fedora-security/audit fc4,1.62,1.63

Mark Cox (mjc) fedora-extras-commits at redhat.com
Mon Sep 26 08:19:44 UTC 2005 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv1687

Modified Files:
	fc4 
Log Message:
Updates for pending Mozilla/Fedora updates, also squid got moved to
new upstream version so ensured that all the previously backported issues
got addressed in stable11 and note each issue.  Fix a 2005->2004 typo



Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.62
retrieving revision 1.63
diff -u -r1.62 -r1.63
--- fc4	23 Sep 2005 07:45:40 -0000	1.62
+++ fc4	26 Sep 2005 08:19:41 -0000	1.63
@@ -1,5 +1,5 @@
-Up to date CVE as of CVE email 20050922
-Up to date FC4 as of 20050922
+Up to date CVE as of CVE email 20050925
+Up to date FC4 as of 20050925
 
 ** are items that need attention
 
@@ -21,9 +21,29 @@
 2005-2800 backport (kernel, fixed 2.6.12.6) [since FEDORA-2005-906]
 2005-2798 version (openssh, fixed 4.2) [since FEDORA-2005-860]
 2005-2797 version (openssh, fixed 4.2) [since FEDORA-2005-860]
-2005-2796 backport (squid, fixed after 2.5.STABLE10) [since FEDORA-2005-851]
-2005-2794 backport (squid, fixed after 2.5.STABLE10) [since FEDORA-2005-851]
+2005-2796 version (squid, fixed 2.5.STABLE11) [since FEDORA-2005-913] was backport since FEDORA-2005-851
+2005-2794 version (squid, fixed 2.5.STABLE11) [since FEDORA-2005-913] was backport since FEDORA-2005-851
 2005-2728 backport (httpd, fixed 2.0.55-dev) [since FEDORA-2005-849]
+2005-2707 VULNERABLE (thunderbird)
+2005-2707 VULNERABLE (firefox, fixed 1.0.7)
+2005-2707 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2706 VULNERABLE (thunderbird)
+2005-2706 VULNERABLE (firefox, fixed 1.0.7)
+2005-2706 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2705 VULNERABLE (thunderbird)
+2005-2705 VULNERABLE (firefox, fixed 1.0.7)
+2005-2705 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2704 VULNERABLE (thunderbird)
+2005-2704 VULNERABLE (firefox, fixed 1.0.7)
+2005-2704 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2703 VULNERABLE (thunderbird)
+2005-2703 VULNERABLE (firefox, fixed 1.0.7)
+2005-2703 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2702 VULNERABLE (thunderbird)
+2005-2702 VULNERABLE (firefox, fixed 1.0.7)
+2005-2702 VULNERABLE (mozilla, fixed 1.7.12)
+2005-2701 VULNERABLE (firefox, fixed 1.0.7)
+2005-2701 VULNERABLE (mozilla, fixed 1.7.12)
 2005-2700 backport (httpd, fixed 2.0.55-dev) [since FEDORA-2005-849]
 2005-2693 backport (cvs) [since FEDORA-2005-790]
 2005-2672 VULNERABLE (lm_sensors) bz#166673
@@ -163,7 +183,7 @@
 2005-1532 version (mozilla, fixed 1.7.8) [since re0522.0]
 2005-1531 version (firefox, fixed 1.0.4) [since re0522.0]
 2005-1531 version (mozilla, fixed 1.7.8) [since re0522.0]
-2005-1519 backport (squid, after 2.5.STABLE9) ..ry-5.patch [since re0522.0]
+2005-1519 version (squid, fixed 2.5.STABLE10) [since FEDORA-2005-913] was backport since GA (re0522.0)
 2005-1470 version (ethereal, fixed 0.10.11)
 2005-1469 version (ethereal, fixed 0.10.11)
 2005-1468 version (ethereal, fixed 0.10.11)
@@ -186,7 +206,7 @@
 2005-1409 version (postgresql, fixed 8.0.1)
 2005-1369 version (kernel, fixed 2.6.12) [since FEDORA-2005-510] was backport in patch-2.6.12-rc3
 2005-1368 version (kernel, fixed 2.6.12) [since FEDORA-2005-510] was backport in patch-2.6.12-rc3
-2005-1345 backport (squid, affects 2.5.STABLE9) ...-extaclauth.patch
+2005-1345 version (squid, fixed 2.5.STABLE10) [since FEDORA-2005-913] was backport since GA
 2005-1344 ignore (httpd) not a vulnerability
 2005-1281 version (ethereal, fixed 0.10.11)
 2005-1280 backport (tcpdump, not fixed in 3.8.3) in srpm
@@ -280,7 +300,7 @@
 2005-0664 version (libexif, fixed 0.6.12)
 2005-0654 ignore (gimp, not fixed 2.2) upstream considers harmless
 2005-0627 version (qt, fixed 3.3.4)
-2005-0626 backport (squid, affects 2.5.STABLE9) ..-setcookie.patch
+2005-0626 version (squid, fixed 2.5.STABLE10) [since FEDORA-2005-913] was backport since GA
 2005-0605 backport (xorg-x11) ...-fix-CAN-2005-0605.patch
 2005-0602 VULNERABLE (unzip, fixed 5.52) not in srpm
 2005-0596 version (php, fixed 5.0)
@@ -429,8 +449,8 @@
 2005-0004 version (mysql, fixed 4.1.10)
 2005-0003 version (kernel, fixed 2.6.10)
 2005-0001 version (kernel, fixed 2.6.10)
-2005-2480 ignore (squid) bz#166523, not reproducable
-2005-2479 version (squid, fixed 2.5.STABLE8)
+2004-2480 ignore (squid) bz#166523, not reproducable
+2004-2479 version (squid, fixed 2.5.STABLE8)
 2004-2396 version (passwd, fixed 0.69) verified in source
 2004-2395 version (passwd, fixed 0.69) verified in source
 2004-2394 version (passwd, fixed 0.69) verified in source

More information about the fedora-extras-commits mailing list