All the updated packages are in the updates/ directory on our FTP server mirrors.

For example, if you are looking for an updated RPM package for Mandrake 6.1, check: updates/6.1/RPMS/

Note: we give the md5 sum for each package. It lets you check the integrity of the downloaded package by running the md5sum command on the package ("md5sum package.rpm").

February 4 2000 - A new ISO image of Mandrake 7.0 is available. It fixes a severe problem that occured when resizing certain FAT partitions and several other little dysfonctionements. Here is a sumary of the bugs that have been fixed:

bug in fat resizing causing data loss fixed

no more auto fat resizing in expert and custom

better fat-error handling (you could not pass the error message)

Mylex DAC 960 hardware RAID handling fixed

auto-configuration bug for Matrox G100 (and some other very seldom used) fixed

a few mis-autoconfiguration fix (tulip NIC)

one more kind of GeForce video card autodetected

removed the conv=auto option for FAT partitions which caused freezes with kfm

The new ISO image is available on the Mandrake mirrors.

November 29, 1999 lpr

This version fixes a bug that prevented lpr to work correctly in a few cases.

Please upgrade to:

a1fb3a76ee7cd891ea6c39de7bdaba72 lpr-0.46-1mdk.i586.rpm
bca36e98a78226e88ba7c5e4d72d8e81 lpr-0.46-1mdk.src.rpm

November 15, 1999 SECURITY UPDATE: bind

If you are using Linux-Mandrake as a name server, you should upgrade to this package. It fixes numerous annoying bugs, ranging from execution of arbitrary code to remote crashing. For more information, see CERT advisory CA-99-14.

65c7cef1cb8d43cea869a5f42257ece7 bind-8.2.2P5-1mdk.i586.rpm
f8b7b939a967cb0495a11a22e9b7075c bind-8.2.2P5-1mdk.src.rpm

November 8, 1999 initscripts

This update fixes a bug in ifup-aliases. IP aliasing should now work for those of you who use it.

8ff5a92cd872001f912536f9e0a7fbf8 initscripts-4.23-35mdk.i586.rpm
2d7786531b2a66613ce42d492ac34504 initscripts-4.23-35mdk.src.rpm

November 5, 1999 SECURITY UPDATE: kvirc

This package cures the "!nick ../../../etc/shadow" bug. Understand, it doesn't allow anymore users to get files you wouldn't like them to get.

Remember, though, that you shouldn't IRC as root in any case.

74940e9a668929d33bc8aec05c98178f kvirc-0.9.1-1mdk.i586.rpm
a1f6e33407d5a034e3c939fab025e33a kvirc-0.9.1-1mdk.src.rpm

October 29, 1999 kernel

This is 2.2.13 final. RAID is now supported on this kernel.

27db8f6709b4c8744bae082a749cf79e kernel-2.2.13-22mdk.i586.rpm
5edb7200d67a7deaa58cf8d66eba6ca8 kernel-2.2.13-22mdk.src.rpm
942782496a12aa5b8d1615ca841d0d5a kernel-doc-2.2.13-22mdk.i586.rpm
cdb8e6d494221d0bfde5150d29a7969f kernel-fb-2.2.13-22mdk.i586.rpm
67fe8a11e64ab3721292ac582ca83dce kernel-headers-2.2.13-22mdk.i586.rpm
dd1770635a622e5010e1959f461ab4c9 kernel-ibcs-2.2.13-22mdk.i586.rpm
2a2f3001e798473f10537033b4ea2bb4 kernel-pcmcia-cs-2.2.13-22mdk.i586.rpm
35b0450d35d42ba77b5066f1d90f9825 kernel-smp-2.2.13-22mdk.i586.rpm
ecdc2001887bccb5ba1543f9f4f41bad kernel-source-2.2.13-22mdk.i586.rpm

October 29, 1999 netscape

This is version 4.70 of Netscape. It fixes the timezone bug: Netscape 4.61 believed that everyone was located at GMT...

89b66260957d688c4a15df60f452d641 netscape-4.70-1mdk.src.rpm
28f2c1d7e36a0fc15f9feefe990255d1 netscape-common-4.70-1mdk.i586.rpm
303fea955b7b9d808319c0fa4170032f netscape-communicator-4.70-1mdk.i586.rpm
edb5188980e17cae385bd177c1a9246d netscape-navigator-4.70-1mdk.i586.rpm

October 29, 1999 SECURITY UPDATE: am-utils

There is a potential buffer overflow / remote exploit in the am-utils package. Please upgrade to :

919d46ca0a7a93cf5ac6bd72030876ee am-utils-6.0.1s11-1mdk.i586.rpm
fa81483da16ce5b83f72ab9dd4edaaa1 am-utils-6.0.1s11-1mdk.src.rpm

October 29, 1999 SECURITY UPDATE: ypserv

This package fixes several problems:

- A bug allowed for all admins on a NIS domain to inject password tables into the NIS server.

- A user on a NIS domain could change the login shell and GECOS information (real name, etc.) of other users.

- There was a potential buffer overflow in the MD5 hash generation.

82dfa8f405bbc56ab7baa656fdd8b8d7 ypserv-1.3.9-1mdk.i586.rpm
1f1f2a2f5c5ed7d84a460e446a892a4f ypserv-1.3.9-1mdk.src.rpm

October 22, 1999 SECURITY UPDATE: wu-ftpd

This update cures two problems:

- two potential buffer overflows, which could make the server execute arbitrary code if exploited

- a memory usage condition problem, where a user could make the server consume huge amounts of memory, eventually rendering the system unusable.

Problem mentioned by CERT advisort CA-99.13.

Please upgrade to:

b8e916297a78253fa29ce99d96d147ce wu-ftpd-2.6.0-1mdk.i586.rpm (binary)
d647bd1b73149fbc7975c747f1863d35 wu-ftpd-2.6.0-1mdk.src.rpm (source)

October 21, 1999 SECURITY UPDATE: screen

By default, screen did not use Unix98 ptys (/dev/pts/*), which resulted in its controlling terminal being world-writable. This is a security bug, which this package cures. Credits go to Red Hat.

Moreover, /etc/profile.d/screen.sh has been rewritten so that it's now totally sh-compatible, ie it will also work with other sh-compatible shells (zsh, ash to name two of them).

Please upgrade to:

49922e0afd94dbe488f18455829b1da7 screen-3.9.4-3mdk.i586.rpm (binary)
3893af09f61aad3b3bbeb50e91f7fd7a screen-3.9.4-3mdk.src.rpm (source)

October 18, 1999 SECURITY UPDATE: lpr

A security hole has been found in the version of lpr shipped with Mandrake 6.1 that could allow users to print files for which they don't have read permissions.

Please upgrade to:

2078ba99d21f81bcd328a478424a51a8 lpr-0.43-1mdk.i586.rpm (binary)
fab2deed508d22659e359c6fb6c861f9 lpr-0.43-1mdk.src.rpm (source)

October 2nd, 1999 MandrakeUpdate

This update is for internationalization purposes: modified English text in the sources, descriptons in other languages than English will now display correctly. Upgrade to:

fe63cf56d6c2da5219dd1dd66a99833c MandrakeUpdate-6.1-3mdk.i586.rpm
116b2632f2d790516b8d598c5edf533e MandrakeUpdate-6.1-3mdk.src.rpm

October 2nd, 1999 xpdf

This package fixes the numerous bug reports of xpdf hanging the machine when viewing some special PDF files. Upgrade to:

1611e439d7855e7ca2a10c2f720c8256 xpdf-0.90-2mdk.i586.rpm
78b44f853d976a6553b197a9db4ea3f2 xpdf-0.90-2mdk.src.rpm

October 2nd, 1999 gnuplot

If you use GNUplot, you will need this upgrade: it fixes the problem of corrupted Postcript output generation. Upgrade to:

fe582b20fc6fc53bf4085c696b314370 gnuplot-3.7.0.1-3mdk.i586.rpm
646f323896450a0080659c4cd16c449c gnuplot-3.7.0.1-3mdk.src.rpm

October 2nd, 1999 mount

This update fixes the problem with mounting FAT filesystems: mount should not ask you to specify the filesystem type anymore. Upgrade to:

02eedc11731deea3214403d8cc714528 mount-2.9w-3mdk.i586.rpm
4cd42a259b6ac397dd647203ff924413 util-linux-2.9w-3mdk.src.rpm

For more recent updates, we give the md5 sum. It lets you check the integrity of the downloaded package by running the md5sum command on the package.

September, 28 1999 SECURITY UPDATE: gnomehack

An exploit (buffer overflow attack) has been found in this package. Please upgrade to :

b5171745e7db67bfeb63bdbb4b0874c5 gnomehack-1.0.1-7mdk.i586.rpm
552088a2b2224733ce4385576b6b9c83 gnomehack-1.0.1-7mdk.src.rpm

September, 03 1999 SECURITY UPDATE: am-utils

There is a potential buffer overflow / remote exploit in the am-utils package. Please upgrade to :

f153130e30b21dd17b5d67e6abe13809 am-utils-6.0.1s11-1mdk.i586.rpm
7cf7b619b58c7f7e060812712532dbbc am-utils-6.0.1s11-1mdk.src.rpm

September, 02 1999 SECURITY UPDATE: vixie-cron

There is a possible exploit in MAILTO -C command and buffer overflow vulnerability. Upgrade to:

d41d8cd98f00b204e9800998ecf8427e vixie-cron-3.0.1-38mdk.i586.rpm
f39e68d26be775971ac20faac2690607 vixie-cron-3.0.1-38mdk.src.rpm

August, 25 1999 SECURITY UPDATE: BeroFTPD

the BeroFTPD deamon as distributed in the BeroFTPD package from Mandrake 6.0 has a security problem. Upgrade to:

8a57ca15bd7010eb59e15ca236fa62ae BeroFTPD-1.3.4-2mdk.i586.rpm
501e1842d6d60d3e6a13bbf3b57b1d14 BeroFTPD-1.3.4-2mdk.src.rpm

August, 25 1999 SECURITY UPDATE: lynx

lynx as distributed in the lynx package from Mandrake 6.0 has a security problem. Upgrade to:

a092b77d8a7ad735475bd8432e450545 lynx-2.8.3dev.6-3mdk.i586.rpm
a7c2ee688950450210149dc8ad36c970 lynx-2.8.3dev.6-3mdk.src.rpm

August, 25 1999 SECURITY UPDATE: wu-ftpd

the wu-ftpd deamon as distributed in the wu-ftpd package from Mandrake 6.0 has a security problem. Upgrade to:

5815bc15ccd634af168f969cf1478baa wu-ftpd-2.5.0-2mdk.i586.rpm
3e3128b71b94195989fb76f98510a02f wu-ftpd-2.5.0-2mdk.src.rpm

August, 17 1999 SECURITY UPDATE: isdn4utils

xmonisdn as distributed in the isndutils package from Mandrake 6.0 has a security problem. Upgrade to:

4109ff6f46614bfba6eb5b41651eea56 isdn4k-utils-3.0-4mdk.i586.rpm
90a263b047adbb52b937546c5571c780 isdn4k-utils-3.0-4mdk.src.rpm

July, 27 1999 SECURITY UPDATE: Apache (Squid-related problem)

Squid was installing an HTML administration cgi in /cgi-bin, giving world access. It is moved in /protected-cgi-bin/, restricting access only to localhost.

Upgrade to:

aa9efede7a46d7283678aca76469fe88 apache-1.3.6-28mdk.i586.rpm
d1801c972d30363d4227f9dab024e208 squid-2.2.STABLE4-2mdk.i586.rpm
d071c9f6bcaefd7e2b15c0a6a58116d0 apache-1.3.6-28mdk.src.rpm
257f93c080150cff71c10b22120190e9 apache-devel-1.3.6-28mdk.i586.rpm
3ea35a4d5e915f4be20217bd07d2703a squid-2.2.STABLE4-2mdk.src.rpm

July, 27 1999 Initscripts

IP aliases were not working correctly because ifup-aliases was looking for a previous version of libncurses.

Upgrade to:

3813c9839c202f4858226225ae635791 initscripts-4.16-31mdk.i586.rpm
304048ccf7d379cef3d94271131ad426 initscripts-4.16-31mdk.src.rpm

July, 27 1999 Xconfigurator

The french-canadian keyboard in X was incorrectly configured as an azerty keyboard. Upgrade to:

6bc7286956dd31bf3cea899fd20c4df6 Xconfigurator-4.2.3-4mdk.i586.rpm
4a0861e6ae5eaf6551a43f1adfc3fc01 Xconfigurator-4.2.3-4mdk.src.rpm

July, 26 1999 KPPP (Internet dialer) problem

Upgrade to kdenetwork-1.1.1final-7mdk.i586.rpm

July, 23 1999 SECURITY UPDATE: samba

Several security holes have been discovered in the latest release of Samba. Please upgrade to samba-2.0.5a-1mdk.i586.rpm

July, 19 1999 PPP problem

The "ifdown" script was not working. Upgrade to ppp-2.3.8-1mdk.i586.rpm

July, 5 1999 bug in printtool package

Unhappily, some users may experience some problems with printtol (missing printers). Please upgrade to: printtool-3.40-6mdk.noarch.rpm

June, 25 1999 SECURITY UPDATE: screensavers from kdebase

Upgrade to kdebase-1.1.1final-11mdk.i586.rpm

June, 25 1999 SECURITY UPDATE: net-tools

Upgrade to our new net-tools package which fixes potentional bufer overruns. This package also contains a patch for ESP and GRE protocols recognition in VPN masquerade. Upgrade to net-tools-1.52-6mdk.i586.rpm

Netscape Communicator

Netscape Communicator 4.6 appears to be very unstable for many users. Please upgrade to 4.61stable if your experience such instability problems.
Command line for upgrading:

rpm -Uvh --force --nodeps netscape-common-4.61stable-1mdk.i586.rpm
rpm -Uvh netscape-communicator-4.61stable-1mdk.i586.rpm

SECURITY UPDATE: kernel 2.2.9

2.2.x kernel are all affected by a networking security bug. Please do not use your machine in a network environment until you update with our new kernel.
Command line for upgrading:

rpm -ivh kernel-2.2.9-27mdk.i586.rpm

Important note: please don't forget to modify /etc/lilo.conf after upgrading, and re-run /sbin/lilo.
Scsi users: please regenerate the initrd image with the command "mkinitrd /boot/initrd-2.2.9-27mdk.img 2.2.9-27mdk"

umount problem at shutdown time

Some users can experience a "busy partition" message at shutdown time.
Solution: upgrade to initscripts-4.16-30mdk.i586.rpm and to kernel-2.2.9-27mdk.i586.rpm. An updated initscripts package is also available:

rpm -Uvh initscripts-4.16-30mdk.i586.rpm
rpm -ivh kernel-2.2.9-27mdk.i586.rpm

Note: if you run in level 5, don't forget to set it again in /etc/inittab [just replace id:3:initdefault: by id:5:initdefault:] after initscripts upgrading!

sox problems

Some users can experience some problems with sox.
Please test: sox-12.15-7mdk.i586.rpm

lilo

Some problems have been found when using LILO on SMP (multi-processors) machines. Please upgrade to: lilo-0.21-6mdk.i586.rpm

utemper

If you use this package, please upgrade to utempter-0.5-3mdk.i586.rpm, which should solve the hanging processes problem.

libIDL programs compilation problems

Please upgrade to:

ORBit-0.4.3-3mdk.i586.rpm
ORBit-devel-0.4.3-3mdk.i586.rpm

esound problems

Please upgrade to:

audiofile-0.1.7-4mdk.i586.rpm
audiofile-devel-0.1.7-4mdk.i586.rpm
esound-0.2.12-4mdk.i586.rpm
esound-devel-0.2.12-4mdk.i586.rpm

gperf not working

Please upgrade to: gperf-2.7-8mdk.i586.rpm

problems with installation disks

We have put new boot images (boot.img, boot-ol.img, boot-ne.img, boot-ee.img, bootnet.img, pcmcia.img) in updates/6.0/images/.

gnopad+ problems

Please upgrade to: gnotepad+-1.1.3-3mdk.i586.rpm

corrupted tetex-afm package

Unhappily, some CD contain a corrupted tetex-afm package. If you can't use LaTeX (or cannot print/print preview in KLyX) please install: tetex-afm-0.9-9mdk.i586.rpm from updates/.