[Secure-testing-commits] r14681 - in data: . CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Wed May 12 00:14:34 UTC 2010 

Author: gilbert-guest
Date: 2010-05-12 00:14:20 +0000 (Wed, 12 May 2010)
New Revision: 14681

Modified:
   data/CVE/list
   data/mops.txt
Log:
more php issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-05-11 23:32:34 UTC (rev 14680)
+++ data/CVE/list	2010-05-12 00:14:20 UTC (rev 14681)
@@ -1,3 +1,18 @@
+CVE-2010-1918 [MOPS-2010-018]
+	- php5 <undetermined>
+	TODO: check
+CVE-2010-1917 [MOPS-2010-021]
+	- php5 <undetermined>
+	TODO: check
+CVE-2010-1916 [MOPS-2010-019]
+	- php5 <undetermined>
+	TODO: check
+CVE-2010-1915 [MOPS-2010-017]
+	- php5 <undetermined>
+	TODO: check
+CVE-2010-1914 [MOPS-2010-014,15,16]
+	- php5 <undetermined>
+	TODO: check
 CVE-2010-1871
 	RESERVED
 CVE-2010-1870

Modified: data/mops.txt
===================================================================
--- data/mops.txt	2010-05-11 23:32:34 UTC (rev 14680)
+++ data/mops.txt	2010-05-12 00:14:20 UTC (rev 14681)
@@ -13,10 +13,11 @@
 011: External app not in Debian: DeluxeBB
 012: CVE-2010-1868; Only triggerable by malicious script
 013: CVE-2010-1868; Only triggerable by malicious script
-014: no CVE yet; Only triggerable by malicious script
-015: no CVE yet; Only triggerable by malicious script
-016: no CVE yet; Only triggerable by malicious script
-017: no CVE yet; Only triggerable by malicious script
+014: CVE-2010-1914; Only triggerable by malicious script
+015: CVE-2010-1914; Only triggerable by malicious script
+016: CVE-2010-1914; Only triggerable by malicious script
+017: CVE-2010-1915; Only triggerable by malicious script
 018: External app not in Debian: MeFront
-019: no CVE yet; Serendipity, doesn't affect Lenny (1.4 onwards), pinged Thijs
-020: External app; xinha, Just an ITP: #479708, there might be embedders according to the bug
\ No newline at end of file
+019: CVE-2010-1916; Serendipity, doesn't affect Lenny (1.4 onwards), pinged Thijs
+020: External app; xinha, Just an ITP: #479708, there might be embedders according to the bug
+021: CVE-2010-1917; PHP fnmatch() Stack Exhaustion Vulnerability

More information about the Secure-testing-commits mailing list