UCE Complaint (RHN Errata Alert: Updated KDE packages fix security issue)

Michael michaelcose at msn.com
Sat Jun 7 05:02:39 UTC 2003

I have received the attached unsolicited e-mail from 
someone at your domain.

I do not wish to receive such messages in the future, so 
please take the appropriate measures to ensure that this 
unsolicited e-mail is not repeated.

X-Message-Info: JGTYoYF78jEHjJx36Oi8+Q1OJDRSDidP
Received: from rhn-mail.rdu.redhat.com ([]) by mc5-f23.law1.hotmail.com with Microsoft SMTPSVC(5.0.2195.5600); Fri, 6 Jun 2003 17:26:41 -0700
Received: from admin.rdu-colo.redhat.com (nat-pix.rdu-colo.redhat.com [] (may be forged)) by rhn-mail.rdu-colo.redhat.com (8.11.6/8.11.6) with ESMTP id h570Qex21007 for <michaelcose at msn.com>; Fri, 6 Jun 2003 20:26:40 -0400
Received: from admin.rdu-colo.redhat.com (localhost.localdomain []) by admin.rdu-colo.redhat.com (8.11.6/8.11.6) with ESMTP id h570Ks917018 for <michaelcose at msn.com>; Fri, 6 Jun 2003 20:20:54 -0400
Date: Fri, 6 Jun 2003 20:20:54 -0400
Message-Id: <200306070020.h570Ks917018 at admin.rdu-colo.redhat.com>
Subject: RHN Errata Alert: Updated KDE packages fix security issue
Content-Type: TEXT/PLAIN; charset=US-ASCII
X-RHN-Info: Autogenerated mail for mchaelknowjesus
X-RHN-Email: <michaelcose at msn.com>
Precedence: first-class
Errors-To: rhn-bounce+2391518-2948760 at rhn.redhat.com
From: Red Hat Network Alert <rhn-admin at rhn.redhat.com>
To: mchaelknowjesus <michaelcose at msn.com>
X-RHN-Login: mchaelknowjesus
Return-Path: rhn-bounce+2391518-2948760 at rhn.redhat.com
X-OriginalArrivalTime: 07 Jun 2003 00:26:41.0913 (UTC) FILETIME=[77D68690:01C32C8B]
X-SpamKiller-Read: Y

Red Hat Network has determined that the following advisory is applicable to
one or more of the systems you have registered:

Complete information about this errata can be found at the following location:

Security Advisory - RHSA-2003:192-07
Updated KDE packages fix security issue

Updated KDE packages that resolve a vulnerability in KDE's SSL
implementation are now available.

KDE is a graphical desktop environment for the X Window System.

KDE versions 2.2.2 and earlier have a vulnerability in their SSL
implementation that makes it possible for users of Konqueror and other SSL
enabled KDE software to fall victim to a man-in-the-middle attack.  Red Hat
Linux 7.1 and 7.2 shipped with KDE packages that are vulnerable to this issue.

Users of KDE should upgrade to these erratum packages, which contain KDE
2.2.2 with a backported patch to correct this vulnerability.


Taking Action
You may address the issues outlined in this advisory in two ways:

     - select your server name by clicking on its name from the list
       available at the following location, and then schedule an
       errata update for it:

     - run the Update Agent on each affected server.

Changing Notification Preferences
To enable/disable your Errata Alert preferences globally please log in to RHN
and navigate from "Your RHN" / "Your Account" to the "Preferences" tab.

        URL: https://rhn.redhat.com/network/my_account/my_prefs.pxt

You can also enable/disable notification on a per system basis by selecting an
individual system from the "Systems List". From the individual system view
click the "Details" tab.

Affected Systems
According to our records, this errata may apply to one or more of the 
systems that you've profiled with Red Hat Network.  To see precisely which 
systems are affected, please go to:

The Red Hat Network Team

This message is being sent by Red Hat Network Alert to:
    RHN user login:        mchaelknowjesus
    Email address on file: <michaelcose at msn.com>

If you lost your RHN password, you can use the information above to
retrieve it by email from the following address:

To cancel these notices, go to:

More information about the kde-www mailing list