[Fedora-security-commits] fedora-security/audit f8, 1.105, 1.106 f9, 1.96, 1.97 fc7, 1.261, 1.262

fedora-security-commits at redhat.com fedora-security-commits at redhat.com
Tue Jan 29 14:46:52 UTC 2008 

Author: thoger

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13890/audit

Modified Files:
	f8 f9 fc7 
Log Message:
SDL_image issues



Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.105
retrieving revision 1.106
diff -u -r1.105 -r1.106
--- f8	29 Jan 2008 09:08:17 -0000	1.105
+++ f8	29 Jan 2008 14:46:22 -0000	1.106
@@ -8,6 +8,7 @@
 # Up to date F8 as of 20080111
 
 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow
 CVE-2008-0460 VULNERABLE (mediawiki) #430288 
 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] 
 CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] 
@@ -273,6 +274,7 @@
 CVE-2006-5170 version (nss_ldap, fixed 183)
 CVE-2006-4573 version (screen, fixed 4.0.3) #212057
 CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this.
+CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430241 
 CVE-2006-2894 version (firefox, fixed 2.0.0.8)
 CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511
 CVE-2006-0987 ignore (bind) example config file only


Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.96
retrieving revision 1.97
diff -u -r1.96 -r1.97
--- f9	29 Jan 2008 09:08:17 -0000	1.96
+++ f9	29 Jan 2008 14:46:22 -0000	1.97
@@ -8,6 +8,7 @@
 # Up to date F9 as of 20071029
 
 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow
 CVE-2008-0460 VULNERABLE (mediawiki) #430289 
 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
 CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
@@ -254,6 +255,7 @@
 CVE-2006-5170 version (nss_ldap, fixed 183)
 CVE-2006-4573 version (screen, fixed 4.0.3) #212057
 CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this.
+CVE-2006-4484 backport (SDL_image, fixed 1.2.7) #430238 [since SDL_image-1.2.6-4.fc9]
 CVE-2006-2894 version (firefox, fixed 2.0.0.8)
 CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511
 CVE-2006-0987 ignore (bind) example config file only


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.261
retrieving revision 1.262
diff -u -r1.261 -r1.262
--- fc7	29 Jan 2008 09:08:17 -0000	1.261
+++ fc7	29 Jan 2008 14:46:22 -0000	1.262
@@ -9,6 +9,7 @@
 # Up to date FC7 as of 20080111
 
 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow
 CVE-2008-0460 VULNERABLE (mediawiki) #430287 
 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] 
 CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] 
@@ -993,6 +994,7 @@
 CVE-2006-4485 version (php, fixed 5.1.5)
 CVE-2006-4484 version (php, fixed 5.1.5)
 CVE-2006-4484 ignore (gd)
+CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430239 
 CVE-2006-4483 ignore (php) not linux
 CVE-2006-4482 version (php, fixed 5.1.5)
 CVE-2006-4481 ignore (php) safe mode isn't safe

More information about the Fedora-security-commits mailing list