thr3ads.net - Secure testing commits - [Secure-testing-commits] r20072

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Raphael Geissert

2012-Aug-31 21:17 UTC

[Secure-testing-commits] r20072 - data/CVE

Author: geissert
Date: 2012-08-31 21:17:22 +0000 (Fri, 31 Aug 2012)
New Revision: 20072

Modified:
   data/CVE/list
Log:
php response-splitting defense bypass (part 1)


Modified: data/CVE/list
==================================================================---
data/CVE/list	2012-08-31 21:14:17 UTC (rev 20071)
+++ data/CVE/list	2012-08-31 21:17:22 UTC (rev 20072)
@@ -22492,7 +22492,7 @@
 CVE-2011-1399
 	RESERVED
 CVE-2011-1398 (The sapi_header_op function in main/SAPI.c in PHP before 5.3.11
does ...)
-	TODO: check
+	- php5 5.4.0~rc5-1
 CVE-2011-1397 (Cross-site request forgery (CSRF) vulnerability in the Labor
Reporting ...)
 	NOT-FOR-US: IBM Tivoli
 CVE-2011-1396 (Cross-site scripting (XSS) vulnerability in IBM Maximo Asset
...)

Secure testing commits - Aug 2012 - r20072 - data/CVE

[Secure-testing-commits] r20072 - data/CVE