thijs at alioth.debian.org
2008-May-06 10:35 UTC
[Secure-testing-commits] r8718 - data/CVE
Author: thijs
Date: 2008-05-06 10:35:20 +0000 (Tue, 06 May 2008)
New Revision: 8718
Modified:
data/CVE/list
Log:
update php5 cve''s, thanks Moritz Naumann
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-05-06 09:14:15 UTC (rev 8717)
+++ data/CVE/list 2008-05-06 10:35:20 UTC (rev 8718)
@@ -1,5 +1,11 @@
CVE-2008-2085 [stack-based buffer overflow in get_remote_ip_media and
get_remote_ipv6_media function]
- sip-tester <unfixed> (medium; bug #479039)
+CVE-2008-2051 [incomplete multibyte chars inside escapeshellcmd]
+ - php5 5.2.6-1
+ NOTE: http://www.php.net/ChangeLog-5.php
+CVE-2008-2050 [possible stack buffer overflow in the FastCGI SAPI]
+ - php5 5.2.6-1
+ NOTE: http://www.php.net/ChangeLog-5.php
CVE-2008-2042
RESERVED
CVE-2008-2039
@@ -3096,6 +3102,7 @@
CVE-2008-0674 (Buffer overflow in PCRE before 7.6 allows remote attackers to
execute ...)
{DSA-1499-1 DTSA-115-1}
- pcre3 7.6-1 (medium)
+ - php5 <not-affected> (Uses sytem copy)
CVE-2008-0673 (TinTin++ 1.97.9 and WinTin++ 1.97.9 open files on the basis of
an ...)
- tintin++ 1.97.9-2 (low; bug #465643)
[etch] - tintin++ <no-dsa> (Minor issue)