fedora-security/audit fc6,1.45,1.46
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Tue Aug 29 11:01:41 UTC 2006
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv8502
Modified Files:
fc6
Log Message:
Some more from our security team notes
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.45
retrieving revision 1.46
diff -u -r1.45 -r1.46
--- fc6 29 Aug 2006 10:35:24 -0000 1.45
+++ fc6 29 Aug 2006 11:01:38 -0000 1.46
@@ -1614,10 +1614,10 @@
CVE-2002-2185 version (kernel, fixed 2.6.15)
CVE-2002-2103 version (httpd, not 2.0)
CVE-2002-2060 verson (links, fixed after 2.0pre4)
-CVE-2002-2043 ** cyrus-sasl
+CVE-2002-2043 ignore (cyrus-sasl) patch against cyrus-sasl
CVE-2002-2012 ignore (httpd) not upstream version
CVE-2002-2010 ** htdig
-CVE-2002-2009 ** tomcat
+CVE-2002-2009 version (tomcat, fixed 4.0.3)
CVE-2002-2007 ** tomcat
CVE-2002-2006 ** tomcat
CVE-2002-1976 ignore (ifconfig) "use ip"
@@ -1630,7 +1630,7 @@
CVE-2002-1783 version (php, fixed after 4.2.3)
CVE-2002-1765 version (evolution, fixed 1.0.5)
CVE-2002-1658 ignore (httpd) not a vulnerability
-CVE-2002-1657 ** postgresql
+CVE-2002-1657 ignore (postgresql) upstream disagree
CVE-2002-1650 version (squirrelmail, fixed 1.2.3)
CVE-2002-1649 version (squirrelmail, fixed 1.2.3)
CVE-2002-1648 version (squirrelmail, fixed 1.2.3)
@@ -1658,11 +1658,11 @@
CVE-2002-1405 version (lynx, fixed 2.8.5dev9)
CVE-2002-1403 ** dhcpcd
CVE-2002-1402 version (postgresql, fixed 7.2.2)
-CVE-2002-1401 ** postgresql
+CVE-2002-1401 ** postgresql (note wasn't fixed in 7.2.3)
CVE-2002-1400 version (postgresql, fixed 7.2.2)
CVE-2002-1399 version (postgresql, fixed 7.2.3)
CVE-2002-1398 version (postgresql, fixed 7.2.2)
-CVE-2002-1397 ** postgresql
+CVE-2002-1397 version (postgresql, fixed 7.2.3)
CVE-2002-1396 version (php, fixed 4.3.0)
CVE-2002-1394 ** tomcat
CVE-2002-1393 version (kde, fixed 3.0.5a)
@@ -1691,12 +1691,12 @@
CVE-2002-1355 version (wireshark, fixed after 0.9.7)
CVE-2002-1350 version (tcpdump, fixed 3.7)
CVE-2002-1348 version (w3m, fixed 0.3.2.2)
-CVE-2002-1347 ** cyrus-sasl
+CVE-2002-1347 version (cyrus-sasl, fixed 2.1.10)
CVE-2002-1344 version (wget, fixed 1.8.2)
CVE-2002-1341 version (squirrelmail, fixed after 1.2.10)
CVE-2002-1337 version (sendmail, fixed 8.12.8)
CVE-2002-1335 ** w3m
-CVE-2002-1323 ** perl
+CVE-2002-1323 version (perl, fixed 5.8.0.1 at least)
CVE-2002-1319 ** kernel
CVE-2002-1318 version (samba, fixed 2.2.7)
CVE-2002-1306 version (kde, fixed 3.0.4)
@@ -1728,7 +1728,7 @@
CVE-2002-1148 ** tomcat
CVE-2002-1146 ** bind
CVE-2002-1131 ** squirrelmail
-CVE-2002-1119 ** python
+CVE-2002-1119 version (python, fixed 2.2.2)
CVE-2002-0989 version (gaim, fixed 0.59.1)
CVE-2002-0986 ** php
CVE-2002-0985 ** php
More information about the fedora-extras-commits
mailing list