January 2008 - security-commits - Fedora Mailing-Lists

fedora-security/audit f8, 1.107, 1.108 f9, 1.98, 1.99 fc7, 1.263, 1.264

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv21542/audit Modified Files: f8 f9 fc7 Log Message: add deluge, rb_libtorrent Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.107 retrieving revision 1.108 diff -u -r1.107 -r1.108 --- f8 30 Jan 2008 11:33:18 -0000 1.107 +++ f8 30 Jan 2008 11:52:40 -0000 1.108 @@ -10,6 +10,8 @@ GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1043] +GENERIC-MAP-NOMATCH VULNERABLE (deluge, fixed 0.5.8.3) +GENERIC-MAP-NOMATCH VULNERABLE (rb_libtorrent) CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.98 retrieving revision 1.99 diff -u -r1.98 -r1.99 --- f9 30 Jan 2008 11:33:18 -0000 1.98 +++ f9 30 Jan 2008 11:52:40 -0000 1.99 @@ -8,8 +8,10 @@ # Up to date F9 as of 20071029 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 -GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow +GENERIC-MAP-NOMATCH backport (SDL_image) #430696 ILBM overflow [since SDL_image-1.2.6-5.fc9] GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9] +GENERIC-MAP-NOMATCH version (deluge, fixed 0.5.8.3) [since deluge-0.5.8.3-1.fc9] +GENERIC-MAP-NOMATCH backport (rb_libtorrent) [since rb_libtorrent-0.12-3.fc9] CVE-2008-0460 VULNERABLE (mediawiki) #430289 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.263 retrieving revision 1.264 diff -u -r1.263 -r1.264 --- fc7 30 Jan 2008 11:33:18 -0000 1.263 +++ fc7 30 Jan 2008 11:52:40 -0000 1.264 @@ -11,6 +11,8 @@ GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1047] +GENERIC-MAP-NOMATCH VULNERABLE (deluge, fixed 0.5.8.3) +GENERIC-MAP-NOMATCH VULNERABLE (rb_libtorrent) CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.106, 1.107 f9, 1.97, 1.98 fc7, 1.262, 1.263

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv16544/audit Modified Files: f8 f9 fc7 Log Message: add / update xine-lib Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.106 retrieving revision 1.107 diff -u -r1.106 -r1.107 --- f8 29 Jan 2008 14:46:22 -0000 1.106 +++ f8 30 Jan 2008 11:33:18 -0000 1.107 @@ -9,6 +9,7 @@ GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow +GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1043] CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.97 retrieving revision 1.98 diff -u -r1.97 -r1.98 --- f9 29 Jan 2008 14:46:22 -0000 1.97 +++ f9 30 Jan 2008 11:33:18 -0000 1.98 @@ -9,6 +9,7 @@ GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow +GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since xine-lib-1.1.10-2.fc9] CVE-2008-0460 VULNERABLE (mediawiki) #430289 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.262 retrieving revision 1.263 diff -u -r1.262 -r1.263 --- fc7 29 Jan 2008 14:46:22 -0000 1.262 +++ fc7 30 Jan 2008 11:33:18 -0000 1.263 @@ -10,6 +10,7 @@ GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow +GENERIC-MAP-NOMATCH version (xine-lib, fixed 1.1.10) [since FEDORA-2008-1047] CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] @@ -20,8 +21,8 @@ CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0469] CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926 CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0333] -CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1) -CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1) +CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-1047] +CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-1047] **CVE-2008-0196 version (wordpress, not fixed 2.0.11) CVE-2008-0195 ignore (wordpress) File path is not a sensitive information **CVE-2008-0194 version (wordpress, not fixed 2.0.4)

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.105, 1.106 f9, 1.96, 1.97 fc7, 1.261, 1.262

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv13890/audit Modified Files: f8 f9 fc7 Log Message: SDL_image issues Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.105 retrieving revision 1.106 diff -u -r1.105 -r1.106 --- f8 29 Jan 2008 09:08:17 -0000 1.105 +++ f8 29 Jan 2008 14:46:22 -0000 1.106 @@ -8,6 +8,7 @@ # Up to date F8 as of 20080111 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 +GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430694 ILBM overflow CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] @@ -273,6 +274,7 @@ CVE-2006-5170 version (nss_ldap, fixed 183) CVE-2006-4573 version (screen, fixed 4.0.3) #212057 CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this. +CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430241 CVE-2006-2894 version (firefox, fixed 2.0.0.8) CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511 CVE-2006-0987 ignore (bind) example config file only Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.96 retrieving revision 1.97 diff -u -r1.96 -r1.97 --- f9 29 Jan 2008 09:08:17 -0000 1.96 +++ f9 29 Jan 2008 14:46:22 -0000 1.97 @@ -8,6 +8,7 @@ # Up to date F9 as of 20071029 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 +GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430696 ILBM overflow CVE-2008-0460 VULNERABLE (mediawiki) #430289 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] @@ -254,6 +255,7 @@ CVE-2006-5170 version (nss_ldap, fixed 183) CVE-2006-4573 version (screen, fixed 4.0.3) #212057 CVE-2006-4561 ignore (firefox) Needs DNS spoofing; https is for this. +CVE-2006-4484 backport (SDL_image, fixed 1.2.7) #430238 [since SDL_image-1.2.6-4.fc9] CVE-2006-2894 version (firefox, fixed 2.0.0.8) CVE-2006-2894 version (seamonkey, fixed 1.1.5) #194511 CVE-2006-0987 ignore (bind) example config file only Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.261 retrieving revision 1.262 diff -u -r1.261 -r1.262 --- fc7 29 Jan 2008 09:08:17 -0000 1.261 +++ fc7 29 Jan 2008 14:46:22 -0000 1.262 @@ -9,6 +9,7 @@ # Up to date FC7 as of 20080111 GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 +GENERIC-MAP-NOMATCH VULNERABLE (SDL_image) #430695 ILBM overflow CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] @@ -993,6 +994,7 @@ CVE-2006-4485 version (php, fixed 5.1.5) CVE-2006-4484 version (php, fixed 5.1.5) CVE-2006-4484 ignore (gd) +CVE-2006-4484 VULNERABLE (SDL_image, fixed 1.2.7) #430239 CVE-2006-4483 ignore (php) not linux CVE-2006-4482 version (php, fixed 5.1.5) CVE-2006-4481 ignore (php) safe mode isn't safe

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.104, 1.105 f9, 1.95, 1.96 fc7, 1.260, 1.261

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv31137/audit Modified Files: f8 f9 fc7 Log Message: add comix Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.104 retrieving revision 1.105 diff -u -r1.104 -r1.105 --- f8 27 Jan 2008 11:26:13 -0000 1.104 +++ f8 29 Jan 2008 09:08:17 -0000 1.105 @@ -7,6 +7,7 @@ # Up to date CVE as of CVE email 20071215 # Up to date F8 as of 20080111 +GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.95 retrieving revision 1.96 diff -u -r1.95 -r1.96 --- f9 27 Jan 2008 11:26:13 -0000 1.95 +++ f9 29 Jan 2008 09:08:17 -0000 1.96 @@ -7,6 +7,7 @@ # Up to date CVE as of CVE email 20071211 # Up to date F9 as of 20071029 +GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 CVE-2008-0460 VULNERABLE (mediawiki) #430289 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.260 retrieving revision 1.261 diff -u -r1.260 -r1.261 --- fc7 27 Jan 2008 11:26:13 -0000 1.260 +++ fc7 29 Jan 2008 09:08:17 -0000 1.261 @@ -8,6 +8,7 @@ # Up to date CVE as of CVE email 200711215 # Up to date FC7 as of 20080111 +GENERIC-MAP-NOMATCH VULNERABLE (comix) multiple issues tracked via #430635 CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015]

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.103, 1.104 f9, 1.94, 1.95 fc7, 1.259, 1.260

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv26124/audit Modified Files: f8 f9 fc7 Log Message: xine-lib cleanup fedora updates Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.103 retrieving revision 1.104 diff -u -r1.103 -r1.104 --- f8 26 Jan 2008 17:29:03 -0000 1.103 +++ f8 27 Jan 2008 11:26:13 -0000 1.104 @@ -9,7 +9,7 @@ CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] -CVE-2008-0386 VULNERABLE (xdg-utils) #429513 +CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722] CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926 @@ -17,8 +17,8 @@ CVE-2008-0273 version (drupal, fixed 5.6) DRUPAL-SA-2008-006 [since FEDORA-2008-0485] CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0485] CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0299] -**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1) -CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1) +CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718] +CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since FEDORA-2008-0718] **CVE-2008-0196 version (wordpress, not fixed 2.0.11) CVE-2008-0195 ignore (wordpress) File path is not a sensitive information **CVE-2008-0194 version (wordpress, not fixed 2.0.4) @@ -193,8 +193,8 @@ CVE-2007-4841 version (thunderbird) [since FEDORA-2007-3414] windows only anyway CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364281 CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478] -CVE-2007-4771 VULNERABLE (icu) #430233 -CVE-2007-4770 VULNERABLE (icu) #430233 +CVE-2007-4771 fixed (icu) #430233 [since FEDORA-2008-1036] +CVE-2007-4770 fixed (icu) #430233 [since FEDORA-2008-1036] CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478] CVE-2007-4752 version (openssh, fixed 4.7) #280461 CVE-2007-4619 version (flac, fixed 1.2) #332581 Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.94 retrieving revision 1.95 diff -u -r1.94 -r1.95 --- f9 26 Jan 2008 17:29:03 -0000 1.94 +++ f9 27 Jan 2008 11:26:13 -0000 1.95 @@ -17,7 +17,7 @@ CVE-2008-0272 version (drupal, fixed 5.6) [since drupal-5.6-1.fc9] DRUPAL-SA-2008-005 CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926 CVE-2008-0252 backport (python-cherrypy) [since python-cherrypy-2.2.1-8.fc9] -**CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9] +CVE-2008-0238 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9] CVE-2008-0225 version (xine-lib, fixed 1.1.9.1) [since xine-lib-1.1.9.1-1.fc9] **CVE-2008-0196 version (wordpress, not fixed 2.0.11) CVE-2008-0195 ignore (wordpress) File path is not a sensitive information Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.259 retrieving revision 1.260 diff -u -r1.259 -r1.260 --- fc7 26 Jan 2008 17:29:03 -0000 1.259 +++ fc7 27 Jan 2008 11:26:13 -0000 1.260 @@ -10,7 +10,7 @@ CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] -CVE-2008-0386 VULNERABLE (xdg-utils) #429513 +CVE-2008-0386 fixed (xdg-utils) #429513 [since FEDORA-2008-1015] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644] CVE-2008-0274 version (drupal, fixed 5.6) DRUPAL-SA-2008-007 [since FEDORA-2008-0469] @@ -18,7 +18,7 @@ CVE-2008-0272 version (drupal, fixed 5.6) DRUPAL-SA-2008-005 [since FEDORA-2008-0469] CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926 CVE-2008-0252 backport (python-cherrypy) [since FEDORA-2008-0333] -**CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1) +CVE-2008-0238 VULNERABLE (xine-lib, fixed 1.1.9.1) CVE-2008-0225 VULNERABLE (xine-lib, fixed 1.1.9.1) **CVE-2008-0196 version (wordpress, not fixed 2.0.11) CVE-2008-0195 ignore (wordpress) File path is not a sensitive information @@ -239,8 +239,8 @@ CVE-2007-4828 version (mediawiki, fixed 1.11.0, 1.10.2, 1.9.4) #287881 [since FEDORA-2007-2189] CVE-2007-4826 version (quagga, fixed 0.99.9) [since FEDORA-2007-2196] CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552] -CVE-2007-4771 VULNERABLE (icu) #430232 -CVE-2007-4770 VULNERABLE (icu) #430232 +CVE-2007-4771 fixed (icu) #430232 [since FEDORA-2008-1076] +CVE-2007-4770 fixed (icu) #430232 [since FEDORA-2008-1076] CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552] CVE-2007-4768 VULNERABLE (pcre, fixed 7.3) #378411 CVE-2007-4767 VULNERABLE (pcre, fixed 7.3) #378411

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.102, 1.103 f9, 1.93, 1.94 fc7, 1.258, 1.259

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27862/audit Modified Files: f8 f9 fc7 Log Message: add mediawiki Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.102 retrieving revision 1.103 diff -u -r1.102 -r1.103 --- f8 25 Jan 2008 14:27:44 -0000 1.102 +++ f8 26 Jan 2008 17:29:03 -0000 1.103 @@ -7,6 +7,7 @@ # Up to date CVE as of CVE email 20071215 # Up to date F8 as of 20080111 +CVE-2008-0460 VULNERABLE (mediawiki) #430288 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 VULNERABLE (xdg-utils) #429513 CVE-2008-0364 ignore (bittorrent) Windows only Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.93 retrieving revision 1.94 diff -u -r1.93 -r1.94 --- f9 25 Jan 2008 14:27:44 -0000 1.93 +++ f9 26 Jan 2008 17:29:03 -0000 1.94 @@ -7,6 +7,7 @@ # Up to date CVE as of CVE email 20071211 # Up to date F9 as of 20071029 +CVE-2008-0460 VULNERABLE (mediawiki) #430289 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] CVE-2008-0364 ignore (bittorrent) Windows only Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.258 retrieving revision 1.259 diff -u -r1.258 -r1.259 --- fc7 25 Jan 2008 14:27:44 -0000 1.258 +++ fc7 26 Jan 2008 17:29:03 -0000 1.259 @@ -8,6 +8,7 @@ # Up to date CVE as of CVE email 200711215 # Up to date FC7 as of 20080111 +CVE-2008-0460 VULNERABLE (mediawiki) #430287 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0386 VULNERABLE (xdg-utils) #429513 CVE-2008-0364 ignore (bittorrent) Windows only

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.101, 1.102 f9, 1.92, 1.93 fc7, 1.257, 1.258

by fedora-security-commits＠redhat.com

Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv4376 Modified Files: f8 f9 fc7 Log Message: xdg-utils Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.101 retrieving revision 1.102 diff -u -r1.101 -r1.102 --- f8 25 Jan 2008 13:43:45 -0000 1.101 +++ f8 25 Jan 2008 14:27:44 -0000 1.102 @@ -8,6 +8,7 @@ # Up to date F8 as of 20080111 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] +CVE-2008-0386 VULNERABLE (xdg-utils) #429513 CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722] CVE-2008-0285 ignore (ngircd) Not yet in Fedora, review request #234926 Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.92 retrieving revision 1.93 diff -u -r1.92 -r1.93 --- f9 25 Jan 2008 13:38:55 -0000 1.92 +++ f9 25 Jan 2008 14:27:44 -0000 1.93 @@ -8,6 +8,7 @@ # Up to date F9 as of 20071029 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] +CVE-2008-0386 fixed (xdg-utils) #429513 [since xdg-utils-1_0_2-4_fc9] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428730 [since python-paramiko-1.7.1-3.fc9] CVE-2008-0274 version (drupal, fixed 5.6) [since drupal-5.6-1.fc9] DRUPAL-SA-2008-007 Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.257 retrieving revision 1.258 diff -u -r1.257 -r1.258 --- fc7 25 Jan 2008 13:43:45 -0000 1.257 +++ fc7 25 Jan 2008 14:27:44 -0000 1.258 @@ -9,6 +9,7 @@ # Up to date FC7 as of 20080111 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] +CVE-2008-0386 VULNERABLE (xdg-utils) #429513 CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644] CVE-2008-0274 version (drupal, fixed 5.6) DRUPAL-SA-2008-007 [since FEDORA-2008-0469]

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.100, 1.101 fc7, 1.256, 1.257

by fedora-security-commits＠redhat.com

Author: lkundrak Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28682 Modified Files: f8 fc7 Log Message: pulseaudio fixed Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.100 retrieving revision 1.101 diff -u -r1.100 -r1.101 --- f8 25 Jan 2008 13:38:55 -0000 1.100 +++ f8 25 Jan 2008 13:43:45 -0000 1.101 @@ -29,7 +29,7 @@ CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199] -CVE-2008-0008 VULNERABLE (pulseaudio) #425481 +CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994] CVE-2008-0006 fixed (libXfont) #429132 [since FEDORA-2008-0794] CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427982 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427829 [since FEDORA-2008-0572] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.256 retrieving revision 1.257 diff -u -r1.256 -r1.257 --- fc7 25 Jan 2008 13:38:55 -0000 1.256 +++ fc7 25 Jan 2008 13:43:45 -0000 1.257 @@ -30,7 +30,7 @@ CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198] -CVE-2008-0008 VULNERABLE (pulseaudio) #425481 +CVE-2008-0008 fixed (pulseaudio) #425481 [since FEDORA-2008-0994] CVE-2008-0006 fixed (libXfont) #429131 [since FEDORA-2008-0891] CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427983 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427828 [since FEDORA-2008-0506]

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.99, 1.100 f9, 1.91, 1.92 fc7, 1.255, 1.256

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28536/audit Modified Files: f8 f9 fc7 Log Message: add icu Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.99 retrieving revision 1.100 diff -u -r1.99 -r1.100 --- f8 24 Jan 2008 07:45:41 -0000 1.99 +++ f8 25 Jan 2008 13:38:55 -0000 1.100 @@ -191,6 +191,8 @@ CVE-2007-4841 version (thunderbird) [since FEDORA-2007-3414] windows only anyway CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364281 CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478] +CVE-2007-4771 VULNERABLE (icu) #430233 +CVE-2007-4770 VULNERABLE (icu) #430233 CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427773 [since FEDORA-2008-0478] CVE-2007-4752 version (openssh, fixed 4.7) #280461 CVE-2007-4619 version (flac, fixed 1.2) #332581 Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.91 retrieving revision 1.92 diff -u -r1.91 -r1.92 --- f9 24 Jan 2008 07:45:41 -0000 1.91 +++ f9 25 Jan 2008 13:38:55 -0000 1.92 @@ -184,6 +184,8 @@ CVE-2007-4990 version (xorg-x11-xfs, fixed 1.0.5) CVE-2007-4829 VULNERABLE (perl-Archive-Tar, not fixed upstream) #364291 CVE-2007-4772 version (postgresql, fixed 8.2.6) #427774 [since postgresql-8.2.6-1.fc9] +CVE-2007-4771 backport (icu) [since icu-3.8.1-3.fc9] +CVE-2007-4770 backport (icu) [since icu-3.8.1-3.fc9] CVE-2007-4769 version (postgresql, fixed 8.2.6) #427774 [since postgresql-8.2.6-1.fc9] CVE-2007-4575 version (openoffice.org, fixed 2.3.1) [since openoffice.org-2.3.1-9.1.fc9] CVE-2007-4752 version (openssh, fixed 4.7) #280461 Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.255 retrieving revision 1.256 diff -u -r1.255 -r1.256 --- fc7 24 Jan 2008 07:45:41 -0000 1.255 +++ fc7 25 Jan 2008 13:38:55 -0000 1.256 @@ -237,6 +237,8 @@ CVE-2007-4828 version (mediawiki, fixed 1.11.0, 1.10.2, 1.9.4) #287881 [since FEDORA-2007-2189] CVE-2007-4826 version (quagga, fixed 0.99.9) [since FEDORA-2007-2196] CVE-2007-4772 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552] +CVE-2007-4771 VULNERABLE (icu) #430232 +CVE-2007-4770 VULNERABLE (icu) #430232 CVE-2007-4769 fixed (postgresql, fixed 8.2.6) #427772 [since FEDORA-2008-0552] CVE-2007-4768 VULNERABLE (pcre, fixed 7.3) #378411 CVE-2007-4767 VULNERABLE (pcre, fixed 7.3) #378411

16 years, 3 months

1
0
0 / 0

fedora-security/audit f8, 1.98, 1.99 f9, 1.90, 1.91 fc7, 1.254, 1.255

by fedora-security-commits＠redhat.com

Author: thoger Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv6433/audit Modified Files: f8 f9 fc7 Log Message: note tomcat cve id, fix bug ids Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.98 retrieving revision 1.99 diff -u -r1.98 -r1.99 --- f8 24 Jan 2008 07:35:31 -0000 1.98 +++ f8 24 Jan 2008 07:45:41 -0000 1.99 @@ -7,7 +7,6 @@ # Up to date CVE as of CVE email 20071215 # Up to date F8 as of 20080111 -GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429903 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428728 [since FEDORA-2008-0722] @@ -26,6 +25,7 @@ CVE-2008-0191 ignore (wordpress) File path is not a sensitive information CVE-2008-0172 VULNERABLE (boost) #428975 [since FEDORA-2008-0754] CVE-2008-0171 VULNERABLE (boost) #428975 [since FEDORA-2008-0754] +CVE-2008-0128 VULNERABLE (tomcat5) #429904 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199] Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.90 retrieving revision 1.91 diff -u -r1.90 -r1.91 --- f9 24 Jan 2008 07:35:31 -0000 1.90 +++ f9 24 Jan 2008 07:45:41 -0000 1.91 @@ -7,7 +7,6 @@ # Up to date CVE as of CVE email 20071211 # Up to date F9 as of 20071029 -GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429905 CVE-2008-0404 fixed (mantis) #429552 [since mantis-1.1.1-1.fc9] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428730 [since python-paramiko-1.7.1-3.fc9] @@ -26,6 +25,7 @@ CVE-2008-0191 ignore (wordpress) File path is not a sensitive information CVE-2008-0172 backport (boost) #428976 [since boost-1.34.1-7.fc9] CVE-2008-0171 backport (boost) #428976 [since boost-1.34.1-7.fc9] +CVE-2008-0128 VULNERABLE (tomcat5) #429905 CVE-2008-0123 fixed (moodle) #428731 [since moodle-1.8.4-1.fc9] CVE-2008-0122 VULNERABLE (bind) #429534 CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since asterisk-1.4.17-1.fc9] Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.254 retrieving revision 1.255 diff -u -r1.254 -r1.255 --- fc7 24 Jan 2008 07:35:31 -0000 1.254 +++ fc7 24 Jan 2008 07:45:41 -0000 1.255 @@ -8,7 +8,6 @@ # Up to date CVE as of CVE email 200711215 # Up to date FC7 as of 20080111 -GENERIC-MAP-NOMATCH VULNERABLE (tomcat5) #429904 CVE-2008-0404 fixed (mantis) #429552 [since FEDORA-2008-0796] CVE-2008-0364 ignore (bittorrent) Windows only CVE-2008-0299 fixed (python-paramiko) #428729 [since FEDORA-2008-0644] @@ -27,6 +26,7 @@ CVE-2008-0191 ignore (wordpress) File path is not a sensitive information CVE-2008-0172 fixed (boost) #428974 [since FEDORA-2008-0880] CVE-2008-0171 fixed (boost) #428974 [since FEDORA-2008-0880] +CVE-2008-0128 VULNERABLE (tomcat5) #429903 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0122 fixed (bind) #429149 [since FEDORA-2008-0904] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198]

16 years, 3 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

security-commits January 2008