KDE 3.4.1 Info Page
KDE 3.4.1 was released on May 31st, 2005. Read the official announcement.
Security Issues
Please report possible problems to security@kde.org.
Patches for the issues mentioned below are available from ftp://ftp.kde.org/pub/kde/security_patches unless stated otherwise.
- The Gadu-Gadu protocol handler of Kopete 3.3 and above contains a copy
of libgadu, that is used if there is no system installed libgadu library.
Multiple integer overflow vulnerabilities have been found in libgadu.
Read the detailed advisory. KDE 3.3.x up to including KDE 3.4.1 are affected. - KPDF contains multiple integer overflow and integer arithmetic flaws that may make it possible
to execute arbitrary code on the client machine via remotely supplied PDF files.
Read the detailed advisory. All versions of KDE up to and including KDE 3.3.1 are affected. - The langen2kvtml script (included in kdeedu/kvoctrain) contains
multiple temp file generation vulnerabilities.
Read the detailed advisory. KDE 3.0.x up to including KDE 3.4.2 are affected. - The kcheckpass utility contains on certain platforms a local
root vulnerability.
Read the detailed advisory. KDE 3.2.0 up to including KDE 3.4.2 are affected. - kpdf contains several buffer overflows in its xpdf-based code which can be triggered
by a specially crafted pdf file.
Read the detailed advisory. All versions of KDE up to and including KDE 3.5.0 are affected. - kjs contains a heap based buffer overflow when decoding certain malcrafted utf8
uri sequences.
Read the detailed advisory. All versions of KDE starting with KDE 3.2.0 up to and including KDE 3.5.0 are affected. - kpdf contains a buffer overflow in its xpdf-based code which can be triggered
by a specially crafted pdf file.
Read the detailed advisory. All versions of KDE 3.3.0 up to and including KDE 3.5.1 are affected. - KDM contains a symlink attack vulnerability that allows a normal
user to read files from other users including root.
Read the detailed advisory. All versions of KDE starting with KDE 3.2.0 up to and including KDE 3.5.2 are affected. - kpdf contains a denial of service vulnerability in xpdf based code that
can cause the client to crash via a specially crafted pdf file.
Read the detailed advisory. All versions of KDE up to and including KDE 3.5.5 are affected.
Bugs
This is a list of grave bugs and common pitfalls surfacing after the release was packaged:
- Some critical bugs in KPilot have been found: The memofile conduit will eat all previously synced memos; in addition, category names will be broken because the last character of each category name is removed. Apply kdepim-kpilot-fix.diff to the sources to fix it.
Please check the bug database before filing any bug reports. Also check for possible updates on this page that might describe or fix your problem.
FAQ
See the KDE FAQ for any specific questions you may have. Questions about Konqueror should be directed to the Konqueror FAQ.
Download and Installation
Library Requirements. KDE 3.4 requires or benefits from the given list of libraries, most of which should be already installed on your system or available from your OS CD or your vendor's website.
The complete source code for KDE 3.4.1 is available for download:
| Location | Size | MD5 Sum |
|---|---|---|
| arts-1.4.1 | 952kB | f632984ddc976a1e4243718af54559ee |
| kdeaccessibility-3.4.1 | 7.1MB | a8f51420c214bbf36efa54c99e24fdd9 |
| kdeaddons-3.4.1 | 1.5MB | 596c3a7f4ef43e2f0bd760196a6b119b |
| kdeadmin-3.4.1 | 1.4MB | ee02e3caf664d825838698b44557b0ef |
| kdeartwork-3.4.1 | 17MB | 0f58245c2fa3c58dbe139da43037a203 |
| kdebase-3.4.1 | 21MB | 8fbe0b943721b79f2549064b580acdde |
| kdebindings-3.4.1 | 6.8MB | 18a4e2c42d34bb86279e691498482951 |
| kdeedu-3.4.1 | 22MB | 9fa1db1cf500c0fc594b0f5d291bbf69 |
| kdegames-3.4.1 | 8.9MB | 6af3f45a1c959324c44d4b08bd552f16 |
| kdegraphics-3.4.1 | 6.2MB | d91ef530a416bd8407abb28103bc049c |
| kdelibs-3.4.1 | 16MB | 67224e6b55856c23b0a162cab17dd1b4 |
| kdemultimedia-3.4.1 | 5.2MB | db69c9ab845c8295f095dc6394fba047 |
| kdenetwork-3.4.1 | 7.0MB | cfdec84537bd20f032b9b27c74bc28ba |
| kdepim-3.4.1 | 10MB | e5515aa230558bac8651e9cd9f8f9673 |
| kdesdk-3.4.1 | 4.3MB | b7073f0f4ac7efe4d6ff33c1ba527668 |
| kdetoys-3.4.1 | 3.0MB | 8c9ad215fe076942bc9195eca5a9175f |
| kdeutils-3.4.1 | 2.1MB | 0c3ef37a96ce9f5b0b3ee5d0b31ef4e4 |
| kdevelop-3.2.1 | 7.9MB | 7a5e9f2fb8a9539a41541dba566a234a |
| kdewebdev-3.4.1 | 5.6MB | d5c9e5c72731aead950ab29a4d620af8 |
The Konstruct build toolset can help you downloading and installing these tarballs.
Some Linux/UNIX OS vendors have kindly provided binary packages of KDE 3.4.1 for some versions of their distribution, and in other cases community volunteers have done so. Some of these binary packages are available for free download from KDE's http or FTP mirrors.
Currently pre-compiled packages are available for:
- Conectiva Linux
(README)
:
- Conectiva 10: Intel i386
- Kubuntu
- Hoary (Intel i386): Kubuntu KDE 3.4.1 packages page
- KDE-RedHat (unofficial) Packages:
- Slackware (Unofficial contribution) (README) :
- KDE Solaris (Unofficial contribution) (README) :
- SuSE Linux
(README)
:
- Language packages (all versions and architectures)
- 9.3: Intel i586 and AMD x86-64
- 9.2: Intel i586 and AMD x86-64
- 9.1: Intel i586 and AMD x86-64
- 9.0: Intel i586
Additional binary packages might become available in the coming weeks, as well as updates to the current packages.
Developer Info
If you need help porting your application to KDE 3.x see the porting guide or subscribe to the KDE Devel Mailinglist to ask specific questions about porting your applications.
There is also info on the architecture and the programming interface of KDE 3.4.