE LINUX 10.0:
             7f9278ee7345bdfb56f4bfd562be5c2d
             95f335832384323a001268bfdae37153

   SUSE LINUX 9.3:
             28cb0ef7d3c1a2e749f435a299585729
             47025a227233b25e2176292bd30f9642

   Our maintenance customers are notified individually. The packages are
   offered for installation from the maintenance web:

   SUSE SLES 10
     http://support.novell.com/techcenter/psdb/24bcc1ec811335d2d94a608b33d39f6b.html

   SLE SDK 10
     http://support.novell.com/techcenter/psdb/24bcc1ec811335d2d94a608b33d39f6b.html

   Open Enterprise Server
     http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html

   Novell Linux POS 9
     http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html

   SUSE SLES 9
     http://support.novell.com/techcenter/psdb/c3551a01d5cfd4b788ec2ae2833cf2e3.html

   UnitedLinux 1.0
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

   SuSE Linux Openexchange Server 4
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

   SuSE Linux Enterprise Server 8
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

   SuSE Linux Standard Server 8
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

   SuSE Linux School Server
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

   SUSE LINUX Retail Solution 8
     http://support.novell.com/techcenter/psdb/3ceb58d19e5a851dd4b8684151b05d04.html

______________________________________________________________________________

5) Pending Vulnerabilities, Solutions, and Work-Arounds:

   See SUSE Security Summary Report.
______________________________________________________________________________

6) Authenticity Verification and Additional Information

  - Announcement authenticity verification:

    SUSE security announcements are published via mailing lists and on Web
    sites. The authenticity and integrity of a SUSE security announcement is
    guaranteed by a cryptographic signature in each announcement. All SUSE
    security announcements are published with a valid signature.

    To verify the signature of the announcement, save it as text into a file
    and run the command

      gpg --verify 

    replacing  with the name of the file where you saved the
    announcement. The output for a valid signature looks like:

      gpg: Signature made  using RSA key ID 3D25D3D9
      gpg: Good signature from "SuSE Security Team "

    where  is replaced by the date the document was signed.

    If the security team's key is not contained in your key ring, you can
    import it from the first installation CD. To import the key, use the
    command

      gpg --import gpg-pubkey-3d25d3d9-36e12d04.asc

  - Package authenticity verification:

    SUSE update packages are available on many mirror FTP servers all over the
    world. While this service is considered valuable and important to the free
    and open source software community, the authenticity and the integrity of
    a package needs to be verified to ensure that it has not been tampered
    with.

    There are two verification methods that can be used independently from
    each other to prove the authenticity of a downloaded file or RPM package:

    1) Using the internal gpg signatures of the rpm package
    2) MD5 checksums as provided in this announcement

    1) The internal rpm package signatures provide an easy way to verify the
       authenticity of an RPM package. Use the command

        rpm -v --checksig 

       to verify the signature of the package, replacing  with the
       filename of the RPM package downloaded. The package is unmodified if it
       contains a valid signature from build@suse.de with the key ID 9C800ACA.

       This key is automatically imported into the RPM database (on
       RPMv4-based distributions) and the gpg key ring of 'root' during
       installation. You can also find it on the first installation CD and at
       the end of this announcement.

    2) If you need an alternative means of verification, use the md5sum
       command to verify the authenticity of the packages. Execute the command

         md5sum 

       after you downloaded the file from a SUSE FTP server or its mirrors.
       Then compare the resulting md5sum with the one that is listed in the
       SUSE security announcement. Because the announcement containing the
       checksums is cryptographically signed (by security@suse.de), the
       checksums show proof of the authenticity of the package if the
       signature of the announcement is valid. Note that the md5 sums
       published in the SUSE Security Announcements are valid for the
       respective packages only. Newer versions of these packages cannot be
       verified.

  - SUSE runs two security mailing lists to which any interested party may
    subscribe:

    opensuse-security@opensuse.org
        -   General Linux and SUSE security discussion.
            All SUSE security announcements are sent to this list.
            To subscribe, send an e-mail to
                .

    suse-security-announce@suse.com
        -   SUSE's announce-only mailing list.
            Only SUSE's security announcements are sent to this list.
            To subscribe, send an e-mail to
                .

    ====================================================================    SUSE's security contact is  or .
    The  public key is listed below.
    ====================================================================