Author: lkundrak
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27214
Modified Files:
fc6 fc7
Log Message:
Up-to-date as of today
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.241
retrieving revision 1.242
diff -u -r1.241 -r1.242
--- fc6 15 Aug 2007 10:46:44 -0000 1.241
+++ fc6 20 Aug 2007 16:01:57 -0000 1.242
@@ -4,8 +4,8 @@
# *CVE are items that need verification for Fedora Core 6
# (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea.
epiphany)
-# Up to date CVE as of CVE email 20070815
-# Up to date FC6 as of 20070815
+# Up to date CVE as of CVE email 20070820
+# Up to date FC6 as of 20070820
GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
CVE-2007-4357 ignore (firefox) status bar can be overwrittten
@@ -14,7 +14,7 @@
CVE-2007-4229 ignore (kdebase) just an ASSERT fail
CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped
CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity
-CVE-2007-4211 VULNERABLE (dovecot, fixed 1.0.3) #251009
+CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664]
CVE-2007-4029 VULNERABLE (libvorbis) #250600
CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614]
CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux
@@ -39,9 +39,9 @@
CVE-2007-3390 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628]
CVE-2007-3389 version (wireshark, fixed 0.99.6) [since FEDORA-2007-628]
CVE-2007-3387 VULNERABLE (poppler) #251513
-CVE-2007-3387 VULNERABLE (tetex) #251515
+CVE-2007-3387 backport (tetex) #251515 [since FEDORA-2007-669]
CVE-2007-3387 VULNERABLE (kdegraphics) #251511
-CVE-2007-3387 VULNERABLE (cups) #251519
+CVE-2007-3387 backport (cups) #251519 [since FEDORA-2007-644]
CVE-2007-3384 ignore (tomcat) only affects 3.3.x and just affects an example
CVE-2007-3381 version (gdm, fixed 2.18.4) #250277 [since FEDORA-2007-653]
CVE-2007-3378 ignore (php) safe mode escape
@@ -50,7 +50,7 @@
CVE-2007-3304 backport (httpd) #244660 [since FEDORA-2007-615]
CVE-2007-3257 backport (evolution) #244287 [since FEDORA-2007-594]
CVE-2007-3126 ignore (gimp) just a crash
-CVE-2007-3108 VULNERABLE (openssl) #250574
+CVE-2007-3108 backport (openssl) #250574 [since FEDORA-2007-661]
CVE-2007-3106 VULNERABLE (libvorbis) #250600
CVE-2007-2926 backport (bind, fixed 9.4.1) [since FEDORA-2007-647]
CVE-2007-2876 version (kernel, fixed 2.6.21.5) [since FEDORA-2007-600]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.74
retrieving revision 1.75
diff -u -r1.74 -r1.75
--- fc7 20 Aug 2007 09:44:37 -0000 1.74
+++ fc7 20 Aug 2007 16:01:57 -0000 1.75
@@ -5,10 +5,13 @@
# (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea.
epiphany)
# A couple of first F7 updates were marked as FEDORA-2007-0001
-# Up to date CVE as of CVE email 20070815
-# Up to date FC7 as of 20070815
+# Up to date CVE as of CVE email 20070820
+# Up to date FC7 as of 20070820
+GENERIC-MAP-NOMATCH VULNERABLE (id3lib) #253553
+GENERIC-MAP-NOMATCH VULNERABLE (po4a) #253541
GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
+CVE-2007-4400 VULNERABLE (konversation) #253545
CVE-2007-4357 ignore (firefox) status bar can be overwrittten
CVE-2007-4323 backport (denyhosts) #252291 [since FEDORA-2007-0589]
CVE-2007-4321 VULNERABLE (fail2ban) #252290
--
fedora-extras-commits mailing list
fedora-extras-commits(a)redhat.com
https://www.redhat.com/mailman/listinfo/fedora-extras-commits