fedora-security/audit fc4,1.105,1.106 fc5,1.16,1.17

Mark Cox (mjc) fedora-extras-commits at redhat.com
Wed Dec 14 09:30:43 UTC 2005 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27044

Modified Files:
	fc4 fc5 
Log Message:
Update for today



Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.105
retrieving revision 1.106
diff -u -r1.105 -r1.106
--- fc4	13 Dec 2005 21:52:44 -0000	1.105
+++ fc4	14 Dec 2005 09:30:41 -0000	1.106
@@ -1,12 +1,13 @@
-Up to date CVE as of CVE email 20051211
+Up to date CVE as of CVE email 20051213
 Up to date FC4 as of 20051211
 
 ** are items that need attention
 
 CVE-2005-4158 ignore (sudo) only env_reset will properly clean the environment
 CVE-2005-4154 ignore (php) don't install untrusted pear packages
-CVE-2005-4077 backport (curl) [since FEDORA-2005-1129]
+CVE-2005-4077 backport (curl) [since FEDORA-2005-1137]
 CVE-2005-3651 VULNERABLE (ethereal)
+CVE-2005-3352 VULNERABLE (httpd, fixed 2.0.56)
 CVE-2005-3193 VULNERABLE (xpdf)
 CVE-2005-3193 VULNERABLE (kdegraphics)
 CVE-2005-3193 backport (tetex) [since FEDORA-2005-1126]
@@ -216,7 +217,7 @@
 CVE-2005-2360 version (ethereal, fixed 0.10.12) [since FEDORA-2005-655]
 CVE-2005-2353 ignore (thunderbird) debug mode only
 CVE-2005-2337 version (ruby, fixed 1.8.3) [since FEDORA-2005-936]
-CVE-2005-2335 backport (fetchmail) [since FEDORA-2005-613]
+CVE-2005-2335 version (fetchmail, fixed 6.2.5.2) [since FEDORA-2005-1108] was backport since FEDORA-2005-613
 CVE-2005-2270 version (firefox, fixed 1.0.5) [since FEDORA-2005-605]
 CVE-2005-2270 version (mozilla, fixed 1.7.9) [since FEDORA-2005-619]
 CVE-2005-2270 version (thunderbird, fixed 1.0.5) [since FEDORA-2005-606]


Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.16
retrieving revision 1.17
diff -u -r1.16 -r1.17
--- fc5	13 Dec 2005 21:52:44 -0000	1.16
+++ fc5	14 Dec 2005 09:30:41 -0000	1.17
@@ -1,4 +1,4 @@
-Up to date CVE as of CVE email 20051211
+Up to date CVE as of CVE email 20051213
 Up to date FC5 as of FC5-Test1-RC
 
 1. Removed packages with security issues that are no longer in FC5 
@@ -16,6 +16,7 @@
 CVE-2005-4154 ignore (php) don't install untrusted pear packages
 CVE-2005-4077 VULNERABLE (curl)
 CVE-2005-3651 VULNERABLE (ethereal)
+CVE-2005-3352 VULNERABLE (httpd, fixed 2.2.1)
 CVE-2005-3193 VULNERABLE (xpdf)
 CVE-2005-3193 VULNERABLE (kdegraphics)
 CVE-2005-3193 VULNERABLE (tetex)
@@ -220,7 +221,7 @@
 CVE-2005-2360 version (ethereal, fixed 0.10.12)
 CVE-2005-2353 ignore (thunderbird) debug mode only
 CVE-2005-2337 version (ruby, fixed 1.8.3)
-CVE-2005-2335 version (fetchmail, fixed 6.2.5.1)
+CVE-2005-2335 version (fetchmail, fixed 6.2.5.2)
 CVE-2005-2270 version (firefox, fixed 1.0.5)
 CVE-2005-2270 version (mozilla, fixed 1.7.9)
 CVE-2005-2270 version (thunderbird, fixed 1.0.5)

More information about the scm-commits mailing list