fedora-security/audit fc4,1.341,1.342 fc5,1.256,1.257
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Mon Jul 24 09:11:09 UTC 2006
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31030
Modified Files:
fc4 fc5
Log Message:
Quagga and Ruby updates
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.341
retrieving revision 1.342
diff -u -r1.341 -r1.342
--- fc4 21 Jul 2006 14:00:10 -0000 1.341
+++ fc4 24 Jul 2006 09:11:06 -0000 1.342
@@ -1,10 +1,10 @@
-Up to date CVE as of CVE email 20060720
-Up to date FC4 as of 20060720
+Up to date CVE as of CVE email 20060723
+Up to date FC4 as of 20060723
** are items that need attention
CVE-2006-3731 ignore (firefox) just a user complicit crash
-CVE-2006-3694 VULNERABLE (ruby, fixed 1.8.5) #199538 #199543
+CVE-2006-3694 backport (ruby, fixed 1.8.5) #199538 #199543 [since FEDORA-2006-842]
CVE-2006-3672 ignore (konqueror) just a crash
CVE-2006-3665 ignore (squirrelmail) don't enable register_globals!
CVE-2006-3632 VULNERABLE (ethereal, fixed wireshark-0.99.2)
@@ -106,13 +106,13 @@
CVE-2006-2332 ignore (firefox) disputed
CVE-2006-2314 version (postgresql, fixed 8.0.8) [since FEDORA-2006-579]
CVE-2006-2313 version (postgresql, fixed 8.0.8) [since FEDORA-2006-579]
-CVE-2006-2276 VULNERABLE (quagga) #191377
+CVE-2006-2276 version (quagga) #191377 [since FEDORA-2006-843]
CVE-2006-2275 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-573]
CVE-2006-2274 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-573]
CVE-2006-2272 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-573]
CVE-2006-2271 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-573]
-CVE-2006-2224 VULNERABLE (quagga) #191085
-CVE-2006-2223 VULNERABLE (quagga) #191081
+CVE-2006-2224 version (quagga, fixed 0.98.6) #191085 [since FEDORA-2006-843]
+CVE-2006-2223 version (quagga, fixed 0.98.6) #191081 [since FEDORA-2006-843]
CVE-2006-2199 backport (openoffice.org, fixed 2.0.3) [since FEDORA-2006-764]
CVE-2006-2198 backport (openoffice.org, fixed 2.0.3) [since FEDORA-2006-764]
CVE-2006-2194 ignore (ppp) winbind pluging not shipped
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.256
retrieving revision 1.257
diff -u -r1.256 -r1.257
--- fc5 21 Jul 2006 14:00:10 -0000 1.256
+++ fc5 24 Jul 2006 09:11:06 -0000 1.257
@@ -1,10 +1,10 @@
-Up to date CVE as of CVE email 20060720
-Up to date FC5 as of 20060720
+Up to date CVE as of CVE email 20060723
+Up to date FC5 as of 20060723
** are items that need attention
CVE-2006-3731 ignore (firefox) just a user complicit crash
-CVE-2006-3694 VULNERABLE (ruby, fixed 1.8.5) #199538 #199543
+CVE-2006-3694 backport (ruby, fixed 1.8.5) #199538 #199543 [since FEDORA-2006-849]
CVE-2006-3672 ignore (konqueror) just a crash
CVE-2006-3665 ignore (squirrelmail) don't enable register_globals!
CVE-2006-3632 VULNERABLE (ethereal, fixed wireshark-0.99.2)
@@ -104,13 +104,13 @@
CVE-2006-2332 ignore (firefox) disputed
CVE-2006-2314 version (postgresql, fixed 8.1.4) [since FEODRA-2006-578] [since FEDORA-2006-578]
CVE-2006-2313 version (postgresql, fixed 8.1.4) [since FEODRA-2006-578] [since FEDORA-2006-578]
-CVE-2006-2276 VULNERABLE (quagga) #191377
+CVE-2006-2276 version (quagga, fixed 0.98.6) #191377 [since FEDORA-2006-845]
CVE-2006-2275 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-572]
CVE-2006-2274 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-572]
CVE-2006-2272 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-572]
CVE-2006-2271 version (kernel, fixed 2.6.16.15) [since FEDORA-2006-572]
-CVE-2006-2224 VULNERABLE (quagga) #191085
-CVE-2006-2223 VULNERABLE (quagga) #191081
+CVE-2006-2224 version (quagga, fixed 0.98.6) #191085 [since FEDORA-2006-845]
+CVE-2006-2223 version (quagga, fixed 0.98.6) #191081 [since FEDORA-2006-845]
CVE-2006-2199 backport (openoffice.org, fixed 2.0.3) [since FEDORA-2006-770]
CVE-2006-2198 backport (openoffice.org, fixed 2.0.3) [since FEDORA-2006-770]
CVE-2006-2194 ignore (ppp) pppd not suid
More information about the fedora-extras-commits
mailing list