[Secure-testing-commits] r53944 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Wed Jul 26 09:19:49 UTC 2017
Author: jmm
Date: 2017-07-26 09:19:49 +0000 (Wed, 26 Jul 2017)
New Revision: 53944
Modified:
data/CVE/list
Log:
new PHP issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-26 09:17:46 UTC (rev 53943)
+++ data/CVE/list 2017-07-26 09:19:49 UTC (rev 53944)
@@ -77,7 +77,11 @@
CVE-2017-11629 (dayrui FineCms through 5.0.10 has Cross Site Scripting (XSS) in ...)
NOT-FOR-US: FineCMS
CVE-2017-11628 (In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, a ...)
- TODO: check
+ - php7.1 <unfixed> (low)
+ - php7.0 <unfixed> (low)
+ - php5 <removed> (low)
+ NOTE: https://bugs.php.net/bug.php?id=74603
+ NOTE: Fixed in 7.1.7, 7.0.21, 5.6.31
CVE-2017-11627 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
TODO: check
CVE-2017-11626 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
More information about the Secure-testing-commits
mailing list