Author: carnil
Date: 2015-06-08 05:47:50 +0000 (Mon, 08 Jun 2015)
New Revision: 34795
Modified:
data/CVE/list
data/DSA/list
Log:
CVE-2015-3307 as well fixed in php5 update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-06-07 21:10:17 UTC (rev 34794)
+++ data/CVE/list 2015-06-08 05:47:50 UTC (rev 34795)
@@ -2432,8 +2432,9 @@
RESERVED
CVE-2015-3307 [Heap metadata corruption when parsing tar file in
phar_tar_process_metadata()]
RESERVED
- - php5 <unfixed>
- NOTE: https://bugs.php.net/bug.php?id=69443&edit=2
+ {DSA-3280-1}
+ - php5 5.6.9+dfsg-1
+ NOTE: https://bugs.php.net/bug.php?id=69443
NOTE:
http://git.php.net/?p=php-src.git;a=commit;h=17cbd0b5b78a7500f185b3781a2149881bfff8ae
CVE-2015-3329 [Buffer Overflow when parsing tar/zip/phar in phar_set_inode]
RESERVED
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2015-06-07 21:10:17 UTC (rev 34794)
+++ data/DSA/list 2015-06-08 05:47:50 UTC (rev 34795)
@@ -1,6 +1,6 @@
[07 Jun 2015] DSA-3281-1 Debian Security Team PGP/GPG key change notice
[07 Jun 2015] DSA-3280-1 php5 - security update
- {CVE-2015-2783 CVE-2015-3329 CVE-2015-4021 CVE-2015-4022 CVE-2015-4024
CVE-2015-4025 CVE-2015-4026}
+ {CVE-2015-2783 CVE-2015-3307 CVE-2015-3329 CVE-2015-4021 CVE-2015-4022
CVE-2015-4024 CVE-2015-4025 CVE-2015-4026}
[wheezy] - php5 5.4.41-0+deb7u1
[jessie] - php5 5.6.9+dfsg-0+deb8u1
[06 Jun 2015] DSA-3279-1 redis - security update
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
