# $Id: fe4,v 1.125 2007/01/04 16:59:12 scop Exp $ This list is no longer maintained by the Fedora Security Response Team as of 1st January 2007 (the Fedora Extras FC4 EOL date). ** are items that need attention CVE-2006-6808 VULNERABLE (wordpress) #221023 CVE-2006-6626 ** (moodle) #220041 CVE-2006-6625 VULNERABLE (moodle) #220041 CVE-2006-6610 version (nexuiz, fixed 2.2.1) #220034 CVE-2006-6609 version (nexuiz, fixed 2.2.1) #220034 CVE-2006-6574 VULNERABLE (mantis) #219937 CVE-2006-6563 VULNERABLE (proftpd, fixed 1.3.1rc1) #219938 CVE-2006-6515 VULNERABLE (mantis) #219720 CVE-2006-6505 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6504 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6503 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6502 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6501 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6500 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6499 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6498 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6497 VULNERABLE (seamonkey, fixed 1.0.7) #220516 CVE-2006-6481 version (clamav, fixed 0.88.7) CVE-2006-6406 version (clamav, fixed 0.88.7) #219095 CVE-2006-6301 version (denyhosts, fixed 2.6-2) #218824 CVE-2006-6235 ignore (gnupg2, affected binaries not shipped) #218821 CVE-2006-6171 VULNERABLE (proftpd) #214820 CVE-2006-6170 VULNERABLE (proftpd) #214820 CVE-2006-6169 backport (gnupg2, fixed 1.9.22-8) #217950 CVE-2006-6122 version (tin, fixed 1.8.2) #217420 CVE-2006-6120 VULNERABLE (koffice, fixed 1.6.1) #218030 CVE-2006-6085 version (kile, fixed 1.9.3) #217238 CVE-2006-5875 backport (enemies-of-carlotta, fixed 1.0.3-4) CVE-2006-5874 version (clamav, fixed 0.88.1) CVE-2006-5864 VULNERABLE (gv) #215136 CVE-2006-5848 version (trac, fixed 0.10.1) #215077 CVE-2006-5815 ** (proftpd) #214820 CVE-2006-5748 VULNERABLE (seamonkey, fixed 1.0.6) #214822 CVE-2006-5747 VULNERABLE (seamonkey, fixed 1.0.6) #214822 CVE-2006-5705 backport (wordpress, fixed 2.0.4-3) #213985 CVE-2006-5602 version (xsupplicant, fixed 1.2.6) CVE-2006-5601 version (xsupplicant, fixed 1.2.8) #212700 CVE-2006-5464 VULNERABLE (seamonkey, fixed 1.0.6) #214822 CVE-2006-5463 VULNERABLE (seamonkey, fixed 1.0.6) #214822 CVE-2006-5455 VULNERABLE (bugzilla) #212355 CVE-2006-5454 VULNERABLE (bugzilla) #212355 CVE-2006-5453 VULNERABLE (bugzilla) #212355 CVE-2006-5295 version (clamav, fixed 0.88.5) #210973 CVE-2006-5129 version (moodle, fixed 1.6.3) #206516 CVE-2006-5111 version (libksba, fixed 0.9.14) CVE-2006-4976 ** (php-adodb) #208299 CVE-2006-4943 version (moodle, fixed 1.6.3) #206516 CVE-2006-4942 version (moodle, fixed 1.6.3) #206516 CVE-2006-4941 version (moodle, fixed 1.6.3) #206516 CVE-2006-4940 version (moodle, fixed 1.6.3) #206516 CVE-2006-4939 version (moodle, fixed 1.6.3) #206516 CVE-2006-4938 version (moodle, fixed 1.6.3) #206516 CVE-2006-4937 version (moodle, fixed 1.6.3) #206516 CVE-2006-4936 version (moodle, fixed 1.6.3) #206516 CVE-2006-4935 version (moodle, fixed 1.6.3) #206516 CVE-2006-4809 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4808 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4807 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4806 patch (imlib2, fixed 1.2.1-2) #214676 CVE-2006-4786 version (moodle, fixed 1.6.3) #206516 CVE-2006-4785 version (moodle, fixed 1.6.3) #206516 CVE-2006-4784 version (moodle, fixed 1.6.3) #206516 CVE-2006-4743 ignore (wordpress, dupe of an old non-issue) #206514 CVE-2006-4684 patch (zope, fixed 2.8.3-6.1) #198106 CVE-2006-4571 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4570 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4568 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4566 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4565 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4513 backport (wv, fixed 1.0.3-3) #212696 CVE-2006-4513 ** (abiword) #212698 CVE-2006-4340 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4253 VULNERABLE (seamonkey, fixed 1.0.5) #209167 CVE-2006-4249 ignore (plone, 2.5/2.5.1 only issue) #213983 CVE-2006-4248 ignore (thttpd, Debian specific issue) CVE-2006-4247 ignore (plone, 2.1.x not affected) #209163 CVE-2006-4192 patch (libmodplug, fixed 0.7-4) CVE-2006-4182 version (clamav, fixed 0.88.5) #210973 CVE-2006-4028 version (wordpress, fixed 2.0.4) #201989 CVE-2006-4018 version (clamav, fixed 0.88.4-1) #201688 CVE-2006-3913 patch (freeciv, fixed 2.0.8-4) #200545 CVE-2006-3816 version (krusader, fixed 1.70.1) #200323 CVE-2006-3815 version (heartbeat, fixed 2.0.6) CVE-2006-3812 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3811 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3810 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3809 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3808 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3807 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3806 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3805 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3804 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3803 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3802 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3801 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3677 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-3582 version (adplug, fixed 2.0.1-1) #198108 CVE-2006-3581 version (adplug, fixed 2.0.1-1) #198108 CVE-2006-3458 patch (zope, fixed 2.8.3-4) #198106 CVE-2006-3390 ignore (wordpress, not an issue) #198107 CVE-2006-3178 ignore (chmlib, extract_chmLib not shipped) CVE-2006-3121 version (heartbeat, fixed 2.0.7) CVE-2006-3119 patch (fbida, fixed 2.0.3-8) #200321 CVE-2006-3113 version (seamonkey, fixed 1.0.4) #200455 CVE-2006-2920 version (sylpheed-claws, fixed 2.2.2) CVE-2006-2894 VULNERABLE (seamonkey) #194511 CVE-2006-2781 version (seamonkey, fixed 1.0.2-1) #193963 CVE-2006-2777 version (seamonkey, fixed 1.0.2-1) #193962 CVE-2006-2769 patch (snort, fixed 2.4.4-4) bz#193809 CVE-2006-2575 patch (netpanzer, fixed 0.8-4) bz#192983 CVE-2006-2489 version (nagios, fixed 2.3.1) CVE-2006-2442 patch (kphone,fixed 4.2-9) bz#192202 CVE-2006-2427 ignore (clamav) not an issue bz#192076 CVE-2006-2237 backport (awstats, fixed 6.5-3) bz#190924 CVE-2006-2229 ** openvpn CVE-2006-2197 version (wv2, fixed 0.2.3-1) #195019 CVE-2006-2169 ** rt3 CVE-2006-2162 version (nagios, fixed 2.3.1) bz#190614 CVE-2006-2093 version (nessus, fixed 2.2.7) bz#191053 CVE-2006-2017 version (dnsmasq, fixed 2.30) CVE-2006-2016 version (phpldapadmin, fixed 0.9.8.1) CVE-2006-1989 version (clamav, fixed 0.88.2) CVE-2006-1945 backport (awstats, fixed 6.5-2) bz#190922 awstats-6.5-CVE-2006-1945.patch CVE-2006-1900 version (amaya, fixed 9.5) bz#190324 CVE-2006-1742 version (seamonkey, fixed 1.0) CVE-2006-1741 version (seamonkey, fixed 1.0) CVE-2006-1740 version (seamonkey, fixed 1.0) CVE-2006-1739 version (seamonkey, fixed 1.0) CVE-2006-1738 version (seamonkey, fixed 1.0) CVE-2006-1737 version (seamonkey, fixed 1.0) CVE-2006-1736 version (seamonkey, fixed 1.0) CVE-2006-1735 version (seamonkey, fixed 1.0) CVE-2006-1734 version (seamonkey, fixed 1.0) CVE-2006-1733 version (seamonkey, fixed 1.0) CVE-2006-1732 version (seamonkey, fixed 1.0) CVE-2006-1731 version (seamonkey, fixed 1.0) CVE-2006-1730 version (seamonkey, fixed 1.0.1) CVE-2006-1729 version (seamonkey, fixed 1.0.1) CVE-2006-1728 version (seamonkey, fixed 1.0.1) CVE-2006-1727 version (seamonkey, fixed 1.0.1) CVE-2006-1726 version (seamonkey, fixed 1.0.1) CVE-2006-1725 version (seamonkey, fixed 1.0.1) CVE-2006-1724 version (seamonkey, fixed 1.0.1) CVE-2006-1723 version (seamonkey, fixed 1.0.1) CVE-2006-1711 version (plone, fixed 2.1.2) bz#188886 CVE-2006-1695 patch (fbida, fixed 2.03-6) bz#189721 CVE-2006-1630 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1629 version (openvpn, fixed 2.0.6) bz#188050 CVE-2006-1615 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1614 version (clamav, fixed 0.88.1) bz#188286 CVE-2006-1577 ** (mantis) bz#191089 CVE-2006-1566 ignore (libtunepimp, Debian-specific problem) CVE-2006-1539 ignore (bsd-games, Gentoo-specific problem) CVE-2006-1531 version (seamonkey, fixed 1.0.1) CVE-2006-1530 version (seamonkey, fixed 1.0.1) CVE-2006-1529 version (seamonkey, fixed 1.0.1) CVE-2006-1498 version (mediawiki, fixed 1.5.8) bz#188122 CVE-2006-1390 ignore (nethack, Gentoo-specific problem) bz#187353 CVE-2006-1329 version (jabberd, fixed 2.0s11) CVE-2006-1269 patch (zoo, fixed 2.10-7) bz#183109 CVE-2006-1251 ignore (exim-sa, configuration not vulnerable) bz#191082 CVE-2006-1079 patch (thttpd, fixed 2.25b-11) bz#191095 CVE-2006-1078 patch (thttpd, fixed 2.25b-11) bz#191095 CVE-2006-0855 patch (zoo, patched in OpenSUSE "upstream", fixed 2.10-7) CVE-2006-0847 version (python-cherrypy, fixed 2.1.1) CVE-2006-0841 ** (mantis) bz#191089 CVE-2006-0840 backport (mantis, fixed 0.19.4-2) bz#191089 CVE-2006-0839 version (snort, fixed in 2.4.4) bz#183297 CVE-2006-0814 ignore (lighttpd, Windows-specific problem) CVE-2006-0804 ignore (tin, <= 1.8.0 not shipped) CVE-2006-0760 version (lighttpd, fixed 1.4.10) CVE-2006-0749 version (seamonkey, fixed 1.0) CVE-2006-0748 version (seamonkey, fixed 1.0.1) CVE-2006-0665 backport (mantis, fixed 0.19.4-2) bz#191089 CVE-2006-0664 ** (mantis) bz#191089 CVE-2006-0645 version (libtasn1, fixed 0.3.0) bz#184097 CVE-2006-0458 version (irssi, fixed 0.8.10) bz#184509 CVE-2006-0322 version (mediawiki, fixed 1.5.8) CVE-2006-0299 version (seamonkey, fixed 1.0) CVE-2006-0298 version (seamonkey, fixed 1.0) CVE-2006-0297 version (seamonkey, fixed 1.0) CVE-2006-0296 version (seamonkey, fixed 1.0) CVE-2006-0295 version (seamonkey, fixed 1.0) CVE-2006-0294 version (seamonkey, fixed 1.0) CVE-2006-0162 version (clamav, fixed 0.88) CVE-2006-0126 version (rxvt-unicode, fixed 7.5) CVE-2006-0106 version (wine, fixed 0.9.10) CVE-2006-0071 ignore (pinentry, Gentoo-specific problem) CVE-2006-0047 version (freeciv, fixed 2.0.8) bz#184507 CVE-2006-0042 version (libapreq2, fixed 2.0.7) CVE-2005-4803 version (graphviz, fixed 2.2.1) CVE-2005-2295 patch (netpanzer, fixed 0.8-4) bz#192990 CVE-2005-0106 backport (perl-Net-SSLeay, fixed 1.26-3) bz#191351