[Secure-testing-commits] r20072 - data/CVE
Raphael Geissert
geissert at alioth.debian.org
Fri Aug 31 21:17:22 UTC 2012
Author: geissert
Date: 2012-08-31 21:17:22 +0000 (Fri, 31 Aug 2012)
New Revision: 20072
Modified:
data/CVE/list
Log:
php response-splitting defense bypass (part 1)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-08-31 21:14:17 UTC (rev 20071)
+++ data/CVE/list 2012-08-31 21:17:22 UTC (rev 20072)
@@ -22492,7 +22492,7 @@
CVE-2011-1399
RESERVED
CVE-2011-1398 (The sapi_header_op function in main/SAPI.c in PHP before 5.3.11 does ...)
- TODO: check
+ - php5 5.4.0~rc5-1
CVE-2011-1397 (Cross-site request forgery (CSRF) vulnerability in the Labor Reporting ...)
NOT-FOR-US: IBM Tivoli
CVE-2011-1396 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset ...)
More information about the Secure-testing-commits
mailing list