seanius at alioth.debian.org
2007-Sep-20 17:13 UTC
[Secure-testing-commits] r6651 - data/CVE
Author: seanius Date: 2007-09-20 17:13:30 +0000 (Thu, 20 Sep 2007) New Revision: 6651 Modified: data/CVE/list Log: add notes on php4/etch fixes in svn Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-09-20 16:03:18 UTC (rev 6650) +++ data/CVE/list 2007-09-20 17:13:30 UTC (rev 6651) @@ -712,7 +712,7 @@ CVE-2007-4657 (Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before ...) - php5 <unfixed> - php4 <removed> - NOTE: fixed in php5/etch, php4/sarge svn + NOTE: fixed in php4/etch, php5/etch, php4/sarge svn CVE-2007-4656 (backup-manager-upload in Backup Manager before 0.6.3 provides the FTP ...) - backup-manager 0.7.6-3 (bug #439392) CVE-2007-4655 (Multiple directory traversal vulnerabilities in CGI RESCUE Shopping ...) @@ -2612,7 +2612,7 @@ NOTE: also may not work if other cookie values are set. NOTE: fix sneaked into php 5.2.3 sans-mention: NOTE: http://cvs.php.net/viewvc.cgi/php-src/ext/session/session.c?r1=1.417.2.8.2.36&r2=1.417.2.8.2.37&pathrev=PHP_5_2 - NOTE: fixed in php5/etch, php4/sarge svn + NOTE: fixed in php4/etch, php5/etch, php4/sarge svn - php4 <unfixed> (low) - php5 <unfixed> (low; bug #441433) CVE-2007-3798 (Integer overflow in print-bgp.c in the BGP dissector in tcpdump 3.9.6 ...)