[Fedora-security-commits] fedora-security/audit f8, 1.30, 1.31 f9, 1.26, 1.27 fc6, 1.301, 1.302 fc7, 1.187, 1.188

fedora-security-commits at redhat.com fedora-security-commits at redhat.com
Tue Dec 4 08:51:22 UTC 2007 

Author: lkundrak

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv8841

Modified Files:
	f8 f9 fc6 fc7 
Log Message:
httpd, zsh notabugs
kernel core dump and xen



Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.30
retrieving revision 1.31
diff -u -r1.30 -r1.31
--- f8	3 Dec 2007 12:49:16 -0000	1.30
+++ f8	4 Dec 2007 08:51:19 -0000	1.31
@@ -7,6 +7,11 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date F8 as of 20071029
 
+CVE-2007-6209 ignore (zsh) #409871 We don't ship the script
+CVE-2007-6207 VULNERABLE (kernel) Xen cross-domain memory read
+CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
+CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
+CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-6201 VULNERABLE (wesnoth, fixed 1.2.8)
 CVE-2007-6183 VULNERABLE (ruby-gnome2) #405601
 CVE-2007-6110 backport (htdig) [since FEDORA-2007-3958]


Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.26
retrieving revision 1.27
diff -u -r1.26 -r1.27
--- f9	3 Dec 2007 12:49:16 -0000	1.26
+++ f9	4 Dec 2007 08:51:19 -0000	1.27
@@ -7,6 +7,11 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date F9 as of 20071029
 
+CVE-2007-6209 ignore (zsh) #409871 We don't ship the script
+CVE-2007-6207 VULNERABLE (kernel) Xen cross-domain memory read
+CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
+CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
+CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-6201 version (wesnoth, fixed 1.2.8) [since wesnoth-1.2.8-3.fc9]
 CVE-2007-6183 VULNERABLE (ruby-gnome2) #405611
 CVE-2007-6110 version (htdig) [since htdig-3.2.0b6-13.fc9]


Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.301
retrieving revision 1.302
diff -u -r1.301 -r1.302
--- fc6	26 Nov 2007 18:15:22 -0000	1.301
+++ fc6	4 Dec 2007 08:51:19 -0000	1.302
@@ -7,6 +7,11 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date FC6 as of 20071029
 
+
+CVE-2007-6209 ignore (zsh) #409871 We don't ship the script
+CVE-2007-6207 VULNERABLE (kernel) Xen cross-domain memory read
+CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
+CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
 CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-5937 backport (tetex) #379841 [since FEDORA-2007-750] Multiple dviljk buffer overflows
 CVE-2007-5936 backport (tetex) #379841 [since FEDORA-2007-750] dviljk uses insecure temporary file


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.187
retrieving revision 1.188
diff -u -r1.187 -r1.188
--- fc7	3 Dec 2007 12:49:16 -0000	1.187
+++ fc7	4 Dec 2007 08:51:19 -0000	1.188
@@ -8,6 +8,11 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date FC7 as of 20071029
 
+CVE-2007-6209 ignore (zsh) #409871 We don't ship the script
+CVE-2007-6207 VULNERABLE (kernel) Xen cross-domain memory read
+CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
+CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
+CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-6201 VULNERABLE (wesnoth, fixed 1.2.8)
 CVE-2007-6183 VULNERABLE (ruby-gnome2) #405591
 CVE-2007-6110 backport (htdig) [since FEDORA-2007-3907]

More information about the Fedora-security-commits mailing list