fedora-security/audit fc5,1.165,1.166

Wed May 17 08:20:35 UTC 2006

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv9493

Modified Files:
	fc5 
Log Message:
The php update fixed some extra things too.  Jorton confirmed:
<jorton> Bug(s): 187231 187511 187891 189592 190034



Index: fc5
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc5,v
retrieving revision 1.165
retrieving revision 1.166
diff -u -r1.165 -r1.166

--- fc5	16 May 2006 20:38:52 -0000	1.165
+++ fc5	17 May 2006 08:20:33 -0000	1.166
@@ -1,5 +1,5 @@
-Up to date CVE as of CVE email 20060515
-Up to date FC5 as of 20060515
+Up to date CVE as of CVE email 20060516
+Up to date FC5 as of 20060516
 
 ** are items that need attention
 
@@ -23,8 +23,8 @@
 CVE-2006-2025 backport (libtiff, fixed 3.8.1) #189934 [since FEDORA-2006-473]
 CVE-2006-2024 backport (libtiff, fixed 3.8.1) #189934 [since FEDORA-2006-473]
 CVE-2006-1993 version (firefox, fixed 1.5.0.3) #190124 [since FEDORA-2006-547]
-CVE-2006-1991 VULNERABLE (php) #190034
-CVE-2006-1990 VULNERABLE (php) #190034
+CVE-2006-1991 version (php) #190034 [since FEDORA-2006-289]
+CVE-2006-1990 version (php) #190034 [since FEDORA-2006-289]
 CVE-2006-1942 ** firefox
 CVE-2006-1940 version (ethereal, fixed 0.99.0) #189909 [since FEDORA-2006-456]
 CVE-2006-1939 version (ethereal, fixed 0.99.0) #189909 [since FEDORA-2006-456]
@@ -40,7 +40,7 @@
 CVE-2006-1865 version (beagle, fixed 0.2.5) [since FEDORA-2006-440]
 CVE-2006-1864 ignore (kernel, fixed 2.6.16.14) not compiled in
 CVE-2006-1863 version (kernel, fixed 2.6.16.11) [since FEDORA-2006-499]
-CVE-2006-1861 VULNERALBE (freetype, fixed 2.2.1) #191771
+CVE-2006-1861 VULNERABLE (freetype, fixed 2.2.1) #191771
 CVE-2006-1860 VULNERABLE (kernel, fixed 2.6.16.16)
 CVE-2006-1859 VULNERABLE (kernel, fixed 2.6.16.16)
 CVE-2006-1790 version (firefox, fixed 1.5.0.2) [since FEDORA-2006-411]
@@ -125,7 +125,7 @@
 CVE-2006-1518 VULNERABLE (mysql, fixed 5.0.21) #190870
 CVE-2006-1517 VULNERABLE (mysql, fixed 5.0.21) #190868
 CVE-2006-1516 VULNERABLE (mysql, fixed 5.0.21) #190866
-CVE-2006-1494 VULNERABLE (php)#189592
+CVE-2006-1494 version (php) #189592 [since FEDORA-2006-289]
 CVE-2006-1490 version (php, fixed 5.1.4) [since FEDORA-2006-289]
 CVE-2006-1368 version (kernel, fixed 2.6.16) [since FEDORA-2006-233]
 CVE-2006-1354 VULNERABLE (freeradius) bz#186084
@@ -218,7 +218,7 @@
 CVE-2006-0292 version (thunderbird, fixed 1.5)
 CVE-2006-0292 version (firefox, fixed 1.5.1)
 CVE-2006-0292 backport (mozilla) mozilla-1.7.12-CVE-2006-0292-javascript-unrooted.patch
-CVE-2006-0254 backport (tomcat5, fixed 5.5.16) #178179 **check this**
+CVE-2006-0254 backport (tomcat5, fixed 5.5.16) #178179 **check this
 CVE-2006-0236 ignore (thunderbird) windows only
 CVE-2006-0225 version (openssh, fixed 4.3p2)
 CVE-2006-0208 version (php, fixed 5.1.2)
@@ -235,7 +235,7 @@
 CVE-2006-0058 version (sendmail, fixed 8.13.6) [since FEDORA-2006-193]
 CVE-2006-0052 version (mailman, fixed 2.1.6)
 CVE-2006-0049 version (gnupg, fixed 1.4.2.2)
-CVE-2006-0040 ** VULNERABLE (gtkhtml) #183680 no upstream fix
+CVE-2006-0040 VULNERABLE (gtkhtml) #183680 no upstream fix
 CVE-2006-0037 version (kernel, only 2.6.14 and 2.6.15) patch-2.6.16-rc6 [since FEDORA-2006-233]
 CVE-2006-0036 version (kernel, only 2.6.14 and 2.6.15) patch-2.6.16-rc6 [since FEDORA-2006-233]
 CVE-2006-0035 version (kernel, only 2.6.14 and 2.6.15) patch-2.6.16-rc6 [since FEDORA-2006-233]


