[Secure-testing-commits] r31083 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 2 05:07:56 UTC 2015
Author: carnil
Date: 2015-01-02 05:07:55 +0000 (Fri, 02 Jan 2015)
New Revision: 31083
Modified:
data/CVE/list
Log:
Update CVE-2014-9426/php5, wheezy and squeeze does not contain the invalid free
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-02 04:40:24 UTC (rev 31082)
+++ data/CVE/list 2015-01-02 05:07:55 UTC (rev 31083)
@@ -3,6 +3,8 @@
CVE-2014-9426 (The apprentice_load function in libmagic/apprentice.c in the Fileinfo ...)
- file <not-affected> (PHP specific modification in libmagic/apprentice.c)
- php5 <unfixed>
+ [wheezy] - php5 <not-affected> (libmagic/apprentice.c does not contain the invalid free)
+ [squeeze] - php5 <not-affected> (libmagic/apprentice.c does not contain the invalid free)
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=a72cd07f2983dc43a6bb35209dc4687852e53c09
CVE-2014-9423
RESERVED
More information about the Secure-testing-commits
mailing list