[Secure-testing-commits] r32751 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Mar 10 16:20:14 UTC 2015
Author: carnil
Date: 2015-03-10 16:20:14 +0000 (Tue, 10 Mar 2015)
New Revision: 32751
Modified:
data/CVE/list
Log:
Add new temporary items for php5, for two left TODO to check affected status for wheezy and squeeze
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-10 16:07:19 UTC (rev 32750)
+++ data/CVE/list 2015-03-10 16:20:14 UTC (rev 32751)
@@ -1,3 +1,20 @@
+CVE-2015-XXXX [use after free in phar_object.c]
+ - php5 5.6.6+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=68901
+ NOTE: http://git.php.net/?p=php-src.git;a=commit;h=b2cf3f064b8f5efef89bb084521b61318c71781b
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/10/6
+ TODO: check
+CVE-2015-XXXX [Double free with disabled ZMM]
+ - php5 5.6.6+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=68827
+ NOTE: http://git.php.net/?p=php-src.git;a=commit;h=91aa340180eccfc15d4a143b54d47b8120f898be
+ NOTE: http://www.openwall.com/lists/oss-security/2015/03/10/6
+ TODO: check
+CVE-2015-XXXX [heap buffer overflow in enchant_broker_request_dict()]
+ - php5 5.6.6+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=68552
+ NOTE: http://svn.php.net/viewvc/pecl/enchant/trunk/enchant.c?r1=317600&r2=335803
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/03/10/6
CVE-2015-XXXX [Incomplete fix for CVE-2014-2707; CUPS-filters remove_bad_chars() bypass]
- cups-filters <unfixed>
[wheezy] - cups-filters <not-affected> (vulnerable code not present)
More information about the Secure-testing-commits
mailing list