[Secure-testing-commits] r2633 - data/CVE
Florian Weimer
fw at costa.debian.org
Tue Nov 1 09:33:52 UTC 2005
Author: fw
Date: 2005-11-01 09:33:44 +0000 (Tue, 01 Nov 2005)
New Revision: 2633
Modified:
data/CVE/list
Log:
fix php4 urgency for $GLOBALS bug (urgency disputed by vorlon,
make it consistent with php5 for the time being)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-01 09:28:21 UTC (rev 2632)
+++ data/CVE/list 2005-11-01 09:33:44 UTC (rev 2633)
@@ -126,7 +126,7 @@
- php5 <unfixed> (bug #336654; low)
NOTE: http://www.hardened-php.net/advisory_192005.78.html
CVE-2005-XXXX [PHP File-Upload $GLOBALS Overwrite Vulnerability]
- - php4 <unfixed> (bug #336645; low)
+ - php4 <unfixed> (bug #336645; high)
- php5 <unfixed> (bug #336654; high)
NOTE: http://www.hardened-php.net/advisory_202005.79.html
NOTE: http://www.hardened-php.net/globals-problem
More information about the Secure-testing-commits
mailing list