[Git][security-tracker-team/security-tracker][master] Add tracking for CVE-2018-15132
Salvatore Bonaccorso
carnil at debian.org
Fri Aug 10 04:56:13 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2ce7ebfe by Salvatore Bonaccorso at 2018-08-10T03:54:58Z
Add tracking for CVE-2018-15132
The isuse is only specific releant when php running on windows, as such
we might as well change it to <not-affected> since there is no Debian
GNU/Win32.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -156,7 +156,14 @@ CVE-2018-15134
CVE-2018-15133 (In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote ...)
NOT-FOR-US: Laravel
CVE-2018-15132 (An issue was discovered in ext/standard/link_win32.c in PHP before ...)
- TODO: check
+ - php7.2 7.2.8-1 (unimportant)
+ - php7.1 7.1.20-1 (unimportant)
+ - php7.0 7.0.31-1 (unimportant)
+ - php5 <removed> (unimportant)
+ NOTE: Fixed in 5.6.37, 7.0.31, 7.1.20, 7.2.8
+ NOTE: Issue only relevant for PHP on Windows
+ NOTE: PHP Bug: https://bugs.php.net/bug.php?id=76459
+ NOTE: https://github.com/php/php-src/commit/f151e048ed27f6f4eef729f3310d053ab5da71d4
CVE-2018-15131
RESERVED
CVE-2018-15130 (ThinkSAAS through 2018-07-25 has XSS via the ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2ce7ebfecf6a6b3fdc2958ad6e05534375dcdeeb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2ce7ebfecf6a6b3fdc2958ad6e05534375dcdeeb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180810/0ab1ba4b/attachment.html>
More information about the debian-security-tracker-commits
mailing list