[PHP-WEBMASTER] com web/php: Add CVE ID to bugs #73832 (PHP 5.6.30, 7.0.15 and 7.1.1) and #73092 (PHP 7.0.15 and 7.1.1): ChangeLog-7.php

Lior Kaplan Tue, 24 Jan 2017 15:55:52 -0800

Commit:    18e17344d7c414de20bfc0240d75d64a40cd4aed
Author:    Lior Kaplan <kaplanl...@gmail.com>         Wed, 25 Jan 2017 01:54:48 
+0200
Parents:   8a3145fee280134cd4466d99f0cbd897695aec99
Branches:  master


Link:       
http://git.php.net/?p=web/php.git;a=commitdiff;h=18e17344d7c414de20bfc0240d75d64a40cd4aed

Log:
Add CVE ID to bugs #73832 (PHP 5.6.30, 7.0.15 and 7.1.1) and #73092 (PHP 7.0.15 
and 7.1.1)

Bugs:
https://bugs.php.net/73832
https://bugs.php.net/73092

Changed paths:
  M  ChangeLog-7.php


Diff:
diff --git a/ChangeLog-7.php b/ChangeLog-7.php
index 6912a55..71be41a 100644
--- a/ChangeLog-7.php
+++ b/ChangeLog-7.php
@@ -18,8 +18,8 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", 
"css" => array("change
   <li><?php bugfix(73753); ?> (unserialized array pointer not advancing).</li>
   <li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in 
finish_nested_data()). (CVE-2016-10161)</li>
   <li><?php bugfix(73831); ?> (NULL Pointer Dereference while unserialize php 
object). (CVE-2016-10162)</li>
-  <li><?php bugfix(73832); ?> (Use of uninitialized memory in 
unserialize()).</li>
-  <li><?php bugfix(73092); ?> (Unserialize use-after-free when resizing 
object's properties hash table).</li>
+  <li><?php bugfix(73832); ?> (Use of uninitialized memory in unserialize()). 
(CVE-2017-5340)</li>
+  <li><?php bugfix(73092); ?> (Unserialize use-after-free when resizing 
object's properties hash table). (CVE-2016-7479)</li>
   <li><?php bugfix(69425); ?> (Use After Free in unserialize()).</li>
   <li><?php bugfix(72731); ?> (Type Confusion in Object Deserialization).</li>
 </ul></li>
@@ -116,7 +116,7 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", 
"css" => array("change
                <li><?php bugfix(73783); ?> (SIG_IGN doesn't work when Zend 
Signals is enabled).</li>
                <li><?php bugfix(73825); ?> (Heap out of bounds read on 
unserialize in finish_nested_data()). (CVE-2016-10161)</li>
                <li><?php bugfix(73831); ?> (NULL Pointer Dereference while 
unserialize php object). (CVE-2016-10162)</li>
-               <li><?php bugfix(73832); ?> (Use of uninitialized memory in 
unserialize()).</li>
+               <li><?php bugfix(73832); ?> (Use of uninitialized memory in 
unserialize()). (CVE-2017-5340)</li>
        </ul>
        </li>
        <li>


--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-WEBMASTER] com web/php: Add CVE ID to bugs #73832 (PHP 5.6.30, 7.0.15 and 7.1.1) and #73092 (PHP 7.0.15 and 7.1.1): ChangeLog-7.php

Reply via email to