[Fedora-security-commits] fedora-security/audit fc6,1.305,1.306
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Mon Dec 10 18:10:09 UTC 2007
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.36, 1.37 f9, 1.31, 1.32 fc7, 1.193, 1.194
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.37, 1.38 f9, 1.32, 1.33 fc7, 1.194, 1.195
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv4763/audit
Modified Files:
fc6
Log Message:
note last FC6 updates that managed to get in before EOL
fix EOL message
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.305
retrieving revision 1.306
diff -u -r1.305 -r1.306
--- fc6 7 Dec 2007 14:53:17 -0000 1.305
+++ fc6 10 Dec 2007 18:10:07 -0000 1.306
@@ -5,16 +5,22 @@
# (mozilla) = (firefox, seamonkey, thunderbird, yelp, devhelp, galeon, liferea. epiphany)
# Up to date CVE as of CVE email 20071030
-# Up to date FC6 as of 20071029
+# Up to date FC6 as of 20071207
-# This list is no longer maintained by the Red Hat security
-# response team as of 29th June 2007 (two months after the
+# This list is no longer maintained by the Red Hat Security Response
+# Team as of 7th December 2007 (EOL date of FC6, ~one month after the
# release date of Fedora 8)
+#
+# Zod's dead baby, Zod's dead...
CVE-2007-6209 ignore (zsh) #409871 We don't ship the script
CVE-2007-6207 VULNERABLE (kernel) Xen cross-domain memory read
CVE-2007-6206 VULNERABLE (kernel) Core dump owner issue
CVE-2007-6203 ignore (httpd) #409831 User can't unput garbage before method name
+CVE-2007-6110 backport (htdig) [since FEDORA-2007-757]
+CVE-2007-5960 backport (mozilla) [since FEDORA-2007-756]
+CVE-2007-5959 backport (mozilla) [since FEDORA-2007-756]
+CVE-2007-5947 backport (mozilla) [since FEDORA-2007-756]
CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
CVE-2007-5937 backport (tetex) #379841 [since FEDORA-2007-750] Multiple dviljk buffer overflows
CVE-2007-5936 backport (tetex) #379841 [since FEDORA-2007-750] dviljk uses insecure temporary file
@@ -26,6 +32,8 @@
CVE-2007-5770 backport (ruby) #373371 [since FEDORA-2007-738]
CVE-2007-5708 backport (openldap) [since FEDORA-2007-741]
CVE-2007-5707 backport (openldap) [since FEDORA-2007-741]
+CVE-2007-5501 version (kernel) [since FEDORA-2007-759]
+CVE-2007-5500 version (kernel) [since FEDORA-2007-759]
CVE-2007-5461 VULNERABLE (tomcat5) #334521
CVE-2007-5398 backport (samba) [since FEDORA-2007-751]
CVE-2007-5393 backport (cups) [since FEDORA-2007-746]
@@ -52,12 +60,12 @@
CVE-2007-5162 version (ruby) #313801 [since FEDORA-2007-718]
CVE-2007-5137 backport (tk, fixed 8.4.16) #332071 [since FEDORA-2007-728]
CVE-2007-5135 backport (openssl, fixed 0.9.8d) [since FEDORA-2007-725]
-CVE-2007-5116 VULNERABLE (perl) #378121
+CVE-2007-5116 backport (perl) #378121 [since FEDORA-2007-748]
CVE-2007-5079 VULNERABLE (gdm) #363031
CVE-2007-5034 version (elinks) #297611 [since FEDORA-2007-710]
CVE-2007-4995 backport (openssl, fixed 0.9.8f) [since FEDORA-2007-725]
CVE-2007-4993 backport (xen) [since FEDORA-2007-713]
-CVE-2007-4990 VULNERABLE (xorg-x11-xfs, fixed 1.0.5) #373321
+CVE-2007-4990 version (xorg-x11-xfs, fixed 1.0.5) #373321 [since FEDORA-2007-763]
CVE-2007-4965 VULNERABLE (python) imageop module heap overflow #373281
CVE-2007-4924 VULNERABLE (opal, fixed 2.2.10) #297561
CVE-2007-4897 VULNERABLE (opal, fixed 2.2.8) #297561
@@ -78,10 +86,11 @@
CVE-2007-4658 backport (php, fixed 5.2.4) #278011 [since FEDORA-2007-709]
CVE-2007-4657 ignore (php, fixed 5.2.4) arbitrary read not remotely triggerable
CVE-2007-4619 backport (flac, fixed 1.2) #332581 [since FEDORA-2007-730]
+CVE-2007-4575 backport (openoffice.org, fixed 2.3.1) [since FEDORA-2007-762]
CVE-2007-4572 backport (samba) [since FEDORA-2007-751]
CVE-2007-4571 version (kernel) [since FEDORA-2007-714]
CVE-2007-4569 backport (kdebase) #299741 [since FEDORA-2007-716]
-CVE-2007-4568 VULNERABLE (xorg-x11-xfs, fixed 1.0.5) #373251
+CVE-2007-4568 version (xorg-x11-xfs, fixed 1.0.5) #373251 [since FEDORA-2007-763]
CVE-2007-4565 backport (fetchmail) #260881 [since FEDORA-2007-689]
CVE-2007-4559 VULNERABLE (python, not fixed upstream) #315291 Upstream WONTFIX. See where we use the code.
CVE-2007-4558 ignore (star, fixed 1.5a84) duplicate of CVE-2007-4134
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.36, 1.37 f9, 1.31, 1.32 fc7, 1.193, 1.194
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.37, 1.38 f9, 1.32, 1.33 fc7, 1.194, 1.195
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Fedora-security-commits
mailing list