[Secure-testing-commits] r49703 - data/CVE

Thorsten Alteholz alteholz at moszumanska.debian.org
Wed Mar 15 14:36:16 UTC 2017


Author: alteholz
Date: 2017-03-15 14:36:16 +0000 (Wed, 15 Mar 2017)
New Revision: 49703

Modified:
   data/CVE/list
Log:
according to Ubuntu php5 is affected as well

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-15 12:17:38 UTC (rev 49702)
+++ data/CVE/list	2017-03-15 14:36:16 UTC (rev 49703)
@@ -24176,10 +24176,12 @@
 CVE-2016-7479 (In all versions of PHP 7, during the unserialization process, resizing ...)
 	- php7.1 7.1.1-1
 	- php7.0 7.0.15-1
+	- php5 <removed>
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73092
 	NOTE: Fixed in 7.0.15
 	NOTE: PHP 7.x: http://git.php.net/?p=php-src.git;a=commit;h=0426b916df396a23e5c34514e4f2f0627efdcdf0
 	NOTE: PHP 7.x: http://git.php.net/?p=php-src.git;a=commit;h=b47c49d7a00bc34d7e0f3d72732f66e904da6fa7
+	NOTE: according to Ubuntu, php5 is affected as well
 CVE-2016-7478 (Zend/zend_exceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x ...)
 	{DSA-3732-1}
 	- php7.1 <not-affected> (Fixed before initial upload to Debian)




More information about the Secure-testing-commits mailing list