Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27214 Modified Files: fc6 fc7 Log Message: Up-to-date as of today Index: fc6 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc6,v retrieving revision 1.241 retrieving revision 1.242 diff -u -r1.241 -r1.242 --- fc6 15 Aug 2007 10:46:44 -0000 1.241 +++ fc6 20 Aug 2007 16:01:57 -0000 1.242 @@ -4,8 +4,8 @@ # *CVE are items that need verification for Fedora Core 6 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany) -# Up to date CVE as of CVE email 20070815 -# Up to date FC6 as of 20070815 +# Up to date CVE as of CVE email 20070820 +# Up to date FC6 as of 20070820 GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294 CVE-2007-4357 ignore (firefox) status bar can be overwrittten @@ -14,7 +14,7 @@ CVE-2007-4229 ignore (kdebase) just an ASSERT fail CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity -CVE-2007-4211 VULNERABLE (dovecot, fixed 1.0.3) #251009 +CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664] CVE-2007-4029 VULNERABLE (libvorbis) #250600 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614] CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux @@ -39,9 +39,9 @@ CVE-2007-3390 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628] CVE-2007-3389 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628] CVE-2007-3387 VULNERABLE (poppler) #251513 -CVE-2007-3387 VULNERABLE (tetex) #251515 +CVE-2007-3387 backport (tetex) #251515 [since FEDORA-2007-669] CVE-2007-3387 VULNERABLE (kdegraphics) #251511 -CVE-2007-3387 VULNERABLE (cups) #251519 +CVE-2007-3387 backport (cups) #251519 [since FEDORA-2007-644] CVE-2007-3384 ignore (tomcat) only affects 3.3.x and just affects an example CVE-2007-3381 version (gdm, fixed 2.18.4) #250277 [since FEDORA-2007-653] CVE-2007-3378 ignore (php) safe mode escape @@ -50,7 +50,7 @@ CVE-2007-3304 backport (httpd) #244660 [since FEDORA-2007-615] CVE-2007-3257 backport (evolution) #244287 [since FEDORA-2007-594] CVE-2007-3126 ignore (gimp) just a crash -CVE-2007-3108 VULNERABLE (openssl) #250574 +CVE-2007-3108 backport (openssl) #250574 [since FEDORA-2007-661] CVE-2007-3106 VULNERABLE (libvorbis) #250600 CVE-2007-2926 backport (bind, fixed 9.4.1) [since FEDORA-2007-647] CVE-2007-2876 version (kernel, fixed 2.6.21.5) [since FEDORA-2007-600] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.74 retrieving revision 1.75 diff -u -r1.74 -r1.75 --- fc7 20 Aug 2007 09:44:37 -0000 1.74 +++ fc7 20 Aug 2007 16:01:57 -0000 1.75 @@ -5,10 +5,13 @@ # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany) # A couple of first F7 updates were marked as FEDORA-2007-0001 -# Up to date CVE as of CVE email 20070815 -# Up to date FC7 as of 20070815 +# Up to date CVE as of CVE email 20070820 +# Up to date FC7 as of 20070820 +GENERIC-MAP-NOMATCH VULNERABLE (id3lib) #253553 +GENERIC-MAP-NOMATCH VULNERABLE (po4a) #253541 GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294 +CVE-2007-4400 VULNERABLE (konversation) #253545 CVE-2007-4357 ignore (firefox) status bar can be overwrittten CVE-2007-4323 backport (denyhosts) #252291 [since FEDORA-2007-0589] CVE-2007-4321 VULNERABLE (fail2ban) #252290 -- fedora-extras-commits mailing list fedora-extras-commits@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-extras-commits -- Fedora-security-list mailing list Fedora-security-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-security-list