Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mageiaGentoo FoundationMGASA-2015-0090
HistoryMar 04, 2015 - 12:16 a.m.

Updated php packages fix security vulnerabilities

2015-03-0400:16:02
Gentoo Foundation
advisories.mageia.org
18

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.955 High

EPSS

Percentile

99.4%

JSON

Updated php packages fix security vulnerabilities: It was discovered that the PHP opcache component incorrectly handled memory. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1351). It was discovered that the PHP PostgreSQL database extension incorrectly handled certain pointers. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1352). Use after free vulnerability in unserialize() with DateTimeZone in PHP before 5.5.22 (CVE-2015-0273). PHP has been updated to version 5.5.22, which fixes these issues and other bugs.

OSVersionArchitecturePackageVersionFilename
Mageia4noarchphp< 5.5.22-1.2php-5.5.22-1.2.mga4
Mageia4noarchphp-apc< 3.1.15-4.12php-apc-3.1.15-4.12.mga4

Related

openvas 42
nessus 56
fedora 5
archlinux 1
amazon 5
securityvulns 10
freebsd 2
f5 8
exploitpack 1
ubuntucve 4
prion 4
packetstorm 1
attackerkb 1
zdt 1
cve 4
checkpoint_advisories 1
exploitdb 1
ubuntu 2
suse 4
slackware 1
veracode 27
kaspersky 1
redhat 4
oraclelinux 6
osv 1
debian 1
gentoo 1
ibm 1
centos 2
rosalinux 1
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0090)
2022-01-28 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-510)
2015-09-08 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-511)
2015-09-08 00:00:00
nessus
nessus
Amazon Linux AMI : php56 (ALAS-2015-511)
2015-04-20 00:00:00
Fedora 21 : php-5.6.8-1.fc21 (2015-6407)
2015-04-24 00:00:00
Amazon Linux AMI : php55 (ALAS-2015-510)
2015-04-20 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: php-5.6.8-1.fc21
2015-04-23 16:11:13
[SECURITY] Fedora 22 Update: php-5.6.8-1.fc22
2015-04-22 22:52:07
[SECURITY] Fedora 20 Update: php-5.5.24-1.fc20
2015-04-27 08:39:40
archlinux
archlinux
php: multiple issues
2015-04-17 00:00:00
amazon
amazon
Low: php56
2015-04-17 12:04:00
Low: php55
2015-04-17 12:04:00
Critical: php54
2015-03-13 10:00:00
securityvulns
securityvulns
PHP multiple security vulnerabilities
2015-02-22 00:00:00
[USN-2501-1] PHP vulnerabilities
2015-02-22 00:00:00
[USN-2535-1] PHP vulnerabilities
2015-03-18 00:00:00
freebsd
freebsd
Several vulnerabilities found in PHP
2015-04-16 00:00:00
php5 -- multiple vulnerabilities
2015-02-18 00:00:00
f5
f5
SOL16336 - PHP vulnerability CVE-2015-0273
2015-04-02 00:00:00
K16976 : PHP vulnerability CVE-2015-1352
2015-07-16 00:00:00
SOL16976 - PHP vulnerability CVE-2015-1352
2015-07-16 00:00:00
exploitpack
exploitpack
PHP DateTime - Use-After-Free
2015-02-23 00:00:00
ubuntucve
ubuntucve
CVE-2015-0273
2015-02-23 00:00:00
CVE-2015-1351
2015-01-26 00:00:00
CVE-2015-1352
2015-01-26 00:00:00
prion
prion
Design/Logic Flaw
2015-03-30 10:59:00
Null pointer dereference
2015-03-30 10:59:00
Design/Logic Flaw
2015-03-30 10:59:00
packetstorm
packetstorm
PHP DateTime Use-After-Free
2015-02-20 00:00:00
attackerkb
attackerkb
CVE-2015-0273
2015-03-30 00:00:00
zdt
zdt
PHP DateTime Use After Free Vulnerability
2015-02-23 00:00:00
cve
cve
CVE-2015-1351
2015-03-30 10:59:00
CVE-2015-1352
2015-03-30 10:59:00
CVE-2015-0273
2015-03-30 10:59:00
checkpoint_advisories
checkpoint_advisories
PHP Date Time Object Unserialize Memory Corruption (CVE-2015-0273)
2015-03-08 00:00:00
exploitdb
exploitdb
PHP DateTime - Use-After-Free
2015-02-23 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2015-02-17 00:00:00
PHP vulnerabilities
2015-03-18 00:00:00
suse
suse
Security update for php5 (important)
2015-03-04 16:04:57
Security update for php5 (important)
2015-03-06 11:04:50
Security update for PHP 5.3 (important)
2015-03-05 21:04:56
slackware
slackware
[slackware-security] php
2015-04-22 01:22:40
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:39:23
Arbitrary File Write
2019-05-02 05:39:23
Denial Of Service (DoS)
2019-05-02 05:39:23
kaspersky
kaspersky
KLA10514 Multiple vulnerabilities in PHP and plugins
2015-03-30 00:00:00
redhat
redhat
(RHSA-2015:1053) Moderate: php55 security and bug fix update
2015-06-04 00:00:00
(RHSA-2015:1066) Important: php54 security and bug fix update
2015-06-04 00:00:00
(RHSA-2015:1218) Moderate: php security update
2015-07-09 00:00:00
oraclelinux
oraclelinux
php55 security and bug fix update
2016-02-04 00:00:00
php54-php security update
2016-02-04 00:00:00
php54 security and bug fix update
2016-02-04 00:00:00
osv
osv
php5 - security update
2015-03-18 00:00:00
debian
debian
[SECURITY] [DSA 3195-1] php5 security update
2015-03-18 11:56:46
gentoo
gentoo
PHP: Multiple vulnerabilities
2016-06-19 00:00:00
ibm
ibm
Security Bulletin: IBM Tealeaf Customer Experience PCA Web UI PHP security issues
2018-06-16 19:50:01
centos
centos
php security update
2015-07-09 19:23:41
php security update
2015-06-24 03:28:02
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.955 High

EPSS

Percentile

99.4%

JSON
Related for MGASA-2015-0090
openvas42nessus56fedora5archlinux1amazon5securityvulns10freebsd2f58exploitpack1ubuntucve4prion4packetstorm1attackerkb1zdt1cve4checkpoint_advisories1exploitdb1ubuntu2suse4slackware1veracode27kaspersky1redhat4oraclelinux6osv1debian1gentoo1ibm1centos2rosalinux1