fedora-security/audit fc5,1.332,1.333 fc6,1.88,1.89

Mark Cox (mjc) fedora-extras-commits at redhat.com
Mon Sep 25 10:23:51 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv21982

Modified Files:
	fc5 fc6 
Log Message:
Fix dates; it isn't Thursday just because my planner is open on Thursday
Fix FC6; go through rawhide and dist-fc6 and check what has changed,
make bugs blockers



Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.332
retrieving revision 1.333
diff -u -r1.332 -r1.333
--- fc5	25 Sep 2006 08:42:48 -0000	1.332
+++ fc5	25 Sep 2006 10:23:48 -0000	1.333
@@ -1,5 +1,5 @@
-p to date CVE as of CVE email 20060926
-Up to date FC5 as of 20060926
+p to date CVE as of CVE email 20060924
+Up to date FC5 as of 20060924
 
 ** are items that need attention
 


Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.88
retrieving revision 1.89
diff -u -r1.88 -r1.89
--- fc6	25 Sep 2006 08:42:48 -0000	1.88
+++ fc6	25 Sep 2006 10:23:48 -0000	1.89
@@ -1,12 +1,13 @@
-Up to date CVE as of CVE email 20060926
+Up to date CVE as of CVE email 20060924
 Up to date FC6 as of Test3
+Up to date dist-fc6 rawhide as of 20060925
 
 ** are items that need attention
 
 CVE-2006-4790 VULNERABLE (gnutls, fixed 1.4.4) [backported to 1.4.1-2 in rawhide]
 CVE-2006-4663 ignore (kernel) not a vulnerability
-CVE-2006-4625 VULNERABLE (php)
-CVE-2006-4624 VULNERABLE (mailman, fixed 2.1.9rc1) bz#206607
+CVE-2006-4625 ignore (php) safe mode isn't safe
+CVE-2006-4624 VULNERABLE (mailman, fixed 2.1.9rc1) bz#206607 [FC6Blocker]
 CVE-2006-4623 version (kernel, fixed 2.6.18-rc1)
 CVE-2006-4600 version (openldap, fixed 2.3.25)
 CVE-2006-4571 VULNERABLE (thunderbird, fixed 1.5.0.7) [in rawhide]
@@ -36,26 +37,26 @@
 CVE-2006-4434 ignore (sendmail, fixed 8.13.8) not exploitable
 CVE-2006-4433 version (php, fixed 5.1.4)
 CVE-2006-4380 version (mysql, fixed 4.1.13)
-CVE-2006-4340 VULNERABLE (nss, fixed 3.11.3) bz#206608
+CVE-2006-4340 VULNERABLE (nss, fixed 3.11.3) bz#206608 [in rawhide]
 CVE-2006-4339 backport (openssl, fixed 0.9.8c)
 CVE-2006-4339 backport (openssl097)
-CVE-2006-4338 VULNERABLE (gzip)
-CVE-2006-4337 VULNERABLE (gzip)
-CVE-2006-4336 VULNERABLE (gzip)
-CVE-2006-4335 VULNERABLE (gzip)
-CVE-2006-4334 VULNERABLE (gzip)
-CVE-2006-4433 VULNERABLE (php, fixed 5.1.4)
+CVE-2006-4338 VULNERABLE (gzip) [in rawhide]
+CVE-2006-4337 VULNERABLE (gzip) [in rawhide]
+CVE-2006-4336 VULNERABLE (gzip) [in rawhide]
+CVE-2006-4335 VULNERABLE (gzip) [in rawhide]
+CVE-2006-4334 VULNERABLE (gzip) [in rawhide]
+CVE-2006-4433 version (php, fixed 5.1.4)
 CVE-2006-4333 version (wireshark, fixed 0.99.3)
 CVE-2006-4332 version (wireshark, fixed 0.99.3)
 CVE-2006-4331 version (wireshark, fixed 0.99.3)
 CVE-2006-4330 version (wireshark, fixed 0.99.3)
-CVE-2006-4310 VULNERABLE (firefox)
+CVE-2006-4310 ignore (firefox) crash only
 CVE-2006-4262 backport (cscope) 
 CVE-2006-4261 VULNERABLE (firefox)
 CVE-2006-4253 VULNERABLE (firefox, fixed 1.5.0.7) [in rawhide]
 CVE-2006-4253 VULNERABLE (thunderbird, fixed 1.5.0.7) [in rawhide]
-CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203428
-CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203434
+CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203428 [FC6Blocker]
+CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.25,5.1.12) bz#203434 [FC6Blocker]
 CVE-2006-4808 ignore (binutils, gas fixed 20050714) this is a bug
 CVE-2006-4807 ignore (binutils, gas fixed 20050721) this is a bug
 CVE-2006-4146 backport (gdb)
@@ -64,7 +65,7 @@
 CVE-2006-4096 backport (bind)
 CVE-2006-4095 backport (bind)
 CVE-2006-4093 version (kernel, fixed 2.6.17.9, fixed 2.6.18-rc5)
-CVE-2006-4031 VULNERABLE (mysql, fixed 5.0.24) bz#202675
+CVE-2006-4031 VULNERABLE (mysql, fixed 5.0.24) bz#202675 [FC6Blocker]
 CVE-2006-4020 version (php, fixed 5.1.5)
 CVE-2006-4019 version (squirrelmail, fixed 1.4.8)
 CVE-2006-3918 version (httpd, fixed 2.2.2)
@@ -102,15 +103,15 @@
 CVE-2006-3743 backport (ImageMagick)
 CVE-2006-3742 backport (kdebase) inside kdebase-3.5.4-2-redhat.patch
 CVE-2006-3741 ignore (kernel, fixed 2.6.18-rc7) ia64 only
-CVE-2006-3740 VULNERABLE (xorg-x11) bz#206609
-CVE-2006-3739 VULNERABLE (xorg-x11) bz#206609
+CVE-2006-3740 VULNERABLE (libXfont, fixed 1.2.2) bz#206609 [in rawhide]
+CVE-2006-3739 VULNERABLE (libXfont, fixed 1.2.2) bz#206609 [in rawhide]
 CVE-2006-3731 ignore (firefox) just a user complicit crash
 CVE-2006-3694 version (ruby, fixed 1.8.5)
 CVE-2006-3677 version (firefox, fixed 1.5.0.5)
 CVE-2006-3677 version (thunderbird, fixed 1.5.0.5)
 CVE-2006-3672 ignore (konqueror) just a crash
 CVE-2006-3665 ignore (squirrelmail) don't enable register_globals!
-CVE-2006-3636 VULNERABLE (mailman, fixed 2.1.9) bz#206607
+CVE-2006-3636 VULNERABLE (mailman, fixed 2.1.9) bz#206607 [FC6Blocker]
 CVE-2006-3634 ignore (kernel, fixed 2.6.17.8) s390 only
 CVE-2006-3632 version (wireshark, fixed 0.99.2)
 CVE-2006-3631 version (wireshark, fixed 0.99.2)
@@ -158,7 +159,7 @@
 CVE-2006-3016 version (php, fixed 5.1.3)
 CVE-2006-3011 ignore (php) safe mode isn't safe
 CVE-2006-3005 ignore (libjpeg) not a vuln
-CVE-2006-2941 VULNERABLE (mailman, fixed 2.1.9) bz#206607
+CVE-2006-2941 VULNERABLE (mailman, fixed 2.1.9) bz#206607 [FC6Blocker]
 CVE-2006-2936 version (kernel, fixed 2.6.17.7)
 CVE-2006-2935 version (kernel, fixed 2.6.17.7)
 CVE-2006-2934 version (kernel, fixed 2.6.17.3)

More information about the fedora-extras-commits mailing list