[Secure-testing-team] Bug#702221: php5: CVE-2013-1635 CVE-2013-1643
Moritz Muehlenhoff
jmm at inutil.org
Mon Mar 4 09:36:12 UTC 2013
Package: php5
Severity: grave
Tags: security
Justification: user security hole
Hi,
two issues have been reported in php5. CVE-2013-1635 doesn't classify as a security
issue per the Debian Security policy, but if the fix is non-intrusive we
could include it nonetheless:
CVE-2013-1643
http://git.php.net/?p=php-src.git;a=commitdiff;h=c737b89473df9dba6742b8fc8fbf6d009bf05c36
CVE-2013-1635
http://git.php.net/?p=php-src.git;a=commitdiff;h=702b436ef470cc02f8e2cc21f2fadeee42103c74
Cheers,
Moritz
More information about the Secure-testing-team
mailing list