[Secure-testing-commits] r47662 - data/CVE

Salvatore Bonaccorso Sun, 01 Jan 2017 22:33:07 -0800

Author: carnil
Date: 2017-01-02 06:32:31 +0000 (Mon, 02 Jan 2017)
New Revision: 47662


Modified:
   data/CVE/list
Log:
Add CVE-2016-10034

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-01-02 06:09:32 UTC (rev 47661)
+++ data/CVE/list       2017-01-02 06:32:31 UTC (rev 47662)
@@ -2308,6 +2308,11 @@
        RESERVED
 CVE-2016-10034
        RESERVED
+       - zendframework <undetermined>
+       NOTE: https://framework.zend.com/security/advisory/ZF2016-04
+       NOTE: 
https://github.com/zendframework/zendframework/commit/7c1e89815f5a9c016f4b8088e59b07cb2bf99dc0
+       NOTE: 
http://legalhackers.com/advisories/ZendFramework-Exploit-ZendMail-Remote-Code-Exec-CVE-2016-10034-Vuln.html
+       TODO: check if 1.x series is affected as well
 CVE-2014-9914
        RESERVED
 CVE-2016-10045 [Bypass of the CVE-2016-10033 patch]


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r47662 - data/CVE

Reply via email to