[Secure-testing-commits] r41976 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue May 24 04:17:04 UTC 2016
Author: carnil
Date: 2016-05-24 04:17:04 +0000 (Tue, 24 May 2016)
New Revision: 41976
Modified:
data/CVE/list
Log:
Update CVE-2015-8877
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-23 21:10:11 UTC (rev 41975)
+++ data/CVE/list 2016-05-24 04:17:04 UTC (rev 41976)
@@ -17,7 +17,15 @@
CVE-2015-8878 (main/php_open_temporary_file.c in PHP before 5.5.28 and 5.6.x before ...)
TODO: check
CVE-2015-8877 (The gdImageScaleTwoPass function in gd_interpolation.c in the GD ...)
- TODO: check
+ - libgd2 2.2.1-1
+ NOTE: https://github.com/libgd/libgd/commit/4751b606fa38edc456d627140898a7ec679fcc24
+ NOTE: https://github.com/libgd/libgd/issues/173
+ - php5 5.6.12+dfsg-1 (unimportant)
+ [jessie] - php5 5.6.12+dfsg-0+deb8u1
+ - php7.0 7.0.0-1 (unimportant)
+ NOTE: https://bugs.php.net/bug.php?id=70064
+ NOTE: Fixed in PHP 5.6.12, 7.0.0
+ NOTE: Starting with 5.4.0-1 Debian uses the system copy of libgd
CVE-2015-8876 (Zend/zend_exceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and ...)
TODO: check
CVE-2016-XXXX [mediawiki issues from 1.26.3, 1.25.6 and 1.23.14]
More information about the Secure-testing-commits
mailing list