[php-maint] Availability of PHP version 5.3.4 or newer
Bill West
bill at destwin.com
Fri Feb 11 23:50:47 UTC 2011
Sorry for being dense. It took me a while to figure out that it is
necessary to click through on the individual CVE links to find out the
status of particular distributions with respect to each item listed at
the security tracker:
http://security-tracker.debian.org/tracker/source-package/php5
Also, some of the CVE items that are an issue with respect to our PCIDSS
scans are not listed at the link supplied, but the construction of the
link for a particular CVE is obvious. Here are the items that are not
yet fixed. I will review each of these with our security team including
the firm that performs our independent PCIDSS scans to determine if
these involve critical vulnerabilities related to payment card
processing.
* cve-2010-4697 Vulnerable
* cve-2010-4698 Undetermined
* cve-2010-4699 Vulnerable
* cve-2010-4700 Vulnerable
* cve-2011-0753 Vulnerable
There is a complete list of the items reported by our most recent scan
including those you have already fixed at:
http://support.destwin.com/document/pcidss_status
Thanks for your help with this issue.
Bill West
--
Cell: 877-567-7451
Skype: bill.west9
DESTWIN, LLC.
887 Main Street, Suite D
Monroe, Connecticut 06468-2800
Toll Free: 877-DESTWIN (877-337-8946)
Local: 203-459-0619
FAX: 203-261-5061
sales at destwin.com
http://www.destwin.com
Destwin and "Fuel Dealer Solution" are trademarks of DESTWIN, LLC.
-----Original Message-----
From: Ondřej Surý <ondrej at debian.org>
To: Bill West <bill at destwin.com>
Cc: Raphael Geissert <geissert at debian.org>, Mike Lucia
<mlucia at destwin.com>, pkg-php-maint at lists.alioth.debian.org
<pkg-php-maint at lists.alioth.debian.org>, wthomas at intinc.com
<wthomas at intinc.com>
Subject: Re: [php-maint] Availability of PHP version 5.3.4 or newer
Date: Fri, 11 Feb 2011 16:33:48 -0500
http://security-tracker.debian.org/tracker/source-package/php5
More information about the pkg-php-maint
mailing list