[Secure-testing-commits] r39141 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 24 13:31:21 UTC 2016
Author: carnil
Date: 2016-01-24 13:31:21 +0000 (Sun, 24 Jan 2016)
New Revision: 39141
Modified:
data/CVE/list
Log:
Update CVE-2016-1904/php5, thanks to Thorsten Alteholz for triaging erlaier versions
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-01-24 13:09:48 UTC (rev 39140)
+++ data/CVE/list 2016-01-24 13:31:21 UTC (rev 39141)
@@ -320,13 +320,12 @@
NOTE: https://github.com/kubernetes/kubernetes/issues/19479
NOTE: https://github.com/kubernetes/kubernetes/pull/19481
CVE-2016-1904 (Multiple integer overflows in ext/standard/exec.c in PHP 7.x before ...)
- - php5 <undetermined>
- [squeeze] - php5 <not-affected> (Vulnerable code not present, already using safe_emalloc() in php_escape_shell_cmd())
- - php5.6 <undetermined>
+ - php5 <not-affected> (Vulnerable code not present)
+ - php5.6 <not-affected> (Vulnerable code not present)
+ NOTE: Already using safe_emalloc() in php_escape_shell_cmd()
- php7.0 7.0.2-1
NOTE: https://bugs.php.net/bug.php?id=71270
NOTE: https://github.com/php/php-src/commit/2871c70efaaaa0f102557a17c727fd4d5204dd4b
- TODO: check
CVE-2016-1903 (The gdImageRotateInterpolated function in ...)
- php5 5.6.17+dfsg-1
[jessie] - php5 5.6.14+dfsg-0+deb8u1
More information about the Secure-testing-commits
mailing list