[Fedora-security-commits] fedora-security/audit f8, 1.164, 1.165 f9, 1.155, 1.156 fc7, 1.320, 1.321
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Wed Mar 19 08:58:24 UTC 2008
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.163, 1.164 f9, 1.154, 1.155 fc7, 1.319, 1.320
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.165, 1.166 f9, 1.156, 1.157 fc7, 1.321, 1.322
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv10034/audit
Modified Files:
f8 f9 fc7
Log Message:
note krb5
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.164
retrieving revision 1.165
diff -u -r1.164 -r1.165
--- f8 18 Mar 2008 07:57:01 -0000 1.164
+++ f8 19 Mar 2008 08:57:54 -0000 1.165
@@ -34,6 +34,7 @@
CVE-2008-1070 VULNERABLE (wireshark, fixed 0.99.8) #435485
CVE-2008-1066 version (php-Smarty) #435811 [since FEDORA-2008-1911]
CVE-2008-0983 fixed (lighttpd) #435807 [since FEDORA-2008-2262]
+CVE-2008-0947 VULNERABLE (krb5, fixed 1.6.4) #438023
CVE-2008-0932 fixed (sword) #433724 [since FEDORA-2008-1922] why? diatheke.pl is not shipped...
CVE-2008-0928 fixed (qemu) #433561 [since FEDORA-2008-2001]
CVE-2008-0928 fixed (kvm) #433564 [since FEDORA-2008-1973]
@@ -126,6 +127,8 @@
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199]
CVE-2008-0072 fixed (evolution) #436081 [since FEDORA-2008-2292]
+CVE-2008-0063 VULNERABLE (krb5, fixed 1.6.4) #438023
+CVE-2008-0062 VULNERABLE (krb5, fixed 1.6.4) #438023
CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994]
CVE-2008-0006 fixed (libXfont) #429132 [since FEDORA-2008-0794]
CVE-2008-0005 fixed (httpd, fixed 2.2.8) #427982 [since FEDORA-2008-1711]
@@ -224,7 +227,7 @@
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5971 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5971 VULNERABLE (krb5, fixed 1.6.4) #438023
CVE-2007-5970 ignore (mysql, fixed 5.1.23) mysql 5.1+ only, affects partitioning
CVE-2007-5969 backport (mysql, fixed 5.0.51) #424931 [since FEDORA-2007-4465]
CVE-2007-5965 version (qt4, fixed 4.3.3) [since FEDORA-2007-4285]
@@ -245,7 +248,7 @@
CVE-2007-5907 VULNERABLE (xen) #390111
CVE-2007-5906 VULNERABLE (xen) #390111
CVE-2007-5902 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5901 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5901 VULNERABLE (krb5, fixed 1.6.4) #438023
CVE-2007-5894 ignore (krb5, fixed 1.6.4) not exploitable
CVE-2007-5849 ignore (cups, fixed 1.3.5) minimal impact, see #415131
CVE-2007-5848 version (cups, fixed 1.2.0)
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.155
retrieving revision 1.156
diff -u -r1.155 -r1.156
--- f9 18 Mar 2008 07:57:01 -0000 1.155
+++ f9 19 Mar 2008 08:57:54 -0000 1.156
@@ -35,6 +35,7 @@
CVE-2008-1070 VULNERABLE (wireshark, fixed 0.99.8) #435488
CVE-2008-1066 version (php-Smarty) #435813 [since php-Smarty-2.6.19-1.fc9]
CVE-2008-0983 backport (lighttpd) #435809 [since lighttpd-1.4.18-6.fc9]
+CVE-2008-0947 backport (krb5, fixed 1.6.4) [since krb5-1.6.3-10.fc9]
CVE-2008-0932 backport (sword) #433726 [since sword-1.5.10-3.fc9] why? diatheke.pl is not shipped...
CVE-2008-0928 backport (qemu) #433563 [since qemu-0.9.1-3.fc9]
CVE-2008-0928 backport (kvm) #433566 [since kvm-61-2.fc9]
@@ -125,6 +126,8 @@
CVE-2008-0122 backport (bind) #429534 [since bind-9.5.0-24.b1.fc9]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since asterisk-1.4.17-1.fc9]
CVE-2008-0072 backport (evolution) #436082 [evolution-2.21.92-2.fc9]
+CVE-2008-0063 backport (krb5, fixed 1.6.4) [since krb5-1.6.3-10.fc9]
+CVE-2008-0062 backport (krb5, fixed 1.6.4) [since krb5-1.6.3-10.fc9]
CVE-2008-0008 backport (pulseaudio) #425481 [since pulseaudio-0.9.8-5.fc9]
CVE-2008-0006 backport (libXfont) #429133 [since libXfont-1.3.1-3.fc9]
CVE-2008-0005 version (httpd, fixed 2.2.8) #427984 [since httpd-2.2.8-2]
@@ -223,7 +226,7 @@
CVE-2007-5977 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
CVE-2007-5976 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5971 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5971 backport (krb5, fixed 1.6.4) [since krb5-1.6.3-10.fc9]
CVE-2007-5970 ignore (mysql, fixed 5.1.23) mysql 5.1+ only, affects partitioning
CVE-2007-5969 backport (mysql, fixed 5.0.51) [since mysql-5.0.45-6.fc9]
CVE-2007-5965 version (qt4, fixed 4.3.3) [since qt4-4.3.3-1.fc9]
@@ -244,7 +247,7 @@
CVE-2007-5907 VULNERABLE (xen) #390121
CVE-2007-5906 VULNERABLE (xen) #390121
CVE-2007-5902 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5901 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5901 backport (krb5, fixed 1.6.4) [since krb5-1.6.3-10.fc9]
CVE-2007-5894 ignore (krb5, fixed 1.6.4) not exploitable
CVE-2007-5849 version (cups, fixed 1.3.5) [since cups-1.3.5-1.fc9]
CVE-2007-5848 version (cups, fixed 1.2.0)
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.320
retrieving revision 1.321
diff -u -r1.320 -r1.321
--- fc7 18 Mar 2008 07:57:01 -0000 1.320
+++ fc7 19 Mar 2008 08:57:54 -0000 1.321
@@ -35,6 +35,7 @@
CVE-2008-1070 VULNERABLE (wireshark, fixed 0.99.8) #435487
CVE-2008-1066 version (php-Smarty, fixed 2.6.19) #435812 [since FEDORA-2008-1928]
CVE-2008-0983 fixed (lighttpd) #435808 [since FEDORA-2008-2278]
+CVE-2008-0947 VULNERABLE (krb5, fixed 1.6.4) #438022
CVE-2008-0932 fixed (sword) #433725 [since FEDORA-2008-1951] why? diatheke.pl is not shipped...
CVE-2008-0928 fixed (qemu) #433562 [since FEDORA-2008-1995]
CVE-2008-0928 fixed (kvm) #433565 [since FEDORA-2008-1993]
@@ -126,6 +127,8 @@
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198]
CVE-2008-0072 fixed (evolution) #436080 [since FEDORA-2008-2290]
+CVE-2008-0063 VULNERABLE (krb5, fixed 1.6.4) #438022
+CVE-2008-0062 VULNERABLE (krb5, fixed 1.6.4) #438022
CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994]
CVE-2008-0006 fixed (libXfont) #429131 [since FEDORA-2008-0891]
CVE-2008-0005 fixed (httpd, fixed 2.2.8) #427983 [since FEDORA-2008-1695]
@@ -223,7 +226,7 @@
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5971 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5971 VULNERABLE (krb5, fixed 1.6.4) #438022
CVE-2007-5970 ignore (mysql, fixed 5.1.23) mysql 5.1+ only, affects partitioning
CVE-2007-5969 backport (mysql, fixed 5.0.51) #424921 [since FEDORA-2007-4471]
CVE-2007-5965 version (qt4, fixed 4.3.3) [since FEDORA-2007-4354]
@@ -244,7 +247,7 @@
CVE-2007-5907 VULNERABLE (xen) #390101
CVE-2007-5906 VULNERABLE (xen) #390101
CVE-2007-5902 ignore (krb5, fixed 1.6.4) not exploitable
-CVE-2007-5901 VULNERABLE (krb5, fixed 1.6.4)
+CVE-2007-5901 VULNERABLE (krb5, fixed 1.6.4) #438022
CVE-2007-5894 ignore (krb5, fixed 1.6.4) not exploitable
CVE-2007-5849 ignore (cups, fixed 1.3.5) minimal impact, see #415131
CVE-2007-5848 version (cups, fixed 1.2.0)
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.163, 1.164 f9, 1.154, 1.155 fc7, 1.319, 1.320
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.165, 1.166 f9, 1.156, 1.157 fc7, 1.321, 1.322
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Fedora-security-commits
mailing list