fedora-security/audit fc5,1.325,1.326 fc6,1.79,1.80

Mark Cox (mjc) fedora-extras-commits at redhat.com
Fri Sep 15 08:41:47 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv3104

Modified Files:
	fc5 fc6 
Log Message:
Mostly the Mozilla releases



Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.325
retrieving revision 1.326
diff -u -r1.325 -r1.326
--- fc5	15 Sep 2006 07:59:35 -0000	1.325
+++ fc5	15 Sep 2006 08:41:44 -0000	1.326
@@ -1,5 +1,5 @@
-Up to date CVE as of CVE email 20060912
-Up to date FC5 as of 20060912
+Up to date CVE as of CVE email 20060914
+Up to date FC5 as of 20060914
 
 ** are items that need attention
 
@@ -9,6 +9,23 @@
 CVE-2006-4624 VULNERABLE (mailman, fixed 2.1.9rc1) #205652
 CVE-2006-4623 VULNERABLE (kernel)
 CVE-2006-4600 VULNERABLE (openldap, fixed 2.3.25) #205827
+CVE-2006-4571 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
+CVE-2006-4571 VULNERABLE (mozilla)
+CVE-2006-4571 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4570 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
+CVE-2006-4570 VULNERABLE (mozilla)
+CVE-2006-4569 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4569 VULNERABLE (mozilla)
+CVE-2006-4568 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4568 VULNERABLE (mozilla)
+CVE-2006-4567 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4567 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
+CVE-2006-4566 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4566 VULNERABLE (mozilla)
+CVE-2006-4566 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
+CVE-2006-4565 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4565 VULNERABLE (mozilla)
+CVE-2006-4565 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
 CVE-2006-4561 VULNERABLE (firefox)
 CVE-2006-4538 VULNERABLE (kernel)
 CVE-2006-4535 version (kernel, fixed 2.6.17.12, fixed 2.6.18-rc6) [since FEDORA-2006-967]
@@ -25,6 +42,7 @@
 CVE-2006-4434 ignore (sendmail, fixed 8.13.8) not exploitable
 CVE-2006-4433 VULNERABLE (php, fixed 5.1.4)
 CVE-2006-4380 version (mysql, fixed 4.1.13)
+CVE-2006-4340 version (nss, fixed 3.11.3) [since FEDORA-2006-979]
 CVE-2006-4339 backport (openssl) [since FEDORA-2006-953]
 CVE-2006-4339 backport (openssl097a) [since FEDORA-2006-953]
 CVE-2006-4333 version (wireshark, fixed 0.99.3) [since FEDORA-2006-936]
@@ -34,12 +52,13 @@
 CVE-2006-4310 VULNERABLE (firefox)
 CVE-2006-4262 backport (cscope) #203649 [since FEDORA-2006-932]
 CVE-2006-4261 VULNERABLE (firefox)
-CVE-2006-4253 VULNERABLE (firefox)
+CVE-2006-4253 version (firefox, fixed 1.5.0.7) [since FEDORA-2006-976]
+CVE-2006-4253 version (thunderbird, fixed 1.5.0.7) [since FEDORA-2006-977]
 CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.25,5.1.12) #203427
 CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.25,5.1.12) #203432
 CVE-2006-4808 ignore (binutils, gas fixed 20050714) this is a bug
 CVE-2006-4807 ignore (binutils, gas fixed 20050721) this is a bug
-CVE-2006-4146 VULNERABLE (gdb) #204845
+CVE-2006-4146 backport (gdb) [since FEDORA-2006-975]
 CVE-2006-4145 version (kernel, fixed 2.6.17.10) [since FEDORA-2006-967] needs a better upstream fix
 CVE-2006-4144 backport (ImageMagick, fixed 6.2.9) #202773 [since FEDORA-2006-929]
 CVE-2006-4096 backport (bind) [since FEDORA-2006-966] bind-9.3.2-rrsig.patch 


Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.79
retrieving revision 1.80
diff -u -r1.79 -r1.80
--- fc6	13 Sep 2006 12:02:40 -0000	1.79
+++ fc6	15 Sep 2006 08:41:44 -0000	1.80
@@ -1,13 +1,25 @@
-Up to date CVE as of CVE email 20060912
+Up to date CVE as of CVE email 20060914
 Up to date FC6 as of Test3-re20060906.0
 
 ** are items that need attention
 
+CVE-2006-4790 ** (gnutls, fixed 1.4.4)
 CVE-2006-4663 ignore (kernel) not a vulnerability
 CVE-2006-4625 VULNERABLE (php)
 CVE-2006-4624 VULNERABLE (mailman, fixed 2.1.9rc1)
 CVE-2006-4623 VULNERABLE (kernel)
 CVE-2006-4600 version (openldap, fixed 2.3.25)
+CVE-2006-4571 VULNERABLE (thunderbird, fixed 1.5.0.7)
+CVE-2006-4571 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4570 VULNERABLE (thunderbird, fixed 1.5.0.7)
+CVE-2006-4569 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4568 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4567 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4567 VULNERABLE (thunderbird, fixed 1.5.0.7)
+CVE-2006-4566 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4566 VULNERABLE (thunderbird, fixed 1.5.0.7)
+CVE-2006-4565 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4565 VULNERABLE (thunderbird, fixed 1.5.0.7)
 CVE-2006-4561 VULNERABLE (firefox)
 CVE-2006-4538 VULNERABLE (kernel, fixed after 2.6.18-rc6)
 CVE-2006-4535 version (kernel, fixed 2.6.18-rc6)
@@ -24,6 +36,7 @@
 CVE-2006-4434 ignore (sendmail, fixed 8.13.8) not exploitable
 CVE-2006-4433 version (php, fixed 5.1.4)
 CVE-2006-4380 version (mysql, fixed 4.1.13)
+CVE-2006-4340 VULNERABLE (nss, fixed 3.11.3)
 CVE-2006-4339 backport (openssl, fixed 0.9.8c)
 CVE-2006-4339 backport (openssl097)
 CVE-2006-4333 version (wireshark, fixed 0.99.3)
@@ -33,7 +46,8 @@
 CVE-2006-4310 VULNERABLE (firefox)
 CVE-2006-4262 backport (cscope) 
 CVE-2006-4261 VULNERABLE (firefox)
-CVE-2006-4253 VULNERABLE (firefox)
+CVE-2006-4253 VULNERABLE (firefox, fixed 1.5.0.7)
+CVE-2006-4253 VULNERABLE (thunderbird, fixed 1.5.0.7)
 CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203428
 CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203434
 CVE-2006-4808 ignore (binutils, gas fixed 20050714) this is a bug

More information about the fedora-extras-commits mailing list