fedora-security/audit fc4,1.165,1.166 fc5,1.72,1.73

Mark Cox (mjc) fedora-extras-commits at redhat.com
Sun Mar 5 23:09:10 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv21633

Modified Files:
	fc4 fc5 
Log Message:
Updates for kernel and other things



Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.165
retrieving revision 1.166
diff -u -r1.165 -r1.166
--- fc4	3 Mar 2006 21:39:36 -0000	1.165
+++ fc4	5 Mar 2006 23:08:54 -0000	1.166
@@ -1,26 +1,30 @@
-Up to date CVE as of CVE email 20060301
-Up to date FC4 as of 20060301
+Up to date CVE as of CVE email 20060304
+Up to date FC4 as of 20060304
 
 ** are items that need attention
 
 CVE-2006-0903 VULNERABLE (mysql) bz#183261
 CVE-2006-0884 ** thunderbird
 CVE-2006-0836 version (thunderbird, 1.5 only)
+CVE-2006-0741 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
 CVE-2006-0730 version (dovecot, 1.0beta[12] only)
 CVE-2006-0678 version (postgresql, 8.1 only)
 CVE-2006-0645 backport (gnutls) [since FEDORA-2006-107]
 CVE-2006-0591 version (postgresql, fixed 8.0.6) [since FEDORA-2005-021]
 CVE-2006-0576 VULNERABLE (oprofile)
+CVE-2006-0555 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
+CVE-2006-0554 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
 CVE-2006-0553 version (postgresql, 8.1 only)
 CVE-2006-0528 version (evolution, 2.3 and above)
 CVE-2006-0496 VULNERABLE (mozilla)
 CVE-2006-0496 VULNERABLE (firefox)
 CVE-2006-0482 ignore (kernel) sparc only
 CVE-2006-0481 version (libpng, 1.2.7 only)
+CVE-2006-0457 backport (kernel) [since FEDORA-2006-131] patch-2.6.15.5
 CVE-2006-0455 version (gnupg, fixed 1.4.2.1) [since FEDORA-2006-116]
 CVE-2006-0454 backport (kernel, fixed 2.6.15.3) [since FEDORA-2006-102] patch-2.6.15.3
 CVE-2006-0405 version (libtiff, 3.8.0 only)
-CVE-2006-0377 version (squirrelmail, fixed 1.4.6) bz#182585 [since FEDORA-2006-133]
+CVE-2006-0377 version (squirrelmail, fixed 1.4.6) [since FEDORA-2006-133]
 CVE-2006-0369 ignore (mysql) this is not a security issue
 CVE-2006-0321 version (fetchmail, fixed 6.3.2) 6.3.X only affected
 CVE-2006-0301 backport (xpdf) [since FEDORA-2006-104]
@@ -58,15 +62,15 @@
 CVE-2006-0207 VULNERABLE (php) bz#178044
 CVE-2006-0200 version (php, 5.1.0 5.1.1 only)
 CVE-2006-0197 ** xorg-x11
-CVE-2006-0195 version (squirrelmail, fixed 1.4.6) bz#182582 [since FEDORA-2006-133]
-CVE-2006-0188 version (squirrelmail, fixed 1.4.6) bz#182580 [since FEDORA-2006-133]
+CVE-2006-0195 version (squirrelmail, fixed 1.4.6) [since FEDORA-2006-133]
+CVE-2006-0188 version (squirrelmail, fixed 1.4.6) [since FEDORA-2006-133]
 CVE-2006-0097 ignore (php) Windows only
 CVE-2006-0096 ignore (kernel) minor and requires root
-CVE-2006-0095 backport (kernel) [since FEDORA-2006-102] linux-2.6-dm-crypt-zero-key-before-free.patch
+CVE-2006-0095 backport (kernel) [since FEDORA-2006-102] patch-2.6.15.5
 CVE-2006-0082 version (ImageMagick, not 6.2.2.0)
-CVE-2006-0037 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.2
-CVE-2006-0036 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.2
-CVE-2006-0035 backport (kernel) [since FEDORA-2006-077] patch-2.6.15.2
+CVE-2006-0037 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.5
+CVE-2006-0036 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.5
+CVE-2006-0035 backport (kernel) [since FEDORA-2006-077] patch-2.6.15.5
 CVE-2006-0019 version (kdelibs, fixed 3.5.1) [since FEDORA-2006-090] was backport since FEDORA-2006-050
 CVE-2005-4720 VULNERABLE (mozilla)
 CVE-2005-4720 VULNERABLE (firefox)


Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.72
retrieving revision 1.73
diff -u -r1.72 -r1.73
--- fc5	2 Mar 2006 12:14:58 -0000	1.72
+++ fc5	5 Mar 2006 23:08:54 -0000	1.73
@@ -1,4 +1,4 @@
-Up to date CVE as of CVE email 20060301
+Up to date CVE as of CVE email 20060304
 Up to date FC5 as of FC5-Test3
 
 1. Removed packages with security issues that are no longer in FC5 
@@ -72,7 +72,7 @@
 CVE-2006-0207 version (php, fixed 5.1.2)
 CVE-2006-0200 version (php, fixed 5.1.2)
 CVE-2006-0197 ignore (xorg-x11) not an issue
-CVE-2006-0195 version (php-pear, not 1.4.4)
+CVE-2006-0195 version (squirrelmail, fixed 1.4.6)
 CVE-2006-0188 version (squirrelmail, fixed 1.4.6)
 CVE-2006-0144 version (php-pear, not 1.4.4)
 CVE-2006-0097 ignore (php) Windows only
@@ -546,6 +546,7 @@
 CVE-2005-0752 version (firefox, fixed 1.0.3)
 CVE-2005-0750 version (kernel, fixed 2.6.11.6)
 CVE-2005-0749 version (kernel, fixed 2.6.11.6)
+CVE-2006-0741 VULNERABLE (kernel, fixed 2.6.15.5)
 CVE-2005-0739 version (ethereal, fixed after 0.10.9)
 CVE-2005-0736 version (kernel, fixed 2.6.11)
 CVE-2005-0718 version (squid, fixed 2.5.STABLE8)

More information about the scm-commits mailing list