[Secure-testing-commits] r11037 - data/CVE

atomo64-guest at alioth.debian.org atomo64-guest at alioth.debian.org
Sun Jan 25 08:12:00 UTC 2009


Author: atomo64-guest
Date: 2009-01-25 08:12:00 +0000 (Sun, 25 Jan 2009)
New Revision: 11037

Modified:
   data/CVE/list
Log:
several php5 issues fixed in sid


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-01-24 19:23:40 UTC (rev 11036)
+++ data/CVE/list	2009-01-25 08:12:00 UTC (rev 11037)
@@ -2044,7 +2044,7 @@
 CVE-2007-6719 (SQL injection vulnerability in Wiz-Ad 1.3 allows remote attackers to ...)
 	NOT-FOR-US: Wiz-Ad
 CVE-2008-5658 (Directory traversal vulnerability in the ZipArchive::extractTo ...)
-	- php5 <unfixed> (bug #507857)
+	- php5 5.2.6.dfsg.1-3 (bug #507857)
 	- php4 <unfixed>
 CVE-2008-5323 (Cross-site scripting (XSS) vulnerability in index.php in Wysi Wiki Wyg ...)
 	NOT-FOR-US: Wysi Wiki Wyg
@@ -2210,7 +2210,7 @@
 	NOTE: upstream has been notified
 	TODO: write proper advisory and request CVE id
 CVE-2008-XXXX [php: inifile handler for the dba functions can be used to truncate a file]
-	- php5 (low; bug #507101)
+	- php5 5.2.6.dfsg.1-3 (low; bug #507101)
 	- php4 <unfixed> (low)
 CVE-2008-5278 (Cross-site scripting (XSS) vulnerability in the self_link function in ...)
 	- wordpress 2.5.1-11 (low; bug #507193)
@@ -8518,7 +8518,7 @@
 	- php5 <unfixed> (unimportant)
 	NOTE: safe mode not supported
 CVE-2008-2665 (Directory traversal vulnerability in the posix_access function in PHP ...)
-	- php5 <unfixed> (unimportant)
+	- php5 5.2.6.dfsg.1-3 (unimportant)
 	NOTE: safe mode not supported
 CVE-2008-2664 (The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before ...)
 	{DSA-1618-1 DSA-1612-1}




More information about the Secure-testing-commits mailing list