fedora-security/audit fc6,1.246,1.247 fc7,1.79,1.80
Tomas Hoger (thoger)
fedora-extras-commits at redhat.com
Fri Aug 24 13:06:24 UTC 2007
- Previous message (by thread): rpms/xorg-x11-drv-i128/devel .cvsignore, 1.7, 1.8 sources, 1.7, 1.8 xorg-x11-drv-i128.spec, 1.16, 1.17
- Next message (by thread): rpms/pam/devel pam-0.99.7.1-namespace-homedir.patch, NONE, 1.1 pam-0.99.8.1-unix-blankpass.patch, NONE, 1.1 pam.spec, 1.155, 1.156
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31650/audit
Modified Files:
fc6 fc7
Log Message:
add star directory traversal
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.246
retrieving revision 1.247
diff -u -r1.246 -r1.247
--- fc6 24 Aug 2007 10:27:36 -0000 1.246
+++ fc6 24 Aug 2007 13:06:22 -0000 1.247
@@ -14,6 +14,7 @@
CVE-2007-4225 ignore (kdebase) caused by fix to CVE-2007-3820 which we never shipped
CVE-2007-4224 ignore (kdebase) too obvious -- mouse pointer indicates script activity
CVE-2007-4211 version (dovecot, fixed 1.0.3) #251009 [since FEDORA-2007-664]
+CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254129
CVE-2007-4131 VULNERABLE (tar) #253684
CVE-2007-4029 VULNERABLE (libvorbis) #250600
CVE-2007-4168 backport (libexif) #243892 [since FEDORA-2007-614]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.79
retrieving revision 1.80
diff -u -r1.79 -r1.80
--- fc7 24 Aug 2007 10:27:37 -0000 1.79
+++ fc7 24 Aug 2007 13:06:22 -0000 1.80
@@ -27,6 +27,7 @@
CVE-2007-4153 ignore (wordpress) "remote authenticated administrators"
CVE-2007-4154 ignore (wordpress) "remote authenticated administrators"
CVE-2007-4139 VULNERABLE (wordpress) #250751
+CVE-2007-4134 VULNERABLE (star, fixed 1.5a84) #254128
CVE-2007-4131 VULNERABLE (tar) #253684
CVE-2007-4029 backport (libvorbis) #245991 [since FEDORA-2007-1765]
CVE-2007-3962 ignore (gftp) multiple buffer overflows in fsplib, not on Linux
- Previous message (by thread): rpms/xorg-x11-drv-i128/devel .cvsignore, 1.7, 1.8 sources, 1.7, 1.8 xorg-x11-drv-i128.spec, 1.16, 1.17
- Next message (by thread): rpms/pam/devel pam-0.99.7.1-namespace-homedir.patch, NONE, 1.1 pam-0.99.8.1-unix-blankpass.patch, NONE, 1.1 pam.spec, 1.155, 1.156
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list