fedora-security/audit fc6,1.241,1.242 fc7,1.74,1.75

Lubomir Kundrak (lkundrak) fedora-extras-commits at redhat.com
Mon Aug 20 16:01:59 UTC 2007 

Author: lkundrak

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27214

Modified Files:
	fc6 fc7 
Log Message:
Up-to-date as of today



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.241
retrieving revision 1.242
diff -u -r1.241 -r1.242
--- fc6	15 Aug 2007 10:46:44 -0000	1.241
+++ fc6	20 Aug 2007 16:01:57 -0000	1.242
@@ -4,8 +4,8 @@
 # *CVE are items that need verification for Fedora Core 6
 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
 
-# Up to date CVE as of CVE email 20070815
-# Up to date FC6 as of 20070815
+# Up to date CVE as of CVE email 20070820
+# Up to date FC6 as of 20070820
 
 GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
 CVE-2007-4357 ignore (firefox) status bar can be overwrittten
@@ -14,7 +14,7 @@
 CVE-2007-4229 ignore (kdebase) just an ASSERT fail
 CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped
 CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity
-CVE-2007-4211 VULNERABLE (dovecot, fixed 1.0.3) #251009
+CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664]
 CVE-2007-4029 VULNERABLE (libvorbis) #250600
 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614]
 CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux
@@ -39,9 +39,9 @@
 CVE-2007-3390 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628]
 CVE-2007-3389 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628]
 CVE-2007-3387 VULNERABLE (poppler) #251513
-CVE-2007-3387 VULNERABLE (tetex) #251515
+CVE-2007-3387 backport (tetex) #251515 [since FEDORA-2007-669]
 CVE-2007-3387 VULNERABLE (kdegraphics) #251511
-CVE-2007-3387 VULNERABLE (cups) #251519
+CVE-2007-3387 backport (cups) #251519 [since FEDORA-2007-644]
 CVE-2007-3384 ignore (tomcat) only affects 3.3.x and just affects an example
 CVE-2007-3381 version (gdm, fixed 2.18.4) #250277 [since FEDORA-2007-653]
 CVE-2007-3378 ignore (php) safe mode escape
@@ -50,7 +50,7 @@
 CVE-2007-3304 backport (httpd) #244660 [since FEDORA-2007-615]
 CVE-2007-3257 backport (evolution) #244287 [since FEDORA-2007-594]
 CVE-2007-3126 ignore (gimp) just a crash
-CVE-2007-3108 VULNERABLE (openssl) #250574
+CVE-2007-3108 backport (openssl) #250574 [since FEDORA-2007-661]
 CVE-2007-3106 VULNERABLE (libvorbis) #250600
 CVE-2007-2926 backport (bind, fixed 9.4.1) [since FEDORA-2007-647]
 CVE-2007-2876 version (kernel, fixed 2.6.21.5) [since FEDORA-2007-600]


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.74
retrieving revision 1.75
diff -u -r1.74 -r1.75
--- fc7	20 Aug 2007 09:44:37 -0000	1.74
+++ fc7	20 Aug 2007 16:01:57 -0000	1.75
@@ -5,10 +5,13 @@
 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
 # A couple of first F7 updates were marked as FEDORA-2007-0001
 
-# Up to date CVE as of CVE email 20070815
-# Up to date FC7 as of 20070815
+# Up to date CVE as of CVE email 20070820
+# Up to date FC7 as of 20070820
 
+GENERIC-MAP-NOMATCH VULNERABLE (id3lib) #253553
+GENERIC-MAP-NOMATCH VULNERABLE (po4a) #253541
 GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
+CVE-2007-4400 VULNERABLE (konversation) #253545
 CVE-2007-4357 ignore (firefox) status bar can be overwrittten
 CVE-2007-4323 backport (denyhosts) #252291 [since FEDORA-2007-0589]
 CVE-2007-4321 VULNERABLE (fail2ban) #252290

More information about the fedora-extras-commits mailing list