[Secure-testing-commits] r41104 - data/CVE

Salvatore Bonaccorso Sat, 23 Apr 2016 22:23:28 -0700

Author: carnil
Date: 2016-04-24 05:22:15 +0000 (Sun, 24 Apr 2016)
New Revision: 41104


Modified:
   data/CVE/list
Log:
CVE-2015-8866/php assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-04-24 05:16:36 UTC (rev 41103)
+++ data/CVE/list       2016-04-24 05:22:15 UTC (rev 41104)
@@ -103,14 +103,14 @@
        NOTE: upstream commit: 
https://github.com/tmux/tmux/commit/2ffbd5b5f05dded1564ba32a6a00b0b417439b2f 
(2.1)
        NOTE: upstream fixed in 2.1
        NOTE: https://bugs.gentoo.org/show_bug.cgi?id=564400
-CVE-2016-XXXX [libxml_disable_entity_loader setting is shared between threads]
+CVE-2015-8866 [libxml_disable_entity_loader setting is shared between threads]
        - php5 5.6.6+dfsg-1
        NOTE: https://bugs.php.net/bug.php?id=64938
        NOTE: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/1509817
        NOTE: http://framework.zend.com/security/advisory/ZF2015-06 -> Relation 
to CVE-2015-5161
        NOTE: 
http://git.php.net/?p=php-src.git;a=commit;h=de31324c221c1791b26350ba106cc26bad23ace9
        NOTE: Fixed in 5.6.6, 5.5.22
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/04/21/8
+       NOTE: http://www.openwall.com/lists/oss-security/2016/04/21/8
 CVE-2016-XXXX [openssl_random_pseudo_bytes() is not cryptographically secure]
        - php7.0 7.0.0-1
        - php5 5.6.12+dfsg-1


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r41104 - data/CVE

Reply via email to