[Secure-testing-commits] r41788 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 17 05:19:17 UTC 2016
Author: carnil
Date: 2016-05-17 05:19:17 +0000 (Tue, 17 May 2016)
New Revision: 41788
Modified:
data/CVE/list
Log:
Update CVE-2015-8874
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-17 04:19:34 UTC (rev 41787)
+++ data/CVE/list 2016-05-17 05:19:17 UTC (rev 41788)
@@ -13,7 +13,14 @@
CVE-2016-4800
RESERVED
CVE-2015-8874 (Stack consumption vulnerability in GD in PHP before 5.6.12 allows ...)
- TODO: check
+ - libgd2 <undetermined>
+ - php5 5.6.12+dfsg-1 (unimportant)
+ [jessie] - php5 5.6.12+dfsg-0+deb8u1
+ - php7.0 7.0.0-1 (unimportant)
+ NOTE: PHP bug: https://bugs.php.net/bug.php?id=66387
+ NOTE: Fixed in 5.6.12, 7.0.0
+ NOTE: Starting with 5.4.0-1 Debian uses the system copy of libgd
+ TODO: check libgd2
CVE-2015-8873 (Stack consumption vulnerability in Zend/zend_exceptions.c in PHP ...)
TODO: check
CVE-2016-XXXX [moodle issues fixed in 2.7.14]
More information about the Secure-testing-commits
mailing list