[Secure-testing-commits] r34319 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-05-18 05:07:09 +0000 (Mon, 18 May 2015)
New Revision: 34319

Modified:
   data/CVE/list
Log:
Add CVE-2015-3307/php5

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-05-18 04:54:17 UTC (rev 34318)
+++ data/CVE/list	2015-05-18 05:07:09 UTC (rev 34319)
@@ -1672,8 +1672,11 @@
 	RESERVED
 CVE-2015-3311
 	RESERVED
-CVE-2015-3307
+CVE-2015-3307 [Heap metadata corruption when parsing tar file in phar_tar_process_metadata()]
 	RESERVED
+	- php5 <unfixed>
+	NOTE: https://bugs.php.net/bug.php?id=69443&edit=2
+	NOTE: http://git.php.net/?p=php-src.git;a=commit;h=17cbd0b5b78a7500f185b3781a2149881bfff8ae
 CVE-2015-3329 [Buffer Overflow when parsing tar/zip/phar in phar_set_inode]
 	RESERVED
 	{DLA-212-1}