[Fedora-security-commits] fedora-security/audit f8, 1.179, 1.180 f9, 1.168, 1.169 fc7, 1.335, 1.336

fedora-security-commits at redhat.com fedora-security-commits at redhat.com
Sun Mar 30 22:07:31 UTC 2008 

Author: lkundrak

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27847

Modified Files:
	f8 f9 fc7 
Log Message:
get rid of unmapped entries


Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.179
retrieving revision 1.180
diff -u -r1.179 -r1.180
--- f8	28 Mar 2008 08:51:55 -0000	1.179
+++ f8	30 Mar 2008 22:06:59 -0000	1.180
@@ -4,17 +4,19 @@
 # *CVE are items that need verification for Fedora 8
 # (mozilla) = (gecko-libs dependent stuff)
 
-GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
-GENERIC-MAP-NOMATCH fixed (wyrd) #433720 [since FEDORA-2008-1963] 
-GENERIC-MAP-NOMATCH fixed (libsilc) #438382 [since FEDORA-2008-2641] 
-GENERIC-MAP-NOMATCH VULNERABLE (php-pecl-apc) #438847 
-CVE-2008-1532 VULNERABLE (Perlbal) #439056 
+293031 fixed (nx) #293031 [since FEDORA-2008-2258] 
+430635 VULNERABLE (comix) multiple issues tracked via #430635
+438382 fixed (libsilc) #438382 [since FEDORA-2008-2641] 
+249840 VULNERABLE (tor) 
+CVE-2008-1488 VULNERABLE (php-pecl-apc) #438847 
+CVE-2008-0806 fixed (wyrd) #433720 [since FEDORA-2008-1963] 
+CVE-2008-1532 fixed (Perlbal) #439056 [since FEDORA-2008-2778] 
 CVE-2008-1531 VULNERABLE (lighttpd) #439068 
 CVE-2008-1483 ignore (openssh) was alrady fixed by another patch
 CVE-2008-1482 VULNERABLE (xine-lib) #438670 
 CVE-2008-1474 fixed (roundup) #436547 [since FEDORA-2008-2370] 
 CVE-2008-1468 fixed (namazu) #438667 [since FEDORA-2008-2767] 
-CVE-2008-1467 VULNERABLE (centerim) #438871
+CVE-2008-1467 VULNERABLE (centerim) #438871 
 CVE-2008-1394 ignore (plone) 
 CVE-2008-1390 fixed (asterisk, fixed 1.4.19-rc3) #438133 [since FEDORA-2008-2554] 
 CVE-2008-1372 ignore (bzip2) Just a crash
@@ -167,7 +169,6 @@
 CVE-2007-6685 version (gallery2, fixed 2.2.4) [since FEDORA-2007-4778] 
 CVE-2007-6672 VULNERABLE (jetty) #428017 
 CVE-2007-6613 fixed (libcdio) #427199 [since FEDORA-2008-0136] 
-GENERIC-MAP-NOMATCH fixed (wordpress) #426433 [since FEDORA-2008-0103] 
 CVE-2007-6612 ignore (rubygem-mongrel, only affects 1.0.4) affected version was not shipped
 CVE-2007-6611 fixed (mantis) #427278 [since FEDORA-2008-0282] 
 CVE-2007-6601 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478] 
@@ -198,7 +199,7 @@
 CVE-2007-6335 fixed (clamav, fixed 0.92) #426212 [since FEDORA-2008-0115] 
 CVE-2007-6437 fixed (syslog-ng) #426306 [since FEDORA-2008-0523] 
 CVE-2007-6430 version (asterisk, fixed 1.4.16) [since FEDORA-2007-4651]
-CVE-2007-6389 VULNERABLE (gnome-screensaver) #426170
+CVE-2007-6389 VULNERABLE (gnome-screensaver) #426170 
 CVE-2007-6353 VULNERABLE (exiv2) #425923
 CVE-2007-6352 fixed (libexif) #425631 [since FEDORA-2007-4667] 
 CVE-2007-6351 fixed (libexif) #425631 [since FEDORA-2007-4667] 
@@ -241,9 +242,10 @@
 CVE-2007-6061 VULNERABLE (audacity) #393251
 CVE-2007-6018 fixed (horde) #428628 [since FEDORA-2008-2040] 
 CVE-2007-6018 fixed (imp) #428632 [since FEDORA-2008-2040] 
+CVE-2007-6018 fixed (wordpress) #426433 [since FEDORA-2008-0103] 
 CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4275]
-CVE-2007-6013 VULNERABLE (wordpress)
 CVE-2007-6035 version (cacti, fixed 0.8.7a) #391991 [since FEDORA-2007-3667]
+CVE-2007-6013 fixed (wordpress) #426433 [since FEDORA-2008-0103] 
 CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
 CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
 CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
@@ -275,7 +277,6 @@
 CVE-2007-5846 version (net-snmp, fixed 5.4.1) 
 CVE-2007-5795 backport (emacs) #367591 [since FEDORA-2007-2946]
 CVE-2007-5770 backport (ruby) #373391 [since FEDORA-2007-2812]
-GENERIC-MAP-NOMATCH fixed (nx) #293031 [since FEDORA-2008-2258] 
 CVE-2007-5760 fixed (xorg-x11-server, fixed 1.4.1) #429126 [since FEDORA-2008-0760] 
 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335
 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2853]


Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.168
retrieving revision 1.169
diff -u -r1.168 -r1.169
--- f9	28 Mar 2008 08:51:55 -0000	1.168
+++ f9	30 Mar 2008 22:06:59 -0000	1.169
@@ -4,11 +4,11 @@
 # *CVE are items that need verification for Fedora 9
 # (mozilla) = (gecko-libs dependent stuff)
 
-GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
-GENERIC-MAP-NOMATCH VULNERABLE (wyrd) #433722 
-GENERIC-MAP-NOMATCH fixed (inkscape) #432807  [since inkscape-0.45.1+0.46pre1-4.fc9]
-GENERIC-MAP-NOMATCH VULNERABLE (libsilc) #438382 
-GENERIC-MAP-NOMATCH VULNERABLE (php-pecl-apc) #438848 
+438382 VULNERABLE (libsilc) #438382 
+430635 VULNERABLE (comix) multiple issues tracked via #430635
+249840 VULNERABLE (tor) 
+CVE-2008-1488 VULNERABLE (php-pecl-apc) #438848 
+CVE-2008-0806 VULNERABLE (wyrd) #433722 
 CVE-2008-1531 VULNERABLE (lighttpd) #439069 
 CVE-2008-1483 ignore (openssh) was alrady fixed by another patch
 CVE-2008-1482 VULNERABLE (xine-lib) #438671 
@@ -165,7 +165,6 @@
 CVE-2007-6631 fixed (libnemesi, not fixed 0.6.4-rc1) #426910 [since libnemesi-0.6.4-0.1.rc2.fc9] This wasn't released yet
 CVE-2007-6630 version (netembryo, fixed 0.0.5) #427470 There was not release in stable branches yet [since netembryo-0.0.5-1.fc9]
 CVE-2007-6613 version (libcdio) #427200 [since libcdio-0.79-2.fc9]
-GENERIC-MAP-NOMATCH VULNERABLE (wordpress) #426434
 CVE-2007-6612 ignore (rubygem-mongrel, only affects 1.0.4) affected version was not shipped
 CVE-2007-6611 version (mantis) #427280 [since mantis-1.1.0-1.fc9]
 CVE-2007-6601 version (postgresql, fixed 8.2.6) #427774 [since postgresql-8.2.6-1.fc9]
@@ -238,8 +237,9 @@
 CVE-2007-6035 version (cacti, fixed 0.8.7a) #392001 [since cacti-0.8.7a-1.fc9]
 CVE-2007-6018 version (horde, fixed 3.1.6) #428630 [since horde-3.1.6-1.fc9]
 CVE-2007-6018 version (imp, fixed 4.1.6) #428634 [since imp-4.1.6-1.fc9]
+CVE-2007-6018 VULNERABLE (wordpress) #426434
 CVE-2007-6015 VULNERABLE (samba, fixed 3.0.28) #433622 
-CVE-2007-6013 VULNERABLE (wordpress) #426434
+CVE-2007-6013 VULNERABLE (wordpress) #426434 
 CVE-2007-5977 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
 CVE-2007-5976 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
 CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
@@ -270,7 +270,6 @@
 CVE-2007-5848 version (cups, fixed 1.2.0) 
 CVE-2007-5846 version (net-snmp, fixed 5.4.1) 
 CVE-2007-5795 backport (emacs) #367601 [since emacs-22.1-8.fc9]
-GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031
 CVE-2007-5770 backport (ruby) #373401 [since ruby-1.8.6.111-1]
 CVE-2007-5760 backport (xorg-x11-server, fixed 1.4.1) #429127 [since xorg-x11-server-1.4.99.1-0.17.20080107.fc9]
 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.335
retrieving revision 1.336
diff -u -r1.335 -r1.336
--- fc7	28 Mar 2008 08:51:55 -0000	1.335
+++ fc7	30 Mar 2008 22:06:59 -0000	1.336
@@ -5,17 +5,19 @@
 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
 # A couple of first F7 updates were marked as FEDORA-2007-0001
 
-GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
-GENERIC-MAP-NOMATCH fixed (wyrd) #433721 [since FEDORA-2008-1986] 
-GENERIC-MAP-NOMATCH fixed (libsilc) #438382 [since FEDORA-2008-2641] 
-GENERIC-MAP-NOMATCH VULNERABLE (php-pecl-apc) #438846 
-CVE-2008-1532 VULNERABLE (Perlbal) #439055 
+293031 fixed (nx) #293031 [since FEDORA-2008-2258] 
+430635 VULNERABLE (comix) multiple issues tracked via #430635
+438382 fixed (libsilc) #438382 [since FEDORA-2008-2641] 
+249840 version (tor, fixed 0.1.2.15) #249840 [since FEDORA-2007-1674] 
+CVE-2008-1488 VULNERABLE (php-pecl-apc) #438846 
+CVE-2008-0806 fixed (wyrd) #433721 [since FEDORA-2008-1986] 
+CVE-2008-1532 fixed (Perlbal) #439055 [since FEDORA-2008-2788] 
 CVE-2008-1531 VULNERABLE (lighttpd) #439067 
 CVE-2008-1483 ignore (openssh) was alrady fixed by another patch
 CVE-2008-1482 VULNERABLE (xine-lib) #438669 
 CVE-2008-1474 fixed (roundup) #436548 [since FEDORA-2008-2471] 
 CVE-2008-1468 fixed (namazu) #438666 [since FEDORA-2008-2678] 
-CVE-2008-1467 VULNERABLE (centerim) #438871
+CVE-2008-1467 VULNERABLE (centerim) #438871 
 CVE-2008-1394 ignore (plone) 
 CVE-2008-1390 fixed (asterisk, fixed 1.4.19-rc3) #438132 [since FEDORA-2008-2620] 
 CVE-2008-1372 ignore (bzip2) Just a crash
@@ -166,7 +168,6 @@
 CVE-2007-6686 version (gallery2, fixed 2.2.4) [since FEDORA-2007-4777] 
 CVE-2007-6685 version (gallery2, fixed 2.2.4) [since FEDORA-2007-4777] 
 CVE-2007-6613 fixed (libcdio) #427198 [since FEDORA-2008-0104] 
-GENERIC-MAP-NOMATCH fixed (wordpress) #426432 [since FEDORA-2008-0126] 
 CVE-2007-6612 ignore (rubygem-mongrel, only affects 1.0.4) affected version was not shipped
 CVE-2007-6611 fixed (mantis) #427279 [since FEDORA-2008-0353] 
 CVE-2007-6601 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552] 
@@ -197,7 +198,7 @@
 CVE-2007-6335 fixed (clamav, fixed 0.92) #426211 [since FEDORA-2008-0170] 
 CVE-2007-6437 fixed (syslog-ng) #426305 [since FEDORA-2008-0559] 
 CVE-2007-6430 version (asterisk, fixed 1.4.16) [since FEDORA-2007-4593]
-CVE-2007-6389 VULNERABLE (gnome-screensaver) #426169
+CVE-2007-6389 VULNERABLE (gnome-screensaver) #426169 
 CVE-2007-6353 fixed (exiv2) #425922 [since FEDORA-2007-4551] 
 CVE-2007-6352 fixed (libexif) #425621 [since FEDORA-2007-4608] 
 CVE-2007-6351 fixed (libexif) #425621 [since FEDORA-2007-4608] 
@@ -241,8 +242,9 @@
 CVE-2007-6035 version (cacti, fixed 0.8.7a) #391981 [since FEDORA-2007-3683]
 CVE-2007-6018 fixed (horde) #428629 [since FEDORA-2008-2087] 
 CVE-2007-6018 fixed (imp) #428633 [since FEDORA-2008-2087] 
+CVE-2007-6018 fixed (wordpress) #426432 [since FEDORA-2008-0126] 
 CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4269]
-CVE-2007-6013 VULNERABLE (wordpress)
+CVE-2007-6013 fixed (wordpress) #426432 [since FEDORA-2008-0126] 
 CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
 CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
 CVE-2007-5972 ignore (krb5, fixed 1.6.4) not exploitable
@@ -348,7 +350,6 @@
 CVE-2007-5037 version (inotify-tools) #299771 [since FEDORA-2007-3074]
 CVE-2007-5034 version (elinks) #297981 [since FEDORA-2007-2224]
 CVE-2007-5007 version (balsa) #297601 [since FEDORA-2007-2302]
-GENERIC-MAP-NOMATCH fixed (nx) #293031 [since FEDORA-2008-2258] 
 CVE-2007-5000 fixed (httpd, fixed 2.2.8) #427983 [since FEDORA-2008-1695] 
 CVE-2007-4999 version (pidgin, fixed 2.2.2) [since FEDORA-2007-2714]
 CVE-2007-4996 version (pidgin, fixed 2.2.1) [since FEDORA-2007-2368]
@@ -434,7 +435,6 @@
 CVE-2007-4224 backport (kdebase) [since FEDORA-2007-1700]
 CVE-2007-4211 version (dovecot, fixed 1.0.3) #251008 [since FEDORA-2007-1485]
 CVE-2007-4174 version (tor, fixed 0.1.2.16) [since FEDORA-2007-1674]
-GENERIC-MAP-NOMATCH version (tor, fixed 0.1.2.15) #249840 [since FEDORA-2007-1674]
 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-0414]
 CVE-2007-4153 ignore (wordpress) "remote authenticated administrators"
 CVE-2007-4154 ignore (wordpress) "remote authenticated administrators"

More information about the Fedora-security-commits mailing list