Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31650/audit Modified Files: fc6 fc7 Log Message: add star directory traversal Index: fc6 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc6,v retrieving revision 1.246 retrieving revision 1.247 diff -u -r1.246 -r1.247 --- fc6 24 Aug 2007 10:27:36 -0000 1.246 +++ fc6 24 Aug 2007 13:06:22 -0000 1.247 @@ -14,6 +14,7 @@ CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664] +CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254129 CVE-2007-4131 VULNERABLE (tar) #253684 CVE-2007-4029 VULNERABLE (libvorbis) #250600 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.79 retrieving revision 1.80 diff -u -r1.79 -r1.80 --- fc7 24 Aug 2007 10:27:37 -0000 1.79 +++ fc7 24 Aug 2007 13:06:22 -0000 1.80 @@ -27,6 +27,7 @@ CVE-2007-4153 ignore (wordpress) "remote authenticated administrators" CVE-2007-4154 ignore (wordpress) "remote authenticated administrators" CVE-2007-4139 VULNERABLE (wordpress) #250751 +CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254128 CVE-2007-4131 VULNERABLE (tar) #253684 CVE-2007-4029 backport (libvorbis) #245991 [since FEDORA-2007-1765] CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux -- fedora-extras-commits mailing list fedora-extras-commits@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-extras-commits -- Fedora-security-list mailing list Fedora-security-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-security-list
