fedora-security/audit fc6,1.176,1.177 fc5,1.424,1.425

Lubomir Kundrak (lkundrak) fedora-extras-commits at redhat.com
Fri Dec 22 18:04:08 UTC 2006 

Author: lkundrak

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv7149

Modified Files:
	fc6 fc5 
Log Message:
imagemagick and lha


Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.176
retrieving revision 1.177
diff -u -r1.176 -r1.177
--- fc6	22 Dec 2006 15:49:56 -0000	1.176
+++ fc6	22 Dec 2006 18:04:07 -0000	1.177
@@ -29,7 +29,7 @@
 CVE-2006-5973 VULNERABLE (dovecot, fixed 1.0.rc15) #216508
 CVE-2006-5925 backport (elinks) [since FEDORA-2006-1278] but was never vulneable as didn't have smbclient support
 CVE-2006-5871 version (kernel, fixed 2.6.10)
-CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9? 6.2.4.5?) mig mess, waiting for upstream to clarify
+CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9.1) #217560
 CVE-2006-5864 VULNERABLE (evince) #217672
 CVE-2006-5823 backport (kernel) [since FEDORA-2006-1223]
 CVE-2006-5794 backport (openssh, fixed 4.5) #214641 [since FEDORA-2006-1215]
@@ -137,10 +137,10 @@
 CVE-2006-4340 version (nss, fixed 3.11.3)
 CVE-2006-4339 backport (openssl, fixed 0.9.8c)
 CVE-2006-4339 backport (openssl097)
-CVE-2006-4338 backport (gzip)
-CVE-2006-4337 backport (gzip)
+CVE-2006-4338 backport (gzip) lha still VULNERABLE to the same flaw
+CVE-2006-4337 backport (gzip) lha still VULNERABLE to the same flaw
 CVE-2006-4336 backport (gzip)
-CVE-2006-4335 backport (gzip)
+CVE-2006-4335 backport (gzip) lha still VULNERABLE to the same flaw
 CVE-2006-4334 backport (gzip)
 CVE-2006-4433 version (php, fixed 5.1.4)
 CVE-2006-4333 version (wireshark, fixed 0.99.3)


Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.424
retrieving revision 1.425
diff -u -r1.424 -r1.425
--- fc5	22 Dec 2006 15:49:38 -0000	1.424
+++ fc5	22 Dec 2006 18:04:07 -0000	1.425
@@ -29,7 +29,7 @@
 CVE-2006-5973 VULNERABLE (dovecot, fixed 1.0.rc15) #216508
 CVE-2006-5925 backport (elinks) #215734 [since FEDORA-2006-1277]
 CVE-2006-5871 version (kernel, fixed 2.6.10)
-CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9? 6.2.4.5?) mig mess, waiting for upstream to clarify
+CVE-2006-5868 VULNERABLE (ImageMagick, fixed 6.2.9.1) #217560
 CVE-2006-5864 VULNERABLE (evince) #217672
 CVE-2006-5823 backport (kernel) [since FEDORA-2006-1221]
 CVE-2006-5794 backport (openssh, fixed 4.5) #214641 [since FEDORA-2006-1214]

More information about the fedora-extras-commits mailing list