[Secure-testing-commits] r43211 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jul 15 07:10:16 UTC 2016
Author: carnil
Date: 2016-07-15 07:10:16 +0000 (Fri, 15 Jul 2016)
New Revision: 43211
Modified:
data/CVE/list
Log:
CVE-2016-4346 only affects PHP7.x
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-15 06:53:39 UTC (rev 43210)
+++ data/CVE/list 2016-07-15 07:10:16 UTC (rev 43211)
@@ -11662,10 +11662,10 @@
REJECTED
CVE-2016-4346 (Integer overflow in the str_pad function in ext/standard/string.c in ...)
- php7.0 7.0.4-1
- - php5 <unfixed>
+ - php5 <not-affected> (Only affects PHP7.x)
NOTE: https://bugs.php.net/bug.php?id=71637
NOTE: https://git.php.net/?p=php-src.git;a=commit;h=57b997ebf99e0eb9a073e0dafd2ab100bd4a112d
- NOTE: Issue unfixed in 5.6.23, second reproducer script in upstream bugreport
+ NOTE: Reproducer: second test script 2.php in upstream bugreport
CVE-2016-4345 (Integer overflow in the php_filter_encode_url function in ...)
- php7.0 7.0.4-1
- php5 <not-affected> (Only affects PHP7.x)
More information about the Secure-testing-commits
mailing list