fedora-security/audit fc4,1.156,1.157 fc5,1.63,1.64
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Fri Feb 17 09:18:31 UTC 2006
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv21753
Modified Files:
fc4 fc5
Log Message:
last few days updates
not postgresql issue was fixed in 8.0.6 and therefore not GA, but 20060110
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.156
retrieving revision 1.157
diff -u -r1.156 -r1.157
--- fc4 17 Feb 2006 02:31:49 -0000 1.156
+++ fc4 17 Feb 2006 09:18:01 -0000 1.157
@@ -1,11 +1,11 @@
-Up to date CVE as of CVE email 20060212
-Up to date FC4 as of 20060212
+Up to date CVE as of CVE email 20060216
+Up to date FC4 as of 20060216
** are items that need attention
CVE-2006-0678 version (postgresql, 8.1 only)
CVE-2006-0645 backport (gnutls) [since FEDORA-2006-107]
-CVE-2006-0591 version (postgresql, fixed 8.0.6) bz#180537
+CVE-2006-0591 version (postgresql, fixed 8.0.6) [since FEDORA-2005-021]
CVE-2006-0576 VULNERABLE (oprofile)
CVE-2006-0553 version (postgresql, 8.1 only)
CVE-2006-0528 **evolution
@@ -13,6 +13,7 @@
CVE-2006-0496 VULNERABLE (firefox)
CVE-2006-0482 ignore (kernel) sparc only
CVE-2006-0481 version (libpng, 1.2.7 only)
+CVE-2006-0455 VULNERABLE (gnupg, fixed 1.4.2.1)
CVE-2006-0454 backport (kernel, fixed 2.6.15.3) [since FEDORA-2006-102] patch-2.6.15.3
CVE-2006-0405 version (libtiff, 3.8.0 only)
CVE-2006-0369 ignore (mysql) this is not a security issue
@@ -1144,6 +1145,7 @@
CVE-2003-0963 version (lftp, fixed after 2.6.9)
CVE-2003-0962 version (rsync, fixed 2.5.7)
CVE-2003-0961 version (kernel, fixed 2.4.23)
+CVE-2003-0956 version (kernel, fixed 2.4.22)
CVE-2003-0935 version (netsnmp, fixed 5.0.9)
CVE-2003-0927 version (ethereal, fixed 0.9.16)
CVE-2003-0926 version (ethereal, fixed 0.9.16)
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.63
retrieving revision 1.64
diff -u -r1.63 -r1.64
--- fc5 15 Feb 2006 18:29:30 -0000 1.63
+++ fc5 17 Feb 2006 09:18:01 -0000 1.64
@@ -1,4 +1,4 @@
-Up to date CVE as of CVE email 20060212
+Up to date CVE as of CVE email 20060216
Up to date FC5 as of FC5-Test2-RC
1. Removed packages with security issues that are no longer in FC5
@@ -15,22 +15,23 @@
** are items that need attention
-CVE-2006-0678 VULNERABLE (postgresql)
+CVE-2006-0678 ignore (postgresql) we don't build --enable-cassert
CVE-2006-0645 VULNERABLE (gnutls)
CVE-2006-0591 VULNERABLE (postgresql)
CVE-2006-0576 VULNERABLE (oprofile)
-CVE-2006-0553 VULNERABLE (postgresql)
+CVE-2006-0553 VULNERABLE (postgresql, only 8.1)
CVE-2006-0528 ** evolution [under investigation]
CVE-2006-0496 VULNERABLE (mozilla) not fixed upstream
CVE-2006-0496 VULNERABLE (firefox) not fixed upstream
CVE-2006-0482 ignore (kernel) sparc only
CVE-2006-0481 version (libpng, 1.2.7 only)
+CVE-2006-0455 VULNERABLE (gnupg, fixed 1.4.2.1)
CVE-2006-0454 VULNERABLE (kernel, fixed 2.6.15.3)
CVE-2006-0405 version (libtiff, 3.8.0 only)
CVE-2006-0369 ignore (mysql) this is not a security issue
CVE-2006-0321 VULNERABLE (fetchmail, fixed 6.3.2) bz#178724:rawhide
CVE-2006-0301 VULNERABLE (xpdf) bz#179423:rawhide
-CVE-2006-0301 VULNERABLE (poppler, fixed 0.4.5) bz#179424
+CVE-2006-0301 VULNERABLE (poppler, fixed 0.4.5) bz#179424:rawhide
CVE-2006-0301 VULNERABLE (kdegraphics) bz#179425:rawhide
CVE-2006-0299 VULNERABLE (firefox, fixed 1.5.0.1)
CVE-2006-0299 version (mozilla, 1.8 branch only)
@@ -1200,6 +1201,7 @@
CVE-2003-0963 version (lftp, fixed after 2.6.9)
CVE-2003-0962 version (rsync, fixed 2.5.7)
CVE-2003-0961 version (kernel, fixed 2.4.23)
+CVE-2003-0956 version (kernel, fixed 2.4.22)
CVE-2003-0935 version (netsnmp, fixed 5.0.9)
CVE-2003-0927 version (ethereal, fixed 0.9.16)
CVE-2003-0926 version (ethereal, fixed 0.9.16)
More information about the fedora-extras-commits
mailing list