[Secure-testing-commits] r37619 - data/CVE
security tracker role
sectracker at moszumanska.debian.org
Sun Nov 8 21:10:26 UTC 2015
Author: sectracker
Date: 2015-11-08 21:10:25 +0000 (Sun, 08 Nov 2015)
New Revision: 37619
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-11-08 18:52:37 UTC (rev 37618)
+++ data/CVE/list 2015-11-08 21:10:25 UTC (rev 37619)
@@ -930,12 +930,12 @@
NOTE: http://symfony.com/blog/security-release-twig-1-20-0
CVE-2015-7804 [Uninitialized pointer in phar_make_dirstream when zip entry filename is "/"]
RESERVED
- {DSA-3380-1}
+ {DSA-3380-1 DLA-341-1}
- php5 5.6.14+dfsg-1 (medium)
NOTE: https://bugs.php.net/bug.php?id=70433
CVE-2015-7803 [Null pointer dereference in phar_get_fp_offset()]
RESERVED
- {DSA-3380-1}
+ {DSA-3380-1 DLA-341-1}
- php5 5.6.14+dfsg-1 (low)
NOTE: https://bugs.php.net/bug.php?id=69720
CVE-2015-7764
@@ -3258,21 +3258,21 @@
NOTE: Thread on oss-security to clarify if this should be CVE-2015-5738 or a new CVE
CVE-2015-6838 [NULL pointer dereference]
RESERVED
- {DSA-3358-1}
+ {DSA-3358-1 DLA-341-1}
- php5 5.6.13+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69782
NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
NOTE: Fixed in 5.5.45 and 5.6.13
CVE-2015-6837 [NULL pointer dereference]
RESERVED
- {DSA-3358-1}
+ {DSA-3358-1 DLA-341-1}
- php5 5.6.13+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=69782
NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
NOTE: Fixed in 5.5.45 and 5.6.13
CVE-2015-6836 [SOAP serialize_function_call() type confusion / RCE]
RESERVED
- {DSA-3358-1}
+ {DSA-3358-1 DLA-341-1}
- php5 5.6.13+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=70388
NOTE: http://www.openwall.com/lists/oss-security/2015/09/07/5
@@ -3286,7 +3286,7 @@
NOTE: Fixed in 5.5.45 and 5.6.13
CVE-2015-6834 [Vulnerability in unserialize(), discoverer taoguangchen at icloud.com]
RESERVED
- {DSA-3358-1}
+ {DSA-3358-1 DLA-341-1}
- php5 5.6.13+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=70172
NOTE: https://bugs.php.net/bug.php?id=70365
@@ -4065,14 +4065,14 @@
TODO: check
CVE-2015-6833 [Files extracted from archive may be placed outside of destination directory]
RESERVED
- {DSA-3344-1}
+ {DSA-3344-1 DLA-341-1}
- php5 5.6.12+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=70019
NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/3
NOTE: Fixed upstream in 5.4.44 and 5.6.12
CVE-2015-6831 [vulnerabilities in unserialize]
RESERVED
- {DSA-3344-1}
+ {DSA-3344-1 DLA-341-1}
- php5 5.6.12+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=70169
NOTE: https://bugs.php.net/bug.php?id=70168
@@ -4082,7 +4082,7 @@
NOTE: Fixed upstream in 5.4.44 and 5.6.12
CVE-2015-6832 [Dangling pointer in the unserialization of ArrayObject items]
RESERVED
- {DSA-3344-1}
+ {DSA-3344-1 DLA-341-1}
- php5 5.6.12+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=70068
NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/3
More information about the Secure-testing-commits
mailing list