[Secure-testing-commits] r5880 - data/CVE

jmm-guest Sat, 19 May 2007 02:19:58 -0700

Author: jmm-guest
Date: 2007-05-19 09:19:55 +0000 (Sat, 19 May 2007)
New Revision: 5880


Modified:
   data/CVE/list
Log:
add severities to latest php5 issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2007-05-18 18:43:16 UTC (rev 5879)
+++ data/CVE/list       2007-05-19 09:19:55 UTC (rev 5880)
@@ -411,7 +411,6 @@
        RESERVED
 CVE-2007-2518
        REJECTED
-       NOTE: duplicate of CVE-2007-2518
 CVE-2007-2517
        RESERVED
 CVE-2007-2516
@@ -425,12 +424,13 @@
 CVE-2007-2512
        RESERVED
 CVE-2007-2511 (Buffer overflow in the user_filter_factory_create function in 
PHP ...)
-       - php5 5.2.2-1
+       - php5 5.2.2-1 (unimportant)
+       NOTE: Only triggerable by malicious script
 CVE-2007-2510 (Buffer overflow in the make_http_soap_request function in PHP 
before ...)
-       - php5 5.2.2-1
+       - php5 5.2.2-1 (low)
 CVE-2007-2509 (CRLF injection vulnerability in the ftp_putcmd function in PHP 
before ...)
-       - php5 5.2.2-1
-       - php4 4.4.7-1
+       - php5 5.2.2-1 (low)
+       - php4 4.4.7-1 (low)
 CVE-2007-2508 (Multiple stack-based buffer overflows in Trend Micro 
ServerProtect ...)
        NOT-FOR-US: Trend Micro
 CVE-2007-2507 (Directory traversal vulnerability in includes/download.php in 
Treble ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r5880 - data/CVE

Reply via email to