[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for php8.2 issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Feb 15 21:34:27 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
212b9ab9 by Salvatore Bonaccorso at 2023-02-15T22:33:42+01:00
Add Debian bug reference for php8.2 issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2082,7 +2082,7 @@ CVE-2023-25140 (A vulnerability has been identified in Parasolid V34.0 (All vers
NOT-FOR-US: Siemens
CVE-2023-0662 [PHP: DOS vulnerability when parsing multipart request body]
RESERVED
- - php8.2 <unfixed>
+ - php8.2 <unfixed> (bug #1031368)
- php7.4 <removed>
- php7.3 <removed>
NOTE: Fixed in: 8.2.3
@@ -3406,14 +3406,14 @@ CVE-2023-0569 (Weak Password Requirements in GitHub repository publify/publify p
NOT-FOR-US: Publify
CVE-2023-0568 [PHP: 1-byte array overrun in common path resolve code]
RESERVED
- - php8.2 <unfixed>
+ - php8.2 <unfixed> (bug #1031368)
- php7.4 <removed>
- php7.3 <removed>
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=81746
NOTE: Fixed in: 8.2.3
CVE-2023-0567 [PHP: Password_verify() always return true with some hash]
RESERVED
- - php8.2 <unfixed>
+ - php8.2 <unfixed> (bug #1031368)
- php7.4 <removed>
- php7.3 <removed>
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=81744
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/212b9ab954031ba6aed4bf7c7d190d208bb94648
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/212b9ab954031ba6aed4bf7c7d190d208bb94648
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230215/36479ea4/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list