Author: thoger
Update of /cvs/fedora/fedora-security/audit In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv28552/audit
Modified Files: f8 f9 fc7 Log Message: Xorg issues
Index: f8 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f8,v retrieving revision 1.90 retrieving revision 1.91 diff -u -r1.90 -r1.91 --- f8 17 Jan 2008 10:00:09 -0000 1.90 +++ f8 17 Jan 2008 15:20:06 -0000 1.91 @@ -25,6 +25,7 @@ CVE-2008-0171 VULNERABLE (boost) #428975 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0199] +CVE-2008-0006 VULNERABLE (libXfont) #429132 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427982 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427829 [since FEDORA-2008-0572] CVE-2007-6672 VULNERABLE (jetty) #428017 @@ -45,6 +46,9 @@ CVE-2007-6441 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590] CVE-2007-6439 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590] CVE-2007-6438 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4590] +CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 +CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 +CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427982 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427982 @@ -107,6 +111,7 @@ CVE-2007-5964 backport (autofs) #409701 [since FEDORA-2007-4532] CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962] CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962] +CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3962] CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi CVE-2007-5937 backport (tetex) #379861 [since FEDORA-2007-3308] Multiple dviljk buffer overflows @@ -124,6 +129,7 @@ CVE-2007-5795 backport (emacs) #367591 [since FEDORA-2007-2946] CVE-2007-5770 backport (ruby) #373391 [since FEDORA-2007-2812] GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031 +CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429126 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2853] CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since FEDORA-2007-3989]
Index: f9 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/f9,v retrieving revision 1.82 retrieving revision 1.83 diff -u -r1.82 -r1.83 --- f9 16 Jan 2008 15:40:25 -0000 1.82 +++ f9 17 Jan 2008 15:20:06 -0000 1.83 @@ -25,6 +25,7 @@ CVE-2008-0171 VULNERABLE (boost) #428976 CVE-2008-0123 fixed (moodle) #428731 [since moodle-1.8.4-1.fc9] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since asterisk-1.4.17-1.fc9] +CVE-2008-0006 VULNERABLE (libXfont) #429133 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427984 CVE-2008-0003 version (tog-pegasus, fixed 2.7.0) CVE-2007-6672 VULNERABLE (jetty) #428018 @@ -45,6 +46,9 @@ CVE-2007-6441 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9] CVE-2007-6439 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9] CVE-2007-6438 version (wireshark, fixed 0.99.7) [since wireshark-0.99.7-1.fc9] +CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 +CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 +CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427984 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427984 @@ -107,6 +111,7 @@ CVE-2007-5964 backport (autofs) #421371 [since autofs-5.0.2-21] CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) +CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi CVE-2007-5937 backport (tetex) #379851 Multiple dviljk buffer overflows [since tetex-3.0-48.fc9] @@ -124,6 +129,7 @@ CVE-2007-5795 backport (emacs) #367601 [since emacs-22.1-8.fc9] GENERIC-MAP-NOMATCH VULNERABLE (nx) #293031 CVE-2007-5770 backport (ruby) #373401 [since ruby-1.8.6.111-1] +CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429127 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335 CVE-2007-5751 version (liferea, fixed 1.4.6) #360641 [since liferea-1.4.6-3.fc9] CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since wesnoth-1.2.8-3.fc9]
Index: fc7 =================================================================== RCS file: /cvs/fedora/fedora-security/audit/fc7,v retrieving revision 1.246 retrieving revision 1.247 diff -u -r1.246 -r1.247 --- fc7 17 Jan 2008 10:00:09 -0000 1.246 +++ fc7 17 Jan 2008 15:20:06 -0000 1.247 @@ -26,6 +26,7 @@ CVE-2008-0171 VULNERABLE (boost) #428974 CVE-2008-0123 fixed (moodle) #428731 [since FEDORA-2008-0610] CVE-2008-0095 version (asterisk, fixed 1.4.17) AST-2008-001 [since FEDORA-2008-0198] +CVE-2008-0006 VULNERABLE (libXfont) #429131 CVE-2008-0005 VULNERABLE (httpd, fixed 2.2.7) #427983 CVE-2008-0003 fixed (tog-pegasus, fixed 2.7.0) #427828 [since FEDORA-2008-0506] CVE-2007-6613 fixed (libcdio) #427198 [since FEDORA-2008-0104] @@ -45,6 +46,9 @@ CVE-2007-6441 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] CVE-2007-6439 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] CVE-2007-6438 version (wireshark, fixed 0.99.7) [since FEDORA-2007-4690] +CVE-2007-6429 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 +CVE-2007-6428 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 +CVE-2007-6427 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 CVE-2007-6423 ignore (httpd) can not be reproduced by upstream CVE-2007-6422 VULNERABLE (httpd, fixed 2.2.7) #427983 CVE-2007-6421 VULNERABLE (httpd, fixed 2.2.7) #427983 @@ -107,6 +111,7 @@ CVE-2007-5964 backport (autofs) #421351 [since FEDORA-2007-4469] CVE-2007-5960 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952] CVE-2007-5959 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952] +CVE-2007-5958 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 CVE-2007-5947 version (mozilla, fixed ff 2.0.0.10, sm 1.1.7) [since FEDORA-2007-3952] CVE-2007-5938 VULNERABLE (kernel) #385861 iwlwifi CVE-2007-5937 backport (tetex) #379831 [since FEDORA-2007-3390] Multiple dviljk buffer overflows @@ -123,6 +128,7 @@ CVE-2007-5846 backport (net-snmp) [since FEDORA-2007-3019] CVE-2007-5795 backport (emacs) #367581 [since FEDORA-2007-3056] CVE-2007-5770 backport (ruby) #373381 [since FEDORA-2007-2685] +CVE-2007-5760 VULNERABLE (xorg-x11-server, fixed 1.4.1) #429125 CVE-2007-5759 ignore (clamav, fixed 0.92) duplicate of CVE-2007-6335 CVE-2007-5751 backport (liferea, fixed 1.4.6) #360641 [since FEDORA-2007-2725] CVE-2007-5742 version (wesnoth, fixed 1.2.8) [since FEDORA-2007-3986]
security-commits@lists.fedoraproject.org