Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=192830
Summary: CVE-2006-2453 Additional dia format string flaws
Product: Fedora Extras
Version: fc5
Platform: All
OS/Version: Linux
Status: NEW
Severity: normal
Priority: normal
Component: dia
AssignedTo: j.w.r.degoede(a)hhs.nl
ReportedBy: bressers(a)redhat.com
QAContact: extras-qa(a)fedoraproject.org
CC: extras-qa(a)fedoraproject.org,fedora-security-
list(a)redhat.com
A number of additional format string issues were discovered by Hans de Goede and
has been assigned the CVE id CVE-2006-2453.
The fix is attachment 129852
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=198106
Summary: CVE-2006-3458: Zope local information disclosure
Product: Fedora Extras
Version: fc5
Platform: All
URL: http://www.zope.org/Products/Zope/Hotfix-2006-07-
05/Hotfix-20060705/README.txt
OS/Version: Linux
Status: NEW
Severity: normal
Priority: normal
Component: zope
AssignedTo: gauret(a)free.fr
ReportedBy: ville.skytta(a)iki.fi
QAContact: extras-qa(a)fedoraproject.org
CC: extras-qa(a)fedoraproject.org,fedora-security-
list(a)redhat.com
Unspecified vulnerability in Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to
2.9.3 (Zope2) allows local users to obtain sensitive information via unknown
attack vectors related to the docutils module and "restructured text".
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-3458http://www.zope.org/Products/Zope/Hotfix-2006-07-05/Hotfix-20060705/README.…
Based on the version numbers, all FC-3+ appear to be vulnerable.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: New version with security fixes available
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203844
tibbs(a)math.uh.edu changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|ASSIGNED |CLOSED
Resolution| |ERRATA
Fixed In Version| |1.5.4-1
------- Additional Comments From tibbs(a)math.uh.edu 2006-08-24 23:29 EST -------
I have built 1.5.4 for FC4, FC5 and devel; it should appear on the mirrors with
the next push.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: New version with security fixes available
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203844
tibbs(a)math.uh.edu changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
AssignedTo|ivazquez(a)ivazquez.net |tibbs(a)math.uh.edu
------- Additional Comments From tibbs(a)math.uh.edu 2006-08-24 15:55 EST -------
I'm pushing 1.5.4 through the buildsystem now, on the devel branch. The process
is going quite slowly for some reason.
If the build goes OK, I will set up a basic installation and test that an
upgrade goes smoothly and then push to FC4 and FC5.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: New version with security fixes available
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203844
------- Additional Comments From lmacken(a)redhat.com 2006-08-24 15:46 EST -------
Ignacio has been MIA for quite some time now, so it's best if someone else can
step up and take care of this.
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: New version with security fixes available
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=203844
opensource(a)till.name changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |fedora-security-
| |list(a)redhat.com
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: fcron: world writable docs
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200834
ville.skytta(a)iki.fi changed:
What |Removed |Added
----------------------------------------------------------------------------
Keywords| |Security
CC| |fedora-security-
| |list(a)redhat.com
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: pikdev: world writable docs
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200832
ville.skytta(a)iki.fi changed:
What |Removed |Added
----------------------------------------------------------------------------
Keywords| |Security
CC| |fedora-security-
| |list(a)redhat.com
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
Please do not reply directly to this email. All additional
comments should be made in the comments box of this bug report.
Summary: roundup: world writable docs
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=200845
ville.skytta(a)iki.fi changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |CLOSED
Keywords| |Security
Resolution| |ERRATA
CC| |fedora-security-
| |list(a)redhat.com
Fixed In Version| |0.8.4-8
--
Configure bugmail: https://bugzilla.redhat.com/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.