Updated php packages fix security vulnerabilities

🗓️ 04 Apr 2014 12:08:18Reported by Gentoo FoundationType

mageia

mageia🔗 advisories.mageia.org👁 76 Views

Updated php packages fix security vulnerabilities related to file utility and libmagic librar

Reporter	Title	Published	Views	Family All 286
Tenable Nessus	Mac OS X 10.10.x < 10.10.3 Multiple Vulnerabilities	10 Apr 201900:00	–	nessus
Tenable Nessus	PHP 5.5.x < 5.5.10 Multiple Vulnerabilities	10 Mar 201400:00	–	nessus
Tenable Nessus	Mac OS X < 10.9.5 Multiple Vulnerabilities (Security Update 2014-004)	19 Sep 201400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : file (ALAS-2014-304)	18 Mar 201400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php54 (ALAS-2014-313)	28 Mar 201400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php55 (ALAS-2014-314)	28 Mar 201400:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php (ALAS-2014-393)	12 Oct 201400:00	–	nessus
Tenable Nessus	CentOS 5 / 6 : php / php53 (CESA-2014:1012)	7 Aug 201400:00	–	nessus
Tenable Nessus	CentOS 6 : file (CESA-2014:1606)	12 Nov 201400:00	–	nessus
Tenable Nessus	Debian DLA-145-1 : php5 security update	26 Mar 201500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Mageia	3	any	php	5.4.26-1	php-5.4.26-1.noarch.rpm
Mageia	3	any	php-apc	3.1.14-7.6	php-apc-3.1.14-7.6.noarch.rpm
Mageia	3	any	php-gd-bundled	5.4.26-1	php-gd-bundled-5.4.26-1.noarch.rpm
Mageia	3	any	php-timezonedb	2014.1-1	php-timezonedb-2014.1-1.noarch.rpm

Source	Link
php	www.php.net/ChangeLog-5.php
php	www.php.net/ChangeLog-5.php
php	www.php.net/ChangeLog-5.php
pecl	www.pecl.php.net/package-changelog.php
advisories	www.advisories.mageia.org/MGASA-2014-0092.html
advisories	www.advisories.mageia.org/MGASA-2014-0123.html
bugs	www.bugs.mageia.org/show_bug.cgi

04 Apr 2014 12:08Current

8.2High risk

Vulners AI Score8.2

CVSS 25

EPSS0.30772

php security vulnerabilities file utility libmagic library cve-2014-1943 cve-2014-2270 php 5.4.26 cve-2013-6712 timezonedb php-apc unix