UCE Complaint (RHN Errata Alert: Updated KDE packages fix security issue)

Sat Jun 7 05:02:39 UTC 2003

I have received the attached unsolicited e-mail from 
someone at your domain.

I do not wish to receive such messages in the future, so 
please take the appropriate measures to ensure that this 
unsolicited e-mail is not repeated.

Date: Fri, 6 Jun 2003 20:20:54 -0400
Message-Id: <200306070020.h570Ks917018 at admin.rdu-colo.redhat.com>
Subject: RHN Errata Alert: Updated KDE packages fix security issue
Content-Type: TEXT/PLAIN; charset=US-ASCII
Precedence: first-class
Errors-To: rhn-bounce+2391518-2948760 at rhn.redhat.com
From: Red Hat Network Alert <rhn-admin at rhn.redhat.com>
To: mchaelknowjesus <michaelcose at msn.com>

Red Hat Network has determined that the following advisory is applicable to
one or more of the systems you have registered:

Complete information about this errata can be found at the following location:
     https://rhn.redhat.com/network/errata/errata_details.pxt?eid=1702

Security Advisory - RHSA-2003:192-07
------------------------------------------------------------------------------
Summary:
Updated KDE packages fix security issue

Updated KDE packages that resolve a vulnerability in KDE's SSL
implementation are now available.

Description:
KDE is a graphical desktop environment for the X Window System.

KDE versions 2.2.2 and earlier have a vulnerability in their SSL
implementation that makes it possible for users of Konqueror and other SSL
enabled KDE software to fall victim to a man-in-the-middle attack.  Red Hat
Linux 7.1 and 7.2 shipped with KDE packages that are vulnerable to this issue.

Users of KDE should upgrade to these erratum packages, which contain KDE
2.2.2 with a backported patch to correct this vulnerability.

References:
http://www.kde.org/info/security/advisory-20030602-1.txt
------------------------------------------------------------------------------

-------------
Taking Action
-------------
You may address the issues outlined in this advisory in two ways:

     - select your server name by clicking on its name from the list
       available at the following location, and then schedule an
       errata update for it:
           https://rhn.redhat.com/network/systemlist/system_list.pxt

     - run the Update Agent on each affected server.

---------------------------------
Changing Notification Preferences
---------------------------------
To enable/disable your Errata Alert preferences globally please log in to RHN
and navigate from "Your RHN" / "Your Account" to the "Preferences" tab.

        URL: https://rhn.redhat.com/network/my_account/my_prefs.pxt

You can also enable/disable notification on a per system basis by selecting an
individual system from the "Systems List". From the individual system view
click the "Details" tab.

----------------
Affected Systems
----------------
According to our records, this errata may apply to one or more of the 
systems that you've profiled with Red Hat Network.  To see precisely which 
systems are affected, please go to:
    https://rhn.redhat.com/network/errata/systems_affected.pxt?eid=1702

The Red Hat Network Team

This message is being sent by Red Hat Network Alert to:
    RHN user login:        mchaelknowjesus
    Email address on file: <michaelcose at msn.com>

If you lost your RHN password, you can use the information above to
retrieve it by email from the following address:
    https://rhn.redhat.com/forgot_password.pxt

To cancel these notices, go to:
    https://rhn.redhat.com/oo.pxt?uid=2391518&oid=2948760