NEWS

Christopher Jones Wed, 29 Feb 2012 12:48:43 -0800

sixd                                     Wed, 29 Feb 2012 20:48:17 +0000

Revision: http://svn.php.net/viewvc?view=revision&revision=323677


Log:
Add the CVE numbers that were mentioned in the related php.net announcements

Changed paths:
    U   php/php-src/branches/PHP_5_3/NEWS

Modified: php/php-src/branches/PHP_5_3/NEWS
===================================================================
--- php/php-src/branches/PHP_5_3/NEWS   2012-02-29 18:46:17 UTC (rev 323676)
+++ php/php-src/branches/PHP_5_3/NEWS   2012-02-29 20:48:17 UTC (rev 323677)
@@ -79,7 +79,7 @@

 - Core:
   . Added max_input_vars directive to prevent attacks based on hash collisions
-    (Dmitry).
+    (CVE-2011-4885) (Dmitry).
   . Fixed bug #60205 (possible integer overflow in content_length). (Laruence)
   . Fixed bug #60139 (Anonymous functions create cycles not detected by the
     GC). (Dmitry)
@@ -158,7 +158,7 @@

 - EXIF:
   . Fixed bug #60150 (Integer overflow during the parsing of invalid exif
-    header). (Stas, flolechaud at gmail dot com)
+    header). (CVE-2011-4566) (Stas, flolechaud at gmail dot com)

 - Fileinfo:
   . Fixed bug #60094 (C++ comment fails in c89). (Laruence)

-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] svn: /php/php-src/branches/PHP_5_3/ NEWS

Reply via email to