[Secure-testing-commits] r40879 - data/CVE
Matthias Geerdsen
kosh-guest at moszumanska.debian.org
Mon Apr 11 20:10:07 UTC 2016
Author: kosh-guest
Date: 2016-04-11 20:10:07 +0000 (Mon, 11 Apr 2016)
New Revision: 40879
Modified:
data/CVE/list
Log:
add CVE request for PHP issues fixed in 7.0.5, 5.6.20, 5.5.34
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-11 18:40:37 UTC (rev 40878)
+++ data/CVE/list 2016-04-11 20:10:07 UTC (rev 40879)
@@ -40,24 +40,28 @@
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
NOTE: https://bugs.php.net/bug.php?id=71798
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=95433e8e339dbb6b5d5541473c1661db6ba2c451
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-XXXX [Format string vulnerability in php_snmp_error()]
- php7.0 7.0.5-1
- php5 <unfixed>
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
NOTE: https://bugs.php.net/bug.php?id=71704
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=6e25966544fb1d2f3d7596e060ce9c9269bbdcf8
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-XXXX [Invalid memory write in phar on filename containing \0 inside name]
- php7.0 7.0.5-1
- php5 <unfixed>
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
NOTE: https://bugs.php.net/bug.php?id=71860
NOTE: https://gist.github.com/smalyshev/80b5c2909832872f2ba2
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-XXXX [Negative size parameter in memcpy]
- php7.0 7.0.5-1
- php5 <unfixed>
NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
NOTE: https://bugs.php.net/bug.php?id=71906
NOTE: https://gist.github.com/smalyshev/d8355c96a657cc5dba70
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/11/7
CVE-2016-3976 (Directory traversal vulnerability in SAP NetWeaver AS Java 7.4 allows ...)
NOT-FOR-US: SAP
CVE-2016-3975 (Cross-site scripting (XSS) vulnerability in SAP NetWeaver AS Java 7.4 ...)
@@ -175,6 +179,7 @@
NOTE: http://bugs.gw.com/view.php?id=522
NOTE: https://bugs.php.net/bug.php?id=71527
NOTE: PHP fixed in 7.0.5, 5.6.20, 5.5.34
+ NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/04/11/7
TODO: recheck versions
CVE-2016-3993 [off-by-one OOB read in __imlib_MergeUpdate]
- imlib2 <unfixed> (bug #819818)
More information about the Secure-testing-commits
mailing list