fedora-security/audit fc6,1.238,1.239 fc7,1.69,1.70

Lubomir Kundrak (lkundrak) fedora-extras-commits at redhat.com
Wed Aug 15 07:17:14 UTC 2007 

Author: lkundrak

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv26082

Modified Files:
	fc6 fc7 
Log Message:
Up to date as of todays CVENEW



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.238
retrieving revision 1.239
diff -u -r1.238 -r1.239
--- fc6	13 Aug 2007 13:05:46 -0000	1.238
+++ fc6	15 Aug 2007 07:17:12 -0000	1.239
@@ -4,9 +4,11 @@
 # *CVE are items that need verification for Fedora Core 6
 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
 
-# Up to date CVE as of CVE email 20070808
+# Up to date CVE as of CVE email 20070814
 # Up to date FC6 as of 20070808
 
+GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
+CVE-2007-4357 ignore (firefox) status bar can be overwrittten
 CVE-2007-4255 ignore (php) msql extension not shipped
 CVE-2007-4251 ignore (openoffice.org) just a crash
 CVE-2007-4229 ignore (kdebase) just an ASSERT fail
@@ -17,6 +19,7 @@
 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614]
 CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux
 CVE-2007-3961 ignore (gftp) off-by-one error in fsplib
+CVE-2007-3852 VULNERABLE (sysstat) #252296
 CVE-2007-3845 ignore (firefox) windows specific
 CVE-2007-3844 VULNERABLE (firefox) #250648 "fixed on next update"
 CVE-2007-3843 VULNERABLE (kernel) #246595


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.69
retrieving revision 1.70
diff -u -r1.69 -r1.70
--- fc7	13 Aug 2007 13:05:46 -0000	1.69
+++ fc7	15 Aug 2007 07:17:12 -0000	1.70
@@ -5,9 +5,13 @@
 # (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
 # A couple of first F7 updates were marked as FEDORA-2007-0001
 
-# Up to date CVE as of CVE email 20070808
+# Up to date CVE as of CVE email 20070814
 # Up to date FC7 as of 20070808
 
+GENERIC-MAP-NOMATCH VULNERABLE (tomboy) #252294
+CVE-2007-4357 ignore (firefox) status bar can be overwrittten
+CVE-2007-4323 VULNERABLE (denyhosts) #252291
+CVE-2007-4321 VULNERABLE (fail2ban) #252290
 CVE-2007-4255 ignore (php) msql extension not shipped
 CVE-2007-4251 ignore (openoffice.org) just a crash
 CVE-2007-4229 ignore (kdebase) just an ASSERT fail
@@ -23,6 +27,7 @@
 CVE-2007-4029 VULNERABLE (libvorbis) #245991
 CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux
 CVE-2007-3961 ignore (gftp) off-by-one error in fsplib
+CVE-2007-3852 VULNERABLE (sysstat) #252295
 CVE-2007-3950 version (lighttpd, fixed 1.4.16) #249162 [since FEDORA-2007-1299]
 CVE-2007-3949 version (lighttpd, fixed 1.4.16) #249162 [since FEDORA-2007-1299]
 CVE-2007-3948 version (lighttpd, fixed 1.4.16) #249162 [since FEDORA-2007-1299]

More information about the fedora-extras-commits mailing list