fedora-security/audit f8, 1.15, 1.16 f9, 1.13, 1.14 fc6, 1.296, 1.297 fc7, 1.173, 1.174 - security-commits - Fedora mailing-lists

13 Nov 2007

Author: lkundrak
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv10618/audit
Modified Files:
    f8 f9 fc6 fc7 
Log Message:
tetex
Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.15
retrieving revision 1.16
diff -u -r1.15 -r1.16

--- f8	13 Nov 2007 00:36:22 -0000	1.15
+++ f8	13 Nov 2007 14:31:11 -0000	1.16
@@ -7,6 +7,9 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date F8 as of 20071029
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379861 Multiple dviljk buffer overflows
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379861 dviljk uses insecure temporary file
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379861 dvips -z buffer overflow with long href
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2) #379101
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysql) #379131
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysqli) #379161
Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.13
retrieving revision 1.14
diff -u -r1.13 -r1.14
--- f9	13 Nov 2007 00:36:22 -0000	1.13
+++ f9	13 Nov 2007 14:31:11 -0000	1.14
@@ -7,12 +7,15 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date F9 as of 20071029
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379851 Multiple dviljk buffer overflows
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379851 dviljk uses insecure temporary file
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379851 dvips -z buffer overflow with long href
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2) #379111
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysql) #379141
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysqli) #379171
 CVE-2007-5795 backport (emacs) #367601 [since emacs-22.1-8.fc9]
 GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031
-CVE-2007-5770 backport (ruby) #373401 needs verification
+CVE-2007-5770 backport (ruby) #373401 [since ruby-1.8.6.111-1]
 CVE-2007-5751 version (liferea, fixed 1.4.6) #360641 [since liferea-1.4.6-3.fc9]
 CVE-2007-5712 version (Django, fixed 0.96.1) #362781 [since Django-0.96.1-1.fc9]
 CVE-2007-5708 version (openldap, fixed 2.3.39) #360091 [since openldap-2.3.39-1.fc9]
Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.296
retrieving revision 1.297
diff -u -r1.296 -r1.297
--- fc6	12 Nov 2007 19:07:43 -0000	1.296
+++ fc6	13 Nov 2007 14:31:11 -0000	1.297
@@ -7,6 +7,10 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date FC6 as of 20071029
+
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379841 Multiple dviljk buffer overflows
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379841 dviljk uses insecure temporary file
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379841 dvips -z buffer overflow with long href
 CVE-2007-5795 version (emacs, only 21)
 CVE-2007-5770 backport (ruby) #373371 [since FEDORA-2007-738]
 CVE-2007-5461 VULNERABLE (tomcat5) #334521
Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.173
retrieving revision 1.174
diff -u -r1.173 -r1.174
--- fc7	13 Nov 2007 14:15:15 -0000	1.173
+++ fc7	13 Nov 2007 14:31:11 -0000	1.174
@@ -8,11 +8,14 @@
 # Up to date CVE as of CVE email 20071030
 # Up to date FC7 as of 20071029
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379831 Multiple dviljk buffer overflows
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379831 dviljk uses insecure temporary file
+GENERIC-MAP-NOMATCH VULNERABLE (tetex) #379831 dvips -z buffer overflow with long href
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2) #379091
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysql) #379121
 GENERIC-MAP-NOMATCH VULNERABLE (php-pear-MDB2-Driver-mysqli) #379151
 CVE-2007-5795 VULNERABLE (emacs) #367581
-CVE-2007-5770 backport (ruby) #373381 [since FEDORA-2007-2685] really fixed?
+CVE-2007-5770 backport (ruby) #373381 [since FEDORA-2007-2685]
 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2725]
 CVE-2007-5728 version (phpPgAdmin) seems to be fixed for some time
 CVE-2007-5715 backport (denyhosts) fixed long ago

    