[Secure-testing-commits] r37619 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Sun Nov 8 21:10:26 UTC 2015


Author: sectracker
Date: 2015-11-08 21:10:25 +0000 (Sun, 08 Nov 2015)
New Revision: 37619

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-11-08 18:52:37 UTC (rev 37618)
+++ data/CVE/list	2015-11-08 21:10:25 UTC (rev 37619)
@@ -930,12 +930,12 @@
 	NOTE: http://symfony.com/blog/security-release-twig-1-20-0
 CVE-2015-7804 [Uninitialized pointer in phar_make_dirstream when zip entry filename is "/"]
 	RESERVED
-	{DSA-3380-1}
+	{DSA-3380-1 DLA-341-1}
 	- php5 5.6.14+dfsg-1 (medium)
 	NOTE: https://bugs.php.net/bug.php?id=70433
 CVE-2015-7803 [Null pointer dereference in phar_get_fp_offset()]
 	RESERVED
-	{DSA-3380-1}
+	{DSA-3380-1 DLA-341-1}
 	- php5 5.6.14+dfsg-1 (low)
 	NOTE: https://bugs.php.net/bug.php?id=69720
 CVE-2015-7764
@@ -3258,21 +3258,21 @@
 	NOTE: Thread on oss-security to clarify if this should be CVE-2015-5738 or a new CVE
 CVE-2015-6838 [NULL pointer dereference]
 	RESERVED
-	{DSA-3358-1}
+	{DSA-3358-1 DLA-341-1}
 	- php5 5.6.13+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=69782
 	NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
 	NOTE: Fixed in 5.5.45 and 5.6.13
 CVE-2015-6837 [NULL pointer dereference]
 	RESERVED
-	{DSA-3358-1}
+	{DSA-3358-1 DLA-341-1}
 	- php5 5.6.13+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=69782
 	NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
 	NOTE: Fixed in 5.5.45 and 5.6.13
 CVE-2015-6836 [SOAP serialize_function_call() type confusion / RCE]
 	RESERVED
-	{DSA-3358-1}
+	{DSA-3358-1 DLA-341-1}
 	- php5 5.6.13+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=70388
 	NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
@@ -3286,7 +3286,7 @@
 	NOTE: Fixed in 5.5.45 and 5.6.13
 CVE-2015-6834 [Vulnerability in unserialize(), discoverer taoguangchen at icloud.com]
 	RESERVED
-	{DSA-3358-1}
+	{DSA-3358-1 DLA-341-1}
 	- php5 5.6.13+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=70172
 	NOTE: https://bugs.php.net/bug.php?id=70365
@@ -4065,14 +4065,14 @@
 	TODO: check
 CVE-2015-6833 [Files extracted from archive may be placed outside of destination directory]
 	RESERVED
-	{DSA-3344-1}
+	{DSA-3344-1 DLA-341-1}
 	- php5 5.6.12+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=70019
 	NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/3
 	NOTE: Fixed upstream in 5.4.44 and 5.6.12
 CVE-2015-6831 [vulnerabilities in unserialize]
 	RESERVED
-	{DSA-3344-1}
+	{DSA-3344-1 DLA-341-1}
 	- php5 5.6.12+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=70169
 	NOTE: https://bugs.php.net/bug.php?id=70168
@@ -4082,7 +4082,7 @@
 	NOTE: Fixed upstream in 5.4.44 and 5.6.12
 CVE-2015-6832 [Dangling pointer in the unserialization of ArrayObject items]
 	RESERVED
-	{DSA-3344-1}
+	{DSA-3344-1 DLA-341-1}
 	- php5 5.6.12+dfsg-1
 	NOTE: https://bugs.php.net/bug.php?id=70068
 	NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/3




More information about the Secure-testing-commits mailing list