[Git][security-tracker-team/security-tracker][master] Add references to blogpost for some php issues

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Apr 17 07:24:29 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
02c738cf by Salvatore Bonaccorso at 2025-04-17T08:23:54+02:00
Add references to blogpost for some php issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -46848,6 +46848,7 @@ CVE-2024-8929 (In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* b
 	NOTE: https://github.com/php/php-src/commit/6c0e2eb2f839d066924c164f65f17d1261529334 (php-8.2.26)
 	NOTE: Follow-up: https://github.com/php/php-src/commit/abc6de0ddec93564e9faa8065ac5756a1fbaf763 (php-8.2.26)
 	NOTE: Follow-up: https://github.com/php/php-src/commit/913031c844737d78a62c4af2aab1c3eeb7dc95bf (php-8.2.26)
+	NOTE: https://blog.quarkslab.com/security-audit-of-php-src.html
 CVE-2024-8932 (In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before ...)
 	{DSA-5819-1 DLA-3986-1}
 	- php8.2 8.2.26-4 (bug #1088688)
@@ -90190,6 +90191,7 @@ CVE-2024-8925 (In PHP versions8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* be
 	NOTE: Fixed in 8.3.12, 8.2.24
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-9pqp-7h25-4f32
 	NOTE: https://github.com/php/php-src/commit/19b49258d0c5a61398d395d8afde1123e8d161e0 (PHP-8.2.24)
+	NOTE: https://blog.quarkslab.com/security-audit-of-php-src.html
 CVE-2024-9026 (In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before ...)
 	{DSA-5780-1 DLA-3920-1}
 	- php8.2 8.2.24-1
@@ -90198,6 +90200,7 @@ CVE-2024-9026 (In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* b
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-865w-9rf3-2wh5
 	NOTE: https://github.com/php/php-src/commit/1f8e16172c7961045c2b0f34ba7613e3f21cdee8 (PHP-8.2.24)
 	NOTE: Introduced by: https://github.com/php/php-src/commit/0bc6a66a7a0624e63edcd2499f91b227cdb77f47 (php-7.4.4RC1)
+	NOTE: https://blog.quarkslab.com/security-audit-of-php-src.html
 CVE-2024-8927 (In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before ...)
 	{DSA-5780-1 DLA-3920-1}
 	- php8.2 8.2.24-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02c738cf6a9619d52623bd868f0184868ab4ab83

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/02c738cf6a9619d52623bd868f0184868ab4ab83
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250417/2f2544bc/attachment.htm>

More information about the debian-security-tracker-commits mailing list