[Secure-testing-commits] r33642 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Apr 16 19:56:44 UTC 2015


Author: carnil
Date: 2015-04-16 19:56:44 +0000 (Thu, 16 Apr 2015)
New Revision: 33642

Modified:
   data/CVE/list
Log:
Add CVE-2015-2783/php5

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-04-16 19:55:04 UTC (rev 33641)
+++ data/CVE/list	2015-04-16 19:56:44 UTC (rev 33642)
@@ -1282,8 +1282,11 @@
 	NOT-FOR-US: MyBB
 CVE-2015-2784
 	RESERVED
-CVE-2015-2783
+CVE-2015-2783 [Buffer Over-read in unserialize when parsing Phar]
 	RESERVED
+	- php5 <unfixed>
+	NOTE: https://bugs.php.net/bug.php?id=69324
+	NOTE: http://git.php.net/?p=php-src.git;a=commit;h=17cbd0b5b78a7500f185b3781a2149881bfff8ae
 CVE-2015-2781 (Cross-site scripting (XSS) vulnerability in cgi-bin/hotspotlogin.cgi ...)
 	TODO: check
 CVE-2015-2780




More information about the Secure-testing-commits mailing list