[Secure-testing-commits] r30841 - data/CVE

Fri Dec 19 07:09:29 UTC 2014

Author: carnil
Date: 2014-12-19 07:09:29 +0000 (Fri, 19 Dec 2014)
New Revision: 30841

Modified:
   data/CVE/list
Log:
Add new php5 issue, CVE-2014-8142

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2014-12-19 06:49:49 UTC (rev 30840)
+++ data/CVE/list	2014-12-19 07:09:29 UTC (rev 30841)
@@ -3869,8 +3869,12 @@
 	NOT-FOR-US: doorkeeper OAuth provider
 CVE-2014-8143
 	RESERVED
-CVE-2014-8142
+CVE-2014-8142 [use after free vulnerability in unserialize()]
 	RESERVED
+	- php5 <unfixed>
+	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=630f9c33c23639de85c3fd306b209b538b73b4c9
+	NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=53f129a44d3c4ec0fae57993b9ae2f6cb48973cc
+	TODO: check versions
 CVE-2014-8141
 	RESERVED
 CVE-2014-8140


