fedora-security/audit fc5,1.422,1.423 fc6,1.174,1.175
Lubomir Kundrak (lkundrak)
fedora-extras-commits at redhat.com
Thu Dec 21 20:01:39 UTC 2006
Author: lkundrak
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv23109
Modified Files:
fc5 fc6
Log Message:
Filled missing pieces
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.422
retrieving revision 1.423
diff -u -r1.422 -r1.423
--- fc5 21 Dec 2006 18:37:47 -0000 1.422
+++ fc5 21 Dec 2006 20:01:39 -0000 1.423
@@ -9,16 +9,16 @@
CVE-2006-6332 ignore (kernel) no support for madwifi
CVE-2006-6305 ignore (net-snmp) already have the backported patch
CVE-2006-6304 ignore (kernel, 2.6.19 only)
-CVE-2006-6303 ** ruby
-CVE-2006-6297 ** kde
+CVE-2006-6303 version (ruby, fixed 1.8.5.2) [since FEDORA-2006-1440]
+CVE-2006-6297 ignore (kdegraphics) just a crash
CVE-2006-6235 backport (gnupg, fixed 1.4.6) [since FEDORA-2006-1405]
CVE-2006-6169 backport (gnupg, fixed 1.4.6) [since FEDORA-2006-1405]
-CVE-2006-6142 ** squirrelmail
+CVE-2006-6142 VULNERABLE (squirrelmail)
CVE-2006-6128 VULNERABLE (kernel, fixed **)
CVE-2006-6107 VULNERABLE (dbus, fixed 1.0.2)
CVE-2006-6106 VULNERABLE (kernel)
CVE-2006-6097 backport (tar) [since FEDORA-2006-6097]
-CVE-2006-6077 ** firefox
+CVE-2006-6077 VULNERABLE (firefox)
CVE-2006-6060 ignore (kernel, fixed 2.6.19-rc2) no NTFS support
CVE-2006-6058 VULNERABLE (kernel, fixed **)
CVE-2006-6057 ignore (kernel, fixed **) separate modules
@@ -29,7 +29,7 @@
CVE-2006-5973 VULNERABLE (dovecot, fixed 1.0.rc15) #216508
CVE-2006-5925 backport (elinks) #215734 [since FEDORA-2006-1277]
CVE-2006-5871 version (kernel, fixed 2.6.10)
-CVE-2006-5868 ** ImageMagick, fixed 6.2.4.5?
+CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9? 6.2.4.5?) mig mess, waiting for upstream to clarify
CVE-2006-5864 VULNERABLE (evince) #217672
CVE-2006-5823 backport (kernel) [since FEDORA-2006-1221]
CVE-2006-5794 backport (openssh, fixed 4.5) #214641 [since FEDORA-2006-1214]
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.174
retrieving revision 1.175
diff -u -r1.174 -r1.175
--- fc6 21 Dec 2006 18:37:47 -0000 1.174
+++ fc6 21 Dec 2006 20:01:39 -0000 1.175
@@ -9,16 +9,16 @@
CVE-2006-6332 ignore (kernel) no support for madwifi
CVE-2006-6305 ignore (net-snmp) already have the backported patch
CVE-2006-6304 ignore (kernel, 2.6.19 only)
-CVE-2006-6303 ** ruby
-CVE-2006-6297 ** kde
+CVE-2006-6303 version (ruby, fixed 1.8.5.2) [since FEDORA-2006-1441]
+CVE-2006-6297 ignore (kdegraphics) just a crash
CVE-2006-6235 backport (gnupg, fixed 1.4.6) [since FEDORA-2006-1406]
CVE-2006-6169 backport (gnupg, fixed 1.4.6) [since FEDORA-2006-1406]
-CVE-2006-6142 ** squirrelmail
+CVE-2006-6142 VULNERABLE (squirrelmail)
CVE-2006-6128 VULNERABLE (kernel, fixed **)
CVE-2006-6107 VULNERABLE (dbus, fixed 1.0.2) #219665
CVE-2006-6106 VULNERABLE (kernel)
CVE-2006-6097 backport (tar) [since FEDORA-2006-1393]
-CVE-2006-6077 ** firefox
+CVE-2006-6077 VULNERABLE (firefox)
CVE-2006-6060 ignore (kernel, fixed 2.6.19-rc2) no NTFS support
CVE-2006-6058 VULNERABLE (kernel, fixed **)
CVE-2006-6057 VULNERABLE (kernel, fixed **)
@@ -29,7 +29,7 @@
CVE-2006-5973 VULNERABLE (dovecot, fixed 1.0.rc15) #216508
CVE-2006-5925 backport (elinks) [since FEDORA-2006-1278] but was never vulneable as didn't have smbclient support
CVE-2006-5871 version (kernel, fixed 2.6.10)
-CVE-2006-5868 ** ImageMagick, fixed 6.2.4.5?
+CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9? 6.2.4.5?) mig mess, waiting for upstream to clarify
CVE-2006-5864 VULNERABLE (evince) #217672
CVE-2006-5823 backport (kernel) [since FEDORA-2006-1223]
CVE-2006-5794 backport (openssh, fixed 4.5) #214641 [since FEDORA-2006-1215]
More information about the fedora-extras-commits
mailing list