[Secure-testing-commits] r42673 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Jun 21 14:57:19 UTC 2016
Author: carnil
Date: 2016-06-21 14:57:19 +0000 (Tue, 21 Jun 2016)
New Revision: 42673
Modified:
data/CVE/list
Log:
Add CVE-2015-8935/php5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-06-21 14:43:23 UTC (rev 42672)
+++ data/CVE/list 2016-06-21 14:57:19 UTC (rev 42673)
@@ -985,6 +985,12 @@
RESERVED
CVE-2016-5302 (Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has ...)
TODO: check
+CVE-2015-8935 [XSS in header() with Internet Explorer]
+ - php5 5.6.6+dfsg-1
+ [wheezy] - php5 5.4.38-0+deb7u1
+ NOTE: https://bugs.php.net/bug.php?id=68978
+ NOTE: https://github.com/php/php-src/commit/996faf964bba1aec06b153b370a7f20d3dd2bb8b
+ NOTE: Fixed in 5.6.6, 5.5.22 and 5.4.38
CVE-2015-8934
RESERVED
- libarchive <unfixed>
More information about the Secure-testing-commits
mailing list