Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3432fee by Salvatore Bonaccorso at 2022-09-29T21:33:48+02:00
Update information for CVE-2022-3162{8,9}/php
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26437,14 +26437,17 @@ CVE-2022-31629 (In PHP versions before 7.4.31, 8.0.24
and 8.1.11, the vulnerabil
- php8.1 <unfixed>
- php7.4 <removed>
- php7.3 <removed>
- NOTE: Fixed in 8.1.11
+ NOTE: Fixed in 8.1.11, 7.4.32
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=81727
+ NOTE:
https://github.com/php/php-src/commit/0611be4e82887cee0de6c4cbae320d34eec946ca
CVE-2022-31628 (In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar
uncompresso ...)
- php8.1 <unfixed>
- php7.4 <removed>
- php7.3 <removed>
- NOTE: Fixed in 8.1.11
+ NOTE: Fixed in 8.1.11, 7.4.32
NOTE: PHP Bug: https://bugs.php.net/bug.php?id=81726
+ NOTE:
https://github.com/php/php-src/commit/404e8bdb68350931176a5bdc86fc417b34fb583d
+ NOTE:
https://github.com/php/php-src/commit/432bf196d59bcb661fcf9cb7029cea9b43f490af
CVE-2022-31627 (In PHP versions 8.1.x below 8.1.8, when fileinfo functions,
such as fi ...)
- php8.1 <unfixed> (bug #1016972)
- php7.4 <not-affected> (Only affects 8.1 and later)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3432feecea563a2cc9fa9e01b75211768efb9de
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f3432feecea563a2cc9fa9e01b75211768efb9de
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
