fedora-security/audit fc6,1.38,1.39

Fri Aug 25 14:16:33 UTC 2006

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv3294

Modified Files:
	fc6 
Log Message:
Go back a bit further in 2002, but also look a few easy answers up



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.38
retrieving revision 1.39
diff -u -r1.38 -r1.39

--- fc6	25 Aug 2006 12:20:17 -0000	1.38
+++ fc6	25 Aug 2006 14:16:30 -0000	1.39
@@ -1609,7 +1609,7 @@
 CVE-2002-2196 version (samba, fixed 2.2.5)
 CVE-2002-2185 version (kernel, fixed 2.6.15)
 CVE-2002-2103 version (httpd, not 2.0)
-CVE-2002-2060 ** links
+CVE-2002-2060 verson (links, fixed after 2.0pre4)
 CVE-2002-2043 ** cyrus-sasl
 CVE-2002-2012 ignore (httpd) not upstream version
 CVE-2002-2010 ** htdig
@@ -1622,7 +1622,6 @@
 CVE-2002-1850 version (mod_cgi, fixed 2.0.41)
 CVE-2002-1827 version (sendmail, fixed after 8.12.3)
 CVE-2002-1814 ignore (libbonobo) not shipped setuid
-CVE-2002-1809 ** mysql
 CVE-2002-1793 version (mod_ssl) not upstream, only hp
 CVE-2002-1783 version (php, fixed after 4.2.3)
 CVE-2002-1765 version (evolution, fixed 1.0.5)
@@ -1661,7 +1660,7 @@
 CVE-2002-1397 ** postgresql
 CVE-2002-1396 version (php, fixed 4.3.0)
 CVE-2002-1394 ** tomcat
-CVE-2002-1393 ** kde
+CVE-2002-1393 version (kde, fixed 3.0.5a)
 CVE-2002-1392 version (mgetty, fixed 1.1.29)
 CVE-2002-1391 version (mgetty, fixed 1.1.29)
 CVE-2002-1384 ** xpdf
@@ -1697,8 +1696,68 @@
 CVE-2002-1318 version (samba, fixed 2.2.7)
 CVE-2002-1306 version (kde, fixed 3.0.4)
 CVE-2002-1285 ignore (lprng) actually lpdfilter issue
-CVE-2002-1282 ** kde
-CVE-2002-1281 ** kde
+CVE-2002-1282 version (kde, fixed 3.0.5)
+CVE-2002-1281 version (kde, fixed 3.0.5)
+CVE-2002-1276 version (squirrelmail, fixed 1.4.2)
+CVE-2002-1247 version (kdenetwork, fixed 3.0.5)
+CVE-2002-1235 version (krb5, fixed after 1.2.6)
+CVE-2002-1233 ignore (httpd) Debian regression
+CVE-2002-1232 version (ypserv, fixed 2.5)
+CVE-2002-1227 ** pam
+CVE-2002-1224 version (kde, fixed 3.0.4)
+CVE-2002-1223 version (kdegraphics, fixed 3.0.4)
+CVE-2002-1221 ** bind
+CVE-2002-1220 ** bind
+CVE-2002-1219 ** bind
+CVE-2002-1217 version (tar, fixed 1.13.25)
+CVE-2002-1175 ** fetchmail
+CVE-2002-1174 ** fetchmail
+CVE-2002-1170 ** net-snmp
+CVE-2002-1165 ** sendmail
+CVE-2002-1160 ** pam
+CVE-2002-1157 version (httpd, not 2.0)
+CVE-2002-1156 ** httpd 
+CVE-2002-1154 ** kon2
+CVE-2002-1152 version (kdenetwork, fixed 3.0.3)
+CVE-2002-1151 version (kdenetwork, fixed 3.0.3a)
+CVE-2002-1148 ** tomcat
+CVE-2002-1146 ** bind
+CVE-2002-1131 ** squirrelmail
+CVE-2002-1119 ** python
+CVE-2002-0989 version (gaim, fixed 0.59.1)
+CVE-2002-0986 ** php
+CVE-2002-0985 ** php
+CVE-2002-0972 ** postgresql
+CVE-2002-0970 version (kdenetwork, fixed 3.0.3)
+CVE-2002-0935 version (tomcat, fixed 4.1.3)
+CVE-2002-0906 version (sendmail, fxied 8.12.5)
+CVE-2002-0871 ** xinetd
+CVE-2002-0855 version (mailman, fixed 2.0.12)
+CVE-2002-0843 version (httpd, not 2.2)
+CVE-2002-0840 version (httpd, not 2.2)
+CVE-2002-0839 version (httpd, not 2.2)
+CVE-2002-0838 ** ggv
+CVE-2002-0838 version (kdegraphics, fixed 3.0.4)
+CVE-2002-0837 ** wordtrans
+CVE-2002-0836 ** tetex
+CVE-2002-0834 version (wireshark)
+CVE-2002-0825 ** nss_ldap
+CVE-2002-0822 version (wireshark)
+CVE-2002-0821 version (wireshark)
+CVE-2002-0819 ** arts
+CVE-2002-0802 ** postgresql
+CVE-2002-0761 version (bzip2, fixed 1.0.2)
+CVE-2002-0760 version (bzip2, fixed 1.0.2)
+CVE-2002-0759 version (bzip2, fixed 1.0.2)
+CVE-2002-0728 version (libpng, fixed 1.2.4)
+CVE-2002-0717 ** php
+CVE-2002-0715 version (squid, fixed 2.4.STABLE6)
+CVE-2002-0714 version (squid, fixed 2.4.STABLE6)
+CVE-2002-0713 version (squid, fixed 2.4.STABLE6)
+CVE-2002-0704 ** kernel
+CVE-2002-0702 ** dhcpd
+CVE-2002-0684 ** bind
+CVE-2002-0682 ** tomcat
 
 older, happened to deal with at same time:
 


