[Secure-testing-commits] r36549 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Sep 8 18:23:59 UTC 2015
Author: carnil
Date: 2015-09-08 18:23:59 +0000 (Tue, 08 Sep 2015)
New Revision: 36549
Modified:
data/CVE/list
Log:
CVE-2015-6833/php5 assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-09-08 18:21:41 UTC (rev 36548)
+++ data/CVE/list 2015-09-08 18:23:59 UTC (rev 36549)
@@ -765,13 +765,10 @@
NOT-FOR-US: pfSense
CVE-2015-6507
RESERVED
-CVE-2015-XXXX [Files extracted from archive may be placed outside of destination directory]
+CVE-2015-6833 [Files extracted from archive may be placed outside of destination directory]
- php5 5.6.12+dfsg-1
- [jessie] - php5 5.6.12+dfsg-0+deb8u1
- [wheezy] - php5 5.4.44-0+deb7u1
- NOTE: Workaround entries added for DSA-3344-1 until CVEs assigned
NOTE: https://bugs.php.net/bug.php?id=70019
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/08/19/3
+ NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/3
NOTE: Fixed upstream in 5.4.44 and 5.6.12
CVE-2015-6831 [vulnerabilities in unserialize]
- php5 5.6.12+dfsg-1
More information about the Secure-testing-commits
mailing list