Author: lkundrak
Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv11861
Modified Files: fc7 Log Message: new bodhi updates for f7
Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.215 retrieving revision 1.216 diff -u -r1.215 -r1.216 --- fc7 3 Jan 2008 09:00:44 -0000 1.215 +++ fc7 3 Jan 2008 11:08:09 -0000 1.216 @@ -9,8 +9,8 @@ # Up to date FC7 as of 20071221
GENERIC-MAP-NOMATCH VULNERABLE (asterisk, fixed 1.4.17) AST-2008-001 [pending asterisk-1.4.17-1.fc7] -GENERIC-MAP-NOMATCH VULNERABLE (libcdio) #427198 -GENERIC-MAP-NOMATCH VULNERABLE (wordpress) #426432 +GENERIC-MAP-NOMATCH fixed (libcdio) #427198 [since FEDORA-2008-0104] +GENERIC-MAP-NOMATCH fixed (wordpress) #426432 [since FEDORA-2008-0126] GENERIC-MAP-NOMATCH VULNERABLE (mantis) #427279 CVE-2007-6596 VULNERABLE (clamav) #427288 Might be considered a mail client flaw CVE-2007-6595 VULNERABLE (clamav) #427288 @@ -20,27 +20,27 @@ CVE-2007-6441 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] CVE-2007-6439 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] CVE-2007-6438 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] -CVE-2007-6337 VULNERABLE (clamav, fixed 0.92) #426211 -CVE-2007-6336 VULNERABLE (clamav, fixed 0.92) #426211 -CVE-2007-6335 VULNERABLE (clamav, fixed 0.92) #426211 +CVE-2007-6337 VULNERABLE (clamav, fixed 0.92) #426211 [since FEDORA-2008-0170] +CVE-2007-6336 VULNERABLE (clamav, fixed 0.92) #426211 [since FEDORA-2008-0170] +CVE-2007-6335 VULNERABLE (clamav, fixed 0.92) #426211 [since FEDORA-2008-0170] CVE-2007-6437 VULNERABLE (syslog-ng) #426305 CVE-2007-6430 version (asterisk, fixed 1.4.16) [since FEDORA-2007-4593] CVE-2007-6389 VULNERABLE (gnome-screensaver) #426169 -CVE-2007-6353 VULNERABLE (exiv2) #425922 -CVE-2007-6352 VULNERABLE (libexif) #425621 -CVE-2007-6351 VULNERABLE (libexif) #425621 +CVE-2007-6353 fixed (exiv2) #425922 [since FEDORA-2007-4551] +CVE-2007-6352 fixed (libexif) #425621 [since FEDORA-2007-4608] +CVE-2007-6351 fixed (libexif) #425621 [since FEDORA-2007-4608] CVE-2007-6350 VULNERABLE (scponly) rsync vector only CVE-2007-6348 ignore (squirrelmail) trojaned version was not shipped CVE-2007-6328 ignore (dosbox) design decision CVE-2007-6321 VULNERABLE (roundcubemail) #423281 -CVE-2007-6318 VULNERABLE (wordpress) #426432 +CVE-2007-6318 fixed (wordpress) #426432 [since FEDORA-2008-0126] CVE-2007-6304 ignore (mysql, fixed 5.0.52) federated engine not built CVE-2007-6303 backport (mysql, fixed 5.0.52) #424921 [since FEDORA-2007-4471] CVE-2007-6299 version (drupal, fixed 5.4) [since FEDORA-2007-4136] SA-2007-031 GENERIC-MAP-NOMATCH version (libxfcegui4) #412751 [since FEDORA-2007-4385] GENERIC-MAP-NOMATCH version (libxfce4util) #412751 [since FEDORA-2007-4385] GENERIC-MAP-NOMATCH version (xfce-panel) #412751 [since FEDORA-2007-4385] -CVE-2007-6285 VULNERABLE (autofs) #426399 +CVE-2007-6285 fixed (autofs) #426399 [since FEDORA-2007-4709] CVE-2007-6283 backport (bind) #423061 [since FEDORA-2007-4658] CVE-2007-6239 version (squid, fixed 2.6.17) #412381 [since FEDORA-2007-4161] CVE-2007-6210 backport (zabbix) #407181 [since FEDORA-2007-4160] @@ -67,7 +67,7 @@ CVE-2007-6061 VULNERABLE (audacity) #393251 CVE-2007-6035 version (cacti, fixed 0.8.7a) #391981 [since FEDORA-2007-3683] CVE-2007-6015 version (samba, fixed 3.0.28) [since FEDORA-2007-4269] -CVE-2007-6013 VULNERABLE (wordpress) #426432 +CVE-2007-6013 fixed (wordpress) #426432 [since FEDORA-2008-0126] CVE-2007-5977 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627] CVE-2007-5976 version (phpMyAdmin, fixed 2.11.2.1) #385891 [since FEDORA-2007-3627] CVE-2007-5970 ignore (mysql, fixed 5.1.23) mysql 5.1+ only, affects partitioning @@ -112,7 +112,7 @@ CVE-2007-5585 backport (tempest) #336331 [since FEDORA-2007-2652] CVE-2007-5501 version (kernel) [since FEDORA-2007-3751] CVE-2007-5500 version (kernel) [since FEDORA-2007-3751] -CVE-2007-5497 VULNERABLE (e2fsprogs) #414571 +CVE-2007-5497 VULNERABLE (e2fsprogs) #414571 [since FEDORA-2007-4461] CVE-2007-5461 version (tomcat5) #334511 [since FEDORA-2007-3456] CVE-2007-5416 ignore (drupal) Vulnerability in PHP<5.1.3, we're safe CVE-2007-5398 version (samba) [since FEDORA-2007-3402] @@ -300,7 +300,7 @@ CVE-2007-3555 version (moodle) #247528 [since FEDORA-2007-1445] CVE-2007-3546 ignore (nessus-core) Windows only CVE-2007-3528 version (dar, fixed 2.3.4) #246760 [since FEDORA-2007-0904] -CVE-2007-3544 VULNERABLE (wordpress, NOT fixed 2.2.1) #245211 Incomplete fix for CVE-2007-3543 +CVE-2007-3544 fixed (wordpress, NOT fixed 2.2.1) #245211 [since FEDORA-2007-0894] Incomplete fix for CVE-2007-3543 CVE-2007-3543 version (wordpress, fixed 2.2.1) #245211 [since FEDORA-2007-0894] CVE-2007-3511 version (mozilla) ff 2.0.0.8, tb 2.0.0.6, sm 1.1.5 [since FEDORA-2007-2664] CVE-2007-3508 ignore (glibc) not an issue
security-commits@lists.fedoraproject.org