fedora-security/audit fc4,1.58,1.59
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Thu Sep 15 08:35:04 UTC 2005
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16337
Modified Files:
fc4
Log Message:
Catch up with email and fix my bad sorting of the names
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.58
retrieving revision 1.59
diff -u -r1.58 -r1.59
--- fc4 13 Sep 2005 08:59:42 -0000 1.58
+++ fc4 15 Sep 2005 08:35:02 -0000 1.59
@@ -1,15 +1,16 @@
-Up to date CVE as of CVE email 20050911
-Up to date FC4 as of 20050911
+Up to date CVE as of CVE email 20050914
+Up to date FC4 as of 20050914
** are items that need attention
+2005-2876 backport (util-linux) [since FEDORA-2005-887]
+2005-2874 version (cups, fixed 1.1.23)
2005-2873 ** kernel
-2005-2872 ** kernel
+2005-2872 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
2005-2871 backport (firefox) [since FEDORA-2005-871]
2005-2871 backport (mozilla) [since FEDORA-2005-873]
2005-2871 VULNERABLE (thunderbird) (moderate only)
2005-2811 version (net-snmp, not upstream gentoo only)
-2005-2802 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
2005-2801 version (kernel, fixed 2.6.11)
2005-2800 VULNERABLE (kernel)
2005-2798 version (openssh, fixed 4.2) [since FEDORA-2005-860]
@@ -21,19 +22,12 @@
2005-2693 backport (cvs) [since FEDORA-2005-790]
2005-2672 VULNERABLE (lm_sensors) bz#166673
2005-2666 ** openssh (hmm)
-2005-2558 ignore (mysql) not an issue
-2005-2499 backport (slocate) [since FEDORA-2005-770]
-2005-2496 backport (ntp, fixed 4.2.0b) ...0a-20040617-ntpd_guid.patch
-2005-2494 VULNERABLE (kdebase, fixed after 3.4.2) #166997
-2005-2491 VULNERABLE (python pcre)
-2005-2491 backport (pcre, fixed 6.2) [since FEDORA-2005-803]
-2005-2491 ignore (httpd, pcre uses system pcre)
-2005-2491 ignore (php, pcre uses system pcre)
2005-2642 version (mutt, openbsd only)
2005-2641 VULNERABLE (pam_ldap) bz#166164
2005-2617 version (kernel, fixed 2.6.12.5) [since FEDORA-2005-820]
2005-2602 VULNERABLE (firefox) probably
2005-2602 VULNERABLE (thunderbird) probably
+2005-2558 ignore (mysql) not an issue
2005-2558 VULNERABLE (mysql, fixed 4.1.13) probably
2005-2555 backport (kernel, fixed 2.6.12.6pre) [since FEDORA-2005-820] patch-2.6.12.6pre.patch
2005-2553 version (kernel, not 2.6)
@@ -43,7 +37,16 @@
2005-2547 version (bluez-pin, fixed 2.19) not before 2.16
2005-2541 ignore (tar) is documented behaviour
2005-2500 version (kernel, flaw introduced after 2.6.12)
+2005-2499 backport (slocate) [since FEDORA-2005-770]
2005-2498 version (php xml_rpc, fixed 1.4.0) [since FEDORA-2005-810]
+2005-2496 backport (ntp, fixed 4.2.0b) ...0a-20040617-ntpd_guid.patch
+2005-2494 VULNERABLE (kdebase, fixed after 3.4.2) bz#166997
+2005-2491 ignore (python, fc4 python does not contain pcre)
+2005-2491 backport (pcre, fixed 6.2) [since FEDORA-2005-803]
+2005-2491 ignore (httpd, pcre uses system pcre)
+2005-2491 ignore (php, pcre uses system pcre)
+2005-2492 VULNERABLE (kernel, fixed 2.6.13.1)
+2005-2490 VULNERABLE (kernel, fixed 2.6.13.1) bz#166249
2005-2475 VULNERABLE (unzip) bz#164928
2005-2471 backport (netpbm) [since FEDORA-2005-728]
2005-2459 ignore (kernel, fixed 2.6.12.5) dropped as code path not possible
More information about the fedora-extras-commits
mailing list