[Fedora-security-commits] fedora-security/audit f8,1.252,1.253
fedora-security-commits at redhat.com
fedora-security-commits at redhat.com
Thu Jan 15 13:32:20 UTC 2009
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv7142/audit
Modified Files:
f8
Log Message:
no more werewolf howls, F8 is EOL, no more updates to f8 tracking file
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.252
retrieving revision 1.253
diff -u -r1.252 -r1.253
--- f8 19 Dec 2008 19:22:22 -0000 1.252
+++ f8 15 Jan 2009 13:31:50 -0000 1.253
@@ -1,46 +1,59 @@
# $Id$
+# F* EOLed on 2009-01-09
+
# ** are items that need attention
# *CVE are items that need verification for Fedora 8
# (mozilla) = (gecko-libs dependent stuff)
rhbz293031 fixed (nx) #293031 [since FEDORA-2008-2258]
rhbz249840 version (tor, fixed 0.1.2.15)
+CVE-2009-0022 ignore (samba, fixed 3.2.7) not affected
+CVE-2008-5718 VULNERABLE (netatalk)
+CVE-2008-5716 ignore (xen) CVE-2008-4405 was not yet fixed
+CVE-2008-5714 VULNERABLE (kvm)
+CVE-2008-5714 VULNERABLE (qemu)
CVE-2008-5695 version (wordpress, fixed 2.3.3)
+CVE-2008-5688 VULNERABLE (mediawiki, fixed 1.13.3) [since mediawiki-1.13.3-41.99.fc8]
+CVE-2008-5687 VULNERABLE (mediawiki, fixed 1.13.3) [since mediawiki-1.13.3-41.99.fc8]
CVE-2008-5676 version (mod_security, fixed 2.5.6) [since mod_security-2.5.6-1.fc8]
CVE-2008-5660 fixed (vinagre, fixed 0.5.2,2.24.2) [since FEDORA-2008-10941]
CVE-2008-5647 VULNERABLE (trac, 0.11.2)
CVE-2008-5646 VULNERABLE (trac, 0.11.2)
CVE-2008-5622 fixed (phpMyAdmin, fixed 3.1.1) [since FEDORA-2008-11221] PMASA-2008-10, same as CVE-2008-5621?
CVE-2008-5621 fixed (phpMyAdmin, fixed 3.1.1) [since FEDORA-2008-11221] PMASA-2008-10
-CVE-2008-5620 VULNERABLE (roundcubemail, 0.2-rc) [since roundcubemail-0.2-5.beta.fc8]
+CVE-2008-5620 fixed (roundcubemail, 0.2-rc) [since FEDORA-2008-11581]
CVE-2008-5619 fixed (roundcubemail, 0.2-rc) [since FEDORA-2008-11220]
CVE-2008-5618 ignore (rsyslog, 3.20.2) not affected
CVE-2008-5617 ignore (rsyslog, 3.20.1) not affected
-CVE-2008-5587 VULNERABLE (phpPgAdmin, fixed 4.2.2) [since phpPgAdmin-4.2.2-1.fc8]
+CVE-2008-5587 fixed (phpPgAdmin, fixed 4.2.2) [since FEDORA-2008-11576]
CVE-2008-5558 ignore (asterisk) AST-2008-012, not affected
-CVE-2008-5513 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5512 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5512 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5511 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5511 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5510 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5510 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5508 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5508 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5507 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5507 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5506 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5506 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5504 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5503 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5503 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
-CVE-2008-5500 VULNERABLE (seamonkey, fixed 1.1.14) [since seamonkey-1.1.14-1.fc8]
-CVE-2008-5500 VULNERABLE (firefox, fixed 2.0.0.19) [since firefox-2.0.0.19-1.fc8]
+CVE-2008-5514 VULNERABLE (uw-imap, fixed 2007e) [since uw-imap-2007e-1.fc8]
+CVE-2008-5513 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5512 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5512 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5511 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5511 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5510 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5510 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5508 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5508 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5507 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5507 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5506 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5506 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5504 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5503 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5503 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
+CVE-2008-5500 fixed (seamonkey, fixed 1.1.14) [since FEDORA-2008-11534]
+CVE-2008-5500 fixed (firefox, fixed 2.0.0.19) [since FEDORA-2008-11551]
CVE-2008-5432 fixed (moodle, fixed 1.8.7,1.9.3) [since FEDORA-2008-9502]
CVE-2008-5398 fixed (tor, fixed 0.2.0.32) [since FEDORA-2008-10954]
CVE-2008-5397 fixed (tor, fixed 0.2.0.32) [since FEDORA-2008-10954]
CVE-2008-5286 ignore (cups) libpng prevents this
+CVE-2008-5252 VULNERABLE (mediawiki, fixed 1.13.3) [since mediawiki-1.13.3-41.99.fc8]
+CVE-2008-5250 VULNERABLE (mediawiki, fixed 1.13.3) [since mediawiki-1.13.3-41.99.fc8]
+CVE-2008-5249 VULNERABLE (mediawiki, fixed 1.13.3) [since mediawiki-1.13.3-41.99.fc8]
CVE-2008-5187 fixed (imlib2) #472577 [since FEDORA-2008-10296]
CVE-2008-5184 version (cups, fixed 1.3.8)
CVE-2008-5183 fixed (cups, fixed 1.3.10) [since FEDORA-2008-10911]
@@ -93,6 +106,7 @@
CVE-2008-4434 ignore (bittorrent) 6.x only
CVE-2008-4422 fixed (libxml2, fixed 2.7.2) [since FEDORA-2008-8582]
CVE-2008-4408 fixed (mediawiki, fixed 1.13.2) [since FEDORA-2008-8678]
+CVE-2008-4405 VULNERABLE (xen)
CVE-2008-4360 VULNERABLE (lighttpd, fixed 1.4.20) #464638
CVE-2008-4359 VULNERABLE (lighttpd, fixed 1.4.20) #464638
CVE-2008-4326 fixed (phpMyAdmin, fixed 2.11.9.2) [since FEDORA-2008-8286]
@@ -105,7 +119,7 @@
CVE-2008-4306 fixed (enscript) [since FEDORA-2008-9351]
CVE-2008-4298 VULNERABLE (lighttpd, fixed 1.4.20) #464638
CVE-2008-4297 VULNERABLE (mercurial, fixed 1.0.2) #464632
-CVE-2008-4242 VULNERABLE (proftpd) #464128
+CVE-2008-4242 fixed (proftpd) #464128 [since FEDORA-2009-0195]
CVE-2008-4226 fixed (libxml2) [since FEDORA-2008-9729]
CVE-2008-4225 fixed (libxml2) [since FEDORA-2008-9729]
CVE-2008-4191 fixed (emacspeak) [since FEDORA-2008-8423]
@@ -321,6 +335,9 @@
CVE-2008-2426 fixed (imlib2) [since FEDORA-2008-4842]
CVE-2008-2420 fixed (stunnel, fixed 4.24) [since FEDORA-2008-4579]
CVE-2008-2392 ignore (wordpress) issue only in certain deployments, not affected by default
+CVE-2008-2383 VULNERABLE (xterm, fixed 238) [since xterm-238-1.fc8]
+CVE-2008-2382 VULNERABLE (qemu)
+CVE-2008-2382 VULNERABLE (kvm, fixed 82)
CVE-2008-2377 ignore (gnutls, fixed 2.4.1) 2.3.5+ only
CVE-2008-2376 fixed (ruby, fixed 1.8.6-p257) [since FEDORA-2008-6094]
CVE-2008-2375 ignore (vsftpd) pre-2.0.5 versions only
@@ -791,6 +808,7 @@
CVE-2007-5746 fixed (openoffice.org, fixed 2.4) #442846 [since FEDORA-2008-3251]
CVE-2007-5745 fixed (openoffice.org, fixed 2.4) #442846 [since FEDORA-2008-3251]
CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since FEDORA-2007-3989]
+CVE-2007-5729 VULNERABLE (kvm, fixed 82)
CVE-2007-5712 version (Django, fixed 0.96.1) #362771 [since FEDORA-2007-2788]
CVE-2007-5708 version (openldap, fixed 2.3.39) #362991 [since FEDORA-2007-2796]
CVE-2007-5707 version (openldap, fixed 2.3.39) #362991 [since FEDORA-2007-2796]
More information about the Fedora-security-commits
mailing list