[Secure-testing-commits] r41260 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Apr 28 17:05:38 UTC 2016
Author: carnil
Date: 2016-04-28 17:05:37 +0000 (Thu, 28 Apr 2016)
New Revision: 41260
Modified:
data/CVE/list
Log:
CVE-2016-4342/php assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-28 17:00:29 UTC (rev 41259)
+++ data/CVE/list 2016-04-28 17:05:37 UTC (rev 41260)
@@ -5077,14 +5077,13 @@
NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
- hhvm 3.12.1+dfsg-1
NOTE: https://github.com/facebook/hhvm/commit/eae73029336e4d577707cb8a0527f22cb8a4588a
-CVE-2016-XXXX [Heap corruption in tar/zip/phar parser]
+CVE-2016-4342 [Heap corruption in tar/zip/phar parser]
- php5 5.6.18+dfsg-1
[jessie] - php5 5.6.19+dfsg-0+deb8u1
[wheezy] - php5 <no-dsa> (Minor issue, can be fixed in next update round)
+ [squeeze] - php5 5.3.3.1-7+squeeze29
- php5.6 5.6.18+dfsg-1
- php7.0 7.0.3-1
- [squeeze] - php5 5.3.3.1-7+squeeze29
- NOTE: temporary workaround until CVE assigned to explitly tag for squeeze
NOTE: https://bugs.php.net/bug.php?id=71354
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305536
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=13ad4d3e971807f9a58ab5933182907dc2958539
More information about the Secure-testing-commits
mailing list