[Secure-testing-commits] r40362 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Mar 14 06:25:30 UTC 2016
Author: carnil
Date: 2016-03-14 06:25:30 +0000 (Mon, 14 Mar 2016)
New Revision: 40362
Modified:
data/CVE/list
Log:
Add CVE-2016-3142/php5
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-14 06:13:27 UTC (rev 40361)
+++ data/CVE/list 2016-03-14 06:25:30 UTC (rev 40362)
@@ -528,12 +528,12 @@
{DSA-3500-1}
- openssl 1.0.2g-1
NOTE: split from CVE-2016-0799
-CVE-2016-XXXX [Out-of-Bound Read in phar_parse_zipfile()]
+CVE-2016-3142 [Out-of-Bound Read in phar_parse_zipfile()]
- php5 5.6.19+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=71498
NOTE: Fixed in 5.5.33, 5.6.19
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/10/5
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/03/13/2
+ NOTE: http://www.openwall.com/lists/oss-security/2016/03/10/5
+ NOTE: http://www.openwall.com/lists/oss-security/2016/03/13/2
CVE-2016-XXXX [Use-After-Free / Double-Free in WDDX Deserialize]
- php5 5.6.19+dfsg-1
NOTE: https://bugs.php.net/bug.php?id=71587
More information about the Secure-testing-commits
mailing list