Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv26124/audit
Modified Files:
f8 f9 fc7
Log Message:
xine-lib cleanup
fedora updates
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.103
retrieving revision 1.104
diff -u -r1.103 -r1.104
--- f8 26 Jan 2008 17:29:03 -0000 1.103
+++ f8 27 Jan 2008 11:26:13 -0000 1.104
@@ -9,7 +9,7 @@
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
-CVE-2008-0386 VULNERABLE (xdg-utils) #429513
+CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
@@ -17,8 +17,8 @@
CVE-2008-0273 version (drupal, fixed 5.6) DRUPAL-SA-2008-006 [since FEDORA-2008-0485]
CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0485]
CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0299]
-**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
-CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1)
+CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718]
+CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718]
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
**CVE-2008-0194 version (wordpress, not fixed 2.0.4)
@@ -193,8 +193,8 @@
CVE-2007-4841 version (thunderbird) [since FEDORA-2007-3414] windows only anyway
CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364281
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
-CVE-2007-4771 VULNERABLE (icu) #430233
-CVE-2007-4770 VULNERABLE (icu) #430233
+CVE-2007-4771 fixed (icu) #430233 [since FEDORA-2008-1036]
+CVE-2007-4770 fixed (icu) #430233 [since FEDORA-2008-1036]
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
CVE-2007-4752 version (openssh, fixed 4.7) #280461
CVE-2007-4619 version (flac, fixed 1.2) #332581
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.94
retrieving revision 1.95
diff -u -r1.94 -r1.95
--- f9 26 Jan 2008 17:29:03 -0000 1.94
+++ f9 27 Jan 2008 11:26:13 -0000 1.95
@@ -17,7 +17,7 @@
CVE-2008-0272 version (drupal, fixed 5.6) [since drupal-5.6-1.fc9] DRUPAL-SA-2008-005
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
CVE-2008-0252 backport (python-cherrypy) [since python-cherrypy-2.2.1-8.fc9]
-**CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
+CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.259
retrieving revision 1.260
diff -u -r1.259 -r1.260
--- fc7 26 Jan 2008 17:29:03 -0000 1.259
+++ fc7 27 Jan 2008 11:26:13 -0000 1.260
@@ -10,7 +10,7 @@
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
-CVE-2008-0386 VULNERABLE (xdg-utils) #429513
+CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644]
CVE-2008-0274 version (drupal, fixed 5.6) DRUPAL-SA-2008-007 [since FEDORA-2008-0469]
@@ -18,7 +18,7 @@
CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0469]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0333]
-**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
+CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1)
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
@@ -239,8 +239,8 @@
CVE-2007-4828 version (mediawiki, fixed 1.11.0, 1.10.2, 1.9.4) #287881 [since FEDORA-2007-2189]
CVE-2007-4826 version (quagga, fixed 0.99.9) [since FEDORA-2007-2196]
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
-CVE-2007-4771 VULNERABLE (icu) #430232
-CVE-2007-4770 VULNERABLE (icu) #430232
+CVE-2007-4771 fixed (icu) #430232 [since FEDORA-2008-1076]
+CVE-2007-4770 fixed (icu) #430232 [since FEDORA-2008-1076]
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
CVE-2007-4768 VULNERABLE (pcre, fixed 7.3) #378411
CVE-2007-4767 VULNERABLE (pcre, fixed 7.3) #378411