[Secure-testing-commits] r37069 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Sun Oct 11 06:58:34 UTC 2015
Author: fgeek-guest
Date: 2015-10-11 06:58:34 +0000 (Sun, 11 Oct 2015)
New Revision: 37069
Modified:
data/CVE/list
Log:
PHP CVEs assigned, few IBM NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-10-11 05:38:50 UTC (rev 37068)
+++ data/CVE/list 2015-10-11 06:58:34 UTC (rev 37069)
@@ -1,3 +1,9 @@
+CVE-2015-7804 [Uninitialized pointer in phar_make_dirstream when zip entry filename is "/"]
+ - php5 5.6.14+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=70433
+CVE-2015-7803 [Null pointer dereference in phar_get_fp_offset()]
+ - php5 5.6.14+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=69720
CVE-2015-7764
RESERVED
CVE-2015-7763
@@ -249,14 +255,6 @@
- opensmtpd <unfixed>
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/04/2
NOTE: Fixed with 5.7.3 upstream release
-CVE-2015-XXXX [Uninitialized pointer in phar_make_dirstream when zip entry filename is "/"]
- - php5 5.6.14+dfsg-1
- NOTE: https://bugs.php.net/bug.php?id=70433
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/05/8
-CVE-2015-XXXX [Null pointer dereference in phar_get_fp_offset()]
- - php5 5.6.14+dfsg-1
- NOTE: https://bugs.php.net/bug.php?id=69720
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/05/8
CVE-2015-7687 [use-after-free issue in OpenSMTPD]
RESERVED
- opensmtpd <unfixed> (bug #800787)
@@ -7044,9 +7042,10 @@
CVE-2015-4931 (Stack-based buffer overflow in the server in IBM Tivoli Storage ...)
NOT-FOR-US: IBM
CVE-2015-4930 (IBM QRadar SIEM 7.1 MR2 before Patch 11 IF02 and 7.2.x before 7.2.5 ...)
- TODO: check
+ NOT-FOR-US: IBM QRadar SIEM
CVE-2015-4929
RESERVED
+ NOT-FOR-US: IBM
CVE-2015-4928
RESERVED
CVE-2015-4927
More information about the Secure-testing-commits
mailing list