[Git][security-tracker-team/security-tracker][master] Reserve DLA-1674-1 for php5
Abhijith PA
gitlab at salsa.debian.org
Tue Feb 12 06:04:22 GMT 2019
Abhijith PA pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1a043e18 by Abhijith PA at 2019-02-12T06:04:00Z
Reserve DLA-1674-1 for php5
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[12 Feb 2019] DLA-1674-1 php5 - security update
+ {CVE-2018-1000888}
+ [jessie] - php5 5.6.39+dfsg-0+deb8u2
[11 Feb 2019] DLA-1673-1 wordpress - security update
{CVE-2018-20147 CVE-2018-20148 CVE-2018-20149 CVE-2018-20150 CVE-2018-20151 CVE-2018-20152 CVE-2018-20153}
[jessie] - wordpress 4.1.25+dfsg-1+deb8u1
=====================================
data/dla-needed.txt
=====================================
@@ -93,11 +93,6 @@ openjdk-7 (Emilio)
--
openssh (Mike Gabriel)
--
-php5 (Abhijith PA)
- NOTE: 20190203: CVE-2018-1000888 needed for drupal7. I will look into this after libraw. (abhijith)
---
-php5 (Roberto C. Sánchez)
---
phpmyadmin
NOTE: CVE-2019-6798: SQL injection is serious but if you have been able to login as a crafted user
NOTE: CVE-2019-6798: that is a more serious problem. The fix is simple so it can still be worth fixing
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1a043e181f2f0f9f9135d6f813c418fc5ab836c7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1a043e181f2f0f9f9135d6f813c418fc5ab836c7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190212/ce1798f4/attachment.html>
More information about the debian-security-tracker-commits
mailing list