[Secure-testing-commits] r31439 - data/CVE
Thijs Kinkhorst
thijs at moszumanska.debian.org
Sat Jan 17 18:12:04 UTC 2015
Author: thijs
Date: 2015-01-17 18:12:04 +0000 (Sat, 17 Jan 2015)
New Revision: 31439
Modified:
data/CVE/list
Log:
issue fixed in DSA-3126-1
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-17 18:05:09 UTC (rev 31438)
+++ data/CVE/list 2015-01-17 18:12:04 UTC (rev 31439)
@@ -2474,7 +2474,7 @@
- file 1:5.21+15-1
[squeeze] - file <not-affected> (Introduced in 5.08)
[wheezy] - file 5.11-2+deb7u7
- - php5 <unfixed>
+ - php5 <not-affected> (readelf.c not used and even removed in 5.4.36-0+deb7u3)
NOTE: Report: http://mx.gw.com/pipermail/file/2014/001653.html
NOTE: Fix: https://github.com/file/file/commit/ce90e05774dd77d86cfc8dfa6da57b32816841c4
NOTE: Introduced by: https://github.com/file/file/commit/956a45ab1c54b11304b367056f41905e72a02380#diff-bc5c24ef9f39a5f4963ca28ecbc645b3L423
@@ -2501,6 +2501,7 @@
- file 1:5.21+15-1
[wheezy] - file 5.11-2+deb7u7
- php5 <unfixed>
+ [wheezy] - php5 5.4.36-0+deb7u3
NOTE: http://bugs.gw.com/view.php?id=398
NOTE: https://github.com/file/file/commit/59e63838913eee47f5c120a6c53d4565af638158
CVE-2014-9402 [endless loop in getaddr_r]
More information about the Secure-testing-commits
mailing list