[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 2 commits: Record upstream fixed versions for CVE-2018-7584

Salvatore Bonaccorso carnil at debian.org
Tue Mar 6 14:20:45 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
959acccd by Salvatore Bonaccorso at 2018-03-06T15:20:03+01:00
Record upstream fixed versions for CVE-2018-7584

- - - - -
05049a4e by Salvatore Bonaccorso at 2018-03-06T15:20:24+01:00
PHP issues fixed in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -356,11 +356,11 @@ CVE-2017-18212 (An issue was discovered in JerryScript 1.0. There is a heap-base
 CVE-2018-7585
 	RESERVED
 CVE-2018-7584 (In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and ...)
-	- php7.2 <unfixed>
-	- php7.1 <unfixed>
-	- php7.0 <unfixed>
+	- php7.2 7.2.3-1
+	- php7.1 7.1.15-1
+	- php7.0 7.0.28-1
 	- php5 <removed>
-	NOTE: Fixed in 7.0.28, 7.2.3
+	NOTE: Fixed in 5.6.34, 7.0.28, 7.1.15, 7.2.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=75981
 	NOTE: https://github.com/php/php-src/commit/523f230c831d7b33353203fa34aee4e92ac12bba
 CVE-2018-7583 (Proxy.exe in DualDesk 20 allows Remote Denial Of Service (daemon crash) ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4ca3031f438a595a676f8a65e370d050fdd4f60e...05049a4e4988e01de50d28c23d092ffac6bced69

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/4ca3031f438a595a676f8a65e370d050fdd4f60e...05049a4e4988e01de50d28c23d092ffac6bced69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180306/a16a2bb0/attachment-0001.html>


More information about the Secure-testing-commits mailing list