[Secure-testing-commits] r34972 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Tue Jun 16 18:26:21 UTC 2015


Author: carnil
Date: 2015-06-16 18:26:21 +0000 (Tue, 16 Jun 2015)
New Revision: 34972

Modified:
   data/CVE/list
Log:
Add CVE-2015-4604 and CVE-2015-4605

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-06-16 18:24:31 UTC (rev 34971)
+++ data/CVE/list	2015-06-16 18:26:21 UTC (rev 34972)
@@ -3027,13 +3027,20 @@
 	[wheezy] - xen 4.1.4-3+deb7u8
 	[squeeze] - xen <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: http://xenbits.xen.org/xsa/advisory-132.html
-CVE-2015-XXXX [denial of service when processing a crafted file with Fileinfo]
+CVE-2015-4605 [denial of service when processing a crafted file with Fileinfo -- 2015-02-09 17:10 UTC]
 	- php5 5.6.9+dfsg-1 (bug #783099)
 	[jessie] - php5 5.6.9+dfsg-0+deb8u1
 	[wheezy] - php5 5.4.41-0+deb7u1
 	- file <not-affected> (Not reproducible with file, see #783108)
 	NOTE: https://git.php.net/?p=php-src.git;a=commitdiff;h=f938112c495b0d26572435c0be73ac0bfe642ecd
 	NOTE: https://bugs.php.net/bug.php?id=68819
+CVE-2015-4604 [denial of service when processing a crafted file with Fileinfo -- 2015-02-05 13:53 UTC]
+	- php5 5.6.9+dfsg-1 (bug #783099)
+	[jessie] - php5 5.6.9+dfsg-0+deb8u1
+	[wheezy] - php5 5.4.41-0+deb7u1
+	- file <not-affected> (Not reproducible with file, see #783108)
+	NOTE: https://git.php.net/?p=php-src.git;a=commitdiff;h=f938112c495b0d26572435c0be73ac0bfe642ecd
+	NOTE: https://bugs.php.net/bug.php?id=68819
 CVE-2015-3339 (Race condition in the prepare_binprm function in fs/exec.c in the ...)
 	{DSA-3237-1 DLA-246-1}
 	- linux 3.16.7-ckt9-3




More information about the Secure-testing-commits mailing list