fedora-security/audit fc6,1.16,1.17
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Wed Aug 16 10:36:04 UTC 2006
- Previous message (by thread): rpms/perl-SDL/devel filter-depends.sh, NONE, 1.1 filter-provides.sh, NONE, 1.1 perl-SDL-gfxPie.patch, NONE, 1.1 perl-SDL-no-mixertest.patch, NONE, 1.1 perl-SDL.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): fedora-security/audit fc5,1.278,1.279
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv26460
Modified Files:
fc6
Log Message:
Note new CVE, some things fixed in rawhide, and a mistake in gcc analysis
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.16
retrieving revision 1.17
diff -u -r1.16 -r1.17
--- fc6 15 Aug 2006 20:55:11 -0000 1.16
+++ fc6 16 Aug 2006 10:36:01 -0000 1.17
@@ -1,11 +1,12 @@
-Up to date CVE as of CVE email 20060813
+Up to date CVE as of CVE email 20060815
Up to date FC6 as of Test2
** are items that need attention
+CVE-2006-4144 ** (ImageMagick, fixed 6.2.9)
CVE-2006-4031 VULNERABLE (mysql, fixed 5.0.24) bz#202675
CVE-2006-4020 VULNERABLE (php) bz#202676
-CVE-2006-4019 VULNERABLE (squirrelmail, fixed 1.4.8) bz#202677
+CVE-2006-4019 VULNERABLE (squirrelmail, fixed 1.4.8) bz#202677 [fixed rawhide]
CVE-2006-3918 version (httpd, fixed 2.2.2)
CVE-2006-3879 version (mikmod, not 3.1.6)
CVE-2006-3835 version (tomcat, fixed 5.5.17)
@@ -50,7 +51,7 @@
CVE-2006-3628 version (wireshark, fixed 0.99.2)
CVE-2006-3627 version (wireshark, fixed 0.99.2)
CVE-2006-3626 version (kernel, fixed 2.6.17.6)
-CVE-2006-3619 VULNERABLE (libgcj/fastjar 0.93) bz#202680
+CVE-2006-3619 backport (libgcj/fastjar 0.93) gcc41-CVE-2006-3619.patch
CVE-2006-3486 ignore (mysql, fixed 5.0.23) not exploitable
CVE-2006-3469 version (mysql)
CVE-2006-3468 VULNERABLE (kernel, fixed 2.6.17.8) not fixed upstream
@@ -79,7 +80,7 @@
CVE-2006-3113 VULNERABLE (thunderbird, fixed 1.5.0.5) bz#202678
CVE-2006-3085 version (kernel, fixed 2.6.17.1)
CVE-2006-3084 ignore (krb5) seteuid() calls never fail on linux
-CVE-2006-3083 VULNERABLE (krb5, fixed 1.5.1, 1.4.4) bz#202688
+CVE-2006-3083 VULNERABLE (krb5, fixed 1.5.1, 1.4.4) bz#202688 [fixed rawhide]
CVE-2006-3082 version (gnupg, fixed 1.4.4)
CVE-2006-3081 version (mysql, fixed 5.1.18)
CVE-2006-3057 version (dhcdbd, fixed 1.14)
@@ -267,7 +268,7 @@
CVE-2006-1242 version (kernel, fixed 2.6.16.1)
CVE-2006-1174 version (shadow-utils, fixed 4.0.3)
CVE-2006-1173 version (sendmail, fixed 8.13.7)
-CVE-2006-1168 VULNERABLE (ncompress) bz#202693
+CVE-2006-1168 VULNERABLE (ncompress) bz#202693 [fixed rawhide]
CVE-2006-1095 version (mod_python, 3.2.7 only)
CVE-2006-1079 ignore (httpd) not a vulnerability
CVE-2006-1078 ignore (httpd) not a vulnerability
@@ -357,6 +358,8 @@
CVE-2006-0058 version (sendmail, fixed 8.13.6)
CVE-2006-0052 version (mailman, fixed 2.1.6)
CVE-2006-0049 version (gnupg, fixed 1.4.2.2)
+CVE-2006-0040 ** (gtkhtml2)
+CVE-2006-0040 ** (gtkhtml3)
CVE-2006-0039 version (kernel, fixed 2.6.16.17)
CVE-2006-0037 version (kernel, only 2.6.14 and 2.6.15)
CVE-2006-0036 version (kernel, only 2.6.14 and 2.6.15)
@@ -1461,6 +1464,8 @@
CVE-2003-0543 version (openssl, not 0.9.8)
CVE-2003-0543 backport (openssl097a, fixed 0.9.7c)
CVE-2003-0542 version (httpd, not 2.2)
+CVE-2003-0541 ** (gtkhtml2)
+CVE-2003-0541 ** (gtkhtml3)
CVE-2003-0540 version (postfix, not 2.0 onwards)
CVE-2003-0517 version (mgetty, fixed 1.1.29)
CVE-2003-0516 version (mgetty, fixed 1.1.29)
- Previous message (by thread): rpms/perl-SDL/devel filter-depends.sh, NONE, 1.1 filter-provides.sh, NONE, 1.1 perl-SDL-gfxPie.patch, NONE, 1.1 perl-SDL-no-mixertest.patch, NONE, 1.1 perl-SDL.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): fedora-security/audit fc5,1.278,1.279
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list