[Secure-testing-commits] r9858 - data/CVE
seanius at alioth.debian.org
seanius at alioth.debian.org
Sun Sep 21 20:43:09 UTC 2008
Author: seanius
Date: 2008-09-21 20:43:07 +0000 (Sun, 21 Sep 2008)
New Revision: 9858
Modified:
data/CVE/list
Log:
update on php CVE that was wrongly thought duplicate
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-09-21 13:43:15 UTC (rev 9857)
+++ data/CVE/list 2008-09-21 20:43:07 UTC (rev 9858)
@@ -1113,10 +1113,10 @@
CVE-2008-3661
RESERVED
CVE-2008-3660 (PHP 4.4.x before 4.4.9 and PHP 5.6 through 5.2.6, when used as a ...)
- - php5 5.2.6-1
- NOTE: believed to be a duplicate of CVE-2008-2050.
- NOTE: php4 not affected, the vulnerable code isn't present
- NOTE: http://www.php.net/ChangeLog-5.php
+ - php5 <unfixed> (medium)
+ - php4 <removed>
+ NOTE: *not* duplicate after all, needs review
+ NOTE: http://cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.57&r2=1.267.2.15.2.58&view=patch
CVE-2008-3659 (Buffer overflow in the memnstr function in PHP 4.4.x before 4.4.9 and ...)
- php4 <removed>
- php5 <unfixed> (medium)
More information about the Secure-testing-commits
mailing list