[Fedora-security-commits] fedora-security/audit f8, 1.209, 1.210 f9, 1.199, 1.200 fc7, 1.365, 1.366
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Fri Apr 25 15:23:44 UTC 2008
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.208, 1.209 f9, 1.198, 1.199 fc7, 1.364, 1.365
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.210, 1.211 f9, 1.200, 1.201 fc7, 1.366, 1.367
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv10508/audit
Modified Files:
f8 f9 fc7
Log Message:
misc cleanups
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.209
retrieving revision 1.210
diff -u -r1.209 -r1.210
--- f8 25 Apr 2008 13:24:29 -0000 1.209
+++ f8 25 Apr 2008 15:23:13 -0000 1.210
@@ -103,6 +103,7 @@
CVE-2008-1161 version (xine-lib, fixed 1.1.10.1) [since FEDORA-2008-1543]
CVE-2008-1149 version (phpMyAdmin, fixed 2.11.5) [since FEDORA-2008-2189]
CVE-2008-1145 version (ruby, fixed 1.8.6-p114) [since FEDORA-2008-2443]
+CVE-2008-1136 version (vdccm, fixed 0.10.1) [since FEDORA-2008-0680]
CVE-2008-1133 ignore (drupal) #435816 drupal 6.x only
CVE-2008-1131 ignore (drupal) #435816 drupal 6.x only
CVE-2008-1111 fixed (lighttpd) #435807 [since FEDORA-2008-2262]
@@ -234,7 +235,7 @@
CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427829 [since FEDORA-2008-0572]
CVE-2008-0002 fixed (tomcat5) #432474 [since FEDORA-2008-1467]
CVE-2007-6714 VULNERABLE (dbmail, fixed 2.2.9) #443021
-CVE-2007-6703 VULNERABLE (vdccm) #436025
+CVE-2007-6703 fixed (vdccm, fixed 0.10.1) #436026 [since FEDORA-2008-0680]
CVE-2007-6698 version (openldap, fixed 2.3.36)
CVE-2007-6697 fixed (SDL_image, fixed 1.2.7) #430241 [since FEDORA-2008-1208]
CVE-2007-6693 version (gallery2, fixed 2.2.4) [since FEDORA-2007-4778]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.199
retrieving revision 1.200
diff -u -r1.199 -r1.200
--- f9 25 Apr 2008 13:24:29 -0000 1.199
+++ f9 25 Apr 2008 15:23:13 -0000 1.200
@@ -11,10 +11,10 @@
CVE-2008-1924 version (phpMyAdmin, fixed 2.11.5.2) [since phpMyAdmin-2.11.5.2-1.fc9] PMASA-2008-3
CVE-2008-1923 version (asterisk) upstream fix incomplete, resulting in CVE-2008-1897
CVE-2008-1897 version (asterisk, fixed 1.6.0.beta3) [since asterisk-1.6.0-0.13.beta8.fc9]
-CVE-2008-1878 VULNERABLE (xine-lib, fixed 1.1.12.1) #443056 nsf demuxer overflow
+CVE-2008-1878 VULNERABLE (xine-lib, fixed 1.1.12.1) #443056 nsf demuxer overflow [since xine-lib-1.1.12-2.fc9]
CVE-2008-1845 version (mksh, fixed 33d) [since mksh-33d-1.fc9] what is real impact on fedora?
CVE-2008-1837 ignore (clamav, fixed 0.93) unrar code not shipped
-CVE-2008-1836 VULNERABLE (clamav, fixed 0.93) #442364
+CVE-2008-1836 VULNERABLE (clamav, fixed 0.93) #442364 [since clamav-0.93-1.fc9]
CVE-2008-1835 ignore (clamav, fixed 0.93) unrar code not shipped
CVE-2008-1834 version (swfdec, fixed 0.6.4) [since swfdec-0.6.4-1.fc9]
CVE-2008-1833 version (clamav, fixed 0.93-rc1) [since clamav-0.93-0.0.rc1.fc9]
@@ -53,14 +53,14 @@
CVE-2008-1467 fixed (centerim) #438871
CVE-2008-1394 ignore (plone)
CVE-2008-1390 version (asterisk, fixed 1.6.0-beta6) #438134 [since asterisk-1.6.0-0.6.beta6.fc9]
-CVE-2008-1387 VULNERABLE (clamav, fixed 0.93) #442364
+CVE-2008-1387 VULNERABLE (clamav, fixed 0.93) #442364 [since clamav-0.93-1.fc9]
CVE-2008-1382 VULNERABLE (libpng, fixed 1.2.27) minimal impact, affected api rarely used
CVE-2008-1382 VULNERABLE (libpng10) minimal impact, affected api rarely used
CVE-2008-1380 VULNERABLE (firefox, fixed 2.0.0.14)
CVE-2008-1380 VULNERABLE (seamonkey, fixed 1.1.10) #442852
CVE-2008-1380 VULNERABLE (thunderbird, fixed 2.0.0.14) #442857
CVE-2008-1374 ignore (cups) only affects old cups versions in RHEL
-CVE-2008-1373 VULNERABLE (cups) #440041
+CVE-2008-1373 VULNERABLE (cups) #440041 [since cups-1.3.6-9.fc9]
CVE-2008-1372 version (bzip2, fixed 1.0.5) [since bzip2-1.0.5-1.fc9]
CVE-2008-1360 VULNERABLE (nagios) #437852
CVE-2008-1353 ignore (zabbix) #437848 Needs authorization
@@ -102,12 +102,13 @@
CVE-2008-1149 version (phpMyAdmin, fixed 2.11.5) [since phpMyAdmin-2.11.5-1.fc9]
CVE-2008-1145 version (ruby, fixed 1.8.6-p114) [since ruby-1.8.6.114-1.fc9]
CVE-2008-1142 ignore (rxvt) http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469296
+CVE-2008-1136 version (vdccm, fixed 0.10.1) [since vdccm-0.10.1-1.fc9]
CVE-2008-1133 version (drupal, fixed 6.1) #435817 [since drupal-6.1-1.fc9]
CVE-2008-1131 version (drupal, fixed 6.1) #435817 [since drupal-6.1-1.fc9]
CVE-2008-1111 backport (lighttpd) #435809 [since lighttpd-1.4.18-6.fc9]
CVE-2008-1110 version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9]
-CVE-2008-1102 VULNERABLE (blender) #443937
-CVE-2008-1100 VULNERABLE (clamav, fixed 0.93) #442364
+CVE-2008-1102 VULNERABLE (blender) #443937 [since blender-2.45-12.fc9]
+CVE-2008-1100 VULNERABLE (clamav, fixed 0.93) #442364 [since clamav-0.93-1.fc9]
CVE-2008-1099 version (moin, fixed 1.5.9) #438674
CVE-2008-1098 version (moin, fixed 1.5.9) #438674
CVE-2008-1078 VULNERABLE (am-utils) #437746
@@ -196,7 +197,7 @@
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0320 version (openoffice.org, fixed 2.4)
CVE-2008-0318 fixed (clamav, fixed 0.92.1)
-CVE-2008-0314 VULNERABLE (clamav, fixed 0.93) #442364
+CVE-2008-0314 VULNERABLE (clamav, fixed 0.93) #442364 [since clamav-0.93-1.fc9]
CVE-2008-0304 version (seamonkey, fixed 1.1.8) [since seamonkey-1.1.8-3.fc9]
CVE-2008-0304 version (thuderbird, fixed 2.0.0.12) [since thunderbird-2.0.0.12-1.fc9]
CVE-2008-0299 fixed (python-paramiko) #428730 [since python-paramiko-1.7.1-3.fc9]
@@ -230,8 +231,8 @@
CVE-2008-0005 version (httpd, fixed 2.2.8) #427984 [since httpd-2.2.8-2]
CVE-2008-0003 version (tog-pegasus, fixed 2.7.0)
CVE-2008-0002 VULNERABLE (tomcat5) #432476
-CVE-2007-6714 VULNERABLE (dbmail, fixed 2.2.9) #443022
-CVE-2007-6703 VULNERABLE (vdccm) #436027
+CVE-2007-6714 VULNERABLE (dbmail, fixed 2.2.9) #443022 [since dbmail-2.2.9-1.fc9]
+CVE-2007-6703 version (vdccm, fixed 0.10.1) #436027
CVE-2007-6698 version (openldap, fixed 2.3.36)
CVE-2007-6697 backport (SDL_image, fixed 1.2.7) #430238 [since SDL_image-1.2.6-4.fc9]
CVE-2007-6693 version (gallery2, fixed 2.2.4) [since gallery2-2.2.4-1]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.365
retrieving revision 1.366
diff -u -r1.365 -r1.366
--- fc7 25 Apr 2008 13:24:29 -0000 1.365
+++ fc7 25 Apr 2008 15:23:13 -0000 1.366
@@ -104,6 +104,7 @@
CVE-2008-1161 version (xine-lib, fixed 1.1.10.1) [since FEDORA-2008-1581]
CVE-2008-1149 version (phpMyAdmin, fixed 2.11.5) [since FEDORA-2008-2229]
CVE-2008-1145 version (ruby, fixed 1.8.6-p114) [since FEDORA-2008-2458]
+CVE-2008-1136 VULNERABLE (vdccm, fixed 0.10.1) #436025
CVE-2008-1133 ignore (drupal) #435815 drupal 6.x only
CVE-2008-1131 ignore (drupal) #435815 drupal 6.x only
CVE-2008-1111 fixed (lighttpd) #435808 [since FEDORA-2008-2278]
@@ -234,7 +235,7 @@
CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427828 [since FEDORA-2008-0506]
CVE-2008-0002 fixed (tomcat5) #432475 [since FEDORA-2008-1603]
CVE-2007-6714 VULNERABLE (dbmail, fixed 2.2.9) #443020
-CVE-2007-6703 fixed (vdccm) #436026 [since FEDORA-2008-0680]
+CVE-2007-6703 VULNERABLE (vdccm, fixed 0.10.1) #436025
CVE-2007-6698 fixed (openldap, fixed 2.3.36) #431409 [since FEDORA-2008-1307]
CVE-2007-6697 fixed (SDL_image, fixed 1.2.7) #430239 [since FEDORA-2008-1231]
CVE-2007-6693 version (gallery2, fixed 2.2.4) [since FEDORA-2007-4777]
- Previous message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.208, 1.209 f9, 1.198, 1.199 fc7, 1.364, 1.365
- Next message (by thread): [Fedora-security-commits] fedora-security/audit f8, 1.210, 1.211 f9, 1.200, 1.201 fc7, 1.366, 1.367
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the Fedora-security-commits
mailing list