fedora-security/audit fc6,1.42,1.43

Mark Cox (mjc) fedora-extras-commits at redhat.com
Tue Aug 29 10:08:22 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv5306

Modified Files:
	fc6 
Log Message:
fc6 2002 cve update; easy pickings



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.42
retrieving revision 1.43
diff -u -r1.42 -r1.43
--- fc6	29 Aug 2006 08:22:22 -0000	1.42
+++ fc6	29 Aug 2006 10:08:19 -0000	1.43
@@ -1634,7 +1634,7 @@
 CVE-2002-1650 version (squirrelmail, fixed 1.2.3)
 CVE-2002-1649 version (squirrelmail, fixed 1.2.3)
 CVE-2002-1648 version (squirrelmail, fixed 1.2.3)
-CVE-2002-1642 ** postgresql
+CVE-2002-1642 version (postgresql, fixed 7.2.3)
 CVE-2002-1602 ** screen
 CVE-2002-1594 ** shadow-utils
 CVE-2002-1593 version (httpd, not 2.2)
@@ -1660,7 +1660,7 @@
 CVE-2002-1402 version (postgresql, fixed 7.2.2)
 CVE-2002-1401 ** postgresql
 CVE-2002-1400 version (postgresql, fixed 7.2.2)
-CVE-2002-1399 ** postgresql
+CVE-2002-1399 version (postgresql, fixed 7.2.3)
 CVE-2002-1398 version (postgresql, fixed 7.2.2)
 CVE-2002-1397 ** postgresql
 CVE-2002-1396 version (php, fixed 4.3.0)
@@ -1685,7 +1685,7 @@
 CVE-2002-1368 version (cups, fixed 1.1.18)
 CVE-2002-1367 version (cups, fixed 1.1.18)
 CVE-2002-1366 version (cups, fixed 1.1.18)
-CVE-2002-1364 ** fetchmail
+CVE-2002-1365 ** fetchmail
 CVE-2002-1363 version (libpng, fixed 1.2.6)
 CVE-2002-1356 version (wireshark, fixed after 0.9.7)
 CVE-2002-1355 version (wireshark, fixed after 0.9.7)
@@ -1711,9 +1711,9 @@
 CVE-2002-1227 ** pam
 CVE-2002-1224 version (kde, fixed 3.0.4)
 CVE-2002-1223 version (kdegraphics, fixed 3.0.4)
-CVE-2002-1221 ** bind
-CVE-2002-1220 ** bind
-CVE-2002-1219 ** bind
+CVE-2002-1221 version (bind, not 9)
+CVE-2002-1220 version (bind, not 9)
+CVE-2002-1219 version (bind, not 9)
 CVE-2002-1217 version (tar, fixed 1.13.25)
 CVE-2002-1175 ** fetchmail
 CVE-2002-1174 ** fetchmail
@@ -1721,7 +1721,7 @@
 CVE-2002-1165 ** sendmail
 CVE-2002-1160 ** pam
 CVE-2002-1157 version (httpd, not 2.0)
-CVE-2002-1156 ** httpd 
+CVE-2002-1156 version (httpd, fixed 2.0.43)
 CVE-2002-1154 ** kon2
 CVE-2002-1152 version (kdenetwork, fixed 3.0.3)
 CVE-2002-1151 version (kdenetwork, fixed 3.0.3a)
@@ -1732,7 +1732,7 @@
 CVE-2002-0989 version (gaim, fixed 0.59.1)
 CVE-2002-0986 ** php
 CVE-2002-0985 ** php
-CVE-2002-0972 ** postgresql
+CVE-2002-0972 version (postgresql, fixed 7.2.2)
 CVE-2002-0970 version (kdenetwork, fixed 3.0.3)
 CVE-2002-0935 version (tomcat, fixed 4.1.3)
 CVE-2002-0906 version (sendmail, fxied 8.12.5)
@@ -1774,7 +1774,8 @@
 CVE-2002-0655 version (openssl, not 0.9.8)
 CVE-2002-0655 version (openssl097a, not 0.9.7)
 CVE-2002-0653 version (mod_ssl, not httpd 2.2)
-CVE-2002-0651 ** bind (+resolvers)
+CVE-2002-0651 version (bind, not 9)
+CVE-2002-0651 ** resolvers
 CVE-2002-0640 ** openssh
 CVE-2002-0639 ** openssh
 CVE-2002-0638 ** util-linux
@@ -1803,7 +1804,7 @@
 CVE-2002-0382 ** xchat
 CVE-2002-0380 ** tcpdump
 CVE-2002-0379 ** imap
-CVE-2002-0377 ** gaim
+CVE-2002-0377 version (gaim, fixed 0.58)
 CVE-2002-0374 version (pam_ldap, fixed 144)
 CVE-2002-0363 version (ghostscript, fixed 6.53)
 CVE-2002-0353 version (wireshark, fixed ethereal 0.9.3)
@@ -1816,41 +1817,41 @@
 CVE-2002-0185 ** mod_python
 CVE-2002-0184 version (sudo, fixed 1.6.6)
 CVE-2002-0180 ** webalizer
-CVE-2002-0169 ** docbook
+CVE-2002-0169 ignore (docbook) was RHL only
 CVE-2002-0165 ** logwatch
 CVE-2002-0164 version (XFree86, fixed 4.2.1)
 CVE-2002-0163 version (squid, fixed 20020312)
-CVE-2002-0162 ** logwatch
+CVE-2002-0162 version (logwatch, fixed 2.5)
 CVE-2002-0157 ** nautilus
 CVE-2002-0146 version (fetchmail, fixed 5.9.10)
 CVE-2002-0130 ** efax
 CVE-2002-0129 ** efax
 CVE-2002-0121 version (php, fixed after 4.1.1)
 CVE-2002-0092 version (cve, fixed 1.10.8)
-CVE-2002-0083 ** openssh
+CVE-2002-0083 version (openssh, fixed 3.1)
 CVE-2002-0082 version (mod_ssl, not httpd 2.2)
-CVE-2002-0081 ** php
+CVE-2002-0081 version (php, not 4.2+)
 CVE-2002-0080 ** rsync
-CVE-2002-0069 ** squid
-CVE-2002-0068 ** squid
-CVE-2002-0067 ** squid
+CVE-2002-0069 version (squid, fixed 2.4STABLE4)
+CVE-2002-0068 version (squid, fixed 2.4STABLE4)
+CVE-2002-0067 version (squid, fixed 2.4STABLE4)
 CVE-2002-0063 version (cups, fixed 1.1.14)
 CVE-2002-0062 ** ncurses
 CVE-2002-0060 ** kernel
 CVE-2002-0059 ** zlib and 100 other things
 CVE-2002-0048 ** rsync
 CVE-2002-0046 ** kernel
-CVE-2002-0045 ** openldap
+CVE-2002-0045 version (openldap, fixed 2.0.20)
 CVE-2002-0044 ** enscript
 CVE-2002-0043 version (sudo, fixed 1.6.4)
 CVE-2002-0036 version (krb5, fixed 1.2.5)
-CVE-2002-0029 ** bind
+CVE-2002-0029 version (bind, not 9)
 CVE-2002-0013 ** snmp stuff
 CVE-2002-0012 ** snmp stuff
 CVE-2002-0006 ** xchat
 CVE-2002-0004 ** at
 CVE-2002-0003 ** groff
-CVE-2002-0002 ** stunnel
+CVE-2002-0002 version (stunnel, fixed 3.22)
 CVE-2002-0001 version (mutt, fixed 1.3.25)
 
 older, happened to deal with at same time:

More information about the fedora-extras-commits mailing list