Author: carnil
Date: 2016-03-17 07:35:09 +0000 (Thu, 17 Mar 2016)
New Revision: 40429
Modified:
data/CVE/list
Log:
Add CVE-2016-3185/php7.0, seems to not affect 5.6, double check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-17 06:21:52 UTC (rev 40428)
+++ data/CVE/list 2016-03-17 07:35:09 UTC (rev 40429)
@@ -420,8 +420,13 @@
RESERVED
CVE-2016-3186
RESERVED
-CVE-2016-3185
+CVE-2016-3185 [Type Confusion Vulnerability - SOAP / make_http_soap_request()]
RESERVED
+ - php7.0 7.0.4-1
+ NOTE: https://bugs.php.net/bug.php?id=71610
+ NOTE:
https://git.php.net/?p=php-src.git;a=commit;h=eaf4e77190d402ea014207e9a7d5da1a4f3727ba
+ NOTE: http://php.net/ChangeLog-7.php#7.0.4
+ TODO: seems to not affect PHP 5, double check
CVE-2016-3184
RESERVED
CVE-2016-3180 [Signature verification bypass attack]
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
