[Secure-testing-commits] r46988 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Dec 12 11:11:30 UTC 2016


Author: carnil
Date: 2016-12-12 11:11:29 +0000 (Mon, 12 Dec 2016)
New Revision: 46988

Modified:
   data/CVE/list
Log:
Add first PHP issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-12-12 11:04:01 UTC (rev 46987)
+++ data/CVE/list	2016-12-12 11:11:29 UTC (rev 46988)
@@ -1,3 +1,10 @@
+CVE-2016-XXXX [imagefilltoborder stackoverflow on truecolor images]
+	- php7.0 7.0.13-1
+	- php5 <unfixed>
+	NOTE: Fixed in PHP 5.6.28, 7.0.13 and 7.1.0
+	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=72696
+	NOTE: Fixed by: https://github.com/php/php-src/commit/863d37ea66d5c960db08d6f4a2cbd2518f0f80d1
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/12/2
 CVE-2016-XXXX [AST-2016-008]
 	- asterisk <unfixed> (bug #847666)
 	[jessie] - asterisk <not-affected> (Vulnerable code introduced in 13.12.0)




More information about the Secure-testing-commits mailing list