[Fedora-security-commits] fedora-security/audit f8, 1.68, 1.69 f9, 1.61, 1.62 fc7, 1.225, 1.226
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Tue Jan 8 10:33:21 UTC 2008
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.67, 1.68 f9, 1.60, 1.61 fc7, 1.224, 1.225
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.69, 1.70 f9, 1.62, 1.63 fc7, 1.226, 1.227
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv10004/audit
Modified Files:
f8 f9 fc7
Log Message:
some updates
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.68
retrieving revision 1.69
diff -u -r1.68 -r1.69
--- f8 8 Jan 2008 08:26:57 -0000 1.68
+++ f8 8 Jan 2008 10:33:18 -0000 1.69
@@ -36,7 +36,7 @@
CVE-2007-6348 ignore (squirrelmail) trojaned version was not shipped
CVE-2007-6328 ignore (dosbox) design decision
CVE-2007-6321 VULNERABLE (roundcubemail) #423291
-CVE-2007-6318 fixed (wordpress) #426433 [since FEDORA-2008-0103]
+CVE-2007-6318 VULNERABLE (wordpress)
CVE-2007-6304 ignore (mysql, fixed 5.0.52) federated engine not built
CVE-2007-6303 backport (mysql, fixed 5.0.52) #424931 [since FEDORA-2007-4465]
CVE-2007-6299 version (drupal, fixed 5.4) [since FEDORA-2007-4163] SA-2007-031
@@ -70,7 +70,7 @@
CVE-2007-6067 VULNERABLE (postgresql, 8.2.6) #427773
CVE-2007-6061 VULNERABLE (audacity) #393251
CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4275]
-CVE-2007-6013 fixed (wordpress) #426433 [since FEDORA-2008-0103]
+CVE-2007-6013 VULNERABLE (wordpress)
CVE-2007-6035 version (cacti, fixed 0.8.7a) #391991 [since FEDORA-2007-3667]
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
@@ -165,7 +165,7 @@
CVE-2007-3919 backport (xen, fixed 3.1.0-13) #361991
CVE-2007-3844 version (firefox, fixed 2.0.0.6)
CVE-2007-3843 version (kernel) #246595 No idea which version fixed this
-CVE-2007-3568 VULNERABLE (imlib)
+CVE-2007-3568 backport (imlib) [since FEDORA-2007-4594]
CVE-2007-3544 fixed (wordpress, NOT fixed 2.2.1) #245211 [since FEDORA-2007-0894] Incomplete fix for CVE-2007-3543
CVE-2007-3387 version (poppler, fixed 0.5.91) #251512
CVE-2007-3386 version (tomcat5) [since FEDORA-2007-3474]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.61
retrieving revision 1.62
diff -u -r1.61 -r1.62
--- f9 8 Jan 2008 08:26:57 -0000 1.61
+++ f9 8 Jan 2008 10:33:18 -0000 1.62
@@ -11,10 +11,10 @@
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since asterisk-1.4.17-1.fc9]
CVE-2008-0003 version (tog-pegasus, 2.7.0)
CVE-2007-6631 fixed (libnemesi, not fixed 0.6.4-rc1) #426910 [since libnemesi-0.6.4-0.1.rc2.fc9] This wasn't released yet
-CVE-2007-6630 VULNERABLE (netembryo, not fixed 0.0.4) #427470 There was not release in stable branches yet
-CVE-2007-6613 VULNERABLE (libcdio) #427200
+CVE-2007-6630 version (netembryo, fixed 0.0.5) #427470 There was not release in stable branches yet [since netembryo-0.0.5-1.fc9]
+CVE-2007-6613 version (libcdio) #427200 [since libcdio-0.79-2.fc9]
GENERIC-MAP-NOMATCH VULNERABLE (wordpress) #426434
-CVE-2007-6611 VULNERABLE (mantis) #427280
+CVE-2007-6611 version (mantis) #427280 [since mantis-1.1.0-1.fc9]
CVE-2007-6601 version (postgresql, 8.2.6) #427774 [since postgresql-8.2.6-1.fc9]
CVE-2007-6600 version (postgresql, 8.2.6) #427774 [since postgresql-8.2.6-1.fc9]
CVE-2007-6596 VULNERABLE (clamav) #427289 Might be considered a mail client flaw
@@ -42,7 +42,7 @@
CVE-2007-6304 ignore (mysql, fixed 5.0.52) federated engine not built
CVE-2007-6303 backport (mysql, fixed 5.0.52) [since mysql-5.0.45-6.fc9]
CVE-2007-6299 version (drupal, fixed 5.4) [since drupal-5.4-1.fc9] SA-2007-031
-CVE-2007-6285 VULNERABLE (autofs) #426401
+CVE-2007-6285 backport (autofs) #426401 [since autofs-5.0.2-25]
CVE-2007-6283 backport (bind) #423081 [since bind-9.5.0-21.b1.fc9]
CVE-2007-6239 version (squid, fixed 2.6.17) [since squid-2.6.STABLE17-1.fc9]
CVE-2007-6210 backport (zabbix) #407181 [since zabbix-1.4.2-4.fc9]
@@ -52,7 +52,7 @@
CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
CVE-2007-6201 version (wesnoth, fixed 1.2.8) [since wesnoth-1.2.8-3.fc9]
-CVE-2007-6183 VULNERABLE (ruby-gnome2) #405611
+CVE-2007-6183 backport (ruby-gnome2) #405611 [since ruby-gnome2-0.16.0-22.fc9]
CVE-2007-6121 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
CVE-2007-6120 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
CVE-2007-6119 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
@@ -121,7 +121,7 @@
CVE-2007-5201 VULNERABLE (duplicity, no upstream fix) #362841
CVE-2007-5200 version (hugin) #362871 [since hugin-0.6.1-11.fc9]
CVE-2007-5198 VULNERABLE (nagios-plugins, fixed 1.4.10) #362901
-CVE-2007-5197 VULNERABLE (mono, fixed 1.2.5.1) #367551
+CVE-2007-5197 version (mono, fixed 1.2.5.1) #367551 [since mono-1.2.5.1-3.fc9]
CVE-2007-5116 backport (perl) #378151 [since perl-5.8.8-31.fc9]
CVE-2007-5079 VULNERABLE (gdm) #363041 Red Hat specific problem
CVE-2007-5037 version (inotify-tools, fixed 3.11) #299771
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.225
retrieving revision 1.226
diff -u -r1.225 -r1.226
--- fc7 8 Jan 2008 08:26:57 -0000 1.225
+++ fc7 8 Jan 2008 10:33:18 -0000 1.226
@@ -37,7 +37,7 @@
CVE-2007-6348 ignore (squirrelmail) trojaned version was not shipped
CVE-2007-6328 ignore (dosbox) design decision
CVE-2007-6321 VULNERABLE (roundcubemail) #423281
-CVE-2007-6318 fixed (wordpress) #426432 [since FEDORA-2008-0126]
+CVE-2007-6318 VULNERABLE (wordpress)
CVE-2007-6304 ignore (mysql, fixed 5.0.52) federated engine not built
CVE-2007-6303 backport (mysql, fixed 5.0.52) #424921 [since FEDORA-2007-4471]
CVE-2007-6299 version (drupal, fixed 5.4) [since FEDORA-2007-4136] SA-2007-031
@@ -72,7 +72,7 @@
CVE-2007-6061 VULNERABLE (audacity) #393251
CVE-2007-6035 version (cacti, fixed 0.8.7a) #391981 [since FEDORA-2007-3683]
CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4269]
-CVE-2007-6013 fixed (wordpress) #426432 [since FEDORA-2008-0126]
+CVE-2007-6013 VULNERABLE (wordpress)
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5970 ignore (mysql, fixed 5.1.23) mysql 5.1+ only, affects partitioning
@@ -303,7 +303,7 @@
CVE-2007-3656 version (mozilla) #248518 [since FEDORA-2007-1138]
CVE-2007-3642 version (kernel, fixed 2.6.22.1) [since FEDORA-2007-1130]
CVE-2007-3628 version (php-pear-Structures-DataGrid-DataSource-MDB2, fixed 0.1.10)
-CVE-2007-3568 VULNERABLE (imlib)
+CVE-2007-3568 backport (imlib) [since FEDORA-2007-4561]
CVE-2007-3555 version (moodle) #247528 [since FEDORA-2007-1445]
CVE-2007-3546 ignore (nessus-core) Windows only
CVE-2007-3528 version (dar, fixed 2.3.4) #246760 [since FEDORA-2007-0904]
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.67, 1.68 f9, 1.60, 1.61 fc7, 1.224, 1.225
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.69, 1.70 f9, 1.62, 1.63 fc7, 1.226, 1.227
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Fedora-security-commits
mailing list