[Secure-testing-commits] r2633 - data/CVE

Florian Weimer Tue, 01 Nov 2005 06:10:26 -0800

Author: fw
Date: 2005-11-01 09:33:44 +0000 (Tue, 01 Nov 2005)
New Revision: 2633


Modified:
   data/CVE/list
Log:
fix php4 urgency for $GLOBALS bug (urgency disputed by vorlon,
make it consistent with php5 for the time being)


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2005-11-01 09:28:21 UTC (rev 2632)
+++ data/CVE/list       2005-11-01 09:33:44 UTC (rev 2633)
@@ -126,7 +126,7 @@
        - php5 <unfixed> (bug #336654; low)
        NOTE: http://www.hardened-php.net/advisory_192005.78.html
 CVE-2005-XXXX [PHP File-Upload $GLOBALS Overwrite Vulnerability]
-       - php4 <unfixed> (bug #336645; low)
+       - php4 <unfixed> (bug #336645; high)
        - php5 <unfixed> (bug #336654; high)
        NOTE: http://www.hardened-php.net/advisory_202005.79.html
        NOTE: http://www.hardened-php.net/globals-problem


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r2633 - data/CVE

Reply via email to