[Secure-testing-commits] r28385 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Aug 20 17:46:56 UTC 2014
Author: carnil
Date: 2014-08-20 17:46:56 +0000 (Wed, 20 Aug 2014)
New Revision: 28385
Modified:
data/CVE/list
Log:
CVE-2014-4670/php5 fixed in 5.6.0~rc3+dfsg-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-08-20 17:29:01 UTC (rev 28384)
+++ data/CVE/list 2014-08-20 17:46:56 UTC (rev 28385)
@@ -1620,8 +1620,9 @@
CVE-2014-4671 (Adobe Flash Player before 13.0.0.231 and 14.x before 14.0.0.145 on ...)
NOT-FOR-US: Adobe Flash
CVE-2014-4670 (Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL ...)
- - php5 <unfixed> (unimportant)
+ - php5 5.6.0~rc3+dfsg-1 (unimportant)
NOTE: exploitable by malicious scripts only
+ NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=df78c48354f376cf419d7a97f88ca07d572f00fb
NOTE: https://bugs.php.net/bug.php?id=67538
CVE-2014-4669 (HP Enterprise Maps 1.00 allows remote authenticated users to read ...)
NOT-FOR-US: HP Enterprise Maps
More information about the Secure-testing-commits
mailing list