[Secure-testing-commits] r35550 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 18 12:37:00 UTC 2015
Author: carnil
Date: 2015-07-18 12:37:00 +0000 (Sat, 18 Jul 2015)
New Revision: 35550
Modified:
data/CVE/list
Log:
Update information for CVE-2015-5590/php5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-18 12:34:33 UTC (rev 35549)
+++ data/CVE/list 2015-07-18 12:37:00 UTC (rev 35550)
@@ -1,8 +1,8 @@
CVE-2015-5590 [Buffer overflow and stack smashing error in phar_fix_filepath]
- - php5 <unfixed>
+ - php5 5.6.11+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69923
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=6dedeb40db13971af45276f80b5375030aa7e76f
- TODO: check affected versions
+ NOTE: Fixed in 5.6.11, 5.4.43
CVE-2015-5589 [Segfault in Phar::convertToData on invalid file]
- php5 5.6.11+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69958
More information about the Secure-testing-commits
mailing list