The KDE Project today
announced
the release of KDE 3.0.4.
Besides a number of usability and stability enhancements,
it provides two important security
corrections. The first corrects the file sharing program KPF, which
since KDE 3.0.1 has permitted a remote user to retrieve any file
readable by the user running KPF
(security
advisory).
The second corrects the PostScript® / PDF viewer KGhostView, which since KDE 1.1
permits carefully-crafted PostScript and PDF files to execute arbitrary
code
(security
advisory).
If you cannot upgrade to KDE 3.0.4, which is strongly recommended,
you should immediately stop using both KPF and KGhostView.
Dot Categories:
Comments
If you don't mind, could you elaborate on the "few minor glitches" you experienced? Maybe they're fixable...
-- Rex
Well, some problems with the font under the icons on my desktop; I can't set it to bold anymore. And when I change almost any desktop setting, the icons lose their order and revert to some odd default.
Also, I didn't get any graphic (splash screen, whatever) when KDE's starting, until I updated redhat-logos package to a version from 8.0 (and ignored some minor rpm conflicts to do that)...
Nothing that big, and I'm not even sure if the fault is in your packages...
Overall I'm actually very pleased with this KDE setup.
Oh, btw: when I start kword as the user I normally use, I get the following:
"Mutex destroy failure: Device or resource busy"
With other users it works well. Any ideas? Removing kword's config file under ~/.kde didn't help...
Never mind that kword question. I got it working by reading my old dot.kde.org postings. (Seems like I had the same problem before.)
I can't find your old post regarding this error with kword, and now I'm having problems with kword on RH8.0 with the error message:
Mutex destroy failure: Device or resource busy
I did a search for Joni and only three articles came up. None of them had this one that I'm repling to. I actually found this one with Google. Just like you, it works fine with the root account. How did you fix this problem, or can you give me the hyperlink to your post/reply?
/mario
1. regarding fonts... Hmm...I'll have to look at this one closer. I've never seen this, but it may be a rh72+XFree4.1 vs rh73+XFree4.2 thing.
2. Re: missing splash screen. Another odd one... my kdebase package has a Requires: for an updated redhat-logos (also in my repository). It (apt) ought to have upgraded this for you automatically. ??
-- Rex
Well, I didn't use apt. (I've tried it sometime earlier but have run into problems, IIRC...)
Instead I made a script to get all the rpms and then used 'rpm -Fvh'.
(Would be easier to get them with wget if you'd have them on ftp server instead of http :)
But don't worry about it too much, I got it working anyways.
wget works with for http. I've used it to mirror my site on occasion:
wget --mirror http://www.math.unl.edu/linux/redhat/apt/7.3/i386/RPMS.kde3
ought to do the trick. (-:
In the meantime, I'm working on trying to enable ftp access as well... and lining up a mirror or two....
Back to apt... it is a wonderful tool, I highly recommend its use... and periodic
apt-get update && apt-get upgrade
tasks will always keep your box current. If you had problems in the past, please try again. You won't regret it. And if you *do* experience problems, please don't hesistate to send a gripe or two my way... I'd love to have a chance to fix anything that's broken.
-- Rex
Btw (if this still reaches you), do you know how I could fix this?
If I try to view any Help whatsoever in KDE, I get the following:
"An error occured while loading help:/khelpcenter/index.html?anchor=welcome:
Could not start process Unable to create io-slave:
klauncher said: Error loading 'kio_help'."
I've been wondering if there's some "kdehelp" RPM package or something missing in my system, but I'm not really sure.
I haven't been able to reproduce this problem. What version of kdebase do you have installed? (rpm -q kdebase to find out). What version of redhat are you using?
-- Rex
"kdebase-3.0.4-0", i.e. the 3.0.4 package that you built.
This box is running (updated) RH 7.2.
I'd recommend you upgrade to the latest version I have available (kdebase-3.0.4-0.73.1.1):
apt-get update
apt-get upgrade
ought to do it.
-- Rex
Have you got any bad feedback from these rpms on RH 7.3? If you havn't got many severe complaints I'm going to install your packages... Thanks for providing them!
Nope, no bad feedback... (yet... (-: ).
-- Rex
Is there a standard de-install and install script?
regrads,
Ruud
Is "enhancement" Newspeak for "grave security fix?"
Last time I checked, there are other changes in there besides those two security-fixes.
All bugfixes.
KDE 3.0.4 comes from the frozen KDE_3_0_BRANCH.
Yes, so? It says "usability and stability enhancements". Surely bugfixes can be both.
Can anybody tell me why the bug in the KAddressBook which doesn't save the column width is still not solved in this release?
AFAIK this problem was figured out in the 3.1.x CVS branch - so is it really so hard to backport this fix to the stable 3.0.x tree?
Using SuSE 7.3 RPMs, I've had less luck w/this release.
I'm getting memory leaks, Ksysguard applet dies, etc.
Also, the Desktop icon grid has been increased to an unreasonable width and height :(
I'm going back to 3.03