[Secure-testing-commits] r40579 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Mar 25 18:07:39 UTC 2016


Author: carnil
Date: 2016-03-25 18:07:39 +0000 (Fri, 25 Mar 2016)
New Revision: 40579

Modified:
   data/CVE/list
Log:
Update status for CVE-2015-8835/php5

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-25 18:07:30 UTC (rev 40578)
+++ data/CVE/list	2016-03-25 18:07:39 UTC (rev 40579)
@@ -1728,8 +1728,12 @@
 	NOTE: https://patchwork.ozlabs.org/patch/595576/
 	NOTE: http://www.openwall.com/lists/oss-security/2016/03/10/7
 CVE-2015-8835
-	- php5 <undetermined>
+	- php5 5.6.12+dfsg-1
+	[jessie] - php5 5.6.12+dfsg-0+deb8u1
+	[wheezy] - php5 5.4.44-0+deb7u1
+	NOTE: https://git.php.net/?p=php-src.git;a=commitdiff;h=c96d08b27226193dd51f2b50e84272235c6aaa69
 	NOTE: https://bugs.php.net/bug.php?id=70081
+	NOTE: Fixed in 5.6.12, 5.5.28, 5.4.44
 	NOTE: CVE assignment is for "The first problem" section of Bug 70081
 CVE-2015-8833 [Heap use after free in Pidgin-OTR plugin]
 	RESERVED




More information about the Secure-testing-commits mailing list