[Secure-testing-commits] r54842 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-08-18 09:23:48 +0000 (Fri, 18 Aug 2017)
New Revision: 54842

Modified:
   data/CVE/list
Log:
Add CVE-2017-12934/php

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-18 09:10:14 UTC (rev 54841)
+++ data/CVE/list	2017-08-18 09:23:48 UTC (rev 54842)
@@ -1,5 +1,9 @@
 CVE-2017-12934 (ext/standard/var_unserializer.re in PHP 7.0.x before 7.0.21 and 7.1.x ...)
-	TODO: check
+	- php7.1 7.1.8-1
+	- php7.0 7.0.22-1
+	- php5 <undetermined>
+	NOTE: Fixed in 7.1.7, 7.0.21
+	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=74101
 CVE-2017-12933 (The finish_nested_data function in ext/standard/var_unserializer.re in ...)
 	TODO: check
 CVE-2017-12932 (ext/standard/var_unserializer.re in PHP 7.0.x through 7.0.22 and 7.1.x ...)