[Git][security-tracker-team/security-tracker][master] Reference upstream commits for PHP issues

[Guilhem Moulin (@guilhem)]

Guilhem Moulin pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e7d4925f by Guilhem Moulin at 2025-03-19T00:25:54+01:00
Reference upstream commits for PHP issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -843,30 +843,35 @@ CVE-2025-1861
 	- php8.2 <unfixed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-52jp-hrpf-2jff
+	NOTE: Fixed by: https://github.com/php/php-src/commit/ac1a054bb3eb5994a199e8b18cca28cbabf5943e (php-8.1.32)
 CVE-2025-1736
 	{DSA-5878-1}
 	- php8.4 8.4.5-1
 	- php8.2 <unfixed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-hgf5-96fm-v528
+	NOTE: Fixed by: https://github.com/php/php-src/commit/41d49abbd99dab06cdae4834db664435f8177174 (php-8.1.32)
 CVE-2025-1734
 	{DSA-5878-1}
 	- php8.4 8.4.5-1
 	- php8.2 <unfixed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-pcmh-g36c-qc44
+	NOTE: Fixed by: https://github.com/php/php-src/commit/0548c4c1756724a89ef8310709419b08aadb2b3b (php-8.1.32)
 CVE-2025-1219
 	{DSA-5878-1}
 	- php8.4 8.4.5-1
 	- php8.2 <unfixed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-p3x9-6h7p-cgfc
+	NOTE: Fixed by: https://github.com/php/php-src/commit/b6004a043c16b211d462218fbb3f72db68ec2b18 (php-8.1.32)
 CVE-2025-1217
 	{DSA-5878-1}
 	- php8.4 8.4.5-1
 	- php8.2 <unfixed>
 	- php7.4 <removed>
 	NOTE: https://github.com/php/php-src/security/advisories/GHSA-v8xr-gpvj-cx9g
+	NOTE: Fixed by: https://github.com/php/php-src/commit/d20b4c97a9f883b62b65b82d939c5af9a2028ef1 (php-8.1.32)
 CVE-2025-2284 (A denial-of-service vulnerability exists in the "GetWebLoginCredential ...)
 	NOT-FOR-US: Tenable
 CVE-2025-2280 (Improper access control in web extension restriction feature in Devolu ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7d4925f404ae5252eaf78946d13691cf2f13e83

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e7d4925f404ae5252eaf78946d13691cf2f13e83
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250318/8e8fe30a/attachment.htm>