Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 559612 (CVE-2015-6834) - <dev-lang/php-{5.4.45,5.5.29,5.6.13} : Multiple vulnerabilities (CVE-2015-{6834,6835,6836,6837,6838})
Summary: <dev-lang/php-{5.4.45,5.5.29,5.6.13} : Multiple vulnerabilities (CVE-2015-{68...
Status: RESOLVED FIXED
Alias: CVE-2015-6834
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: http://www.php.net/ChangeLog-5.php
Whiteboard: A2 [glsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2015-09-04 18:48 UTC by Tomáš Mózes
Modified: 2016-06-19 00:27 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Tomáš Mózes 2015-09-04 18:48:36 UTC 
See $URL.
Comment 1 Ole Markus With (RETIRED) gentoo-dev 2015-09-05 12:07:29 UTC 
Ebuilds in the tree that can be stabilised.
Comment 2 Agostino Sarubbo gentoo-dev 2015-09-07 13:13:39 UTC 
Arches, please test and mark stable:
=dev-lang/php-5.4.45
=dev-lang/php-5.5.29
=dev-lang/php-5.6.13
Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 sparc x86"
Comment 3 Agostino Sarubbo gentoo-dev 2015-09-07 13:45:23 UTC 
amd64 stable
Comment 4 Agostino Sarubbo gentoo-dev 2015-09-07 13:45:52 UTC 
x86 stable
Comment 5 Agostino Sarubbo gentoo-dev 2015-09-08 07:22:18 UTC 
ppc stable
Comment 6 Agostino Sarubbo gentoo-dev 2015-09-08 07:22:45 UTC 
ppc64 stable
Comment 7 Agostino Sarubbo gentoo-dev 2015-09-09 06:51:57 UTC 
ia64 stable
Comment 8 Agostino Sarubbo gentoo-dev 2015-09-09 06:52:26 UTC 
sparc stable
Comment 9 Jeroen Roovers (RETIRED) gentoo-dev 2015-09-11 04:52:36 UTC 
Stable for HPPA.
Comment 10 Tobias Klausmann (RETIRED) gentoo-dev 2015-09-11 16:04:56 UTC 
All stable on alpha.
Comment 11 Markus Meier gentoo-dev 2015-09-27 09:05:34 UTC 
arm stable, all arches done.
Comment 12 Yury German Gentoo Infrastructure gentoo-dev 2015-09-27 12:29:38 UTC 
Arches, Thank you for your work.
Maintainer(s), please drop the vulnerable version(s).
Comment 13 Yury German Gentoo Infrastructure gentoo-dev 2015-12-20 19:28:16 UTC 
Maintainer(s), Thank you for cleanup.
Comment 14 GLSAMaker/CVETool Bot gentoo-dev 2016-06-19 00:27:35 UTC 
This issue was resolved and addressed in
 GLSA 201606-10 at https://security.gentoo.org/glsa/201606-10
by GLSA coordinator Kristian Fiskerstrand (K_F).