[Secure-testing-commits] r43428 - data/CVE

Salvatore Bonaccorso Sun, 24 Jul 2016 11:18:07 -0700

Author: carnil
Date: 2016-07-24 18:17:07 +0000 (Sun, 24 Jul 2016)
New Revision: 43428


Modified:
   data/CVE/list
Log:
Add CVE-2016-6295/php

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-07-24 18:04:16 UTC (rev 43427)
+++ data/CVE/list       2016-07-24 18:17:07 UTC (rev 43428)
@@ -2,6 +2,12 @@
        - tiff <unfixed>
        - tiff3 <removed>
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2573
+CVE-2016-6295 [Use After Free Vulnerability in SNMP with GC and unserialize()]
+       - php7.0 <unfixed>
+       - php5 <unfixed>
+       NOTE: PHP Bug: https://bugs.php.net/72479
+       NOTE: 
http://git.php.net/?p=php-src.git;a=commit;h=cab1c3b3708eead315e033359d07049b23b147a3
+       NOTE: Fixed in 7.0.9, 5.6.24, 5.5.38
 CVE-2016-6294 [locale_accept_from_http out-of-bounds access]
        - php7.0 <unfixed>
        - php5 <unfixed>


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r43428 - data/CVE

Reply via email to