[Secure-testing-commits] r48638 - data/CVE

Roberto C. Sanchez Tue, 31 Jan 2017 18:24:56 -0800

Author: roberto
Date: 2017-02-01 02:24:02 +0000 (Wed, 01 Feb 2017)
New Revision: 48638


Modified:
   data/CVE/list
Log:
Annotate CVE-2016-9137 [Use-after-free vulnerability in the CURLFile 
implementation] as not affecting wheezy

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-01-31 23:19:41 UTC (rev 48637)
+++ data/CVE/list       2017-02-01 02:24:02 UTC (rev 48638)
@@ -16510,6 +16510,7 @@
        {DSA-3698-1}
        - php7.0 7.0.12-1
        - php5 <removed>
+       [wheezy] - php5 <not-affected> (Vulnerable code not present in version 
5.4.45)
        NOTE: PHP Bug: https://bugs.php.net/bug.php?id=73147
        NOTE: 
http://git.php.net/?p=php-src.git;a=commit;h=0e6fe3a4c96be2d3e88389a5776f878021b4c59f
        NOTE: NOTE: Fixed in 7.0.12, 5.6.27


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r48638 - data/CVE

Reply via email to