fedora-security/audit fc4,1.166,1.167 fc5,1.73,1.74
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Tue Mar 7 10:15:14 UTC 2006
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv8889
Modified Files:
fc4 fc5
Log Message:
Note helixplayer/realplayer issues which are unconfirmed and believed
to be not vulnerabilities
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.166
retrieving revision 1.167
diff -u -r1.166 -r1.167
--- fc4 5 Mar 2006 23:08:54 -0000 1.166
+++ fc4 7 Mar 2006 10:15:00 -0000 1.167
@@ -1,8 +1,9 @@
-Up to date CVE as of CVE email 20060304
-Up to date FC4 as of 20060304
+Up to date CVE as of CVE email 20060306
+Up to date FC4 as of 20060306
** are items that need attention
+CVE-2006-0975 version (flex) by inspection
CVE-2006-0903 VULNERABLE (mysql) bz#183261
CVE-2006-0884 ** thunderbird
CVE-2006-0836 version (thunderbird, 1.5 only)
@@ -94,8 +95,8 @@
CVE-2005-4153 VULNERABLE (mailman)
CVE-2005-4134 backport (mozilla) [since FEDORA-2006-075]
CVE-2005-4134 backport (firefox) [since FEDORA-2006-076]
-CVE-2005-4130 ** (HelixPlayer) no information available
-CVE-2005-4126 ** (HelixPlayer) no information available
+CVE-2005-4130 ignore (HelixPlayer) not verified
+CVE-2005-4126 ignore (HelixPlayer) not verified
CVE-2005-4077 backport (curl) [since FEDORA-2005-1137]
CVE-2005-3964 VULNERABLE (openmotif) bz#174815
CVE-2005-3962 backport (perl) [since FEDORA-2005-1144]
@@ -156,7 +157,7 @@
CVE-2005-3402 ignore (thunderbird) mozilla say by design
CVE-2005-3392 ignore (php) safe mode isn't safe
CVE-2005-3391 ignore (php) safe mode isn't safe
-CVE-2005-3390 backport (php) [since FEDORA-2005-1062]
+CVE-2005-3390 backport (php, fixed 5.1.2 at least) [since FEDORA-2005-1062]
CVE-2005-3389 backport (php) [since FEDORA-2005-1062]
CVE-2005-3388 backport (php) [since FEDORA-2005-1062]
CVE-2005-3359 version (kernel, fixed 2.6.14) [since FEDORA-2005-1067]
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.73
retrieving revision 1.74
diff -u -r1.73 -r1.74
--- fc5 5 Mar 2006 23:08:54 -0000 1.73
+++ fc5 7 Mar 2006 10:15:00 -0000 1.74
@@ -1,4 +1,4 @@
-Up to date CVE as of CVE email 20060304
+Up to date CVE as of CVE email 20060306
Up to date FC5 as of FC5-Test3
1. Removed packages with security issues that are no longer in FC5
@@ -17,6 +17,7 @@
** are items that need attention
+CVE-2006-0975 version (flex) by inspection
CVE-2006-0903 VULNERABLE (mysql)
CVE-2006-0884 ** thunderbird
CVE-2006-0836 VULNERABLE (thunderbird)
@@ -105,8 +106,8 @@
CVE-2005-4153 backport (mailman) mailman-2.1.5-date_overflows.patch
CVE-2005-4134 backport (mozilla) mozilla-1.7.12-CVE-2005-4134-long-history-dos.patch
CVE-2005-4134 ignore (firefox) http://www.mozilla.org/security/history-title.html
-CVE-2005-4130 ** (HelixPlayer) no information yet available
-CVE-2005-4126 ** (HelixPlayer) no information yet available
+CVE-2005-4130 ignore (HelixPlayer) not verified
+CVE-2005-4126 ignore (HelixPlayer) not verified
CVE-2005-4077 version (curl, fixed 7.15.1)
CVE-2005-3964 backport (openmotif)
CVE-2005-3962 version (perl, fixed 5.8.8)
More information about the fedora-extras-commits
mailing list