diff options
| author | Simon L. B. Nielsen <simon@FreeBSD.org> | 2007-05-10 17:31:49 +0000 |
|---|---|---|
| committer | Simon L. B. Nielsen <simon@FreeBSD.org> | 2007-05-10 17:31:49 +0000 |
| commit | 4e0a6f6ea4319adaa5819c41b5781ad607800ed8 (patch) | |
| tree | c95ff3f1c063a6b7712435f3952707886a1d5f1a | |
| parent | Document a lot of PHP vulnerabilities, mark all php4 and php5 (+cli,cgi) (diff) | |
Update PHP entry to include the vulnerable version so the entry is
correct for when PHP is updated in ports (yes it's being worked on),
or for people who upgrade "manually".
With hat: secteam
Requested by: several
| -rw-r--r-- | security/vuxml/Makefile | 4 | ||||
| -rw-r--r-- | security/vuxml/vuln.xml | 31 |
2 files changed, 33 insertions, 2 deletions
diff --git a/security/vuxml/Makefile b/security/vuxml/Makefile index 172dd2123393..4369c0102b6f 100644 --- a/security/vuxml/Makefile +++ b/security/vuxml/Makefile @@ -83,4 +83,8 @@ tidy: newentry: @${SH} ${FILESDIR}/newentry.sh "${VUXML_FILE}" +eddie: + scp "${VUXML_FILE}" eddie.nitro.dk:/FreeBSD/work/vuxml/ + ssh eddie.nitro.dk make -C /FreeBSD/sec/vuxml-web/freebsd VUXML=/FreeBSD/work/vuxml/vuln.xml TOPDEST=/home/simon/public_html/vuxml all install + .include <bsd.port.mk> diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index eeb31a1b2f42..cd7e813963f8 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -38,13 +38,39 @@ Note: Please add new entries to the beginning of this file. <topic>php -- multiple vulnerabilities</topic> <affects> <package> + <name>php5-imap</name> + <name>php5-odbc</name> + <name>php5-session</name> + <name>php5-shmop</name> + <name>php5-sqlite</name> + <name>php5-wddx</name> + <name>php5</name> + <range><lt>5.2.2</lt></range> + </package> + <package> + <name>php4-odbc</name> + <name>php4-session</name> + <name>php4-shmop</name> + <name>php4-wddx</name> <name>php4</name> + <range><lt>4.4.7</lt></range> + </package> + <package> + <name>mod_php4-twig</name> + <name>mod_php4</name> + <name>mod_php5</name> + <name>mod_php</name> <name>php4-cgi</name> <name>php4-cli</name> - <name>php5</name> + <name>php4-dtc</name> + <name>php4-horde</name> + <name>php4-nms</name> <name>php5-cgi</name> <name>php5-cli</name> - <range><gt>0</gt></range> + <name>php5-dtc</name> + <name>php5-horde</name> + <name>php5-nms</name> + <range><ge>0</ge></range> </package> </affects> <description> @@ -100,6 +126,7 @@ Note: Please add new entries to the beginning of this file. <dates> <discovery>2007-05-03</discovery> <entry>2007-05-07</entry> + <modified>2007-05-10</modified> </dates> </vuln> |