[Secure-testing-commits] r40879 - data/CVE

Mon, 11 Apr 2016 13:11:16 -0700 

Author: kosh-guest
Date: 2016-04-11 20:10:07 +0000 (Mon, 11 Apr 2016)
New Revision: 40879

Modified:
   data/CVE/list
Log:
add CVE request for PHP issues fixed in 7.0.5, 5.6.20, 5.5.34

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-04-11 18:40:37 UTC (rev 40878)
+++ data/CVE/list       2016-04-11 20:10:07 UTC (rev 40879)
@@ -40,24 +40,28 @@
        NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
        NOTE: https://bugs.php.net/bug.php?id=71798
        NOTE: 
https://git.php.net/?p=php-src.git;a=commit;h=95433e8e339dbb6b5d5541473c1661db6ba2c451
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/11/7
 CVE-2016-XXXX [Format string vulnerability in php_snmp_error()]
        - php7.0 7.0.5-1
        - php5 <unfixed>
        NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
        NOTE: https://bugs.php.net/bug.php?id=71704
        NOTE: 
https://git.php.net/?p=php-src.git;a=commit;h=6e25966544fb1d2f3d7596e060ce9c9269bbdcf8
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/11/7
 CVE-2016-XXXX [Invalid memory write in phar on filename containing \0 inside 
name]
        - php7.0 7.0.5-1
        - php5 <unfixed>
        NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
        NOTE: https://bugs.php.net/bug.php?id=71860
        NOTE: https://gist.github.com/smalyshev/80b5c2909832872f2ba2
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/11/7
 CVE-2016-XXXX [Negative size parameter in memcpy]
        - php7.0 7.0.5-1
        - php5 <unfixed>
        NOTE: Fixed in 7.0.5, 5.6.20, 5.5.34
        NOTE: https://bugs.php.net/bug.php?id=71906
        NOTE: https://gist.github.com/smalyshev/d8355c96a657cc5dba70
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/11/7
 CVE-2016-3976 (Directory traversal vulnerability in SAP NetWeaver AS Java 7.4 
allows ...)
        NOT-FOR-US: SAP
 CVE-2016-3975 (Cross-site scripting (XSS) vulnerability in SAP NetWeaver AS 
Java 7.4 ...)
@@ -175,6 +179,7 @@
        NOTE: http://bugs.gw.com/view.php?id=522
        NOTE: https://bugs.php.net/bug.php?id=71527
        NOTE: PHP fixed in 7.0.5, 5.6.20, 5.5.34
+       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/11/7
        TODO: recheck versions
 CVE-2016-3993 [off-by-one OOB read in __imlib_MergeUpdate]
        - imlib2 <unfixed> (bug #819818)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to