seanius at alioth.debian.org
2008-Sep-21 20:43 UTC
[Secure-testing-commits] r9858 - data/CVE
Author: seanius Date: 2008-09-21 20:43:07 +0000 (Sun, 21 Sep 2008) New Revision: 9858 Modified: data/CVE/list Log: update on php CVE that was wrongly thought duplicate Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-09-21 13:43:15 UTC (rev 9857) +++ data/CVE/list 2008-09-21 20:43:07 UTC (rev 9858) @@ -1113,10 +1113,10 @@ CVE-2008-3661 RESERVED CVE-2008-3660 (PHP 4.4.x before 4.4.9 and PHP 5.6 through 5.2.6, when used as a ...) - - php5 5.2.6-1 - NOTE: believed to be a duplicate of CVE-2008-2050. - NOTE: php4 not affected, the vulnerable code isn''t present - NOTE: http://www.php.net/ChangeLog-5.php + - php5 <unfixed> (medium) + - php4 <removed> + NOTE: *not* duplicate after all, needs review + NOTE: http://cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.57&r2=1.267.2.15.2.58&view=patch CVE-2008-3659 (Buffer overflow in the memnstr function in PHP 4.4.x before 4.4.9 and ...) - php4 <removed> - php5 <unfixed> (medium)