CVE-2019-13224: reference embedded copy in php7.0

author: Sylvain Beucler <beuc@beuc.net> 2021-07-07 18:46:20 +0200
committer: Sylvain Beucler <beuc@beuc.net> 2021-07-07 18:51:47 +0200
commit: f7ec335c3f41a57b670d79689ad9b95df78fb5bc (patch)
tree: 40ee7e684ff1acc6d265f82919e7d72774669820 /data
parent: 1ce820249b0ac82650f46838faaeface3d9e3739 (diff)
2 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 1aa6adab0f..43659ba4b8 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -139227,6 +139227,7 @@ CVE-2019-13224 (A use-after-free in onig_new_deluxe() in regext.c in Oniguruma 6
 	{DLA-2431-1 DLA-1854-1}
 	- libonig 6.9.2-1 (low; bug #931878)
 	[buster] - libonig <no-dsa> (Minor issue)
+	- php7.0 <removed>
 	NOTE: https://github.com/kkos/oniguruma/commit/0f7f61ed1b7b697e283e37bd2d731d0bd57adb55
 CVE-2019-13223 (A reachable assertion in the lookup1_values function in stb_vorbis thr ...)
 	- libstb 0.0~git20190817.1.052dce1-1 (bug #934966)
diff --git a/data/DSA/list b/data/DSA/list
index 456dcc3817..ad5c58be7b 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1360,7 +1360,7 @@
 	[stretch] - bird 1.6.3-2+deb9u1
 	[buster] - bird 1.6.6-1+deb10u1
 [19 Sep 2019] DSA-4527-1 php7.3 - security update
-	{CVE-2019-11036 CVE-2019-11039 CVE-2019-11040 CVE-2019-11041 CVE-2019-11042}
+	{CVE-2019-11036 CVE-2019-11039 CVE-2019-11040 CVE-2019-11041 CVE-2019-11042 CVE-2019-13224}
 	[buster] - php7.3 7.3.9-1~deb10u1
 [19 Sep 2019] DSA-4526-1 opendmarc - security update
 	{CVE-2019-16378}
author	Sylvain Beucler <beuc@beuc.net>	2021-07-07 18:46:20 +0200
committer	Sylvain Beucler <beuc@beuc.net>	2021-07-07 18:51:47 +0200
commit	f7ec335c3f41a57b670d79689ad9b95df78fb5bc (patch)
tree	40ee7e684ff1acc6d265f82919e7d72774669820 /data
parent	1ce820249b0ac82650f46838faaeface3d9e3739 (diff)