[Secure-testing-commits] r35487 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Jul 15 12:27:06 UTC 2015
Author: carnil
Date: 2015-07-15 12:27:06 +0000 (Wed, 15 Jul 2015)
New Revision: 35487
Modified:
data/CVE/list
Log:
php5 5.6.11+dfsg-1 uploaded to unstable, includes fixes for three CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-15 10:59:34 UTC (rev 35486)
+++ data/CVE/list 2015-07-15 12:27:06 UTC (rev 35487)
@@ -2023,14 +2023,14 @@
NOTE: http://www.openwall.com/lists/oss-security/2015/06/18/3
CVE-2015-4643 [Improved fix for bug #69545 (Integer overflow in ftp_genlist() resulting in heap overflow)]
RESERVED
- - php5 <unfixed>
+ - php5 5.6.11+dfsg-1
NOTE: Fixed in 5.6.10 / 5.5.26 / 5.4.42
NOTE: https://bugs.php.net/bug.php?id=69545#1431550655
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=0765623d6991b62ffcd93ddb6be8a5203a2fa7e2
NOTE: http://www.openwall.com/lists/oss-security/2015/06/18/3
CVE-2015-4644 [Fixed bug #69667 (segfault in php_pgsql_meta_data)]
RESERVED
- - php5 <unfixed>
+ - php5 5.6.11+dfsg-1
NOTE: Fixed in 5.6.10 / 5.5.26 / 5.4.42
NOTE: https://bugs.php.net/bug.php?id=69667
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64
@@ -2410,7 +2410,7 @@
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=51856a76f87ecb24fe1385342be43610fb6c86e4
CVE-2015-4598 [Incorrect handling of paths with NULs]
RESERVED
- - php5 <unfixed>
+ - php5 5.6.11+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69719
NOTE: Fixed in 5.6.10 and 5.4.42 upstream
CVE-2015-4588 (Heap-based buffer overflow in the DecodeImage function in libwmf ...)
More information about the Secure-testing-commits
mailing list