[Secure-testing-commits] r10987 - data/CVE
atomo64-guest at alioth.debian.org
atomo64-guest at alioth.debian.org
Sun Jan 18 20:59:36 UTC 2009
Author: atomo64-guest
Date: 2009-01-18 20:59:36 +0000 (Sun, 18 Jan 2009)
New Revision: 10987
Modified:
data/CVE/list
Log:
php5 issues update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-01-18 18:01:55 UTC (rev 10986)
+++ data/CVE/list 2009-01-18 20:59:36 UTC (rev 10987)
@@ -1025,7 +1025,7 @@
CVE-2008-5558 (Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition ...)
- asterisk 1:1.4.0~dfsg-1 (bug #509686)
CVE-2008-5557 (Heap-based buffer overflow in ...)
- - php5 5.2.6.dfsg.1-2 (bug #511493)
+ - php5 5.2.6.dfsg.1-1 (bug #511493)
CVE-2008-XXXX [phpBB3 Account Re-activation Security Bypass]
- phpbb3 <unfixed> (low; bug #508872)
CVE-2008-5556 (** DISPUTED ** ...)
@@ -1508,7 +1508,7 @@
CVE-2008-5617 (The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does ...)
- rsyslog 3.18.6-1 (bug #508027)
CVE-2008-5624 (PHP 5 before 5.2.7 does not properly initialize the page_uid and ...)
- - php5 <unfixed> (bug #508021)
+ - php5 5.2.6.dfsg.1-1 (bug #508021)
NOTE: Fixed in php 5.2.7, not yet in the archive
NOTE: http://securityreason.com/achievement_securityalert/59
TODO: check php4
More information about the Secure-testing-commits
mailing list