[Secure-testing-commits] r20080 - data/CVE

Sun Sep 2 22:25:51 UTC 2012

Author: geissert
Date: 2012-09-02 22:25:51 +0000 (Sun, 02 Sep 2012)
New Revision: 20080

Modified:
   data/CVE/list
Log:
php response-splitting defense bypass (part 2)


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2012-09-02 16:40:54 UTC (rev 20079)
+++ data/CVE/list	2012-09-02 22:25:51 UTC (rev 20080)
@@ -900,8 +900,10 @@
 	RESERVED
 CVE-2012-4389
 	RESERVED
-CVE-2012-4388
+CVE-2012-4388 [php5 incomplete fix of CVE-2011-1398]
 	RESERVED
+	- php5 5.4.1~rc1-1
+	[squeeze] - php5 <not-affected> (CVE-2011-1398 was never fixed in squeeze)
 CVE-2012-4387 [Apache Struts DoS]
 	RESERVED
 	NOTE: check


