[Secure-testing-commits] r39662 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Feb 14 07:38:45 UTC 2016 

Author: carnil
Date: 2016-02-14 07:38:45 +0000 (Sun, 14 Feb 2016)
New Revision: 39662

Modified:
   data/CVE/list
Log:
Add more reference for php bugs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-02-14 07:36:19 UTC (rev 39661)
+++ data/CVE/list	2016-02-14 07:38:45 UTC (rev 39662)
@@ -3,6 +3,8 @@
 	- php5.6 5.6.18+dfsg-1
 	- php7.0 7.0.3-1
 	NOTE: https://bugs.php.net/bug.php?id=71039
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305494
+	NOTE: https://git.php.net/?p=php-src.git;a=commit;h=c527549e899bf211aac7d8ab5ceb1bdfedf07f14
 	NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
 CVE-2016-XXXX [No check to duplicate zend_extension]
 	- php5 <unfixed>
@@ -22,24 +24,32 @@
 	- php5.6 5.6.18+dfsg-1
 	- php7.0 7.0.3-1
 	NOTE: https://bugs.php.net/bug.php?id=71323
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305523
+	NOTE: https://git.php.net/?p=php-src.git;a=commit;h=6297a117d77fa3a0df2e21ca926a92c231819cd5
 	NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
 CVE-2016-XXXX [Integer overflow in iptcembed()]
 	- php5 <unfixed>
 	- php5.6 5.6.18+dfsg-1
 	- php7.0 7.0.3-1
 	NOTE: https://bugs.php.net/bug.php?id=71459
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305518
+	NOTE: http://git.php.net/?p=php-src.git;a=commit;h=54c210d2ea9b8539edcde1888b1104b96b38e886
 	NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
 CVE-2016-XXXX [Heap corruption in tar/zip/phar parser]
 	- php5 <unfixed>
 	- php5.6 5.6.18+dfsg-1
 	- php7.0 7.0.3-1
 	NOTE: https://bugs.php.net/bug.php?id=71354
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305536
+	NOTE: https://git.php.net/?p=php-src.git;a=commit;h=13ad4d3e971807f9a58ab5933182907dc2958539
 	NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
 CVE-2016-XXXX [NULL Pointer Dereference in phar_tar_setupmetadata()]
 	- php5 <unfixed>
 	- php5.6 5.6.18+dfsg-1
 	- php7.0 7.0.3-1
 	NOTE: https://bugs.php.net/bug.php?id=71391
+	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1305540
+	NOTE: https://git.php.net/?p=php-src.git;a=commit;h=1c1b8b69982375700d4b011eb89ea48b66dbd5aa
 	NOTE: Fixed in 5.6.18, 5.5.32, 7.0.3
 CVE-2016-XXXX [Stack overflow when decompressing tar archives]
 	- php5 <unfixed>

More information about the Secure-testing-commits mailing list