atomo64-guest at alioth.debian.org
2009-Jan-18 20:59 UTC
[Secure-testing-commits] r10987 - data/CVE
Author: atomo64-guest Date: 2009-01-18 20:59:36 +0000 (Sun, 18 Jan 2009) New Revision: 10987 Modified: data/CVE/list Log: php5 issues update Modified: data/CVE/list ==================================================================--- data/CVE/list 2009-01-18 18:01:55 UTC (rev 10986) +++ data/CVE/list 2009-01-18 20:59:36 UTC (rev 10987) @@ -1025,7 +1025,7 @@ CVE-2008-5558 (Asterisk Open Source 1.2.26 through 1.2.30.3 and Business Edition ...) - asterisk 1:1.4.0~dfsg-1 (bug #509686) CVE-2008-5557 (Heap-based buffer overflow in ...) - - php5 5.2.6.dfsg.1-2 (bug #511493) + - php5 5.2.6.dfsg.1-1 (bug #511493) CVE-2008-XXXX [phpBB3 Account Re-activation Security Bypass] - phpbb3 <unfixed> (low; bug #508872) CVE-2008-5556 (** DISPUTED ** ...) @@ -1508,7 +1508,7 @@ CVE-2008-5617 (The ACL handling in rsyslog 3.12.1 to 3.20.0, 4.1.0, and 4.1.1 does ...) - rsyslog 3.18.6-1 (bug #508027) CVE-2008-5624 (PHP 5 before 5.2.7 does not properly initialize the page_uid and ...) - - php5 <unfixed> (bug #508021) + - php5 5.2.6.dfsg.1-1 (bug #508021) NOTE: Fixed in php 5.2.7, not yet in the archive NOTE: http://securityreason.com/achievement_securityalert/59 TODO: check php4