# $Id: fe3,v 1.50 2007/01/04 16:59:12 scop Exp $ This list is no longer maintained by the Fedora Security Response Team as of 1st January 2007 (the Fedora Extras FC3 EOL date). ** are items that need attention CVE-2006-6574 VULNERABLE (mantis) #219937 CVE-2006-6563 VULNERABLE (proftpd, fixed 1.3.1rc1) #219938 CVE-2006-6515 VULNERABLE (mantis) #219720 CVE-2006-6481 version (clamav, fixed 0.88.7) CVE-2006-6406 version (clamav, fixed 0.88.7) #219095 CVE-2006-6301 version (denyhosts, fixed 2.6-2) #218824 CVE-2006-6235 ignore (gnupg2, affected binaries not shipped) #218821 CVE-2006-6171 VULNERABLE (proftpd) #214820 CVE-2006-6170 VULNERABLE (proftpd) #214820 CVE-2006-6169 backport (gnupg2, fixed 1.9.22-8) #217950 CVE-2006-6122 version (tin, fixed 1.8.2) #217420 CVE-2006-6085 version (kile, fixed 1.9.3) #217238 CVE-2006-5874 version (clamav, fixed 0.88.1) CVE-2006-5848 VULNERABLE (trac, fixed 0.10.1) #215077 CVE-2006-5815 ** (proftpd) #214820 CVE-2006-5602 VULNERABLE (xsupplicant) #212699 CVE-2006-5601 VULNERABLE (xsupplicant) #212700 CVE-2006-5295 version (clamav, fixed 0.88.5) #210973 CVE-2006-5111 version (libksba, fixed 0.9.14) CVE-2006-4976 ** (php-adodb) #208299 CVE-2006-4809 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4808 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4807 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4806 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4684 patch (zope, fixed 2.8.0-5) #198106 CVE-2006-4513 VULNERABLE (wv) #212696 CVE-2006-4513 ** (abiword) #212698 CVE-2006-4249 ignore (plone, 2.5/2.5.1 only issue) #213983 CVE-2006-4248 ignore (thttpd, Debian specific issue) CVE-2006-4247 ignore (plone, 2.1.x not affected) #209163 CVE-2006-4192 VULNERABLE (libmodplug) CVE-2006-4182 version (clamav, fixed 0.88.5) #210973 CVE-2006-4018 version (clamav, fixed 0.88.4-1) #201688 CVE-2006-3913 patch (freeciv, fixed 2.0.8-3) #200545 CVE-2006-3816 version (krusader, fixed 1.70.1) #200323 CVE-2006-3458 patch (zope, fixed 2.8.0-3) #198106 CVE-2006-3119 patch (fbida, fixed 2.0.3-8) #200321 CVE-2006-2769 patch (snort, fixed 2.4.4-4) bz#193809 CVE-2006-2489 version (nagios, fixed 2.3.1) CVE-2006-2442 patch (kphone,fixed 4.2-9) bz#192202 CVE-2006-2427 ignore (clamav) not an issue bz#192076 CVE-2006-2237 backport (awstats, fixed 6.5-3) bz#190924 CVE-2006-2229 ** openvpn CVE-2006-2169 ** rt3 CVE-2006-2162 version (nagios, fixed 2.3.1) bz#190614 CVE-2006-2093 version (nessus, fixed 2.2.7) bz#191053 CVE-2006-2017 version (dnsmasq, fixed 2.30) CVE-2006-2016 version (phpldapadmin, fixed 0.9.8.1) CVE-2006-1989 version (clamav, fixed 0.88.2) CVE-2006-1945 backport (awstats, fixed 6.5-2) bz#190922 awstats-6.5-CVE-2006-1945.patch CVE-2006-1900 version (amaya, fixed 9.5) bz#190324 CVE-2006-1711 version (plone, fixed 2.1.2) bz#188886 CVE-2006-1695 patch (fbida, fixed 2.03-6) bz#189721 CVE-2006-1630 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1629 version (openvpn, fixed 2.0.6) bz#188050 CVE-2006-1615 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1614 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1577 VULNERABLE (mantis) bz#191089 CVE-2006-1566 ignore (libtunepimp, Debian-specific problem) CVE-2006-1539 ignore (bsd-games, Gentoo-specific problem) CVE-2006-1390 ignore (nethack, Gentoo-specific problem) bz#187353 CVE-2006-1269 patch (zoo, fixed 2.10-7) bz#183109 CVE-2006-1251 ignore (exim-sa, configuration not vulnerable) bz#191082 CVE-2006-1079 VULNERABLE (thttpd) bz#191095 CVE-2006-1078 VULNERABLE (thttpd) bz#191095 CVE-2006-0855 patch (zoo, patched in OpenSUSE "upstream", fixed 2.10-7) CVE-2006-0841 VULNERABLE (mantis) bz#191089 CVE-2006-0840 VULNERABLE (mantis) bz#191089 CVE-2006-0839 version (snort, fixed in 2.4.4) bz#183297 CVE-2006-0814 ignore (lighttpd, Windows-specific problem) CVE-2006-0804 version (tin, fixed 1.8.1) #217422 CVE-2006-0760 ** version (lighttpd, fixed 1.4.10)) CVE-2006-0665 VULNERABLE (mantis) bz#191089 CVE-2006-0664 VULNERABLE (mantis) bz#191089 CVE-2006-0645 ** version (libtasn1, fixed 0.3.0) bz#184097 CVE-2006-0458 ** version (irssi, fixed 0.8.10) bz#184509 CVE-2006-0162 version (clamav, fixed 0.88) CVE-2006-0126 version (rxvt-unicode, fixed 7.5) CVE-2006-0106 version (wine, fixed 0.9.10) CVE-2006-0071 ignore (pinentry, Gentoo-specific problem) CVE-2006-0047 version (freeciv, fixed 2.0.8) bz#184507 CVE-2005-4803 version (graphviz, fixed 2.2.1) CVE-2005-0106 backport (perl-Net-SSLeay, fixed 1.26-3) bz#191351