fedora-security/audit fc4,1.187,1.188
Marcel Holtmann (holtmann)
fedora-extras-commits at redhat.com
Mon Jun 19 17:39:05 UTC 2006
Author: holtmann
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv815
Modified Files:
fc4
Log Message:
Update with FEDORA-2006-245 (kernel)
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.187
retrieving revision 1.188
diff -u -r1.187 -r1.188
--- fc4 4 Apr 2006 19:18:05 -0000 1.187
+++ fc4 6 Apr 2006 14:48:38 -0000 1.188
@@ -1,5 +1,6 @@
Up to date CVE as of CVE email 20060330
Up to date FC4 as of 20060330
+Up to date kernel as of 20060405
** are items that need attention
@@ -8,20 +9,20 @@
CVE-2006-1547 VULNERABLE (struts, fixed 1.2.9) bz#187544
CVE-2006-1546 VULNERABLE (struts, fixed 1.2.9) bz#187544
CVE-2006-1542 VULNERABLE (python) bz#169046
-CVE-2006-1368 ** kernel
+CVE-2006-1368 version (kernel, fixed 2.6.16) [since FEDORA-2006-245]
CVE-2006-1354 VULNERABLE (freeradius) bz#186084
-CVE-2006-1343 ** kernel
-CVE-2006-1342 ** kernel
+CVE-2006-1343 ignore (kernel) not vulnerable
+CVE-2006-1342 VULNERABLE (kernel)
CVE-2006-1273 ignore (firefox) This is an IE only issue
CVE-2006-1244 ignore (xpdf) duplicate of other cve named issues
-CVE-2006-1242 ** kernel
+CVE-2006-1242 VULNERABLE (kernel)
CVE-2006-1095 ignore (mod_python, 3.2.7 only)
CVE-2006-1079 ignore (httpd) not a vulnerability
CVE-2006-1078 ignore (httpd) not a vulnerability
-CVE-2006-1066 ** kernel
+CVE-2006-1066 version (kernel, fixed 2.6.16) [since FEDORA-2006-245]
CVE-2006-1061 version (curl, 7.15.0 - 7.15.2 only)
CVE-2006-1059 version (samba)
-CVE-2006-1052 ** kernel
+CVE-2006-1052 version (kernel, fixed 2.6.16) patch-2.6.16-rc6 [since FEDORA-2006-245]
CVE-2006-1045 VULNERABLE (thunderbird)
CVE-2006-1015 ignore (php) safe mode isn't safe
CVE-2006-1014 ignore (php) safe mode isn't safe
@@ -30,17 +31,17 @@
CVE-2006-0836 version (thunderbird, 1.5 only)
CVE-2006-0746 VULNERABLE (kpdf) bz#184308
CVE-2006-0745 version (xorg-x11) not fc4
-CVE-2006-0744 ** kernel
-CVE-2006-0742 VULNERABLE (kernel)
-CVE-2006-0741 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
+CVE-2006-0744 VULNERABLE (kernel)
+CVE-2006-0742 version (kernel, fixed 2.6.16) patch-2.6.16-rc6 [since FEDORA-2006-245]
+CVE-2006-0741 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-131
CVE-2006-0730 version (dovecot, 1.0beta[12] only)
CVE-2006-0678 version (postgresql, 8.1 only)
CVE-2006-0645 backport (gnutls) [since FEDORA-2006-107]
CVE-2006-0591 version (postgresql, fixed 8.0.6) [since FEDORA-2005-021]
CVE-2006-0576 VULNERABLE (oprofile)
-CVE-2006-0557 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
-CVE-2006-0555 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
-CVE-2006-0554 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
+CVE-2006-0557 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-131
+CVE-2006-0555 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-131
+CVE-2006-0554 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-131
CVE-2006-0553 version (postgresql, 8.1 only)
CVE-2006-0528 version (evolution, 2.3 and above)
CVE-2006-0496 VULNERABLE (mozilla)
@@ -48,7 +49,7 @@
CVE-2006-0482 ignore (kernel) sparc only
CVE-2006-0481 version (libpng, 1.2.7 only)
CVE-2006-0459 version (flex) by inspection
-CVE-2006-0457 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
+CVE-2006-0457 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-131
CVE-2006-0455 version (gnupg, fixed 1.4.2.1) [since FEDORA-2006-116]
CVE-2006-0454 backport (kernel, fixed 2.6.15.3) [since FEDORA-2006-102] patch-2.6.15.3
CVE-2006-0405 version (libtiff, 3.8.0 only)
@@ -94,15 +95,15 @@
CVE-2006-0188 version (squirrelmail, fixed 1.4.6) [since FEDORA-2006-133]
CVE-2006-0097 ignore (php) Windows only
CVE-2006-0096 ignore (kernel) minor and requires root
-CVE-2006-0095 backport (kernel) [since FEDORA-2006-102] patch-2.6.15.5
+CVE-2006-0095 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-102
CVE-2006-0082 version (ImageMagick, not 6.2.2.0)
CVE-2006-0058 version (sendmail, fixed 8.13.6) [since FEDORA-2006-194]
CVE-2006-0052 VULNERABLE (mailman, fixed 2.1.6) bz#187421
CVE-2006-0049 version (gnupg, fixed 1.4.2.2) [since FEDORA-2006-147]
CVE-2006-0040 VULNERABLE (gtkhtml)
-CVE-2006-0037 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.5
-CVE-2006-0036 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.5
-CVE-2006-0035 backport (kernel) [since FEDORA-2006-077] patch-2.6.15.5
+CVE-2006-0037 version (kernel, fixed 2.6.15.5, only 2.6.14 and 2.6.15) [since FEDORA-2006-245] was backport since FEDORA-2006-077
+CVE-2006-0036 version (kernel, fixed 2.6.15.5, only 2.6.14 and 2.6.15) [since FEDORA-2006-245] was backport since FEDORA-2006-077
+CVE-2006-0035 version (kernel, fixed 2.6.15.5) [since FEDORA-2006-245] was backport since FEDORA-2006-077
CVE-2006-0019 version (kdelibs, fixed 3.5.1) [since FEDORA-2006-090] was backport since FEDORA-2006-050
CVE-2005-4746 version (freeradius) we don't build vulnerable bits
CVE-2005-4745 version (freeradius) we don't build vulnerable bits
@@ -198,7 +199,7 @@
CVE-2005-3359 version (kernel, fixed 2.6.14) [since FEDORA-2005-1067]
CVE-2005-3358 version (kernel, fixed 2.6.11)
CVE-2005-3357 backport (httpd, fixed 2.0.56) [since FEDORA-2006-052]
-CVE-2005-3356 backport (kernel) [since FEDORA-2006-077]
+CVE-2005-3356 version (kernel, fixed 2.6.16) [since FEDORA-2006-245] was backport since FEDORA-2006-077
CVE-2005-3353 backport (php) [since FEDORA-2005-1062]
CVE-2005-3352 backport (httpd, fixed 2.0.56) [since FEDORA-2006-052]
CVE-2005-3351 backport (spamassassin) [since FEDORA-2005-1066]
More information about the fedora-extras-commits
mailing list