[Secure-testing-commits] r39660 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Feb 14 07:17:58 UTC 2016
Author: carnil
Date: 2016-02-14 07:17:58 +0000 (Sun, 14 Feb 2016)
New Revision: 39660
Modified:
data/CVE/list
Log:
Add three php isuses without CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-02-14 07:02:12 UTC (rev 39659)
+++ data/CVE/list 2016-02-14 07:17:58 UTC (rev 39660)
@@ -1,3 +1,26 @@
+CVE-2016-XXXX [Type confusion vulnerability in WDDX packet deserialization]
+ - php5 <unfixed>
+ - php5.6 5.6.18+dfsg-1
+ - php7.0 7.0.3-1
+ NOTE: https://bugs.php.net/bug.php?id=71335
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305559
+ NOTE: https://git.php.net/?p=php-src.git;a=commit;h=285cd3417fb61597345b829f5f573707bbdcd484
+ NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
+CVE-2016-XXXX [Crash on bad SOAP request]
+ - php5 <unfixed>
+ - php5.6 5.6.18+dfsg-1
+ - php7.0 7.0.3-1
+ NOTE: https://bugs.php.net/bug.php?id=70979
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305551
+ NOTE: https://git.php.net/?p=php-src.git;a=commit;h=4308c868f94df1f2b99e80038ba5ea1076d919a7
+ NOTE: Fixed in 5.6.18, 7.0.3
+CVE-2016-XXXX [Segmentation fault in clean spl_autoload functions while autoloading]
+ - php5 <unfixed>
+ - php5.6 5.6.18+dfsg-1
+ - php7.0 7.0.3-1
+ NOTE: https://bugs.php.net/bug.php?id=71204
+ NOTE: https://git.php.net/?p=php-src.git;a=commit;h=620ccc9b1a0a593786a364af15d45fd797a6cf1f
+ NOTE: Fixed in 5.6.18, 7.0.3
CVE-2016-2330 (libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a ...)
- ffmpeg <unfixed>
- libav <removed>
More information about the Secure-testing-commits
mailing list