[Secure-testing-commits] r48638 - data/CVE
Roberto C. Sanchez
roberto at moszumanska.debian.org
Wed Feb 1 02:24:02 UTC 2017
Author: roberto
Date: 2017-02-01 02:24:02 +0000 (Wed, 01 Feb 2017)
New Revision: 48638
Modified:
data/CVE/list
Log:
Annotate CVE-2016-9137 [Use-after-free vulnerability in the CURLFile implementation] as not affecting wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-31 23:19:41 UTC (rev 48637)
+++ data/CVE/list 2017-02-01 02:24:02 UTC (rev 48638)
@@ -16510,6 +16510,7 @@
{DSA-3698-1}
- php7.0 7.0.12-1
- php5 <removed>
+ [wheezy] - php5 <not-affected> (Vulnerable code not present in version 5.4.45)
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73147
NOTE: http://git.php.net/?p=php-src.git;a=commit;h=0e6fe3a4c96be2d3e88389a5776f878021b4c59f
NOTE: NOTE: Fixed in 7.0.12, 5.6.27
More information about the Secure-testing-commits
mailing list