fedora-security/audit fc7,1.39,1.40

Josh Bressers (bressers) fedora-extras-commits at redhat.com
Thu Jul 12 11:12:19 UTC 2007


Author: bressers

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13430

Modified Files:
	fc7 
Log Message:
Clean up the low hanging fruit.



View full diff with command:
/usr/bin/cvs -f diff  -kk -u -N -r 1.39 -r 1.40 fc7
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.39
retrieving revision 1.40
diff -u -r1.39 -r1.40
--- fc7	12 Jul 2007 00:52:20 -0000	1.39
+++ fc7	12 Jul 2007 11:12:17 -0000	1.40
@@ -43,7 +43,7 @@
 CVE-2007-3126 ignore (gimp) just a crash
 CVE-2007-3123 VULNERABLE (clamav, fixed 0.90.3) #245219
 CVE-2007-3122 VULNERABLE (clamav, fixed 0.90.3) #245219
-*CVE-2007-3121 version (zvbi, fixed 0.2.25)
+CVE-2007-3121 version (zvbi, fixed 0.2.25)
 *CVE-2007-3113 VULNERABLE (cacti) #243592
 *CVE-2007-3112 VULNERABLE (cacti) #243592
 CVE-2007-3025 ignore (clamav, Solaris only)
@@ -72,7 +72,7 @@
 *CVE-2007-2683 (mutt)
 *CVE-2007-2654 VULNERABLE (xfsdump) #240396
 CVE-2007-2650 VULNERABLE (clamav, fixed in 0.90.3) #240395
-*CVE-2007-2645 ignore (libexif) #240055 DoS only
+CVE-2007-2645 ignore (libexif) #240055 DoS only
 *CVE-2007-2637 patch (moin, fixed 1.5.7-2)
 *CVE-2007-2627 ** (wordpress) #239904
 *CVE-2007-2589 (squirrelmail)
@@ -93,11 +93,11 @@
 CVE-2007-2445 version (libpng10, fixed 1.0.25) #240398
 *CVE-2007-2444 (samba)
 *CVE-2007-2438 VULNERABLE (vim) #238734
-*CVE-2007-2437 ignore (xorg-x11) DoS only
+CVE-2007-2437 ignore (xorg-x11) DoS only
 *CVE-2007-2435 (java)
 *CVE-2007-2423 patch (moin, fixed 1.5.7-2) #238722
-*CVE-2007-2413 version (perl-Imager, fixed 0.57) #238615
-*CVE-2007-2381 ignore (MochiKit) #238616
+CVE-2007-2413 version (perl-Imager, fixed 0.57) #238615
+CVE-2007-2381 ignore (MochiKit) #238616
 *CVE-2007-2356 (gimp)
 *CVE-2007-2353 (axis)
 *CVE-2007-2245 VULNERABLE (phpMyAdmin, fixed 2.10.1) #237882
@@ -107,18 +107,18 @@
 CVE-2007-2172 version (kernel, fixed 2.6.21-rc6)
 *CVE-2007-2165 VULNERABLE (proftpd) #237533
 *CVE-2007-2138 (postgresql)
-*CVE-2007-2057 version (aircrack-ng, fixed 0.8-0.1)
+CVE-2007-2057 version (aircrack-ng, fixed 0.8-0.1)
 CVE-2007-2029 VULNERABLE (clamav, fixed 0.90.3)
 *CVE-2007-2028 (freeradius)
 *CVE-2007-2026 (file)
 CVE-2007-2016 ignore (phpMyAdmin, < 2.8.0.2 never shipped)
 CVE-2007-1997 version (clamav, fixed in 0.90.2)
 *CVE-2007-1995 (quagga) #240488
-*CVE-2007-1897 version (wordpress, fixed 2.1.3) #235912
-*CVE-2007-1894 version (wordpress, fixed 2.1.3-0.rc2)
-*CVE-2007-1893 version (wordpress, fixed 2.1.3) #235912
-*CVE-2007-1870 version (lighttpd, fixed 1.4.14) #236489
-*CVE-2007-1869 version (lighttpd, fixed 1.4.14) #236489
+CVE-2007-1897 version (wordpress, fixed 2.1.3) #235912
+CVE-2007-1894 version (wordpress, fixed 2.1.3-0.rc2)
+CVE-2007-1893 version (wordpress, fixed 2.1.3) #235912
+CVE-2007-1870 version (lighttpd, fixed 1.4.14) #236489
+CVE-2007-1869 version (lighttpd, fixed 1.4.14) #236489
 CVE-2007-1864 version (php, fixed 5.2.2)
 *CVE-2007-1862 (httpd)
 *CVE-2007-1859 (xscreensaver)
@@ -126,12 +126,12 @@
 CVE-2007-1856 backport (vixie-cron) #235882 vixie-cron-4.1-hardlink.patch
 *CVE-2007-1841 VULNERABLE (ipsec-tools) #238052
 *CVE-2007-1804 VULNERABLE (pulseaudio) #235013
-*CVE-2007-1799 version (ktorrent, fixed 2.1.3) #235014
+CVE-2007-1799 version (ktorrent, fixed 2.1.3) #235014
 CVE-2007-1745 version (clamav, fixed in 0.90.2) #236703
 *CVE-2007-1743 (httpd)
 *CVE-2007-1742 (httpd)
 *CVE-2007-1741 (httpd)
-*CVE-2007-1732 ignore (wordpress) #235015
+CVE-2007-1732 ignore (wordpress) #235015
 CVE-2007-1718 version (php, fixed 5.2.2)
 CVE-2007-1717 version (php, fixed 5.2.2)
 CVE-2007-1711 version (php, 4.4.5 and 4.4.6 only)
@@ -142,41 +142,41 @@
 CVE-2007-1664 VULNERABLE (ekg) #246034
 CVE-2007-1663 VULNERABLE (ekg) #246034
 CVE-2007-1649 version (php, fixed 5.2.2)
-*CVE-2007-1622 version (wordpress, fixed 2.1.3-0.rc2) #233703
-*CVE-2007-1614 version (zziplib, fixed 0.13.49) #233700
-*CVE-2007-1599 version (wordpress, fixed 2.1.3-0.rc2) #233703
+CVE-2007-1622 version (wordpress, fixed 2.1.3-0.rc2) #233703
+CVE-2007-1614 version (zziplib, fixed 0.13.49) #233700
+CVE-2007-1599 version (wordpress, fixed 2.1.3-0.rc2) #233703
 CVE-2007-1583 version (php, fixed 5.2.2)
 CVE-2007-1565 ignore (konqueror) client crash
 CVE-2007-1564 vulnerable (konqueror) [#CVE-2007-1564]
 CVE-2007-1562 (firefox, seamonkey, thunderbird)
 CVE-2007-1560 version (squid, fixed 2.6.STABLE12)
-*CVE-2007-1558 version (claws-mail, fixed 2.9.1) #237293
+CVE-2007-1558 version (claws-mail, fixed 2.9.1) #237293
 *CVE-2007-1558 backport (sylpheed, fixed 2.3.1-1)
-*CVE-2007-1547 version (nas, fixed 1.8a-2) #233353
-*CVE-2007-1546 version (nas, fixed 1.8a-2) #233353
-*CVE-2007-1545 version (nas, fixed 1.8a-2) #233353
-*CVE-2007-1544 version (nas, fixed 1.8a-2) #233353
-*CVE-2007-1543 version (nas, fixed 1.8a-2) #233353
+CVE-2007-1547 version (nas, fixed 1.8a-2) #233353
+CVE-2007-1546 version (nas, fixed 1.8a-2) #233353
+CVE-2007-1545 version (nas, fixed 1.8a-2) #233353
+CVE-2007-1544 version (nas, fixed 1.8a-2) #233353
+CVE-2007-1543 version (nas, fixed 1.8a-2) #233353
 *CVE-2007-1536 (file)
 CVE-2007-1521 ignore (php) See NVD
-*CVE-2007-1515 version (imp, fixed 4.1.4)
+CVE-2007-1515 version (imp, fixed 4.1.4)
 CVE-2007-1496 version (kernel, fixed 2.6.20.3)
 CVE-2007-1484 ignore (php) See NVD
 CVE-2007-1475 ignore (php) unshipped ibase extension
-*CVE-2007-1474 version (horde, fixed 3.1.4)
-*CVE-2007-1474 ignore (imp, < 4.x only)
-*CVE-2007-1473 version (horde, fixed 3.1.4)
+CVE-2007-1474 version (horde, fixed 3.1.4)
+CVE-2007-1474 ignore (imp, < 4.x only)
+CVE-2007-1473 version (horde, fixed 3.1.4)
 *CVE-2007-1466 (openoffice.org)
-*CVE-2007-1464 version (inkscape, fixed 0.45.1)
-*CVE-2007-1463 version (inkscape, fixed 0.45.1)
+CVE-2007-1464 version (inkscape, fixed 0.45.1)
+CVE-2007-1463 version (inkscape, fixed 0.45.1)
 CVE-2007-1460 version (php, fixed 5.2.2)
-*CVE-2007-1429 version (moodle, fixed 1.6.5) #232103
+CVE-2007-1429 version (moodle, fixed 1.6.5) #232103
 *CVE-2007-1420 VULNERABLE (mysql, fixed 5.0.36) #232604
 CVE-2007-1413 ignore (php) Windows NT SNMP specific
 CVE-2007-1412 ignore (php) unshipped cpdf extension
 CVE-2007-1411 ignore (php) unshipped mssql extension
-*CVE-2007-1406 version (trac, fixed 0.10.3.1) #231729
-*CVE-2007-1405 version (trac, fixed 0.10.3.1) #231729
+CVE-2007-1406 version (trac, fixed 0.10.3.1) #231729
+CVE-2007-1405 version (trac, fixed 0.10.3.1) #231729
 CVE-2007-1401 ignore (php) unshipped cracklib extension
 CVE-2007-1399 version (php-pecl-zip, fixed 1.8.5)
 *CVE-2007-1398 ignore (snort, inline mode not shipped) #232109
@@ -193,30 +193,30 @@
 *CVE-2007-1354 (jboss)
 *CVE-2007-1352 VULNERABLE (libXfont) #235265
 *CVE-2007-1351 VULNERABLE (libXfont) #235265
-*CVE-2007-1325 version (phpMyAdmin, fixed 2.10.0.2)
+CVE-2007-1325 version (phpMyAdmin, fixed 2.10.0.2)
 *CVE-2007-1322 ** (qemu) #238723
 *CVE-2007-1321 ** (qemu) #238723
 *CVE-2007-1320 ** (qemu) #238723
 CVE-2007-1287 ignore (php) See NVD
 CVE-2007-1286 version (php, PHP4 only)
 CVE-2007-1285 version (php, 5.2.2)
-*CVE-2007-1282 version (seamonkey, fixed 1.0.8)
-*CVE-2007-1277 version (wordpress, fixed 2.1.2)
-*CVE-2007-1267 ignore (sylpheed, uses gpgme) #231733
-*CVE-2007-1263 version (gpgme, fixed 1.1.4)
-*CVE-2007-1263 version (gnupg, fixed 1.4.7) [since FEDORA-2007-315]
+CVE-2007-1282 version (seamonkey, fixed 1.0.8)
+CVE-2007-1277 version (wordpress, fixed 2.1.2)
+CVE-2007-1267 ignore (sylpheed, uses gpgme) #231733
+CVE-2007-1263 version (gpgme, fixed 1.1.4)
+CVE-2007-1263 version (gnupg, fixed 1.4.7) [since FEDORA-2007-315]
 *CVE-2007-1262 (squirrelmail)
 *CVE-2007-1253 patch (blender, fixed 2.42a-21) #239338
 *CVE-2007-1246 patch (xine-lib, fixed 1.1.4-3)
-*CVE-2007-1244 version (wordpress, fixed 2.1.2) #230898
-*CVE-2007-1230 version (wordpress, fixed 2.1.2)
+CVE-2007-1244 version (wordpress, fixed 2.1.2) #230898
+CVE-2007-1230 version (wordpress, fixed 2.1.2)
 *CVE-2007-1218 backport (tcpdump) 232349 [since FEDORA-2007-347]
 CVE-2007-1216 version (krb5, fixed 1.6-3) #231537
 *CVE-2007-1103 VULNERABLE (tor) #230927
-*CVE-2007-1092 version (seamonkey, fixed 1.0.8)
-*CVE-2007-1055 version (mediawiki, fixed 1.8.3)
-*CVE-2007-1054 version (mediawiki, fixed 1.8.4)
-*CVE-2007-1049 version (wordpress, fixed 2.1.1) #229991
+CVE-2007-1092 version (seamonkey, fixed 1.0.8)
+CVE-2007-1055 version (mediawiki, fixed 1.8.3)
+CVE-2007-1054 version (mediawiki, fixed 1.8.4)
+CVE-2007-1049 version (wordpress, fixed 2.1.1) #229991
 *CVE-2007-1036 (jboss)
 *CVE-2007-1030 (libevent)
 *CVE-2007-1007 (ekiga)
@@ -227,13 +227,13 @@
 CVE-2007-1001 version (php, fixed 5.2.2)
 CVE-2007-1000 version (kernel, fixed 2.6.20.2) [since FEDORA-2007-335]
 *CVE-2007-0999 (ekiga)
-*CVE-2007-0998 version (qemu, fixed 0.8.2)
+CVE-2007-0998 version (qemu, fixed 0.8.2)
 *CVE-2007-0998 backport (xen) #230295 [since FEDORA-2007-343]
-*CVE-2007-0996 version (seamonkey, fixed 1.0.8)
-*CVE-2007-0995 version (seamonkey, fixed 1.0.8)
+CVE-2007-0996 version (seamonkey, fixed 1.0.8)
+CVE-2007-0995 version (seamonkey, fixed 1.0.8)
 CVE-2007-0988 version (php, fixed 5.2.1)
 CVE-2007-0981 VULNERABLE (firefox, ...)
-*CVE-2007-0981 version (seamonkey, fixed 1.0.8) #229253
+CVE-2007-0981 version (seamonkey, fixed 1.0.8) #229253
 CVE-2007-0957 patch (krb5, fixed 1.6-3) #231528
[...3251 lines suppressed...]
-*CVE-2002-0839 version (httpd, not 2.2)
-*CVE-2002-0838 version (kdegraphics, fixed 3.0.4)
-*CVE-2002-0838 version (ggv, fixed 20030119, 2.8.0 at least)
-*CVE-2002-0837 version (wordtrans, fixed 1.1pre13 at least)
-*CVE-2002-0836 version (tetex, fixed 2.0.2 at least)
+CVE-2002-0972 version (postgresql, fixed 7.2.2)
+CVE-2002-0970 version (kdenetwork, fixed 3.0.3)
+CVE-2002-0935 version (tomcat, fixed 4.1.3)
+CVE-2002-0906 version (sendmail, fxied 8.12.5)
+CVE-2002-0871 version (xinetd, fixed 2.3.7)
+CVE-2002-0855 version (mailman, fixed 2.0.12)
+CVE-2002-0843 version (httpd, not 2.2)
+CVE-2002-0840 version (httpd, not 2.2)
+CVE-2002-0839 version (httpd, not 2.2)
+CVE-2002-0838 version (kdegraphics, fixed 3.0.4)
+CVE-2002-0838 version (ggv, fixed 20030119, 2.8.0 at least)
+CVE-2002-0837 version (wordtrans, fixed 1.1pre13 at least)
+CVE-2002-0836 version (tetex, fixed 2.0.2 at least)
 CVE-2002-0834 version (wireshark, fixed after 0.9.5)
-*CVE-2002-0825 version (nss_ldap, fixed nss_ldap-198)
+CVE-2002-0825 version (nss_ldap, fixed nss_ldap-198)
 CVE-2002-0822 version (wireshark, fixed 0.9.5)
 CVE-2002-0821 version (wireshark, fixed 0.9.5)
-*CVE-2002-0819 version (arts, fixed cvs 20020707)
-*CVE-2002-0802 version (postgresql, fixed 7.2)
-*CVE-2002-0761 version (bzip2, fixed 1.0.2)
-*CVE-2002-0760 version (bzip2, fixed 1.0.2)
-*CVE-2002-0759 version (bzip2, fixed 1.0.2)
-*CVE-2002-0728 version (libpng, fixed 1.2.4)
+CVE-2002-0819 version (arts, fixed cvs 20020707)
+CVE-2002-0802 version (postgresql, fixed 7.2)
+CVE-2002-0761 version (bzip2, fixed 1.0.2)
+CVE-2002-0760 version (bzip2, fixed 1.0.2)
+CVE-2002-0759 version (bzip2, fixed 1.0.2)
+CVE-2002-0728 version (libpng, fixed 1.2.4)
 CVE-2002-0717 version (php, fixed 4.2.2)
 CVE-2002-0715 version (squid, fixed 2.4.STABLE6)
 CVE-2002-0714 version (squid, fixed 2.4.STABLE6)
 CVE-2002-0713 version (squid, fixed 2.4.STABLE6)
-*CVE-2002-0704 version (kernel, fixed 2.6.11)
-*CVE-2002-0702 version (dhcpd, fixed 3.0.1)
-*CVE-2002-0684 version (glibc, fixed afted 2.2.5)
-*CVE-2002-0682 version (tomcat, fixed 4.1.3)
-*CVE-2002-0662 version (scrollkeeper, fixed after 0.3.11)
-*CVE-2002-0660 version (libpng, fixed 1.0.14)
-*CVE-2002-0659 version (openssl, not 0.9.8)
-*CVE-2002-0659 version (openssl097a, not 0.9.7)
-*CVE-2002-0657 version (openssl, not 0.9.8)
-*CVE-2002-0657 version (openssl097a, not 0.9.7)
-*CVE-2002-0656 version (openssl, not 0.9.8)
-*CVE-2002-0656 version (openssl097a, not 0.9.7)
-*CVE-2002-0655 version (openssl, not 0.9.8)
-*CVE-2002-0655 version (openssl097a, not 0.9.7)
-*CVE-2002-0653 version (mod_ssl, not httpd 2.2)
+CVE-2002-0704 version (kernel, fixed 2.6.11)
+CVE-2002-0702 version (dhcpd, fixed 3.0.1)
+CVE-2002-0684 version (glibc, fixed afted 2.2.5)
+CVE-2002-0682 version (tomcat, fixed 4.1.3)
+CVE-2002-0662 version (scrollkeeper, fixed after 0.3.11)
+CVE-2002-0660 version (libpng, fixed 1.0.14)
+CVE-2002-0659 version (openssl, not 0.9.8)
+CVE-2002-0659 version (openssl097a, not 0.9.7)
+CVE-2002-0657 version (openssl, not 0.9.8)
+CVE-2002-0657 version (openssl097a, not 0.9.7)
+CVE-2002-0656 version (openssl, not 0.9.8)
+CVE-2002-0656 version (openssl097a, not 0.9.7)
+CVE-2002-0655 version (openssl, not 0.9.8)
+CVE-2002-0655 version (openssl097a, not 0.9.7)
+CVE-2002-0653 version (mod_ssl, not httpd 2.2)
 CVE-2002-0651 version (bind, not 9)
 CVE-2002-0640 version (openssh, fixed after 3.3)
 CVE-2002-0639 version (openssh, fixed after 3.3)
-*CVE-2002-0638 version (util-linux, fixed 2.13 at least)
+CVE-2002-0638 version (util-linux, fixed 2.13 at least)
 CVE-2002-0575 version (openssh, fixed 3.2.1)
-*CVE-2002-0570 ignore (kernel) not a vulnerability
-*CVE-2002-0517 version (XFree86) didn't affect Linux
-*CVE-2002-0516 version (squirrelmail, fixed 1.2.6)
-*CVE-2002-0510 ignore (kernel) see cve
-*CVE-2002-0506 version (newt, not 0.5.22 at least)
-*CVE-2002-0499 version (kernel, not 2.6)
+CVE-2002-0570 ignore (kernel) not a vulnerability
+CVE-2002-0517 version (XFree86) didn't affect Linux
+CVE-2002-0516 version (squirrelmail, fixed 1.2.6)
+CVE-2002-0510 ignore (kernel) see cve
+CVE-2002-0506 version (newt, not 0.5.22 at least)
+CVE-2002-0499 version (kernel, not 2.6)
 *CVE-2002-0497 backport (mtr) mtr-0.69-CVE-2002-0497.patch
-*CVE-2002-0493 version (tomcat, fixed 4.1.12)
-*CVE-2002-0435 version (fileutils, fixed 4.1.7)
-*CVE-2002-0429 version (kernel, not 2.6)
+CVE-2002-0493 version (tomcat, fixed 4.1.12)
+CVE-2002-0435 version (fileutils, fixed 4.1.7)
+CVE-2002-0429 version (kernel, not 2.6)
 CVE-2002-0404 version (wireshark, fixed 0.9.3)
 CVE-2002-0403 version (wireshark, fixed 0.9.3)
 CVE-2002-0402 version (wireshark, fixed 0.9.3)
 CVE-2002-0401 version (wireshark, fixed 0.9.3)
 CVE-2002-0400 version (bind, fixed 9.2.1)
-*CVE-2002-0399 version (tar, fixed 1.13.26)
-*CVE-2002-0392 version (httpd, not 2.2)
+CVE-2002-0399 version (tar, fixed 1.13.26)
+CVE-2002-0392 version (httpd, not 2.2)
 CVE-2002-0391 version (krb5, fixed after 1.2.5)
-*CVE-2002-0391 version (glibc, fixed after 2.2.5)
-*CVE-2002-0389 ignore (mailman) upstream say not a vulnerability
-*CVE-2002-0388 version (mailman, fixed 2.0.11)
+CVE-2002-0391 version (glibc, fixed after 2.2.5)
+CVE-2002-0389 ignore (mailman) upstream say not a vulnerability
+CVE-2002-0388 version (mailman, fixed 2.0.11)
 CVE-2002-0384 version (gaim, fixed gaim:0.58)
 CVE-2002-0382 version (xchat, fixed 1.9.1)
-*CVE-2002-0380 version (tcpdump, fixed 3.7.2 at least)
-*CVE-2002-0379 version (imap, vuln code removed imap-2002)
+CVE-2002-0380 version (tcpdump, fixed 3.7.2 at least)
+CVE-2002-0379 version (imap, vuln code removed imap-2002)
 CVE-2002-0377 version (gaim, fixed gaim:0.58)
-*CVE-2002-0374 version (pam_ldap, fixed 144)
-*CVE-2002-0363 version (ghostscript, fixed 6.53)
+CVE-2002-0374 version (pam_ldap, fixed 144)
+CVE-2002-0363 version (ghostscript, fixed 6.53)
 CVE-2002-0353 version (wireshark, fixed 0.9.3)
-*CVE-2002-0342 version (kde, not 2.2+)
-*CVE-2002-0318 version (freeradius, fixed 0.7)
+CVE-2002-0342 version (kde, not 2.2+)
+CVE-2002-0318 version (freeradius, fixed 0.7)
 CVE-2002-0253 ignore (php) not a vulnerability
 CVE-2002-0240 ignore (php) windows only
-*CVE-2002-0232 version (mrtg, not 2.11.1 at least)
+CVE-2002-0232 version (mrtg, not 2.11.1 at least)
 CVE-2002-0229 ignore (php) safe mode isn't safe
-*CVE-2002-0185 version (mod_python, fixed 2.7.7)
+CVE-2002-0185 version (mod_python, fixed 2.7.7)
 CVE-2002-0184 version (sudo, fixed 1.6.6)
-*CVE-2002-0180 version (webalizer, fixed 2.01-10)
-*CVE-2002-0169 ignore (docbook) was RHL only
-*CVE-2002-0165 version (logwatch, fixed 2.6)
-*CVE-2002-0164 version (XFree86, fixed 4.2.1)
+CVE-2002-0180 version (webalizer, fixed 2.01-10)
+CVE-2002-0169 ignore (docbook) was RHL only
+CVE-2002-0165 version (logwatch, fixed 2.6)
+CVE-2002-0164 version (XFree86, fixed 4.2.1)
 CVE-2002-0163 version (squid, fixed 2.4.STABLE6)
-*CVE-2002-0162 version (logwatch, fixed 2.5)
-*CVE-2002-0157 version (nautilus)
-*CVE-2002-0146 version (fetchmail, fixed 5.9.10)
-*CVE-2002-0130 ignore (efax) not setuid root
-*CVE-2002-0129 ignore (efax) not setuid root
+CVE-2002-0162 version (logwatch, fixed 2.5)
+CVE-2002-0157 version (nautilus)
+CVE-2002-0146 version (fetchmail, fixed 5.9.10)
+CVE-2002-0130 ignore (efax) not setuid root
+CVE-2002-0129 ignore (efax) not setuid root
 CVE-2002-0121 version (php, fixed after 4.1.1)
-*CVE-2002-0092 version (cve, fixed 1.10.8)
+CVE-2002-0092 version (cve, fixed 1.10.8)
 CVE-2002-0083 version (openssh, fixed 3.1)
-*CVE-2002-0082 version (mod_ssl, not httpd 2.2)
+CVE-2002-0082 version (mod_ssl, not httpd 2.2)
 CVE-2002-0081 version (php, not 4.2+)
 CVE-2002-0080 version (rsync, fixed 2.5.3)
 CVE-2002-0069 version (squid, fixed 2.4STABLE4)
 CVE-2002-0068 version (squid, fixed 2.4STABLE4)
 CVE-2002-0067 version (squid, fixed 2.4STABLE4)
-CVE-2002-0063 version (cups, fixed 1.1.14)
-*CVE-2002-0062 version (ncurses, only 5.0)
-*CVE-2002-0060 version (kernel, fixed 2.5.5)
+VE-2002-0063 version (cups, fixed 1.1.14)
+CVE-2002-0062 version (ncurses, only 5.0)
+CVE-2002-0060 version (kernel, fixed 2.5.5)
 *CVE-2002-0059 ** zlib (cvs, dump, gcc, libgcj, kernel, vnc)
 CVE-2002-0059 version (rsync, fixed 2.5.4/2.6.6)
-*CVE-2002-0059 version (zlib, fixed 1.1.4)
+CVE-2002-0059 version (zlib, fixed 1.1.4)
 CVE-2002-0048 version (rsync, fixed 2.5.2)
-*CVE-2002-0046 version (kernel, fixed 2.4.0)
-*CVE-2002-0045 version (openldap, fixed 2.0.20)
-*CVE-2002-0044 version (enscript, fixed 1.6.4 at least)
+CVE-2002-0046 version (kernel, fixed 2.4.0)
+CVE-2002-0045 version (openldap, fixed 2.0.20)
+CVE-2002-0044 version (enscript, fixed 1.6.4 at least)
 CVE-2002-0043 version (sudo, fixed 1.6.4)
 CVE-2002-0036 version (krb5, fixed 1.2.5)
 CVE-2002-0029 version (bind, not 9)
@@ -2649,11 +2649,11 @@
 CVE-2002-0006 verison (xchat, fixed 1.8.7) cve is wrong
 CVE-2002-0004 backport (at) issue was in a patch, fixed at-3.1.8-11-lexer-parser.diff
 CVE-2002-0003 version (groff, fixed 1.17.2)
-*CVE-2002-0002 version (stunnel, fixed 3.22)
-*CVE-2002-0001 version (mutt, fixed 1.3.25)
-*CVE-2001-1494 version (util-linux, fixed 2.11n)
+CVE-2002-0002 version (stunnel, fixed 3.22)
+CVE-2002-0001 version (mutt, fixed 1.3.25)
+CVE-2001-1494 version (util-linux, fixed 2.11n)
 *CVE-2001-1429 (mc)
-*CVE-2001-0955 version (XFree86, fixed 4.2.0)
+CVE-2001-0955 version (XFree86, fixed 4.2.0)
 CVE-2001-0935 ignore, no-ship (wu-ftpd)
 CVE-2001-0474 version (mesa, fixed 3.3-14)
 CVE-2001-0310 ignore (sort) mkstemp is now being used

-- 
fedora-extras-commits mailing list
fedora-extras-commits at redhat.com
https://www.redhat.com/mailman/listinfo/fedora-extras-commits




More information about the Fedora-security-list mailing list