[Secure-testing-commits] r36987 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Oct 5 04:37:02 UTC 2015
Author: carnil
Date: 2015-10-05 04:37:02 +0000 (Mon, 05 Oct 2015)
New Revision: 36987
Modified:
data/CVE/list
Log:
Add two new temporary entries for php5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-05 04:28:59 UTC (rev 36986)
+++ data/CVE/list 2015-10-05 04:37:02 UTC (rev 36987)
@@ -1,3 +1,9 @@
+CVE-2015-XXXX [Uninitialized pointer in phar_make_dirstream when zip entry filename is "/"]
+ - php5 5.6.14+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=70433
+CVE-2015-XXXX [Null pointer dereference in phar_get_fp_offset()]
+ - php5 5.6.14+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=69720
CVE-2015-7687 [use-after-free issue in OpenSMTPD]
- opensmtpd <unfixed> (bug #800787)
CVE-2015-7686 [Algorithmic Complexity issue]
More information about the Secure-testing-commits
mailing list