fedora-security/audit f8, 1.90, 1.91 f9, 1.82, 1.83 fc7, 1.246, 1.247

Thursday, 17 January 2008

Author: thoger

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28552/audit

Modified Files:
	f8 f9 fc7 
Log Message:
Xorg issues



Index: f8
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f8,v
retrieving revision 1.90
retrieving revision 1.91
diff -u -r1.90 -r1.91

--- f8	17 Jan 2008 10:00:09 -0000	1.90
+++ f8	17 Jan 2008 15:20:06 -0000	1.91
@@ -25,6 +25,7 @@
 CVE-2008-0171 VULNERABLE (boost) #428975 
 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] 
 CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199]
+CVE-2008-0006 VULNERABLE (libXfont) #429132 
 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427982 
 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427829 [since FEDORA-2008-0572] 
 CVE-2007-6672 VULNERABLE (jetty) #428017 
@@ -45,6 +46,9 @@
 CVE-2007-6441 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590]
 CVE-2007-6439 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590]
 CVE-2007-6438 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590]
+CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 
+CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 
+CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 
 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream
 CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427982 
 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427982 
@@ -107,6 +111,7 @@
 CVE-2007-5964 backport (autofs) #409701 [since FEDORA-2007-4532]
 CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962]
 CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962]
+CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 
 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962]
 CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-5937 backport (tetex) #379861 [since FEDORA-2007-3308] Multiple dviljk buffer
overflows
@@ -124,6 +129,7 @@
 CVE-2007-5795 backport (emacs) #367591 [since FEDORA-2007-2946]
 CVE-2007-5770 backport (ruby) #373391 [since FEDORA-2007-2812]
 GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031
+CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 
 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335
 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2853]
 CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since FEDORA-2007-3989]


Index: f9
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/f9,v
retrieving revision 1.82
retrieving revision 1.83
diff -u -r1.82 -r1.83
--- f9	16 Jan 2008 15:40:25 -0000	1.82
+++ f9	17 Jan 2008 15:20:06 -0000	1.83
@@ -25,6 +25,7 @@
 CVE-2008-0171 VULNERABLE (boost) #428976 
 CVE-2008-0123 fixed (moodle) #428731 [since moodle-1.8.4-1.fc9]
 CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since
asterisk-1.4.17-1.fc9]
+CVE-2008-0006 VULNERABLE (libXfont) #429133 
 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427984 
 CVE-2008-0003 version (tog-pegasus, fixed 2.7.0) 
 CVE-2007-6672 VULNERABLE (jetty) #428018 
@@ -45,6 +46,9 @@
 CVE-2007-6441 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
 CVE-2007-6439 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
 CVE-2007-6438 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9]
+CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 
+CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 
+CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 
 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream
 CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427984 
 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427984 
@@ -107,6 +111,7 @@
 CVE-2007-5964 backport (autofs) #421371 [since autofs-5.0.2-21]
 CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7)
 CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7)
+CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 
 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7)
 CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-5937 backport (tetex) #379851 Multiple dviljk buffer overflows [since
tetex-3.0-48.fc9]
@@ -124,6 +129,7 @@
 CVE-2007-5795 backport (emacs) #367601 [since emacs-22.1-8.fc9]
 GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031
 CVE-2007-5770 backport (ruby) #373401 [since ruby-1.8.6.111-1]
+CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 
 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335
 CVE-2007-5751 version (liferea, fixed 1.4.6) #360641 [since liferea-1.4.6-3.fc9]
 CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since wesnoth-1.2.8-3.fc9]


Index: fc7
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc7,v
retrieving revision 1.246
retrieving revision 1.247
diff -u -r1.246 -r1.247
--- fc7	17 Jan 2008 10:00:09 -0000	1.246
+++ fc7	17 Jan 2008 15:20:06 -0000	1.247
@@ -26,6 +26,7 @@
 CVE-2008-0171 VULNERABLE (boost) #428974 
 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] 
 CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198]
+CVE-2008-0006 VULNERABLE (libXfont) #429131 
 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427983 
 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427828 [since FEDORA-2008-0506] 
 CVE-2007-6613 fixed (libcdio) #427198 [since FEDORA-2008-0104] 
@@ -45,6 +46,9 @@
 CVE-2007-6441 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690]
 CVE-2007-6439 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690]
 CVE-2007-6438 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690]
+CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 
+CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 
+CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 
 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream
 CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427983 
 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427983 
@@ -107,6 +111,7 @@
 CVE-2007-5964 backport (autofs) #421351 [since FEDORA-2007-4469]
 CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952]
 CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952]
+CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 
 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952]
 CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi
 CVE-2007-5937 backport (tetex) #379831 [since FEDORA-2007-3390] Multiple dviljk buffer
overflows
@@ -123,6 +128,7 @@
 CVE-2007-5846 backport (net-snmp) [since FEDORA-2007-3019]
 CVE-2007-5795 backport (emacs) #367581 [since FEDORA-2007-3056]
 CVE-2007-5770 backport (ruby) #373381 [since FEDORA-2007-2685]
+CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 
 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335
 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2725]
 CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since FEDORA-2007-3986]


    

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007