fedora-security/audit fc4,1.58,1.59

Mark Cox (mjc) fedora-extras-commits at redhat.com
Thu Sep 15 08:35:04 UTC 2005


Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16337

Modified Files:
	fc4 
Log Message:
Catch up with email and fix my bad sorting of the names



Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.58
retrieving revision 1.59
diff -u -r1.58 -r1.59
--- fc4	13 Sep 2005 08:59:42 -0000	1.58
+++ fc4	15 Sep 2005 08:35:02 -0000	1.59
@@ -1,15 +1,16 @@
-Up to date CVE as of CVE email 20050911
-Up to date FC4 as of 20050911
+Up to date CVE as of CVE email 20050914
+Up to date FC4 as of 20050914
 
 ** are items that need attention
 
+2005-2876 backport (util-linux) [since FEDORA-2005-887]
+2005-2874 version (cups, fixed 1.1.23)
 2005-2873 ** kernel
-2005-2872 ** kernel
+2005-2872 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
 2005-2871 backport (firefox) [since FEDORA-2005-871]
 2005-2871 backport (mozilla) [since FEDORA-2005-873]
 2005-2871 VULNERABLE (thunderbird) (moderate only)
 2005-2811 version (net-snmp, not upstream gentoo only)
-2005-2802 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
 2005-2801 version (kernel, fixed 2.6.11)
 2005-2800 VULNERABLE (kernel)
 2005-2798 version (openssh, fixed 4.2) [since FEDORA-2005-860]
@@ -21,19 +22,12 @@
 2005-2693 backport (cvs) [since FEDORA-2005-790]
 2005-2672 VULNERABLE (lm_sensors) bz#166673
 2005-2666 ** openssh (hmm)
-2005-2558 ignore (mysql) not an issue
-2005-2499 backport (slocate) [since FEDORA-2005-770]
-2005-2496 backport (ntp, fixed 4.2.0b) ...0a-20040617-ntpd_guid.patch
-2005-2494 VULNERABLE (kdebase, fixed after 3.4.2) #166997
-2005-2491 VULNERABLE (python pcre)
-2005-2491 backport (pcre, fixed 6.2) [since FEDORA-2005-803]
-2005-2491 ignore (httpd, pcre uses system pcre)
-2005-2491 ignore (php, pcre uses system pcre)
 2005-2642 version (mutt, openbsd only)
 2005-2641 VULNERABLE (pam_ldap) bz#166164
 2005-2617 version (kernel, fixed 2.6.12.5) [since FEDORA-2005-820]
 2005-2602 VULNERABLE (firefox) probably
 2005-2602 VULNERABLE (thunderbird) probably
+2005-2558 ignore (mysql) not an issue
 2005-2558 VULNERABLE (mysql, fixed 4.1.13) probably
 2005-2555 backport (kernel, fixed 2.6.12.6pre) [since FEDORA-2005-820] patch-2.6.12.6pre.patch
 2005-2553 version (kernel, not 2.6)
@@ -43,7 +37,16 @@
 2005-2547 version (bluez-pin, fixed 2.19) not before 2.16
 2005-2541 ignore (tar) is documented behaviour
 2005-2500 version (kernel, flaw introduced after 2.6.12)
+2005-2499 backport (slocate) [since FEDORA-2005-770]
 2005-2498 version (php xml_rpc, fixed 1.4.0) [since FEDORA-2005-810]
+2005-2496 backport (ntp, fixed 4.2.0b) ...0a-20040617-ntpd_guid.patch
+2005-2494 VULNERABLE (kdebase, fixed after 3.4.2) bz#166997
+2005-2491 ignore (python, fc4 python does not contain pcre)
+2005-2491 backport (pcre, fixed 6.2) [since FEDORA-2005-803]
+2005-2491 ignore (httpd, pcre uses system pcre)
+2005-2491 ignore (php, pcre uses system pcre)
+2005-2492 VULNERABLE (kernel, fixed 2.6.13.1)
+2005-2490 VULNERABLE (kernel, fixed 2.6.13.1) bz#166249
 2005-2475 VULNERABLE (unzip) bz#164928
 2005-2471 backport (netpbm) [since FEDORA-2005-728]
 2005-2459 ignore (kernel, fixed 2.6.12.5) dropped as code path not possible




More information about the fedora-extras-commits mailing list