fedora-security/audit fc4,1.105,1.106 fc5,1.16,1.17
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Wed Dec 14 09:30:43 UTC 2005
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27044
Modified Files:
fc4 fc5
Log Message:
Update for today
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.105
retrieving revision 1.106
diff -u -r1.105 -r1.106
--- fc4 13 Dec 2005 21:52:44 -0000 1.105
+++ fc4 14 Dec 2005 09:30:41 -0000 1.106
@@ -1,12 +1,13 @@
-Up to date CVE as of CVE email 20051211
+Up to date CVE as of CVE email 20051213
Up to date FC4 as of 20051211
** are items that need attention
CVE-2005-4158 ignore (sudo) only env_reset will properly clean the environment
CVE-2005-4154 ignore (php) don't install untrusted pear packages
-CVE-2005-4077 backport (curl) [since FEDORA-2005-1129]
+CVE-2005-4077 backport (curl) [since FEDORA-2005-1137]
CVE-2005-3651 VULNERABLE (ethereal)
+CVE-2005-3352 VULNERABLE (httpd, fixed 2.0.56)
CVE-2005-3193 VULNERABLE (xpdf)
CVE-2005-3193 VULNERABLE (kdegraphics)
CVE-2005-3193 backport (tetex) [since FEDORA-2005-1126]
@@ -216,7 +217,7 @@
CVE-2005-2360 version (ethereal, fixed 0.10.12) [since FEDORA-2005-655]
CVE-2005-2353 ignore (thunderbird) debug mode only
CVE-2005-2337 version (ruby, fixed 1.8.3) [since FEDORA-2005-936]
-CVE-2005-2335 backport (fetchmail) [since FEDORA-2005-613]
+CVE-2005-2335 version (fetchmail, fixed 6.2.5.2) [since FEDORA-2005-1108] was backport since FEDORA-2005-613
CVE-2005-2270 version (firefox, fixed 1.0.5) [since FEDORA-2005-605]
CVE-2005-2270 version (mozilla, fixed 1.7.9) [since FEDORA-2005-619]
CVE-2005-2270 version (thunderbird, fixed 1.0.5) [since FEDORA-2005-606]
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.16
retrieving revision 1.17
diff -u -r1.16 -r1.17
--- fc5 13 Dec 2005 21:52:44 -0000 1.16
+++ fc5 14 Dec 2005 09:30:41 -0000 1.17
@@ -1,4 +1,4 @@
-Up to date CVE as of CVE email 20051211
+Up to date CVE as of CVE email 20051213
Up to date FC5 as of FC5-Test1-RC
1. Removed packages with security issues that are no longer in FC5
@@ -16,6 +16,7 @@
CVE-2005-4154 ignore (php) don't install untrusted pear packages
CVE-2005-4077 VULNERABLE (curl)
CVE-2005-3651 VULNERABLE (ethereal)
+CVE-2005-3352 VULNERABLE (httpd, fixed 2.2.1)
CVE-2005-3193 VULNERABLE (xpdf)
CVE-2005-3193 VULNERABLE (kdegraphics)
CVE-2005-3193 VULNERABLE (tetex)
@@ -220,7 +221,7 @@
CVE-2005-2360 version (ethereal, fixed 0.10.12)
CVE-2005-2353 ignore (thunderbird) debug mode only
CVE-2005-2337 version (ruby, fixed 1.8.3)
-CVE-2005-2335 version (fetchmail, fixed 6.2.5.1)
+CVE-2005-2335 version (fetchmail, fixed 6.2.5.2)
CVE-2005-2270 version (firefox, fixed 1.0.5)
CVE-2005-2270 version (mozilla, fixed 1.7.9)
CVE-2005-2270 version (thunderbird, fixed 1.0.5)
More information about the scm-commits
mailing list