Author: carnil
Date: 2016-05-18 05:45:35 +0000 (Wed, 18 May 2016)
New Revision: 41829
Modified:
data/CVE/list
Log:
Update CVE-2015-8874/libgd2
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-18 05:07:20 UTC (rev 41828)
+++ data/CVE/list 2016-05-18 05:45:35 UTC (rev 41829)
@@ -18,14 +18,13 @@
CVE-2016-4800
RESERVED
CVE-2015-8874 (Stack consumption vulnerability in GD in PHP before 5.6.12
allows ...)
- - libgd2 <undetermined>
+ - libgd2 <unfixed>
- php5 5.6.12+dfsg-1 (unimportant)
[jessie] - php5 5.6.12+dfsg-0+deb8u1
- php7.0 7.0.0-1 (unimportant)
NOTE: PHP bug: https://bugs.php.net/bug.php?id=66387
NOTE: Fixed in 5.6.12, 7.0.0
NOTE: Starting with 5.4.0-1 Debian uses the system copy of libgd
- TODO: check libgd2
CVE-2015-8873 (Stack consumption vulnerability in Zend/zend_exceptions.c in
PHP ...)
- php5 5.6.12+dfsg-1
[jessie] - php5 5.6.12+dfsg-0+deb8u1
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
