[Secure-testing-commits] r30843 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Fri Dec 19 07:26:00 UTC 2014
Author: jmm
Date: 2014-12-19 07:26:00 +0000 (Fri, 19 Dec 2014)
New Revision: 30843
Modified:
data/CVE/list
Log:
php unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-19 07:11:52 UTC (rev 30842)
+++ data/CVE/list 2014-12-19 07:26:00 UTC (rev 30843)
@@ -3869,10 +3869,10 @@
RESERVED
CVE-2014-8142 [use after free vulnerability in unserialize()]
RESERVED
- - php5 <unfixed>
+ - php5 <unfixed> (unimportant)
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=630f9c33c23639de85c3fd306b209b538b73b4c9
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=53f129a44d3c4ec0fae57993b9ae2f6cb48973cc
- TODO: check versions
+ NOTE: Only affects an inherently insecure use case
CVE-2014-8141
RESERVED
CVE-2014-8140
More information about the Secure-testing-commits
mailing list