fedora-security/audit f8, 1.107, 1.108 f9, 1.98, 1.99 fc7, 1.263, 1.264
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv21542/audit
Modified Files:
f8 f9 fc7
Log Message:
add deluge, rb_libtorrent
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.107
retrieving revision 1.108
diff -u -r1.107 -r1.108
--- f8 30 Jan 2008 11:33:18 -0000 1.107
+++ f8 30 Jan 2008 11:52:40 -0000 1.108
@@ -10,6 +10,8 @@
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow
GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1043]
+GENERIC-MAP-NOMATCH VULNERABLE (deluge, fixed 0.5.8.3)
+GENERIC-MAP-NOMATCH VULNERABLE (rb_libtorrent)
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.98
retrieving revision 1.99
diff -u -r1.98 -r1.99
--- f9 30 Jan 2008 11:33:18 -0000 1.98
+++ f9 30 Jan 2008 11:52:40 -0000 1.99
@@ -8,8 +8,10 @@
# Up to date F9 as of 20071029
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
-GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow
+GENERIC-MAP-NOMATCH backport (SDL_image) #430696 ILBM overflow [since SDL_image-1.2.6-5.fc9]
GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9]
+GENERIC-MAP-NOMATCH version (deluge, fixed 0.5.8.3) [since deluge-0.5.8.3-1.fc9]
+GENERIC-MAP-NOMATCH backport (rb_libtorrent) [since rb_libtorrent-0.12-3.fc9]
CVE-2008-0460 VULNERABLE (mediawiki) #430289
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.263
retrieving revision 1.264
diff -u -r1.263 -r1.264
--- fc7 30 Jan 2008 11:33:18 -0000 1.263
+++ fc7 30 Jan 2008 11:52:40 -0000 1.264
@@ -11,6 +11,8 @@
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow
GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1047]
+GENERIC-MAP-NOMATCH VULNERABLE (deluge, fixed 0.5.8.3)
+GENERIC-MAP-NOMATCH VULNERABLE (rb_libtorrent)
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
16 years, 3 months
fedora-security/audit f8, 1.106, 1.107 f9, 1.97, 1.98 fc7, 1.262, 1.263
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16544/audit
Modified Files:
f8 f9 fc7
Log Message:
add / update xine-lib
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.106
retrieving revision 1.107
diff -u -r1.106 -r1.107
--- f8 29 Jan 2008 14:46:22 -0000 1.106
+++ f8 30 Jan 2008 11:33:18 -0000 1.107
@@ -9,6 +9,7 @@
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow
+GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1043]
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.97
retrieving revision 1.98
diff -u -r1.97 -r1.98
--- f9 29 Jan 2008 14:46:22 -0000 1.97
+++ f9 30 Jan 2008 11:33:18 -0000 1.98
@@ -9,6 +9,7 @@
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow
+GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9]
CVE-2008-0460 VULNERABLE (mediawiki) #430289
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.262
retrieving revision 1.263
diff -u -r1.262 -r1.263
--- fc7 29 Jan 2008 14:46:22 -0000 1.262
+++ fc7 30 Jan 2008 11:33:18 -0000 1.263
@@ -10,6 +10,7 @@
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow
+GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1047]
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
@@ -20,8 +21,8 @@
CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0469]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0333]
-CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
-CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1)
+CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-1047]
+CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-1047]
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
**CVE-2008-0194 version (wordpress, not fixed 2.0.4)
16 years, 3 months
fedora-security/audit f8, 1.105, 1.106 f9, 1.96, 1.97 fc7, 1.261, 1.262
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13890/audit
Modified Files:
f8 f9 fc7
Log Message:
SDL_image issues
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.105
retrieving revision 1.106
diff -u -r1.105 -r1.106
--- f8 29 Jan 2008 09:08:17 -0000 1.105
+++ f8 29 Jan 2008 14:46:22 -0000 1.106
@@ -8,6 +8,7 @@
# Up to date F8 as of 20080111
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
@@ -273,6 +274,7 @@
CVE-2006-5170 version (nss_ldap, fixed 183)
CVE-2006-4573 version (screen, fixed 4.0.3) #212057
CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this.
+CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430241
CVE-2006-2894 version (firefox, fixed 2.0.0.8)
CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511
CVE-2006-0987 ignore (bind) example config file only
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.96
retrieving revision 1.97
diff -u -r1.96 -r1.97
--- f9 29 Jan 2008 09:08:17 -0000 1.96
+++ f9 29 Jan 2008 14:46:22 -0000 1.97
@@ -8,6 +8,7 @@
# Up to date F9 as of 20071029
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow
CVE-2008-0460 VULNERABLE (mediawiki) #430289
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
@@ -254,6 +255,7 @@
CVE-2006-5170 version (nss_ldap, fixed 183)
CVE-2006-4573 version (screen, fixed 4.0.3) #212057
CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this.
+CVE-2006-4484 backport (SDL_image, fixed 1.2.7) #430238 [since SDL_image-1.2.6-4.fc9]
CVE-2006-2894 version (firefox, fixed 2.0.0.8)
CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511
CVE-2006-0987 ignore (bind) example config file only
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.261
retrieving revision 1.262
diff -u -r1.261 -r1.262
--- fc7 29 Jan 2008 09:08:17 -0000 1.261
+++ fc7 29 Jan 2008 14:46:22 -0000 1.262
@@ -9,6 +9,7 @@
# Up to date FC7 as of 20080111
GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
+GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
@@ -993,6 +994,7 @@
CVE-2006-4485 version (php, fixed 5.1.5)
CVE-2006-4484 version (php, fixed 5.1.5)
CVE-2006-4484 ignore (gd)
+CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430239
CVE-2006-4483 ignore (php) not linux
CVE-2006-4482 version (php, fixed 5.1.5)
CVE-2006-4481 ignore (php) safe mode isn't safe
16 years, 3 months
fedora-security/audit f8, 1.104, 1.105 f9, 1.95, 1.96 fc7, 1.260, 1.261
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31137/audit
Modified Files:
f8 f9 fc7
Log Message:
add comix
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.104
retrieving revision 1.105
diff -u -r1.104 -r1.105
--- f8 27 Jan 2008 11:26:13 -0000 1.104
+++ f8 29 Jan 2008 09:08:17 -0000 1.105
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071215
# Up to date F8 as of 20080111
+GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.95
retrieving revision 1.96
diff -u -r1.95 -r1.96
--- f9 27 Jan 2008 11:26:13 -0000 1.95
+++ f9 29 Jan 2008 09:08:17 -0000 1.96
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071211
# Up to date F9 as of 20071029
+GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
CVE-2008-0460 VULNERABLE (mediawiki) #430289
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.260
retrieving revision 1.261
diff -u -r1.260 -r1.261
--- fc7 27 Jan 2008 11:26:13 -0000 1.260
+++ fc7 29 Jan 2008 09:08:17 -0000 1.261
@@ -8,6 +8,7 @@
# Up to date CVE as of CVE email 200711215
# Up to date FC7 as of 20080111
+GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
16 years, 3 months
fedora-security/audit f8, 1.103, 1.104 f9, 1.94, 1.95 fc7, 1.259, 1.260
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv26124/audit
Modified Files:
f8 f9 fc7
Log Message:
xine-lib cleanup
fedora updates
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.103
retrieving revision 1.104
diff -u -r1.103 -r1.104
--- f8 26 Jan 2008 17:29:03 -0000 1.103
+++ f8 27 Jan 2008 11:26:13 -0000 1.104
@@ -9,7 +9,7 @@
CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
-CVE-2008-0386 VULNERABLE (xdg-utils) #429513
+CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
@@ -17,8 +17,8 @@
CVE-2008-0273 version (drupal, fixed 5.6) DRUPAL-SA-2008-006 [since FEDORA-2008-0485]
CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0485]
CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0299]
-**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
-CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1)
+CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718]
+CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718]
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
**CVE-2008-0194 version (wordpress, not fixed 2.0.4)
@@ -193,8 +193,8 @@
CVE-2007-4841 version (thunderbird) [since FEDORA-2007-3414] windows only anyway
CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364281
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
-CVE-2007-4771 VULNERABLE (icu) #430233
-CVE-2007-4770 VULNERABLE (icu) #430233
+CVE-2007-4771 fixed (icu) #430233 [since FEDORA-2008-1036]
+CVE-2007-4770 fixed (icu) #430233 [since FEDORA-2008-1036]
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
CVE-2007-4752 version (openssh, fixed 4.7) #280461
CVE-2007-4619 version (flac, fixed 1.2) #332581
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.94
retrieving revision 1.95
diff -u -r1.94 -r1.95
--- f9 26 Jan 2008 17:29:03 -0000 1.94
+++ f9 27 Jan 2008 11:26:13 -0000 1.95
@@ -17,7 +17,7 @@
CVE-2008-0272 version (drupal, fixed 5.6) [since drupal-5.6-1.fc9] DRUPAL-SA-2008-005
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
CVE-2008-0252 backport (python-cherrypy) [since python-cherrypy-2.2.1-8.fc9]
-**CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
+CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9]
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.259
retrieving revision 1.260
diff -u -r1.259 -r1.260
--- fc7 26 Jan 2008 17:29:03 -0000 1.259
+++ fc7 27 Jan 2008 11:26:13 -0000 1.260
@@ -10,7 +10,7 @@
CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
-CVE-2008-0386 VULNERABLE (xdg-utils) #429513
+CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644]
CVE-2008-0274 version (drupal, fixed 5.6) DRUPAL-SA-2008-007 [since FEDORA-2008-0469]
@@ -18,7 +18,7 @@
CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0469]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0333]
-**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
+CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1)
CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1)
**CVE-2008-0196 version (wordpress, not fixed 2.0.11)
CVE-2008-0195 ignore (wordpress) File path is not a sensitive information
@@ -239,8 +239,8 @@
CVE-2007-4828 version (mediawiki, fixed 1.11.0, 1.10.2, 1.9.4) #287881 [since FEDORA-2007-2189]
CVE-2007-4826 version (quagga, fixed 0.99.9) [since FEDORA-2007-2196]
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
-CVE-2007-4771 VULNERABLE (icu) #430232
-CVE-2007-4770 VULNERABLE (icu) #430232
+CVE-2007-4771 fixed (icu) #430232 [since FEDORA-2008-1076]
+CVE-2007-4770 fixed (icu) #430232 [since FEDORA-2008-1076]
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
CVE-2007-4768 VULNERABLE (pcre, fixed 7.3) #378411
CVE-2007-4767 VULNERABLE (pcre, fixed 7.3) #378411
16 years, 3 months
fedora-security/audit f8, 1.102, 1.103 f9, 1.93, 1.94 fc7, 1.258, 1.259
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27862/audit
Modified Files:
f8 f9 fc7
Log Message:
add mediawiki
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.102
retrieving revision 1.103
diff -u -r1.102 -r1.103
--- f8 25 Jan 2008 14:27:44 -0000 1.102
+++ f8 26 Jan 2008 17:29:03 -0000 1.103
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071215
# Up to date F8 as of 20080111
+CVE-2008-0460 VULNERABLE (mediawiki) #430288
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 VULNERABLE (xdg-utils) #429513
CVE-2008-0364 ignore (bittorrent) Windows only
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.93
retrieving revision 1.94
diff -u -r1.93 -r1.94
--- f9 25 Jan 2008 14:27:44 -0000 1.93
+++ f9 26 Jan 2008 17:29:03 -0000 1.94
@@ -7,6 +7,7 @@
# Up to date CVE as of CVE email 20071211
# Up to date F9 as of 20071029
+CVE-2008-0460 VULNERABLE (mediawiki) #430289
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
CVE-2008-0364 ignore (bittorrent) Windows only
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.258
retrieving revision 1.259
diff -u -r1.258 -r1.259
--- fc7 25 Jan 2008 14:27:44 -0000 1.258
+++ fc7 26 Jan 2008 17:29:03 -0000 1.259
@@ -8,6 +8,7 @@
# Up to date CVE as of CVE email 200711215
# Up to date FC7 as of 20080111
+CVE-2008-0460 VULNERABLE (mediawiki) #430287
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0386 VULNERABLE (xdg-utils) #429513
CVE-2008-0364 ignore (bittorrent) Windows only
16 years, 3 months
fedora-security/audit f8, 1.101, 1.102 f9, 1.92, 1.93 fc7, 1.257, 1.258
by fedora-security-commits@redhat.com
Author: lkundrak
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv4376
Modified Files:
f8 f9 fc7
Log Message:
xdg-utils
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.101
retrieving revision 1.102
diff -u -r1.101 -r1.102
--- f8 25 Jan 2008 13:43:45 -0000 1.101
+++ f8 25 Jan 2008 14:27:44 -0000 1.102
@@ -8,6 +8,7 @@
# Up to date F8 as of 20080111
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
+CVE-2008-0386 VULNERABLE (xdg-utils) #429513
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722]
CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.92
retrieving revision 1.93
diff -u -r1.92 -r1.93
--- f9 25 Jan 2008 13:38:55 -0000 1.92
+++ f9 25 Jan 2008 14:27:44 -0000 1.93
@@ -8,6 +8,7 @@
# Up to date F9 as of 20071029
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
+CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428730 [since python-paramiko-1.7.1-3.fc9]
CVE-2008-0274 version (drupal, fixed 5.6) [since drupal-5.6-1.fc9] DRUPAL-SA-2008-007
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.257
retrieving revision 1.258
diff -u -r1.257 -r1.258
--- fc7 25 Jan 2008 13:43:45 -0000 1.257
+++ fc7 25 Jan 2008 14:27:44 -0000 1.258
@@ -9,6 +9,7 @@
# Up to date FC7 as of 20080111
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
+CVE-2008-0386 VULNERABLE (xdg-utils) #429513
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644]
CVE-2008-0274 version (drupal, fixed 5.6) DRUPAL-SA-2008-007 [since FEDORA-2008-0469]
16 years, 3 months
fedora-security/audit f8, 1.100, 1.101 fc7, 1.256, 1.257
by fedora-security-commits@redhat.com
Author: lkundrak
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28682
Modified Files:
f8 fc7
Log Message:
pulseaudio fixed
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.100
retrieving revision 1.101
diff -u -r1.100 -r1.101
--- f8 25 Jan 2008 13:38:55 -0000 1.100
+++ f8 25 Jan 2008 13:43:45 -0000 1.101
@@ -29,7 +29,7 @@
CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610]
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199]
-CVE-2008-0008 VULNERABLE (pulseaudio) #425481
+CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994]
CVE-2008-0006 fixed (libXfont) #429132 [since FEDORA-2008-0794]
CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427982
CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427829 [since FEDORA-2008-0572]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.256
retrieving revision 1.257
diff -u -r1.256 -r1.257
--- fc7 25 Jan 2008 13:38:55 -0000 1.256
+++ fc7 25 Jan 2008 13:43:45 -0000 1.257
@@ -30,7 +30,7 @@
CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610]
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198]
-CVE-2008-0008 VULNERABLE (pulseaudio) #425481
+CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994]
CVE-2008-0006 fixed (libXfont) #429131 [since FEDORA-2008-0891]
CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427983
CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427828 [since FEDORA-2008-0506]
16 years, 3 months
fedora-security/audit f8, 1.99, 1.100 f9, 1.91, 1.92 fc7, 1.255, 1.256
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28536/audit
Modified Files:
f8 f9 fc7
Log Message:
add icu
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.99
retrieving revision 1.100
diff -u -r1.99 -r1.100
--- f8 24 Jan 2008 07:45:41 -0000 1.99
+++ f8 25 Jan 2008 13:38:55 -0000 1.100
@@ -191,6 +191,8 @@
CVE-2007-4841 version (thunderbird) [since FEDORA-2007-3414] windows only anyway
CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364281
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
+CVE-2007-4771 VULNERABLE (icu) #430233
+CVE-2007-4770 VULNERABLE (icu) #430233
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478]
CVE-2007-4752 version (openssh, fixed 4.7) #280461
CVE-2007-4619 version (flac, fixed 1.2) #332581
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.91
retrieving revision 1.92
diff -u -r1.91 -r1.92
--- f9 24 Jan 2008 07:45:41 -0000 1.91
+++ f9 25 Jan 2008 13:38:55 -0000 1.92
@@ -184,6 +184,8 @@
CVE-2007-4990 version (xorg-x11-xfs, fixed 1.0.5)
CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364291
CVE-2007-4772 version (postgresql, fixed 8.2.6) #427774 [since postgresql-8.2.6-1.fc9]
+CVE-2007-4771 backport (icu) [since icu-3.8.1-3.fc9]
+CVE-2007-4770 backport (icu) [since icu-3.8.1-3.fc9]
CVE-2007-4769 version (postgresql, fixed 8.2.6) #427774 [since postgresql-8.2.6-1.fc9]
CVE-2007-4575 version (openoffice.org, fixed 2.3.1) [since openoffice.org-2.3.1-9.1.fc9]
CVE-2007-4752 version (openssh, fixed 4.7) #280461
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.255
retrieving revision 1.256
diff -u -r1.255 -r1.256
--- fc7 24 Jan 2008 07:45:41 -0000 1.255
+++ fc7 25 Jan 2008 13:38:55 -0000 1.256
@@ -237,6 +237,8 @@
CVE-2007-4828 version (mediawiki, fixed 1.11.0, 1.10.2, 1.9.4) #287881 [since FEDORA-2007-2189]
CVE-2007-4826 version (quagga, fixed 0.99.9) [since FEDORA-2007-2196]
CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
+CVE-2007-4771 VULNERABLE (icu) #430232
+CVE-2007-4770 VULNERABLE (icu) #430232
CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552]
CVE-2007-4768 VULNERABLE (pcre, fixed 7.3) #378411
CVE-2007-4767 VULNERABLE (pcre, fixed 7.3) #378411
16 years, 3 months
fedora-security/audit f8, 1.98, 1.99 f9, 1.90, 1.91 fc7, 1.254, 1.255
by fedora-security-commits@redhat.com
Author: thoger
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv6433/audit
Modified Files:
f8 f9 fc7
Log Message:
note tomcat cve id, fix bug ids
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.98
retrieving revision 1.99
diff -u -r1.98 -r1.99
--- f8 24 Jan 2008 07:35:31 -0000 1.98
+++ f8 24 Jan 2008 07:45:41 -0000 1.99
@@ -7,7 +7,6 @@
# Up to date CVE as of CVE email 20071215
# Up to date F8 as of 20080111
-GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429903
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722]
@@ -26,6 +25,7 @@
CVE-2008-0191 ignore (wordpress) File path is not a sensitive information
CVE-2008-0172 VULNERABLE (boost) #428975 [since FEDORA-2008-0754]
CVE-2008-0171 VULNERABLE (boost) #428975 [since FEDORA-2008-0754]
+CVE-2008-0128 VULNERABLE (tomcat5) #429904
CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610]
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199]
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.90
retrieving revision 1.91
diff -u -r1.90 -r1.91
--- f9 24 Jan 2008 07:35:31 -0000 1.90
+++ f9 24 Jan 2008 07:45:41 -0000 1.91
@@ -7,7 +7,6 @@
# Up to date CVE as of CVE email 20071211
# Up to date F9 as of 20071029
-GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429905
CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428730 [since python-paramiko-1.7.1-3.fc9]
@@ -26,6 +25,7 @@
CVE-2008-0191 ignore (wordpress) File path is not a sensitive information
CVE-2008-0172 backport (boost) #428976 [since boost-1.34.1-7.fc9]
CVE-2008-0171 backport (boost) #428976 [since boost-1.34.1-7.fc9]
+CVE-2008-0128 VULNERABLE (tomcat5) #429905
CVE-2008-0123 fixed (moodle) #428731 [since moodle-1.8.4-1.fc9]
CVE-2008-0122 VULNERABLE (bind) #429534
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since asterisk-1.4.17-1.fc9]
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.254
retrieving revision 1.255
diff -u -r1.254 -r1.255
--- fc7 24 Jan 2008 07:35:31 -0000 1.254
+++ fc7 24 Jan 2008 07:45:41 -0000 1.255
@@ -8,7 +8,6 @@
# Up to date CVE as of CVE email 200711215
# Up to date FC7 as of 20080111
-GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429904
CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796]
CVE-2008-0364 ignore (bittorrent) Windows only
CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644]
@@ -27,6 +26,7 @@
CVE-2008-0191 ignore (wordpress) File path is not a sensitive information
CVE-2008-0172 fixed (boost) #428974 [since FEDORA-2008-0880]
CVE-2008-0171 fixed (boost) #428974 [since FEDORA-2008-0880]
+CVE-2008-0128 VULNERABLE (tomcat5) #429903
CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610]
CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904]
CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198]
16 years, 3 months