[Secure-testing-commits] r23326 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Aug 15 10:26:21 UTC 2013
Author: carnil
Date: 2013-08-15 10:26:20 +0000 (Thu, 15 Aug 2013)
New Revision: 23326
Modified:
data/CVE/list
Log:
add note for CVE-2011-4718/php5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-15 07:24:01 UTC (rev 23325)
+++ data/CVE/list 2013-08-15 10:26:20 UTC (rev 23326)
@@ -30886,7 +30886,7 @@
NOTE: Duplicate for chromebooks
CVE-2011-4718 (Session fixation vulnerability in the Sessions subsystem in PHP before ...)
- php5 <unfixed>
- TODO: check and report
+ NOTE: 5.5.2 implements strict sessions RFC (https://wiki.php.net/rfc/strict_sessions)
CVE-2011-4717 (Directory traversal vulnerability in zFTPServer Suite 6.0.0.52 allows ...)
NOT-FOR-US: zFTPServer Suite
CVE-2011-4716 (Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, ...)
More information about the Secure-testing-commits
mailing list