fedora-security/audit fc4,1.343,1.344 fc5,1.258,1.259
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Mon Jul 31 10:31:04 UTC 2006
- Previous message (by thread): rpms/perl-Font-TTF/FC-5 .cvsignore, 1.3, 1.4 perl-Font-TTF.spec, 1.3, 1.4 sources, 1.3, 1.4
- Next message (by thread): rpms/sylpheed/devel .cvsignore, 1.20, 1.21 sources, 1.20, 1.21 sylpheed.spec, 1.36, 1.37 sylpheed-2.2.6-summaryview-crash.patch, 1.1, NONE sylpheed-2.2.6-tr-crash.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16018
Modified Files:
fc4 fc5
Log Message:
Busy with Apache last week, so catch up on a weeks notices
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.343
retrieving revision 1.344
diff -u -r1.343 -r1.344
--- fc4 26 Jul 2006 21:12:14 -0000 1.343
+++ fc4 31 Jul 2006 10:31:02 -0000 1.344
@@ -1,10 +1,28 @@
-Up to date CVE as of CVE email 20060723
-Up to date FC4 as of 20060723
+Up to date CVE as of CVE email 20060730
+Up to date FC4 as of 20060730
** are items that need attention
+CVE-2006-3918 ** httpd, fixed 2.0.58
+CVE-2006-3879 ** mikmod
+CVE-2006-3835 VULNERABLE (tomcat, fixed 5.5.17)
+CVE-2006-3812 ** firefox/seamonkey/thunderbird
+CVE-2006-3811 ** firefox/seamonkey/thunderbird
+CVE-2006-3810 ** firefox/seamonkey/thunderbird
+CVE-2006-3809 ** firefox/seamonkey/thunderbird
+CVE-2006-3808 ** firefox/seamonkey/thunderbird
+CVE-2006-3807 ** firefox/seamonkey/thunderbird
+CVE-2006-3806 ** firefox/seamonkey/thunderbird
+CVE-2006-3805 ** firefox/seamonkey/thunderbird
+CVE-2006-3804 ** firefox/seamonkey/thunderbird
+CVE-2006-3803 ** firefox/seamonkey/thunderbird
+CVE-2006-3802 ** firefox/seamonkey/thunderbird
+CVE-2006-3801 ** firefox/seamonkey/thunderbird
+CVE-2006-3747 backport (httpd, fixed 2.0.59) [since FEDORA-2006-862]
+CVE-2006-3746 ** gnupg
CVE-2006-3731 ignore (firefox) just a user complicit crash
CVE-2006-3694 backport (ruby, fixed 1.8.5) #199538 #199543 [since FEDORA-2006-842]
+CVE-2006-3677 ** firefox/seamonkey
CVE-2006-3672 ignore (konqueror) just a crash
CVE-2006-3665 ignore (squirrelmail) don't enable register_globals!
CVE-2006-3632 VULNERABLE (ethereal, fixed wireshark-0.99.2)
@@ -14,6 +32,7 @@
CVE-2006-3628 VULNERABLE (ethereal, fixed wireshark-0.99.2)
CVE-2006-3627 VULNERABLE (ethereal, fixed wireshark-0.99.2)
CVE-2006-3626 VULNERABLE (kernel, fixed 2.6.17.6)
+CVE-2006-3619 ** gcc/fastjar
CVE-2006-3486 ignore (mysql) not exploitable
CVE-2006-3469 VULNERABLE (mysql)
CVE-2006-3468 VULNERABLE (kernel)
@@ -39,6 +58,7 @@
CVE-2006-2936 VULNERABLE (kernel, fixed 2.6.16.27, fixed 2.6.17.7)
CVE-2006-2935 VULNERABLE (kernel)
CVE-2006-2934 version (kernel, fixed 2.6.17.3) [since FEDORA-2006-769]
+CVE-2006-2933 version (kde, not 3.2+)
CVE-2006-2916 ignore (arts) not shipped setuid
CVE-2006-2906 VULNERABLE (gd) #194520
CVE-2006-2894 VULNERABLE (firefox)
@@ -381,7 +401,7 @@
CVE-2005-4130 ignore (HelixPlayer) not verified
CVE-2005-4126 ignore (HelixPlayer) not verified
CVE-2005-4077 backport (curl) [since FEDORA-2005-1137]
-CVE-2005-3964 VULNERABLE (openmotif) #174815
+CVE-2005-3964 backport (openmotif) #174815 [since FEDORA-2006-854]
CVE-2005-3962 backport (perl) [since FEDORA-2005-1144]
CVE-2005-3912 backport (perl) [since FEDORA-2005-1144]
CVE-2005-3896 ignore (mozilla) recoverable DoS only
@@ -499,6 +519,7 @@
CVE-2005-3164 version (tomcat, not 5)
CVE-2005-3120 backport (lynx) [since FEDORA-2005-994]
CVE-2005-3119 version (kernel, fixed 2.6.13.4 at least) [since FEDORA-2005-1067] was backport since FEDORA-2005-1013
+CVE-2006-3113 ** firefox/seamonkey/thunderbird
CVE-2005-3110 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
CVE-2005-3109 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
CVE-2005-3108 version (kernel, fixed 2.6.12) [since FEDORA-2005-510]
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.258
retrieving revision 1.259
diff -u -r1.258 -r1.259
--- fc5 26 Jul 2006 21:12:14 -0000 1.258
+++ fc5 31 Jul 2006 10:31:02 -0000 1.259
@@ -1,19 +1,38 @@
-Up to date CVE as of CVE email 20060723
-Up to date FC5 as of 20060723
+Up to date CVE as of CVE email 20060730
+Up to date FC5 as of 20060730
** are items that need attention
+CVE-2006-3918 ** httpd, fixed 2.2.2
+CVE-2006-3879 ** mikmod
+CVE-2006-3835 VULNERABLE (tomcat, fixed 5.5.17)
+CVE-2006-3812 ** firefox/seamonkey/thunderbird
+CVE-2006-3811 ** firefox/seamonkey/thunderbird
+CVE-2006-3810 ** firefox/seamonkey/thunderbird
+CVE-2006-3809 ** firefox/seamonkey/thunderbird
+CVE-2006-3808 ** firefox/seamonkey/thunderbird
+CVE-2006-3807 ** firefox/seamonkey/thunderbird
+CVE-2006-3806 ** firefox/seamonkey/thunderbird
+CVE-2006-3805 ** firefox/seamonkey/thunderbird
+CVE-2006-3804 ** firefox/seamonkey/thunderbird
+CVE-2006-3803 ** firefox/seamonkey/thunderbird
+CVE-2006-3802 ** firefox/seamonkey/thunderbird
+CVE-2006-3801 ** firefox/seamonkey/thunderbird
+CVE-2006-3747 backport (httpd, fixed 2.2.3) [since FEDORA-2006-863]
+CVE-2006-3746 ** gnupg
CVE-2006-3731 ignore (firefox) just a user complicit crash
CVE-2006-3694 backport (ruby, fixed 1.8.5) #199538 #199543 [since FEDORA-2006-849]
+CVE-2006-3677 ** firefox/seamonkey
CVE-2006-3672 ignore (konqueror) just a crash
CVE-2006-3665 ignore (squirrelmail) don't enable register_globals!
-CVE-2006-3632 VULNERABLE (ethereal, fixed wireshark-0.99.2)
-CVE-2006-3631 VULNERABLE (ethereal, fixed wireshark-0.99.2)
-CVE-2006-3630 VULNERABLE (ethereal, fixed wireshark-0.99.2)
-CVE-2006-3629 VULNERABLE (ethereal, fixed wireshark-0.99.2)
-CVE-2006-3628 VULNERABLE (ethereal, fixed wireshark-0.99.2)
-CVE-2006-3627 VULNERABLE (ethereal, fixed wireshark-0.99.2)
+CVE-2006-3632 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
+CVE-2006-3631 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
+CVE-2006-3630 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
+CVE-2006-3629 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
+CVE-2006-3628 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
+CVE-2006-3627 version (ethereal, fixed wireshark-0.99.2) [since FEDORA-2006-860]
CVE-2006-3626 VULNERABLE (kernel, fixed 2.6.17.6)
+CVE-2006-3619 ** gcc/fastjar
CVE-2006-3486 ignore (mysql, fixed 5.0.23) not exploitable
CVE-2006-3469 VULNERABLE (mysql)
CVE-2006-3468 VULNERABLE (kernel)
@@ -29,6 +48,7 @@
CVE-2006-3145 VULNERABLE (netpbm, fixed 10.34)
CVE-2006-3127 version (nss, only affected 3.11) [since FEDORA-2006-728]
CVE-2006-3117 backport (openoffice.org, fixed 2.0.3) [since FEDORA-2006-770]
+CVE-2006-3113 ** firefox/seamonkey/thunderbird
CVE-2006-3085 version (kernel, fixed 2.6.16.21, fixed 2.6.17.1) [since FEDORA-2006-735]
CVE-2006-3082 version (gnupg, fixed 1.4.4) #195946 [since FEDORA-2006-755]
CVE-2006-3081 version (mysql, fixed 5.1.18) [since FEDORA-2006-702]
@@ -40,6 +60,7 @@
CVE-2006-2936 VULNERABLE (kernel, fixed 2.6.16.27, fixed 2.6.17.7)
CVE-2006-2935 VULNERABLE (kernel)
CVE-2006-2934 version (kernel, fixed 2.6.17.3) [since FEDORA-2006-772]
+CVE-2006-2933 version (kde, not 3.2+)
CVE-2006-2916 ignore (arts) not shipped setuid
CVE-2006-2906 VULNERABLE (gd) #194520
CVE-2006-2894 VULNERABLE (firefox)
- Previous message (by thread): rpms/perl-Font-TTF/FC-5 .cvsignore, 1.3, 1.4 perl-Font-TTF.spec, 1.3, 1.4 sources, 1.3, 1.4
- Next message (by thread): rpms/sylpheed/devel .cvsignore, 1.20, 1.21 sources, 1.20, 1.21 sylpheed.spec, 1.36, 1.37 sylpheed-2.2.6-summaryview-crash.patch, 1.1, NONE sylpheed-2.2.6-tr-crash.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list