Author: roberto Date: 2017-02-01 02:24:02 +0000 (Wed, 01 Feb 2017) New Revision: 48638
Modified: data/CVE/list Log: Annotate CVE-2016-9137 [Use-after-free vulnerability in the CURLFile implementation] as not affecting wheezy Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-01-31 23:19:41 UTC (rev 48637) +++ data/CVE/list 2017-02-01 02:24:02 UTC (rev 48638) @@ -16510,6 +16510,7 @@ {DSA-3698-1} - php7.0 7.0.12-1 - php5 <removed> + [wheezy] - php5 <not-affected> (Vulnerable code not present in version 5.4.45) NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73147 NOTE: http://git.php.net/?p=php-src.git;a=commit;h=0e6fe3a4c96be2d3e88389a5776f878021b4c59f NOTE: NOTE: Fixed in 7.0.12, 5.6.27 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits