fedora-security/audit fc6,1.142,1.143

Mark Cox (mjc) fedora-extras-commits at redhat.com
Wed Nov 15 10:26:08 UTC 2006 

Author: mjc

Update of /cvs/fedora/fedora-security/audit
In directory cvs-int.fedora.redhat.com:/tmp/cvs-serv5304

Modified Files:
	fc6 
Log Message:
CVE updates, fix consistency



Index: fc6
===================================================================
RCS file: /cvs/fedora/fedora-security/audit/fc6,v
retrieving revision 1.142
retrieving revision 1.143
diff -u -r1.142 -r1.143
--- fc6	14 Nov 2006 18:10:03 -0000	1.142
+++ fc6	15 Nov 2006 10:26:06 -0000	1.143
@@ -1,10 +1,10 @@
 Up to date CVE as of CVE email 20061112
-Up to date FC6 as of 20061112
+Up to date FC6 as of 20061114
 
 ** are items that need attention
 
 CVE-2006-5823 version (kernel) [since FEDORA-2006-1223]
-CVE-2006-5794 VULNERABLE (openssh, fixed 4.5) [#214641]
+CVE-2006-5794 VULNERABLE (openssh, fixed 4.5) #214641
 CVE-2006-5783 ignore (firefox) disputed
 CVE-2006-5757 version (kernel) [since FEDORA-2006-1223]
 CVE-2006-5748 version (firefox, fixed 1.5.0.8) [since FEDORA-2006-1191]
@@ -31,18 +31,19 @@
 CVE-2006-5463 version (thunderbird, fixed 1.5.0.8) [since FEDORA-2006-1192]
 CVE-2006-5462 version (firefox, fixed 1.5.0.8) [since FEDORA-2006-1191]
 CVE-2006-5462 version (thunderbird, fixed 1.5.0.8) [since FEDORA-2006-1192]
+CVE-2006-5461 VULNERABLE (avahi, fixed 0.6.15)
 CVE-2006-5456 VULNERABLE (ImageMagick) #210921
-CVE-2006-5397 VULNERABLE (libX11, 1.0.2 and 1.0.3 only) bz#213280
+CVE-2006-5397 VULNERABLE (libX11, 1.0.2 and 1.0.3 only) #213280
 CVE-2006-5331 VULNERABLE (kernel, fixed 2.6.19-rc3)
 CVE-2006-5298 backport (mutt) [since FEDORA-2006-1063]
 CVE-2006-5297 backport (mutt) [since FEDORA-2006-1063]
 CVE-2006-5229 ignore (openssh) not reproduced
 CVE-2006-5215 version (xorg-x11-xdm)
-CVE-2006-5215 VULNERABLE (xorg-x11-xinit) bz#212167
-CVE-2006-5215 VULNERABLE (kdebase) bz#212166
+CVE-2006-5215 VULNERABLE (xorg-x11-xinit) #212167
+CVE-2006-5215 VULNERABLE (kdebase) #212166
 CVE-2006-5214 version (xorg-x11-xdm)
-CVE-2006-5214 VULNERABLE (xorg-x11-xinit) bz#212167
-CVE-2006-5214 VULNERABLE (kdebase) bz#212166
+CVE-2006-5214 VULNERABLE (xorg-x11-xinit) #212167
+CVE-2006-5214 VULNERABLE (kdebase) #212166
 CVE-2006-5178 VULNERABLE (php) can't be fixed
 CVE-2006-5174 ignore (kernel, fixed 2.6.19-rc1) s390 only
 CVE-2006-5173 ignore (kernel, fixed 2.6.18) protected by exec-shield
@@ -118,15 +119,15 @@
 CVE-2006-4262 backport (cscope) 
 CVE-2006-4253 version (firefox, fixed 1.5.0.7)
 CVE-2006-4253 version (thunderbird, fixed 1.5.0.7)
-CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.26,5.1.12) bz#203428
-CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.26,5.1.12) bz#203434
+CVE-2006-4226 VULNERABLE (mysql, fixed 5.0.26,5.1.12) #203428
+CVE-2006-4227 VULNERABLE (mysql, fixed 5.0.26,5.1.12) #203434
 CVE-2006-4146 backport (gdb)
 CVE-2006-4145 version (kernel, fixed 2.6.17.10, fixed 2.6.18-rc5) needs a better upstream fix
 CVE-2006-4144 backport (ImageMagick, fixed 6.2.9)
 CVE-2006-4096 backport (bind)
 CVE-2006-4095 backport (bind)
 CVE-2006-4093 version (kernel, fixed 2.6.17.9, fixed 2.6.18-rc5)
-CVE-2006-4031 VULNERABLE (mysql, fixed 5.0.24) bz#202675
+CVE-2006-4031 VULNERABLE (mysql, fixed 5.0.24) #202675
 CVE-2006-4020 version (php, fixed 5.1.5)
 CVE-2006-4019 version (squirrelmail, fixed 1.4.8)
 CVE-2006-3918 version (httpd, fixed 2.2.2)
@@ -187,7 +188,7 @@
 CVE-2006-3469 version (mysql)
 CVE-2006-3468 version (kernel, fixed 2.6.17.8, fixed 2.6.18-rc4)
 CVE-2006-3467 version (freetype, fixed 2.2)
-CVE-2006-3467 ignore (vnc) bz#204052 not a vulnerability
+CVE-2006-3467 ignore (vnc) #204052 not a vulnerability
 CVE-2006-3467 backport (libXfont) fdo-7535.patch
 CVE-2006-3465 backport (libtiff) libtiff-3.8.2-ormandy.patch
 CVE-2006-3464 backport (libtiff) libtiff-3.8.2-ormandy.patch
@@ -260,7 +261,7 @@
 CVE-2006-2753 version (mysql, fixed 5.0.22)
 CVE-2006-2723 ignore (firefox) disputed
 CVE-2006-2661 version (freetype, fixed 2.2.1)
-CVE-2006-2660 ignore (php) see bz#195539
+CVE-2006-2660 ignore (php) see #195539
 CVE-2006-2656 backport (libtiff) tiffsplit-overflow.patch
 CVE-2006-2629 ignore (kernel) couldn't be reproduced on FC
 CVE-2006-2613 ignore (firefox) This isn't an issue on FC

More information about the scm-commits mailing list