[Secure-testing-commits] r33185 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 27 08:43:09 UTC 2015
Author: carnil
Date: 2015-03-27 08:43:08 +0000 (Fri, 27 Mar 2015)
New Revision: 33185
Modified:
data/CVE/list
Log:
Mark CVE-2014-9709 as unimportant since affects embedded copy, but since php5/5.4.0-1 the system libgd library
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-27 08:20:09 UTC (rev 33184)
+++ data/CVE/list 2015-03-27 08:43:08 UTC (rev 33185)
@@ -1086,7 +1086,7 @@
CVE-2014-9709 [gd: buffer read overflow in gd_gif_in.c]
RESERVED
- libgd2 2.1.0-5
- - php5 5.4.0-1
+ - php5 5.6.5+dfsg-1 (unimportant)
NOTE: https://bugs.php.net/bug.php?id=68601
NOTE: Fix in libgd2: https://bitbucket.org/libgd/gd-libgd/commits/47eb44b2e90ca88a08dca9f9a1aa9041e9587f43
NOTE: http://git.php.net/?p=php-src.git;a=commitdiff;h=07b5896a1389c3e865cbd2fb353806b2cefe4f5c
More information about the Secure-testing-commits
mailing list