[Git][security-tracker-team/security-tracker][master] Remove PHP entries which actually do not need a CVE

Salvatore Bonaccorso carnil at debian.org
Fri Mar 8 19:45:22 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d028168c by Salvatore Bonaccorso at 2019-03-08T19:44:32Z
Remove PHP entries which actually do not need a CVE

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22,30 +22,6 @@ CVE-2019-XXXX [Uninitialized read in exif_process_IFD_in_MAKERNOTE / 77563]
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77563
-CVE-2019-XXXX [Uninitialized read in exif_process_IFD_in_MAKERNOTE / 77659]
-	- php7.3 7.3.3-1
-	- php7.0 <removed>
-	- php5 <removed>
-	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
-	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77659
-CVE-2019-XXXX [Null Pointer Dereference in phar_create_or_parse_filename]
-	- php7.3 7.3.3-1
-	- php7.0 <removed>
-	- php5 <removed>
-	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
-	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77396
-CVE-2019-XXXX [phar_tar_writeheaders_int() buffer overflow]
-	- php7.3 7.3.3-1
-	- php7.0 <removed>
-	- php5 <removed>
-	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
-	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77586
-CVE-2019-XXXX [openFile() silently truncates after a null byte]
-	- php7.3 7.3.3-1
-	- php7.0 <removed>
-	- php5 <removed>
-	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
-	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77431
 CVE-2019-9633 (gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent ...)
 	TODO: check
 CVE-2019-9632 (ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d028168ca3430983b86dbface97ef19daa831277

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d028168ca3430983b86dbface97ef19daa831277
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190308/e5f31225/attachment.html>

More information about the debian-security-tracker-commits mailing list