[Secure-testing-commits] r43423 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-07-24 17:41:59 +0000 (Sun, 24 Jul 2016)
New Revision: 43423

Modified:
   data/CVE/list
Log:
Add CVE-2016-6289/php

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-07-24 17:38:53 UTC (rev 43422)
+++ data/CVE/list	2016-07-24 17:41:59 UTC (rev 43423)
@@ -2,6 +2,12 @@
 	- tiff <unfixed>
 	- tiff3 <removed>
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2573
+CVE-2016-6289 [Stack-based buffer overflow vulnerability in virtual_file_ex]
+	- php7.0 <unfixed>
+	- php5 <unfixed>
+	NOTE: PHP Bug: https://bugs.php.net/72513
+	NOTE: http://git.php.net/?p=php-src.git;a=commit;h=0218acb7e756a469099c4ccfb22bce6c2bd1ef87
+	NOTE: Fixed in 7.0.9, 5.6.24, 5.5.38
 CVE-2016-6271
 	RESERVED
 CVE-2016-6270