[Secure-testing-commits] r41981 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-05-24 04:27:03 +0000 (Tue, 24 May 2016)
New Revision: 41981

Modified:
   data/CVE/list
Log:
Add CVE-2015-8879

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-05-24 04:26:54 UTC (rev 41980)
+++ data/CVE/list	2016-05-24 04:27:03 UTC (rev 41981)
@@ -13,7 +13,11 @@
 CVE-2015-8880 (Double free vulnerability in the format printer in PHP 7.x before ...)
 	TODO: check
 CVE-2015-8879 (The odbc_bindcols function in ext/odbc/php_odbc.c in PHP before 5.6.12 ...)
-	TODO: check
+	- php5 5.6.12+dfsg-1
+	[jessie] - php5 5.6.12+dfsg-0+deb8u1
+	- php7.0 7.0.0-1
+	NOTE: Fixed in PHP 5.6.12, 7.0.0
+	NOTE: PHP bug: https://bugs.php.net/bug.php?id=69975
 CVE-2015-8878 (main/php_open_temporary_file.c in PHP before 5.5.28 and 5.6.x before ...)
 	- php5 5.6.12+dfsg-1
 	[jessie] - php5 5.6.12+dfsg-0+deb8u1