[Fedora-security-commits] fedora-security/audit f8, 1.140, 1.141 f9, 1.130, 1.131 fc7, 1.296, 1.297

Wed Feb 27 09:40:10 UTC 2008

Author: thoger

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv17781/audit

Modified Files:
	f8 f9 fc7 
Log Message:
add lighttpd, mysql



Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.140
retrieving revision 1.141
diff -u -r1.140 -r1.141

--- f8	26 Feb 2008 08:33:00 -0000	1.140
+++ f8	27 Feb 2008 09:39:39 -0000	1.141
@@ -10,6 +10,7 @@
 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
 GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1043]
 GENERIC-MAP-NOMATCH fixed (wyrd) #433720 [since FEDORA-2008-1963] 
+**CVE-2008-0983 VULNERABLE (lighttpd) 
 CVE-2008-0932 fixed (sword) #433724 [since FEDORA-2008-1922] why? diatheke.pl is not shipped...
 CVE-2008-0928 fixed (qemu) #433561 [since FEDORA-2008-2001] 
 CVE-2008-0928 fixed (kvm) #433564 [since FEDORA-2008-1973] 
@@ -329,6 +330,7 @@
 CVE-2007-0537 version (kdebase, fixed 3.5.6) #225420
 CVE-2007-0235 version (libgtop2, fixed 2.14.6) #222637 not sure, will triage
 CVE-2007-0095 backport (phpMyAdmin) #221694 "Reveals path" [since FEDORA-2007-4334]
+CVE-2006-7232 version (mysql, fixed 5.0.32) 
 CVE-2006-6698 VULNERABLE (GConf2) #219280
 CVE-2006-6128 version (kernel, fixed 2.6.19-1.2911.fc6) #250625 ReiserFS MOKB
 CVE-2006-6107 version (dbus, fixed 1.0.2) #219665


Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.130
retrieving revision 1.131
diff -u -r1.130 -r1.131
--- f9	26 Feb 2008 10:13:27 -0000	1.130
+++ f9	27 Feb 2008 09:39:39 -0000	1.131
@@ -11,6 +11,7 @@
 GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9]
 GENERIC-MAP-NOMATCH VULNERABLE (wyrd) #433722 
 GENERIC-MAP-NOMATCH fixed (inkscape) #432807  [since inkscape-0.45.1+0.46pre1-4.fc9]
+**CVE-2008-0983 VULNERABLE (lighttpd) 
 CVE-2008-0932 backport (sword) #433726 [since sword-1.5.10-3.fc9] why? diatheke.pl is not shipped...
 CVE-2008-0928 backport (qemu) #433563 [since qemu-0.9.1-3.fc9]
 CVE-2008-0928 backport (kvm) #433566 [since kvm-61-2.fc9]
@@ -307,6 +308,7 @@
 CVE-2007-0537 version (kdebase, fixed 3.5.6) #225420
 CVE-2007-0235 version (libgtop2, fixed 2.14.6) #222637 not sure, will triage
 CVE-2007-0095 backport (phpMyAdmin) #221694 "Reveals path" [since phpMyAdmin-2.11.3-1.fc9]
+CVE-2006-7232 version (mysql, fixed 5.0.32) 
 CVE-2006-6698 VULNERABLE (GConf2) #219280
 CVE-2006-6128 version (kernel, fixed 2.6.19-1.2911.fc6) #250625 ReiserFS MOKB
 CVE-2006-6107 version (dbus, fixed 1.0.2) #219665


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.296
retrieving revision 1.297
diff -u -r1.296 -r1.297
--- fc7	26 Feb 2008 08:33:00 -0000	1.296
+++ fc7	27 Feb 2008 09:39:39 -0000	1.297
@@ -11,6 +11,7 @@
 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
 GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1047]
 GENERIC-MAP-NOMATCH fixed (wyrd) #433721 [since FEDORA-2008-1986] 
+**CVE-2008-0983 VULNERABLE (lighttpd) 
 CVE-2008-0932 fixed (sword) #433725 [since FEDORA-2008-1951] why? diatheke.pl is not shipped...
 CVE-2008-0928 fixed (qemu) #433562 [since FEDORA-2008-1995] 
 CVE-2008-0928 fixed (kvm) #433565 [since FEDORA-2008-1993] 
@@ -806,6 +807,7 @@
 CVE-2007-0005 version (kernel, fixed 2.6.20) [since FEDORA-2007-335]
 CVE-2007-0002 version (libwpd, fixed 0.8.9) #222808 [since FEDORA-2007-351]
 CVE-2007-0001 ignore (kernel) rhel4 2.6.9 only known affected
+CVE-2006-7232 version (mysql, fixed 5.0.32) 
 CVE-2006-7228 version (pcre, fixed 6.7)
 CVE-2006-7227 version (pcre, fixed 6.7)
 CVE-2006-7221 ignore (gftp) single zero byte overflow in fsplib


