Author: jmm
Date: 2015-07-24 16:27:24 +0000 (Fri, 24 Jul 2015)
New Revision: 35682
Modified:
data/CVE/list
Log:
hhvm is now in the archive, but it was nine months in NEW, so that versions
has open security issues by now
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-24 15:56:55 UTC (rev 35681)
+++ data/CVE/list 2015-07-24 16:27:24 UTC (rev 35682)
@@ -2273,7 +2273,7 @@
RESERVED
CVE-2015-4663
RESERVED
- - hhvm <itp> (bug #570709)
+ - hhvm <unfixed>
NOTE:
https://github.com/facebook/hhvm/commit/e282a459188a472e177b45ad2d2989289294df74
CVE-2015-4662
RESERVED
@@ -4051,7 +4051,7 @@
NOTE: https://bugs.php.net/bug.php?id=69364
NOTE: http://www.openwall.com/lists/oss-security/2015/05/18/2
NOTE: Fixed upstream in 5.4.41, 5.5.25, 5.6.9
- - hhvm <itp> (bug #570709)
+ - hhvm <unfixed>
NOTE: HHVM fix:
https://github.com/facebook/hhvm/commit/6188457bd90ed2f3516e778dca8e91536d91802e
CVE-2015-4022 (Integer overflow in the ftp_genlist function in ext/ftp/ftp.c
in PHP ...)
{DSA-3280-1}
@@ -5526,7 +5526,7 @@
RESERVED
CVE-2015-3413
RESERVED
- - hhvm <itp> (bug #570709)
+ - hhvm <unfixed>
NOTE:
https://github.com/facebook/hhvm/commit/02a7a8f086c9181002fca0f0d9cef42963fdf46a
CVE-2015-3412
RESERVED
@@ -7103,7 +7103,7 @@
CVE-2015-2926 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: phpTrafficA
CVE-2014-9714 (Cross-site scripting (XSS) vulnerability in the ...)
- - hhvm <itp> (bug #570709)
+ - hhvm <unfixed>
NOTE:
https://github.com/facebook/hhvm/commit/324701c9fd31beb4f070f1b7ef78b115fbdfec34
CVE-2015-3406 [unsigned files interpreted as signed in some circumstances]
RESERVED
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
