fedora-security/audit fc6,1.36,1.37

Mark Cox (mjc) fedora-extras-commits at redhat.com
Fri Aug 25 10:59:27 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv23342

Modified Files:
	fc6 
Log Message:
So far we've only included CVE's starting with 2003 (except for the odd one
that was allocated recently but given an older CVE name).  It's useful for
tracking purposes to capture older CVE's too, so over time work our way
back through the CVE list to capture every CVE.  Got back to 
CVE-2002-1783 today (pass one, collect possible names - pass two will 
look at when these got fixed upstream)



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.36
retrieving revision 1.37
diff -u -r1.36 -r1.37
--- fc6	25 Aug 2006 10:23:12 -0000	1.36
+++ fc6	25 Aug 2006 10:59:24 -0000	1.37
@@ -1601,9 +1601,6 @@
 CVE-2003-0016 version (httpd, not 2.2)
 CVE-2003-0015 version (cvs, fixed 1.11.5)
 CVE-2003-0001 version (kernel, not 2.6)
-
-older, happened to deal with at same time:
-
 CVE-2002-2215 version (php, fixed 4.3.0)
 CVE-2002-2214 version (php, fixed 4.2.2)
 CVE-2002-2211 ** bind
@@ -1612,14 +1609,25 @@
 CVE-2002-2196 version (samba, fixed 2.2.5)
 CVE-2002-2185 version (kernel, fixed 2.6.15)
 CVE-2002-2103 version (httpd, not 2.0)
-CVE-2002-1963 version (kernel, not 2.6)
+CVE-2002-2060 ** links
+CVE-2002-2043 ** cyrus-sasl
+CVE-2002-2012 ignore (httpd) not upstream version
+CVE-2002-2010 ** htdig
+CVE-2002-2009 ** tomcat
+CVE-2002-2007 ** tomcat
+CVE-2002-2006 ** tomcat
 CVE-2002-1976 ignore (ifconfig) "use ip"
+CVE-2002-1963 version (kernel, not 2.6)
 CVE-2002-1914 version (dump, fixed 0.4b29)
 CVE-2002-1850 version (mod_cgi, fixed 2.0.41)
 CVE-2002-1827 version (sendmail, fixed after 8.12.3)
 CVE-2002-1814 ignore (libbonobo) not shipped setuid
-CVE-2002-1793 version (mod_ssl), also only hp
+CVE-2002-1809 ** mysql
+CVE-2002-1793 version (mod_ssl) not upstream, only hp
 CVE-2002-1783 version (php, fixed after 4.2.3)
+
+older, happened to deal with at same time:
+
 CVE-2002-1765 version (evolution, fixed 1.0.5)
 CVE-2002-1593 version (httpd, not 2.2)
 CVE-2002-1573 version (kernel, not 2.6)

More information about the fedora-extras-commits mailing list