seanius at alioth.debian.org
2008-May-27 18:16 UTC
[Secure-testing-commits] r8914 - data/CVE
Author: seanius Date: 2008-05-27 18:16:34 +0000 (Tue, 27 May 2008) New Revision: 8914 Modified: data/CVE/list Log: mcrypt vulnerabilities were fixed in php5 5.2.2 Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-05-27 16:39:11 UTC (rev 8913) +++ data/CVE/list 2008-05-27 18:16:34 UTC (rev 8914) @@ -625,12 +625,12 @@ [etch] - libid3tag <no-dsa> (Minor issue) NOTE: totally different approach to fix the bug, see Kurts comments in the bug report CVE-2008-2108 (The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, ...) - - php5 5.2.6-1 (low) + - php5 5.2.2-1 (low) [etch] - php4 <not-affected> (Vulnerable code not present) [etch] - php5 <not-affected> (Vulnerable code not present) NOTE: http://www.sektioneins.de/advisories/SE-2008-02.txt CVE-2008-2107 (The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, ...) - - php5 5.2.6-1 (low) + - php5 5.2.2-1 (low) [etch] - php4 <not-affected> (Vulnerable code not present) [etch] - php5 <not-affected> (Vulnerable code not present) NOTE: closely related to CVE-2008-2108