fedora-security/audit fc6,1.246,1.247 fc7,1.79,1.80

Tomas Hoger (thoger) fedora-extras-commits at redhat.com
Fri Aug 24 13:06:24 UTC 2007 

Author: thoger

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31650/audit

Modified Files:
	fc6 fc7 
Log Message:
add star directory traversal



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.246
retrieving revision 1.247
diff -u -r1.246 -r1.247
--- fc6	24 Aug 2007 10:27:36 -0000	1.246
+++ fc6	24 Aug 2007 13:06:22 -0000	1.247
@@ -14,6 +14,7 @@
 CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped
 CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity
 CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664]
+CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254129
 CVE-2007-4131 VULNERABLE (tar) #253684
 CVE-2007-4029 VULNERABLE (libvorbis) #250600
 CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614]


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.79
retrieving revision 1.80
diff -u -r1.79 -r1.80
--- fc7	24 Aug 2007 10:27:37 -0000	1.79
+++ fc7	24 Aug 2007 13:06:22 -0000	1.80
@@ -27,6 +27,7 @@
 CVE-2007-4153 ignore (wordpress) "remote authenticated administrators"
 CVE-2007-4154 ignore (wordpress) "remote authenticated administrators"
 CVE-2007-4139 VULNERABLE (wordpress) #250751
+CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254128
 CVE-2007-4131 VULNERABLE (tar) #253684
 CVE-2007-4029 backport (libvorbis) #245991 [since FEDORA-2007-1765]
 CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux

More information about the fedora-extras-commits mailing list