[Secure-testing-commits] r49088 - in data: . CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Mon Feb 20 22:22:04 UTC 2017
Author: anarcat
Date: 2017-02-20 22:22:04 +0000 (Mon, 20 Feb 2017)
New Revision: 49088
Modified:
data/CVE/list
data/dla-needed.txt
Log:
unassign php5, note backported patch and suggest waiting for further issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-02-20 22:06:49 UTC (rev 49087)
+++ data/CVE/list 2017-02-20 22:22:04 UTC (rev 49088)
@@ -21861,6 +21861,7 @@
- php5 <removed>
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73093
NOTE: Patch for 5.6.x: http://git.php.net/?p=php-src.git;a=commit;h=40e7baab3c90001beee4c8f0ed0ef79ad18ee0d6 (5.6.28)
+ NOTE: backported patch for 5.4: https://lists.debian.org/87efysy07p.fsf@curie.anarc.at
CVE-2016-7477 (The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 ...)
- libav <removed> (unimportant)
NOTE: https://blogs.gentoo.org/ago/2016/09/20/libav-null-pointer-dereference-in-ff_put_pixels8_xy2_mmx-rnd_template-c/
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-02-20 22:06:49 UTC (rev 49087)
+++ data/dla-needed.txt 2017-02-20 22:22:04 UTC (rev 49088)
@@ -84,7 +84,10 @@
NOTE: 170206: No patch available. Unclear how reproducer is supposed to work
NOTE: because the file format cannot be detected.
--
-php5 (Antoine Beaupre)
+php5
+ NOTE: only one issue at the time of writing (CVE-2016-7478)
+ NOTE: backported patch available, but maybe wait for more issues?
+ NOTE: -- 2017-02-20 Antoine Beaupre
--
phpmyadmin (Markus Koschany)
--
More information about the Secure-testing-commits
mailing list