[Git][security-tracker-team/security-tracker][master] PHP DSA

Moritz Muehlenhoff jmm at debian.org
Fri Mar 8 22:02:54 GMT 2019 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
61b26f5e by Moritz Muehlenhoff at 2019-03-08T22:02:19Z
PHP DSA

- - - - -


2 changed files:

- data/CVE/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,24 +3,28 @@ CVE-2019-9634 (Go through 1.12 on Windows misuses certain LoadLibrary functional
 CVE-2019-XXXX [rename() across the device may allow unwanted access during processing]
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
+	[stretch] - php7.0 7.0.33-0+deb9u3
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77630
 CVE-2019-XXXX [Uninitialized read in exif_process_IFD_in_TIFF]
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
+	[stretch] - php7.0 7.0.33-0+deb9u3
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77509
 CVE-2019-XXXX [Invalid Read on exif_process_SOFn]
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
+	[stretch] - php7.0 7.0.33-0+deb9u3
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77540
 CVE-2019-XXXX [Uninitialized read in exif_process_IFD_in_MAKERNOTE / 77563]
 	- php7.3 7.3.3-1
 	- php7.0 <removed>
+	[stretch] - php7.0 7.0.33-0+deb9u3
 	- php5 <removed>
 	NOTE: Fixed in 7.1.27, 7.2.16, 7.3.3
 	NOTE: PHP Bug: https://bugs.php.net/bug.php?id=77563


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,5 @@
+[08 Mar 2019] DSA-4403-1 php7.0 - security update
+	[stretch] - php7.0 7.0.33-0+deb9u3
 [05 Mar 2019] DSA-4402-1 mumble - security update
 	{CVE-2018-20743}
 	[stretch] - mumble 1.2.18-1+deb9u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/61b26f5eed0f071872a517173c44b4b88d060a25

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/61b26f5eed0f071872a517173c44b4b88d060a25
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190308/2380bffd/attachment.html>

More information about the debian-security-tracker-commits mailing list