fedora-security/audit fc4,1.109,1.110

Mark Cox (mjc) fedora-extras-commits at redhat.com
Mon Dec 19 09:44:53 UTC 2005 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16209

Modified Files:
	fc4 
Log Message:
Weekend updates



Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.109
retrieving revision 1.110
diff -u -r1.109 -r1.110
--- fc4	16 Dec 2005 09:00:46 -0000	1.109
+++ fc4	19 Dec 2005 09:44:50 -0000	1.110
@@ -1,28 +1,28 @@
-Up to date CVE as of CVE email 20051214
-Up to date FC4 as of 20051214
+Up to date CVE as of CVE email 20051218
+Up to date FC4 as of 20051218
 
 ** are items that need attention
 
 CVE-2005-4268 blocked (cpio) by FORTIFY_SOURCE
-CVE-2005-4158 ignore (sudo) only env_reset will properly clean the environment
+CVE-2005-4158 backport (sudo) [since FEDORA-2005-1147] was ignore only env_reset will properly clean the environment
 CVE-2005-4154 ignore (php) don't install untrusted pear packages
 CVE-2005-4077 backport (curl) [since FEDORA-2005-1137]
 CVE-2005-3651 VULNERABLE (ethereal)
 CVE-2005-3358 version (kernel, fixed 2.6.11)
 CVE-2005-3352 VULNERABLE (httpd, fixed 2.0.56)
 CVE-2005-3193 backport (cups) [since FEDORA-2005-1142]
-CVE-2005-3193 VULNERABLE (xpdf)
-CVE-2005-3193 VULNERABLE (kdegraphics)
+CVE-2005-3193 backport (xpdf) [since FEDORA-2005-1169]
+CVE-2005-3193 backport (kdegraphics) [since FEDORA-2005-1160]
 CVE-2005-3193 backport (tetex) [since FEDORA-2005-1126]
 CVE-2005-3193 backport (poppler) [since FEDORA-2005-1132]
 CVE-2005-3192 backport (cups) [since FEDORA-2005-1142]
-CVE-2005-3192 VULNERABLE (xpdf)
-CVE-2005-3192 VULNERABLE (kdegraphics)
+CVE-2005-3192 backport (xpdf) [since FEDORA-2005-1169]
+CVE-2005-3192 backport (kdegraphics) [since FEDORA-2005-1160]
 CVE-2005-3192 backport (tetex) [since FEDORA-2005-1126]
 CVE-2005-3192 backport (poppler) [since FEDORA-2005-1132]
 CVE-2005-3191 backport (cups) [since FEDORA-2005-1142]
-CVE-2005-3191 VULNERABLE (xpdf)
-CVE-2005-3191 VULNERABLE (kdegraphics)
+CVE-2005-3191 backport (xpdf) [since FEDORA-2005-1169]
+CVE-2005-3191 backport (kdegraphics) [since FEDORA-2005-1160]
 CVE-2005-3191 backport (tetex) [since FEDORA-2005-1126]
 CVE-2005-3191 backport (poppler) [since FEDORA-2005-1132]
 CVE-2005-3964 VULNERABLE (openmotif) bz#174815
@@ -190,7 +190,7 @@
 CVE-2005-2498 version (php xml_rpc, fixed 1.4.0) [since FEDORA-2005-810]
 CVE-2005-2496 backport (ntp, fixed 4.2.0b) ...0a-20040617-ntpd_guid.patch
 CVE-2005-2495 backport (xorg-x11) [since FEDORA-2005-894]
-CVE-2005-2494 VULNERABLE (kdebase, fixed after 3.4.2) bz#166997
+CVE-2005-2494 version (kdebase, fixed after 3.4.2) [since FEDORA-2005-1152]
 CVE-2005-2491 ignore (python, fc4 python does not contain pcre)
 CVE-2005-2491 backport (pcre, fixed 6.2) [since FEDORA-2005-803]
 CVE-2005-2491 ignore (httpd, pcre uses system pcre)
@@ -254,7 +254,7 @@
 CVE-2005-2104 version (sysreport, fixed 1.4.1-5) [since FEDORA-2005-1071]
 CVE-2005-2103 version (gaim, fixed 1.5.0) [since FEDORA-2005-751]
 CVE-2005-2102 version (gaim, fixed 1.5.0) [since FEDORA-2005-751]
-CVE-2005-2101 backport (kdeedu) [since FEDORA-2005-744]
+CVE-2005-2101 version (kdeedu, fixed after 3.4.2) [since FEDORA-2005-1158] was backport since FEDORA-2005-744
 CVE-2005-2100 version (kernel, not upstream) only RHEL4
 CVE-2005-2099 version (kernel, fixed 2.6.12.5) [since FEDORA-2005-820]
 CVE-2005-2098 version (kernel, fixed 2.6.12.5) [since FEDORA-2005-820]

More information about the fedora-extras-commits mailing list