[Fedora-security-commits] fedora-security/audit f8, 1.38, 1.39 f9, 1.33, 1.34 fc7, 1.195, 1.196
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Wed Dec 12 10:26:59 UTC 2007
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.37, 1.38 f9, 1.32, 1.33 fc7, 1.194, 1.195
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.39, 1.40 f9, 1.34, 1.35 fc7, 1.196, 1.197
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27199/audit
Modified Files:
f8 f9 fc7
Log Message:
fedora updates
wordpress
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.38
retrieving revision 1.39
diff -u -r1.38 -r1.39
--- f8 10 Dec 2007 19:23:30 -0000 1.38
+++ f8 12 Dec 2007 10:26:57 -0000 1.39
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071030
# Up to date F8 as of 20071029
+CVE-2007-6318 VULNERABLE (wordpress)
CVE-2007-6299 version (drupal, fixed 5.4) [since FEDORA-2007-4163] SA-2007-031
GENERIC-MAP-NOMATCH VULNERABLE (libxfcegui4) #412761
GENERIC-MAP-NOMATCH VULNERABLE (libxfce4util) #412761
@@ -24,7 +25,8 @@
CVE-2007-6110 backport (htdig) [since FEDORA-2007-3958]
CVE-2007-6100 version (phpMyAdmin, fixed 2.11.2.2) [since FEDORA-2007-3639]
CVE-2007-6061 VULNERABLE (audacity) #393251
-CVE-2007-6015 VULNERABLE (samba, fixed 3.0.28)
+CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4275]
+CVE-2007-6013 VULNERABLE (wordpress)
CVE-2007-6035 version (cacti, fixed 0.8.7a) #391991 [since FEDORA-2007-3667]
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385901 [since FEDORA-2007-3636]
@@ -116,6 +118,7 @@
CVE-2007-3385 version (tomcat5) [since FEDORA-2007-3474]
CVE-2007-3382 version (tomcat5) [since FEDORA-2007-3474]
CVE-2007-3145 ignore (galeon) in 2.0.3 the truncation still occurs, but at reasonable length
+CVE-2007-2807 backport (eggdrop) [since FEDORA-2007-4305]
CVE-2007-2450 version (tomcat5) #363081 [since FEDORA-2007-3474]
CVE-2007-2449 version (tomcat5) #363081 [since FEDORA-2007-3474]
CVE-2007-2245 version (phpMyAdmin, fixed 2.10.1) #237882
@@ -135,7 +138,7 @@
CVE-2007-0653 backport (xmms) #233705 -//-
CVE-2007-0537 version (kdebase, fixed 3.5.6) #225420
CVE-2007-0235 version (libgtop2, fixed 2.14.6) #222637 not sure, will triage
-CVE-2007-0095 ignore (phpMyAdmin) #221694 "Reveals path"
+CVE-2007-0095 backport (phpMyAdmin) #221694 "Reveals path" [since FEDORA-2007-4334]
CVE-2006-6698 VULNERABLE (GConf2) #219280
CVE-2006-6128 version (kernel, fixed 2.6.19-1.2911.fc6) #250625 ReiserFS MOKB
CVE-2006-6107 version (dbus, fixed 1.0.2) #219665
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.33
retrieving revision 1.34
diff -u -r1.33 -r1.34
--- f9 10 Dec 2007 19:23:30 -0000 1.33
+++ f9 12 Dec 2007 10:26:57 -0000 1.34
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071030
# Up to date F9 as of 20071029
+CVE-2007-6318 VULNERABLE (wordpress)
CVE-2007-6299 version (drupal, fixed 5.4) [since drupal-5.4-1.fc9] SA-2007-031
CVE-2007-6239 version (squid, fixed 2.6.17) [since squid-2.6.STABLE17-1.fc9]
CVE-2007-6210 backport (zabbix) #407181 [since zabbix-1.4.2-4.fc9]
@@ -23,6 +24,7 @@
CVE-2007-6061 VULNERABLE (audacity) #393251
CVE-2007-6035 version (cacti, fixed 0.8.7a) #392001 [since cacti-0.8.7a-1.fc9]
CVE-2007-6015 VULNERABLE (samba, fixed 3.0.28)
+CVE-2007-6013 VULNERABLE (wordpress)
CVE-2007-5977 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
CVE-2007-5976 version (phpMyAdmin) #385911 [since phpMyAdmin-2.11.2.2-1.fc9]
CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7)
@@ -114,7 +116,7 @@
CVE-2007-0653 backport (xmms) #233705 -//-
CVE-2007-0537 version (kdebase, fixed 3.5.6) #225420
CVE-2007-0235 version (libgtop2, fixed 2.14.6) #222637 not sure, will triage
-CVE-2007-0095 ignore (phpMyAdmin) #221694 "Reveals path"
+CVE-2007-0095 backport (phpMyAdmin) #221694 "Reveals path" [since phpMyAdmin-2.11.3-1.fc9]
CVE-2006-6698 VULNERABLE (GConf2) #219280
CVE-2006-6128 version (kernel, fixed 2.6.19-1.2911.fc6) #250625 ReiserFS MOKB
CVE-2006-6107 version (dbus, fixed 1.0.2) #219665
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.195
retrieving revision 1.196
diff -u -r1.195 -r1.196
--- fc7 10 Dec 2007 19:23:30 -0000 1.195
+++ fc7 12 Dec 2007 10:26:57 -0000 1.196
@@ -8,6 +8,7 @@
# Up to date CVE as of CVE email 20071030
# Up to date FC7 as of 20071029
+CVE-2007-6318 VULNERABLE (wordpress)
CVE-2007-6299 version (drupal, fixed 5.4) [since FEDORA-2007-4136] SA-2007-031
GENERIC-MAP-NOMATCH VULNERABLE (libxfcegui4) #412751
GENERIC-MAP-NOMATCH VULNERABLE (libxfce4util) #412751
@@ -26,7 +27,8 @@
CVE-2007-6100 version (phpMyAdmin, fixed 2.11.2.2) [since FEDORA-2007-3666]
CVE-2007-6061 VULNERABLE (audacity) #393251
CVE-2007-6035 version (cacti, fixed 0.8.7a) #391981 [since FEDORA-2007-3683]
-CVE-2007-6015 VULNERABLE (samba, fixed 3.0.28)
+CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4269]
+CVE-2007-6013 VULNERABLE (wordpress)
CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627]
CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952]
@@ -119,7 +121,7 @@
CVE-2007-4996 version (pidgin, fixed 2.2.1) [since FEDORA-2007-2368]
CVE-2007-4995 backport (openssl, fixed 0.9.8f) [since FEDORA-2007-2530]
CVE-2007-4993 backport (xen) [since FEDORA-2007-2270]
-CVE-2007-4990 VULNERABLE (xorg-x11-xfs, fixed 1.0.5) #373331
+CVE-2007-4990 version (xorg-x11-xfs, fixed 1.0.5) #373331 [since FEDORA-2007-4263]
CVE-2007-4974 backport (libsndfile) #296221 [since FEDORA-2007-2236]
CVE-2007-4965 backport (python) imageop module heap overflow [since FEDORA-2007-2663]
CVE-2007-4924 version (opal, fixed 2.2.10) #297551 [since FEDORA-2007-2245]
@@ -157,7 +159,7 @@
CVE-2007-4572 version (samba) [since FEDORA-2007-3402]
CVE-2007-4571 version (kernel) [since FEDORA-2007-2349]
CVE-2007-4569 backport (kdebase) #299731 [since FEDORA-2007-2361]
-CVE-2007-4568 VULNERABLE (xorg-x11-xfs, fixed 1.0.5) #373261
+CVE-2007-4568 version (xorg-x11-xfs, fixed 1.0.5) #373261 [since FEDORA-2007-4263]
CVE-2007-4565 backport (fetchmail) #260861 [since FEDORA-2007-1983]
CVE-2007-4560 version (clamav) #260583 [since FEDORA-2007-2050]
CVE-2007-4559 VULNERABLE (python, not fixed upstream) #315291 Upstream WONTFIX. See where we use the code.
@@ -337,6 +339,7 @@
CVE-2007-2843 ignore (konqueror) safari specific
CVE-2007-2834 backport (openoffice.org, fixed 2.3) #293361 [since FEDORA-2007-2372]
CVE-2007-2821 version (wordpress, fixed 2.2) #245211 [since FEDORA-2007-0894]
+CVE-2007-2807 backport (eggdrop) [since FEDORA-2007-4325]
CVE-2007-2799 version (file, fixed 4.21) #241034 [since FEDORA-2007-0836]
CVE-2007-2798 version (krb5, fixed 1.6.1) [since FEDORA-2007-0740]
CVE-2007-2797 version (xterm) fixed in fc5 and fc6 before f7 release
@@ -602,7 +605,7 @@
CVE-2007-0106 version (wordpress, fixed 2.1-0) #223101
CVE-2007-0104 ignore (poppler) only client DoS
CVE-2007-0104 ignore (kdegraphics) only client DoS
-CVE-2007-0095 version (phpMyAdmin) #221694
+CVE-2007-0095 backport (phpMyAdmin) #221694 [since FEDORA-2007-4298]
CVE-2007-0086 ignore (apache) not a security issue
*CVE-2007-0080 ** (freeradius)
*CVE-2007-0010 ** (gtk2)
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.37, 1.38 f9, 1.32, 1.33 fc7, 1.194, 1.195
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.39, 1.40 f9, 1.34, 1.35 fc7, 1.196, 1.197
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Fedora-security-commits
mailing list