[Git][security-tracker-team/security-tracker][master] Add CVE-2016-7398/php-pecl-http

Sat Sep 7 07:54:39 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2721d156 by Salvatore Bonaccorso at 2019-09-07T06:53:58Z
Add CVE-2016-7398/php-pecl-http

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -157364,7 +157364,9 @@ CVE-2016-7400 (Multiple SQL injection vulnerabilities in Exponent CMS before 2.4
 CVE-2016-7399 (scripts/license.pl in Veritas NetBackup Appliance 2.6.0.x through 2.6. ...)
 	NOT-FOR-US: Veritas NetBackup Applianc
 CVE-2016-7398 (A type confusion vulnerability in the merge_param() function of php_ht ...)
-	TODO: check
+	- php-pecl-http 3.1.0+2.6.0-1
+	NOTE: https://bugs.php.net/bug.php?id=73055
+	NOTE: https://github.com/m6w6/ext-http/commit/17137d4ab1ce81a2cee0fae842340a344ef3da83
 CVE-2016-7397 (The Frontend component in Sophos UTM with firmware 9.405-5 and earlier ...)
 	NOT-FOR-US: Sophos UTM
 CVE-2016-7396



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2721d156ef67db6ffd662f83d5d04b148108b4d8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2721d156ef67db6ffd662f83d5d04b148108b4d8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190907/0fd59083/attachment.html>
