[Fedora-security-commits] fedora-security/audit f8, 1.213, 1.214 f9, 1.203, 1.204 fc7, 1.369, 1.370
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Fri May 2 16:13:05 UTC 2008
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27473/audit
Modified Files:
f8 f9 fc7
Log Message:
add tkimg, sipp, zoneminder dupe
update on libpng10
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.213
retrieving revision 1.214
diff -u -r1.213 -r1.214
--- f8 29 Apr 2008 08:26:54 -0000 1.213
+++ f8 2 May 2008 16:12:35 -0000 1.214
@@ -6,8 +6,10 @@
rhbz293031 fixed (nx) #293031 [since FEDORA-2008-2258]
rhbz249840 VULNERABLE (tor)
+CVE-2008-2033 ignore (zoneminder) duplicate of CVE-2008-1381
CVE-2008-1974 VULNERABLE (kronolith, fixed 3.1.8) #444404
CVE-2008-1964 ignore (xine-lib) bogus vulnerability report
+CVE-2008-1959 VULNERABLE (sipp, fixed 3.1) [since sipp-3.1-1.fc8]
CVE-2008-1937 ignore (moin, fixed 1.6.3) 1.6.x only
CVE-2008-1930 ignore (wordpress, fixed 2.5.1) [since wordpress-2.5.1-1.fc8] only for wp 2.5.0
CVE-2008-1928 VULNERABLE (perl-Imager, fixed 0.64) #443940
@@ -61,7 +63,7 @@
CVE-2008-1390 fixed (asterisk, fixed 1.4.19-rc3) #438133 [since FEDORA-2008-2554]
CVE-2008-1387 VULNERABLE (clamav, fixed 0.93) #442363
CVE-2008-1382 VULNERABLE (libpng, fixed 1.2.27) minimal impact, affected api rarely used
-CVE-2008-1382 VULNERABLE (libpng10) minimal impact, affected api rarely used
+CVE-2008-1382 VULNERABLE (libpng10) [since libpng10-1.0.33-1.fc8]
CVE-2008-1381 VULNERABLE (zoneminder, fixed 1.23.3) #444436
CVE-2008-1380 VULNERABLE (firefox, fixed 2.0.0.14)
CVE-2008-1380 fixed (seamonkey, fixed 1.1.10) #442851 [since FEDORA-2008-3264]
@@ -174,6 +176,7 @@
CVE-2008-0554 version (netpbm, fixed 10.27)
CVE-2008-0553 fixed (perl-Tk) #431532 [since FEDORA-2008-1323]
CVE-2008-0553 backport (tk, fixed 8.5.1) [since FEDORA-2008-1122]
+CVE-2008-0553 VULNERABLE (tkimg) #444951
CVE-2008-0544 fixed (SDL_image) #430694 [since FEDORA-2008-1208] ILBM overflow
CVE-2008-0486 fixed (xine-lib, fixed 1.1.10.1) #431543 [since FEDORA-2008-1543]
CVE-2008-0460 fixed (mediawiki) #430288 [since FEDORA-2008-2288]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.203
retrieving revision 1.204
diff -u -r1.203 -r1.204
--- f9 29 Apr 2008 08:26:54 -0000 1.203
+++ f9 2 May 2008 16:12:35 -0000 1.204
@@ -5,8 +5,10 @@
# (mozilla) = (gecko-libs dependent stuff)
rhbz249840 VULNERABLE (tor)
+CVE-2008-2033 ignore (zoneminder) duplicate of CVE-2008-1381
CVE-2008-1974 VULNERABLE (kronolith, fixed 3.1.8) #444405
CVE-2008-1964 ignore (xine-lib) bogus vulnerability report
+CVE-2008-1959 VULNERABLE (sipp, fixed 3.1) [since sipp-3.1-1.fc9]
CVE-2008-1937 VULNERABLE (moin, fixed 1.6.3) [since moin-1.6.3-1.fc9]
CVE-2008-1930 ignore (wordpress, fixed 2.5.1) only for wp 2.5.0
CVE-2008-1928 VULNERABLE (perl-Imager, fixed 0.64) #443941
@@ -60,7 +62,7 @@
CVE-2008-1390 version (asterisk, fixed 1.6.0-beta6) #438134 [since asterisk-1.6.0-0.6.beta6.fc9]
CVE-2008-1387 VULNERABLE (clamav, fixed 0.93) #442364 [since clamav-0.93-1.fc9]
CVE-2008-1382 VULNERABLE (libpng, fixed 1.2.27) minimal impact, affected api rarely used
-CVE-2008-1382 VULNERABLE (libpng10) minimal impact, affected api rarely used
+CVE-2008-1382 VULNERABLE (libpng10) [since libpng10-1.0.33-1.fc9]
CVE-2008-1381 VULNERABLE (zoneminder, fixed 1.23.3) #444437
CVE-2008-1380 VULNERABLE (firefox, fixed 2.0.0.14)
CVE-2008-1380 VULNERABLE (seamonkey, fixed 1.1.10) #442852
@@ -169,6 +171,7 @@
CVE-2008-0554 version (netpbm, fixed 10.27)
CVE-2008-0553 backport (perl-Tk) #431529 [since perl-Tk-804.028-3.fc9]
CVE-2008-0553 backport (tk, fixed 8.5.1) [since tk-8.5.0-4.fc9]
+CVE-2008-0553 VULNERABLE (tkimg) #444872
CVE-2008-0544 backport (SDL_image) #430696 ILBM overflow [since SDL_image-1.2.6-5.fc9]
CVE-2008-0486 version (xine-lib, fixed 1.1.10.1) #431544 [since xine-lib-1.1.10.1-1.fc9]
CVE-2008-0460 version (mediawiki) #430289 [since mediawiki-1.10.4-38.fc9]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.369
retrieving revision 1.370
diff -u -r1.369 -r1.370
--- fc7 29 Apr 2008 08:26:54 -0000 1.369
+++ fc7 2 May 2008 16:12:35 -0000 1.370
@@ -7,8 +7,10 @@
rhbz293031 fixed (nx) #293031 [since FEDORA-2008-2258]
rhbz249840 version (tor, fixed 0.1.2.15) #249840 [since FEDORA-2007-1674]
+CVE-2008-2033 ignore (zoneminder) duplicate of CVE-2008-1381
CVE-2008-1974 VULNERABLE (kronolith, fixed 3.1.8) #444403
CVE-2008-1964 ignore (xine-lib) bogus vulnerability report
+CVE-2008-1959 VULNERABLE (sipp, fixed 3.1) [since sipp-3.1-1.fc7]
CVE-2008-1937 ignore (moin, fixed 1.6.3) 1.6.x only
CVE-2008-1930 ignore (wordpress, fixed 2.5.1) [since wordpress-2.5.1-1.fc7] only for wp 2.5.0
CVE-2008-1928 VULNERABLE (perl-Imager, fixed 0.64) #443939
@@ -62,7 +64,7 @@
CVE-2008-1390 fixed (asterisk, fixed 1.4.19-rc3) #438132 [since FEDORA-2008-2620]
CVE-2008-1387 VULNERABLE (clamav, fixed 0.93) #442362
CVE-2008-1382 ignore (libpng, fixed 1.2.27) minimal impact, affected api rarely used
-CVE-2008-1382 ignore (libpng10) minimal impact, affected api rarely used
+CVE-2008-1382 ignore (libpng10) [since libpng10-1.0.33-1.fc7]
CVE-2008-1381 VULNERABLE (zoneminder, fixed 1.23.3) #444435
CVE-2008-1380 VULNERABLE (firefox, fixed 2.0.0.14)
CVE-2008-1380 fixed (seamonkey, fixed 1.1.10) #442850 [since FEDORA-2008-3231]
@@ -174,6 +176,7 @@
CVE-2008-0554 version (netpbm, fixed 10.27)
CVE-2008-0553 fixed (perl-Tk) #431531 [since FEDORA-2008-1384]
CVE-2008-0553 backport (tk, fixed 8.5.1) [since FEDORA-2008-1131]
+CVE-2008-0553 VULNERABLE (tkimg) #444950
CVE-2008-0544 fixed (SDL_image) #430695 [since FEDORA-2008-1208] ILBM overflow
CVE-2008-0486 fixed (xine-lib, fixed 1.1.10.1) #431542 [since FEDORA-2008-1581]
CVE-2008-0460 fixed (mediawiki) #430287 [since FEDORA-2008-2245]
More information about the Fedora-security-commits
mailing list