fedora-security/audit fc4,1.181,1.182 fc5,1.94,1.95
Mark Cox (mjc)
fedora-extras-commits at redhat.com
Fri Mar 31 10:14:21 UTC 2006
Author: mjc
Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv27598
Modified Files:
fc4 fc5
Log Message:
Catchup (apart from kernel)
Index: fc4
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc4,v
retrieving revision 1.181
retrieving revision 1.182
diff -u -r1.181 -r1.182
--- fc4 24 Mar 2006 08:43:34 -0000 1.181
+++ fc4 31 Mar 2006 10:14:19 -0000 1.182
@@ -1,8 +1,12 @@
-Up to date CVE as of CVE email 20060323
-Up to date FC4 as of 20060323
+Up to date CVE as of CVE email 20060330
+Up to date FC4 as of 20060330
** are items that need attention
+CVE-2006-1550 VULNERABLE (dia) bz#187402
+CVE-2006-1548 ** struts
+CVE-2006-1547 ** struts
+CVE-2006-1546 ** struts
CVE-2006-1368 ** kernel
CVE-2006-1354 VULNERABLE (freeradius) bz#186084
CVE-2006-1343 ** kernel
@@ -13,7 +17,9 @@
CVE-2006-1095 ignore (mod_python, 3.2.7 only)
CVE-2006-1079 ignore (httpd) not a vulnerability
CVE-2006-1078 ignore (httpd) not a vulnerability
+CVE-2006-1066 ** kernel
CVE-2006-1061 version (curl, 7.15.0 - 7.15.2 only)
+CVE-2006-1059 version (samba)
CVE-2006-1052 ** kernel
CVE-2006-1045 VULNERABLE (thunderbird)
CVE-2006-1015 ignore (php) safe mode isn't safe
@@ -96,6 +102,8 @@
CVE-2006-0036 backport (kernel, only 2.6.14 and 2.6.15) [since FEDORA-2006-077] patch-2.6.15.5
CVE-2006-0035 backport (kernel) [since FEDORA-2006-077] patch-2.6.15.5
CVE-2006-0019 version (kdelibs, fixed 3.5.1) [since FEDORA-2006-090] was backport since FEDORA-2006-050
+CVE-2005-4746 version (freeradius) we don't build vulnerable bits
+CVE-2005-4745 version (freeradius) we don't build vulnerable bits
CVE-2005-4720 VULNERABLE (thunderbird)
CVE-2005-4720 VULNERABLE (mozilla)
CVE-2005-4720 VULNERABLE (firefox)
Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.94
retrieving revision 1.95
diff -u -r1.94 -r1.95
--- fc5 24 Mar 2006 08:43:34 -0000 1.94
+++ fc5 31 Mar 2006 10:14:19 -0000 1.95
@@ -1,8 +1,11 @@
-Up to date CVE as of CVE email 20060323
-Up to date FC5 as of 20060323
+Up to date CVE as of CVE email 20060330
+Up to date FC5 as of 20060330
** are items that need attention
+CVE-2006-1548 ** struts
+CVE-2006-1547 ** struts
+CVE-2006-1546 ** struts
CVE-2006-1368 ** kernel
CVE-2006-1354 VULNERABLE (freeradius) bz#186084
CVE-2006-1343 ** kernel
@@ -15,7 +18,9 @@
CVE-2006-1095 ignore (mod_python, 3.2.7 only)
CVE-2006-1079 ignore (httpd) not a vulnerability
CVE-2006-1078 ignore (httpd) not a vulnerability
+CVE-2006-1066 ** kernel
CVE-2006-1061 backport (curl, fixed 7.15.3) [since FEDORA-2006-189]
+CVE-2006-1059 version (samba, fixed 3.0.22 at least) bz#187170 [since FEDORA-2006-259]
CVE-2006-1052 backport (kernel) patch-2.6.16-rc6
CVE-2006-1045 VULNERABLE (thunderbird)
CVE-2006-1015 ignore (php) safe mode isn't safe
@@ -99,6 +104,8 @@
CVE-2006-0036 backport (kernel, only 2.6.14 and 2.6.15) patch-2.6.16-rc6
CVE-2006-0035 backport (kernel, only 2.6.14 and 2.6.15) patch-2.6.16-rc6
CVE-2006-0019 version (kdelibs, fixed 3.5.1)
+CVE-2005-4746 version (freeradius) we don't build vulnerable bits
+CVE-2005-4745 version (freeradius) we don't build vulnerable bits
CVE-2005-4720 version (thunderbird, fixed 1.5)
CVE-2005-4720 version (firefox, fixed 1.5)
CVE-2005-4720 VULNERABLE (mozilla) not fixed upstream plus only DoS
@@ -574,6 +581,7 @@
CVE-2005-0705 version (ethereal, fixed after 0.10.9)
CVE-2005-0704 version (ethereal, fixed after 0.10.9)
CVE-2005-0698 version (ethereal, fixed after 0.10.9)
+CVE-2005-0670 ** hcidump
CVE-2005-0664 version (libexif, fixed 0.6.12)
CVE-2005-0654 ignore (gimp, not fixed 2.2) upstream considers harmless
CVE-2005-0627 version (qt, fixed 3.3.4)
More information about the scm-commits
mailing list