Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv15790 Modified Files: fc6 fc7 Log Message: Updates Index: fc6 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc6,v retrieving revision 1.229 retrieving revision 1.230 diff -u -r1.229 -r1.230 --- fc6 2 Aug 2007 15:19:32 -0000 1.229 +++ fc6 3 Aug 2007 07:20:30 -0000 1.230 @@ -5,7 +5,7 @@ # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany) # Up to date CVE as of CVE email 20070801 -# Up to date FC6 as of 20070802 +# Up to date FC6 as of 20070803 CVE-2007-4029 VULNERABLE (libvorbis) #250600 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614] @@ -32,7 +32,6 @@ CVE-2007-3126 ignore (gimp) just a crash CVE-2007-3106 VULNERABLE (libvorbis) #250600 CVE-2007-2926 backport (bind, fixed 9.4.1) [since FEDORA-2007-647] -CVE-2007-2894 VULNERABLE (bochs) #241799 CVE-2007-2876 version (kernel, fixed 2.6.21.5) [since FEDORA-2007-600] CVE-2007-2875 version (kernel) [since FEDORA-2007-600] *CVE-2007-2874 (wpa_supplicant) #242455 @@ -72,8 +71,8 @@ CVE-2007-1396 ignore (php) feature, not a flaw CVE-2007-1362 version (mozilla) #241840 [since FEDORA-2007-549] CVE-2007-1357 version (kernel) [since FEDORA-2007-432] -CVE-2007-1352 VULNERABLE (libXfont) #235265 -CVE-2007-1351 VULNERABLE (libXfont) #235265 +CVE-2007-1352 fixed (libXfont) #235265 [since FEDORA-2007-423] +CVE-2007-1351 fixed (libXfont) #235265 [since FEDORA-2007-423] CVE-2007-1349 backport (mod_perl) [since FEDORA-2007-577] CVE-2007-1263 version (gnupg, fixed 1.4.7) [since FEDORA-2007-315] CVE-2007-1262 version (squirrelmail, fixed 1.4.10a) #239704 [since FEDORA-2007-505] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.55 retrieving revision 1.56 diff -u -r1.55 -r1.56 --- fc7 1 Aug 2007 15:19:31 -0000 1.55 +++ fc7 3 Aug 2007 07:20:30 -0000 1.56 @@ -5,7 +5,8 @@ # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany) # A couple of first F7 updates were marked as FEDORA-2007-0001 -# Version: FEDORA-2007-1070 +# Up to date CVE as of CVE email 20070801 +# Up to date FC7 as of 20070802 CVE-NOID VULNERABLE (tor, fixed 0.1.2.15) #249840 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-0414] @@ -56,6 +57,7 @@ CVE-2007-3381 version (gdm, fixed 2.18.4) #250277 [since FEDORA-2007-1362] CVE-2007-3378 ignore (php) safe mode escape CVE-2007-3377 version (perl-Net-DNS, fixed 0.60) #245612 [since EDORA-2007-0668] +CVE-2007-3304 backport (httpd) #244665 [since FEDORA-2007-0704] CVE-2007-3257 backport (evolution) #244283 [since FEDORA-2007-0464] CVE-2007-3241 version (wordpress, fixed 2.2.1) #245211 [since FEDORA-2007-0894] CVE-2007-3240 version (wordpress, fixed 2.2.1) #245211 [since FEDORA-2007-0894] @@ -161,7 +163,8 @@ CVE-2007-1870 version (lighttpd, fixed 1.4.14) #236489 CVE-2007-1869 version (lighttpd, fixed 1.4.14) #236489 CVE-2007-1864 version (php, fixed 5.2.2) -*CVE-2007-1862 (httpd) +CVE-2007-1863 backport (httpd) #244665 [since FEDORA-2007-0704] +CVE-2007-1862 backport (httpd) #242606 [since FEDORA-2007-0704] *CVE-2007-1859 (xscreensaver) *CVE-2007-1858 (tomcat) CVE-2007-1856 backport (vixie-cron) #235882 vixie-cron-4.1-hardlink.patch @@ -190,10 +193,11 @@ CVE-2007-1583 version (php, fixed 5.2.2) CVE-2007-1565 ignore (konqueror) client crash CVE-2007-1564 vulnerable (konqueror) [#CVE-2007-1564] -CVE-2007-1562 version (firefox, seamonkey, thunderbird) #241840 +CVE-2007-1562 version (mozilla) #241840 CVE-2007-1560 version (squid, fixed 2.6.STABLE12) CVE-2007-1558 version (claws-mail, fixed 2.9.1) #237293 *CVE-2007-1558 backport (sylpheed, fixed 2.3.1-1) +*CVE-2007-1558 VULNERABLE (evolution) CVE-2007-1547 version (nas, fixed 1.8a-2) #233353 CVE-2007-1546 version (nas, fixed 1.8a-2) #233353 CVE-2007-1545 version (nas, fixed 1.8a-2) #233353 @@ -497,6 +501,7 @@ CVE-2006-5757 version (kernel, fixed 2.6.19) [since FEDORA-2007-058] was backport since FEDORA-2006-1223 *CVE-2006-5754 (kernel) *CVE-2006-5753 backport (kernel, fixed 2.6.20.1) [since FEDORA-2007-291] +CVE-2006-5752 backport (httpd) #244665 [since FEDORA-2007-0704] CVE-2006-5751 version (kernel, fixed 2.6.19, fixed 2.6.18.4) [since FEDORA-2006-1471] *CVE-2006-5750 (jboss) *CVE-2006-5749 VULNERABLE (kernel, fixed 2.6.20-rc2) @@ -545,7 +550,7 @@ VE-2006-5295 version (clamav, fixed 0.88.5) #210973 *CVE-2006-5276 VULNERABLE (snort) #229265 CVE-2006-5229 ignore (openssh) not reproduced -*CVE-2006-5215 VULNERABLE (xorg-x11-xinit) #212167 +CVE-2006-5215 backport (xorg-x11-xinit) #212167 [since FEDORA-2007-1409] *CVE-2006-5215 version (xorg-x11-xdm) CVE-2006-5215 ignore (kdebase) #212166 links to xinit Xsession *CVE-2006-5214 VULNERABLE (xorg-x11-xinit) #212167 @@ -2210,7 +2215,7 @@ *CVE-2003-1295 (xscreensaver) *CVE-2003-1294 (xscreensaver) CVE-2003-1265 VULNERABLE (thunderbird) https://bugzilla.mozilla.org/show_bug.cgi?id=198442 -CVE-2003-1265 VULNERABLE (firefox) https://bugzilla.mozilla.org/show_bug.cgi?id=198442 +CVE-2003-1265 VULNERABLE (seamonkey) https://bugzilla.mozilla.org/show_bug.cgi?id=198442 CVE-2003-1232 version (emacs, fixed 21.3) CVE-2003-1201 version (openldap, not 2.2) CVE-2003-1161 version (kernel, not released version) -- fedora-extras-commits mailing list fedora-extras-commits@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-extras-commits -- Fedora-security-list mailing list Fedora-security-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-security-list
