{"id": "FEDORA_2015-4669.NASL", "bulletinFamily": "scanner", "title": "Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)", "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-04-07T00:00:00", "modified": "2015-10-19T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=82607", "reporter": "Tenable", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?9236b7a4"], "cvelist": ["CVE-2015-2331"], "type": "nessus", "lastseen": "2018-09-02T00:01:22", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:fedoraproject:fedora:mingw-libzip", "cpe:/o:fedoraproject:fedora:20"], "cvelist": ["CVE-2015-2331"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "82be99c86ea9a465990c5c71a35f9b2932132e55a3047ca5300337357eb9b721", "hashmap": [{"hash": "a879231a1cee5222a36abcf443d392ce", "key": "title"}, {"hash": "556c83bba2298f056418c3f9ce9da80e", "key": "published"}, {"hash": "3ab83d2addfe3a4814f0ebc812cbf39a", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "b245ff88c1ef673ebca53941fb4901a6", "key": "references"}, {"hash": "7bc857f88b800bff24378d5ec42dc74d", "key": "cpe"}, {"hash": "9a00910eeedb8c835c4637a953896665", "key": "modified"}, {"hash": "ec81948532ea8be7088ba17caaa244f4", "key": "pluginID"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "915da72cdfd5749a04cc5d3194461a21", "key": "description"}, {"hash": "201ecc025cebebcf8e88982a74a055cf", "key": "sourceData"}, {"hash": "3c7882a2e97e65763ecb130c704b5dca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=82607", "id": "FEDORA_2015-4669.NASL", "lastseen": "2018-08-30T19:52:24", "modified": "2015-10-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "82607", "published": "2015-04-07T00:00:00", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?9236b7a4"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82607);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4669\");\n\n script_name(english:\"Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9236b7a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"mingw-libzip-0.11.2-3.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "title": "Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:52:24"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:fedoraproject:fedora:mingw-libzip", "cpe:/o:fedoraproject:fedora:20"], "cvelist": ["CVE-2015-2331"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "1cbfcbbd6f29cb9c1b7b7744354bdafe792cfcbe519674cf9791e416ab6734c7", "hashmap": [{"hash": "a879231a1cee5222a36abcf443d392ce", "key": "title"}, {"hash": "556c83bba2298f056418c3f9ce9da80e", "key": "published"}, {"hash": "3ab83d2addfe3a4814f0ebc812cbf39a", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "b245ff88c1ef673ebca53941fb4901a6", "key": "references"}, {"hash": "7bc857f88b800bff24378d5ec42dc74d", "key": "cpe"}, {"hash": "9a00910eeedb8c835c4637a953896665", "key": "modified"}, {"hash": "ec81948532ea8be7088ba17caaa244f4", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "915da72cdfd5749a04cc5d3194461a21", "key": "description"}, {"hash": "201ecc025cebebcf8e88982a74a055cf", "key": "sourceData"}, {"hash": "3c7882a2e97e65763ecb130c704b5dca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=82607", "id": "FEDORA_2015-4669.NASL", "lastseen": "2017-10-29T13:42:49", "modified": "2015-10-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "82607", "published": "2015-04-07T00:00:00", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?9236b7a4"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82607);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4669\");\n\n script_name(english:\"Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9236b7a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"mingw-libzip-0.11.2-3.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "title": "Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)", "type": "nessus", "viewCount": 1}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2017-10-29T13:42:49"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2015-2331"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "enchantments": {}, "hash": "3ff5c5c60eaa73b4732d8672263be493964b7431c46199cae6f73cf1c8423feb", "hashmap": [{"hash": "a879231a1cee5222a36abcf443d392ce", "key": "title"}, {"hash": "556c83bba2298f056418c3f9ce9da80e", "key": "published"}, {"hash": "3ab83d2addfe3a4814f0ebc812cbf39a", "key": "href"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "b245ff88c1ef673ebca53941fb4901a6", "key": "references"}, {"hash": "9a00910eeedb8c835c4637a953896665", "key": "modified"}, {"hash": "ec81948532ea8be7088ba17caaa244f4", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "915da72cdfd5749a04cc5d3194461a21", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}, {"hash": "201ecc025cebebcf8e88982a74a055cf", "key": "sourceData"}, {"hash": "3c7882a2e97e65763ecb130c704b5dca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=82607", "id": "FEDORA_2015-4669.NASL", "lastseen": "2016-09-26T17:25:54", "modified": "2015-10-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.2", "pluginID": "82607", "published": "2015-04-07T00:00:00", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?9236b7a4"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82607);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4669\");\n\n script_name(english:\"Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9236b7a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"mingw-libzip-0.11.2-3.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "title": "Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)", "type": "nessus", "viewCount": 1}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:25:54"}], "edition": 4, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "7bc857f88b800bff24378d5ec42dc74d"}, {"key": "cvelist", "hash": "3c7882a2e97e65763ecb130c704b5dca"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "915da72cdfd5749a04cc5d3194461a21"}, {"key": "href", "hash": "3ab83d2addfe3a4814f0ebc812cbf39a"}, {"key": "modified", "hash": "9a00910eeedb8c835c4637a953896665"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "ec81948532ea8be7088ba17caaa244f4"}, {"key": "published", "hash": "556c83bba2298f056418c3f9ce9da80e"}, {"key": "references", "hash": "b245ff88c1ef673ebca53941fb4901a6"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "201ecc025cebebcf8e88982a74a055cf"}, {"key": "title", "hash": "a879231a1cee5222a36abcf443d392ce"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "1cbfcbbd6f29cb9c1b7b7744354bdafe792cfcbe519674cf9791e416ab6734c7", "viewCount": 1, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}, "vulnersScore": 2.1}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82607);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4669\");\n\n script_name(english:\"Fedora 20 : mingw-libzip-0.11.2-3.fc20 (2015-4669)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9236b7a4\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"mingw-libzip-0.11.2-3.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "82607", "cpe": ["p-cpe:/a:fedoraproject:fedora:mingw-libzip", "cpe:/o:fedoraproject:fedora:20"]}

{"cve": [{"lastseen": "2018-11-01T05:15:03", "references": ["http://php.net/ChangeLog-5.php", "https://support.apple.com/HT205267", "http://www.debian.org/security/2015/dsa-3198", "http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html", "http://www.securitytracker.com/id/1031985", "http://marc.info/?l=bugtraq&m=143748090628601&w=2", "http://marc.info/?l=bugtraq&m=143403519711434&w=2", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html", "http://marc.info/?l=bugtraq&m=144050155601375&w=2", "http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html", "http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html", "http://hg.nih.at/libzip/rev/9f11d54f692e", "https://bugs.php.net/bug.php?id=69253", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html", "http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.html", "http://git.php.net/?p=php-src.git;a=commit;h=ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html", "http://lists.opensuse.org/opensuse-updates/2015-03/msg00083.html", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2015:079", "http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html"], "description": "Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ZIP archive that contains many entries, leading to a heap-based buffer overflow.", "edition": 3, "reporter": "NVD", "published": "2015-03-30T06:59:12", "title": "CVE-2015-2331", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2015-2331"], "scanner": [], "modified": "2018-10-30T12:27:35", "cpe": ["cpe:/a:php:php:5.5.15", "cpe:/a:php:php:5.5.10", "cpe:/a:php:php:5.5.0:beta3", "cpe:/a:php:php:5.5.0:beta4", "cpe:/a:php:php:5.5.12", "cpe:/a:php:php:5.6.0:alpha3", "cpe:/a:php:php:5.6.3", "cpe:/a:php:php:5.6.1", "cpe:/a:php:php:5.5.0:alpha5", "cpe:/o:opensuse:opensuse:13.1", "cpe:/a:php:php:5.5.0:rc2", "cpe:/a:php:php:5.4.38", "cpe:/a:php:php:5.5.21", "cpe:/a:php:php:5.5.13", "cpe:/a:php:php:5.5.20", "cpe:/a:php:php:5.5.4", "cpe:/a:php:php:5.5.0:beta2", "cpe:/a:php:php:5.5.7", "cpe:/a:php:php:5.6.0:beta3", "cpe:/a:php:php:5.6.0:beta4", "cpe:/a:php:php:5.6.0:alpha5", "cpe:/a:php:php:5.6.0:beta1", "cpe:/a:php:php:5.6.4", "cpe:/a:php:php:5.5.19", "cpe:/o:opensuse:opensuse:13.2", "cpe:/a:php:php:5.5.3", "cpe:/a:php:php:5.5.18", "cpe:/a:php:php:5.5.0:rc1", "cpe:/a:php:php:5.5.0:alpha6", "cpe:/a:php:php:5.5.16", "cpe:/a:php:php:5.5.0:alpha4", "cpe:/a:php:php:5.5.0", "cpe:/a:php:php:5.6.0:alpha1", "cpe:/a:php:php:5.5.1", "cpe:/a:php:php:5.5.0:beta1", "cpe:/a:php:php:5.5.22", "cpe:/o:debian:debian_linux:7.0", "cpe:/a:php:php:5.5.0:alpha2", "cpe:/a:php:php:5.6.6", "cpe:/a:nih:libzip:0.11.2", "cpe:/a:php:php:5.5.0:alpha1", "cpe:/o:fedoraproject:fedora:22", "cpe:/a:php:php:5.6.0:alpha2", "cpe:/a:php:php:5.5.5", "cpe:/a:php:php:5.5.17", "cpe:/a:php:php:5.5.2", "cpe:/a:php:php:5.6.5", "cpe:/a:php:php:5.5.8", "cpe:/a:php:php:5.5.11", "cpe:/a:php:php:5.5.6", "cpe:/a:php:php:5.6.0:beta2", "cpe:/a:php:php:5.5.0:alpha3", "cpe:/a:php:php:5.5.14", "cpe:/a:php:php:5.6.0:alpha4", "cpe:/a:php:php:5.5.9", "cpe:/a:php:php:5.6.2"], "id": "CVE-2015-2331", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2331", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "f5": [{"lastseen": "2016-09-26T17:23:03", "references": ["https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html", "https://support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "Recommended Action\n\nNone \n\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n", "reporter": "f5", "published": "2015-06-08T00:00:00", "title": "SOL16714 - PHP vulnerabilities CVE-2015-2301 and CVE-2015-2331", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2015-06-08T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/16000/700/sol16714.html", "id": "SOL16714", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:38:37", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?420bb415"], "pluginID": "82550", "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-04-03T00:00:00", "title": "Fedora 22 : mingw-libzip-0.11.2-3.fc22 (2015-4559)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2016-05-20T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:mingw-libzip", "cpe:/o:fedoraproject:fedora:22"], "id": "FEDORA_2015-4559.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82550", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4559.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82550);\n script_version(\"$Revision: 1.10 $\");\n script_cvs_date(\"$Date: 2016/05/20 14:02:59 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_bugtraq_id(73182);\n script_xref(name:\"FEDORA\", value:\"2015-4559\");\n\n script_name(english:\"Fedora 22 : mingw-libzip-0.11.2-3.fc22 (2015-4559)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?420bb415\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:22\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/03\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^22([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 22.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC22\", reference:\"mingw-libzip-0.11.2-3.fc22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:54:02", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?7c40f118"], "pluginID": "82604", "description": "Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-04-07T00:00:00", "title": "Fedora 21 : mingw-libzip-0.11.2-3.fc21 (2015-4565)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:21", "p-cpe:/a:fedoraproject:fedora:mingw-libzip"], "id": "FEDORA_2015-4565.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82604", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4565.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82604);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4565\");\n\n script_name(english:\"Fedora 21 : mingw-libzip-0.11.2-3.fc21 (2015-4565)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Security fix for CVE-2015-2331.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?7c40f118\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected mingw-libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:mingw-libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:21\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/07\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^21([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 21.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC21\", reference:\"mingw-libzip-0.11.2-3.fc21\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"mingw-libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:50:13", "references": ["http://www.nessus.org/u?464b4d4e", "https://bugzilla.redhat.com/show_bug.cgi?id=1204676"], "pluginID": "82937", "description": "CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-04-22T00:00:00", "title": "Fedora 20 : libzip-0.11.2-5.fc20 (2015-4556)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:20", "p-cpe:/a:fedoraproject:fedora:libzip"], "id": "FEDORA_2015-4556.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82937", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4556.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82937);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4556\");\n\n script_name(english:\"Fedora 20 : libzip-0.11.2-5.fc20 (2015-4556)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"CVE-2015-2331: integer overflow when processing ZIP archives\n(#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?464b4d4e\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:20\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^20([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 20.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC20\", reference:\"libzip-0.11.2-5.fc20\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:19", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=923240"], "pluginID": "82423", "description": "Libzip was updated to fix one security issue.\n\nA zip file with an unusually large number of entries could have caused an integer overflow leading to a write past the heap boundary, crashing the application. (CVE-2015-2331 bnc#923240)", "edition": 4, "reporter": "Tenable", "published": "2015-03-30T00:00:00", "title": "openSUSE Security Update : libzip (openSUSE-2015-265)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2015-10-05T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libzip", "p-cpe:/a:novell:opensuse:libzip2-debuginfo", "p-cpe:/a:novell:opensuse:libzip2-debuginfo-32bit", "p-cpe:/a:novell:opensuse:libzip-devel", "p-cpe:/a:novell:opensuse:libzip2", "p-cpe:/a:novell:opensuse:libzip-debuginfo", "cpe:/o:novell:opensuse:13.2", "p-cpe:/a:novell:opensuse:libzip-debugsource", "p-cpe:/a:novell:opensuse:libzip2-32bit", "cpe:/o:novell:opensuse:13.1"], "id": "OPENSUSE-2015-265.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82423", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2015-265.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82423);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/05 13:44:22 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n\n script_name(english:\"openSUSE Security Update : libzip (openSUSE-2015-265)\");\n script_summary(english:\"Check for the openSUSE-2015-265 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Libzip was updated to fix one security issue.\n\nA zip file with an unusually large number of entries could have caused\nan integer overflow leading to a write past the heap boundary,\ncrashing the application. (CVE-2015-2331 bnc#923240)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=923240\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libzip packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip2-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libzip2-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE13\\.1|SUSE13\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"13.1 / 13.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip-debuginfo-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip-debugsource-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip-devel-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip2-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libzip2-debuginfo-0.11.2-3.8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip-debuginfo-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip-debugsource-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip-devel-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip2-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libzip2-debuginfo-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libzip2-32bit-0.11.2-3.4.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libzip2-debuginfo-32bit-0.11.2-3.4.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libzip / libzip-debuginfo / libzip-debugsource / libzip-devel / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:43", "references": ["http://www.nessus.org/u?6b353b56", "https://bugzilla.redhat.com/show_bug.cgi?id=1204676"], "pluginID": "82942", "description": "CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-04-22T00:00:00", "title": "Fedora 21 : libzip-0.11.2-5.fc21 (2015-4699)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:21", "p-cpe:/a:fedoraproject:fedora:libzip"], "id": "FEDORA_2015-4699.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82942", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4699.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82942);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4699\");\n\n script_name(english:\"Fedora 21 : libzip-0.11.2-5.fc21 (2015-4699)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"CVE-2015-2331: integer overflow when processing ZIP archives\n(#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?6b353b56\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:21\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^21([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 21.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC21\", reference:\"libzip-0.11.2-5.fc21\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-30T07:25:35", "references": ["http://www.nessus.org/u?527e5452", "https://bugzilla.suse.com/show_bug.cgi?id=923240", "https://www.suse.com/security/cve/CVE-2015-2331/"], "pluginID": "83711", "description": "Libzip was updated to fix one security issue.\n\nA zip file with an unusually large number of entries could have caused an integer overflow leading to a write past the heap boundary, crashing the application. (CVE-2015-2331 bnc#923240)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2015-05-20T00:00:00", "title": "SUSE SLED12 / SLES12 Security Update : libzip (SUSE-SU-2015:0668-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2018-11-29T00:00:00", "cpe": ["p-cpe:/a:novell:suse_linux:libzip-debuginfo", "cpe:/o:novell:suse_linux:12", "p-cpe:/a:novell:suse_linux:libzip-debugsource", "p-cpe:/a:novell:suse_linux:libzip2", "p-cpe:/a:novell:suse_linux:libzip2-debuginfo"], "id": "SUSE_SU-2015-0668-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83711", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2015:0668-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83711);\n script_version(\"2.11\");\n script_cvs_date(\"Date: 2018/11/29 12:03:38\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_bugtraq_id(73182);\n\n script_name(english:\"SUSE SLED12 / SLES12 Security Update : libzip (SUSE-SU-2015:0668-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Libzip was updated to fix one security issue.\n\nA zip file with an unusually large number of entries could have caused\nan integer overflow leading to a write past the heap boundary,\ncrashing the application. (CVE-2015-2331 bnc#923240)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/show_bug.cgi?id=923240\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-2331/\"\n );\n # https://www.suse.com/support/update/announcement/2015/suse-su-20150668-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?527e5452\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 12 :\n\nzypper in -t patch SUSE-SLE-SDK-12-2015-154=1\n\nSUSE Linux Enterprise Server 12 :\n\nzypper in -t patch SUSE-SLE-SERVER-12-2015-154=1\n\nSUSE Linux Enterprise Desktop 12 :\n\nzypper in -t patch SUSE-SLE-DESKTOP-12-2015-154=1\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libzip-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libzip-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libzip2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libzip2-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:12\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLED12|SLES12)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLED12 / SLES12\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES12\" && (! ereg(pattern:\"^(0)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES12 SP0\", os_ver + \" SP\" + sp);\nif (os_ver == \"SLED12\" && (! ereg(pattern:\"^(0)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLED12 SP0\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"libzip-debuginfo-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"libzip-debugsource-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"libzip2-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLES12\", sp:\"0\", reference:\"libzip2-debuginfo-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"0\", cpu:\"x86_64\", reference:\"libzip-debuginfo-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"0\", cpu:\"x86_64\", reference:\"libzip-debugsource-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"0\", cpu:\"x86_64\", reference:\"libzip2-0.11.1-6.1\")) flag++;\nif (rpm_check(release:\"SLED12\", sp:\"0\", cpu:\"x86_64\", reference:\"libzip2-debuginfo-0.11.1-6.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:54:00", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=1204676", "http://www.nessus.org/u?b3713fc6"], "pluginID": "82840", "description": "CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-04-17T00:00:00", "title": "Fedora 22 : libzip-0.11.2-5.fc22 (2015-4553)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:22", "p-cpe:/a:fedoraproject:fedora:libzip"], "id": "FEDORA_2015-4553.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82840", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-4553.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82840);\n script_version(\"$Revision: 1.8 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:06:18 $\");\n\n script_cve_id(\"CVE-2015-2331\");\n script_xref(name:\"FEDORA\", value:\"2015-4553\");\n\n script_name(english:\"Fedora 22 : libzip-0.11.2-5.fc22 (2015-4553)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"CVE-2015-2331: integer overflow when processing ZIP archives\n(#1204676,#1204677)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1204676\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b3713fc6\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libzip package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:22\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^22([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 22.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC22\", reference:\"libzip-0.11.2-5.fc22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libzip\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-13T16:54:58", "references": ["http://www.nessus.org/u?ef60d0c2", "http://www.nessus.org/u?81d0b92a", "http://hg.nih.at/libzip/rev/9f11d54f692e", "https://bugs.php.net/bug.php?id=69253"], "pluginID": "82313", "description": "libzip developers report :\n\nAvoid integer overflow. Fixed similarly to patch used in PHP copy of libzip.", "edition": 5, "reporter": "Tenable", "published": "2015-03-30T00:00:00", "title": "FreeBSD : libzip -- integer overflow (264749ae-d565-11e4-b545-00269ee29e57)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:freebsd:freebsd:openlierox", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:libzip", "p-cpe:/a:freebsd:freebsd:radare2", "p-cpe:/a:freebsd:freebsd:ppsspp-devel", "p-cpe:/a:freebsd:freebsd:ppsspp"], "id": "FREEBSD_PKG_264749AED56511E4B54500269EE29E57.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82313", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82313);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/11/10 11:49:44\");\n\n script_cve_id(\"CVE-2015-2331\");\n\n script_name(english:\"FreeBSD : libzip -- integer overflow (264749ae-d565-11e4-b545-00269ee29e57)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"libzip developers report :\n\nAvoid integer overflow. Fixed similarly to patch used in PHP copy of\nlibzip.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugs.php.net/bug.php?id=69253\"\n );\n # https://github.com/php/php-src/commit/ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?81d0b92a\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://hg.nih.at/libzip/rev/9f11d54f692e\"\n );\n # https://vuxml.freebsd.org/freebsd/264749ae-d565-11e4-b545-00269ee29e57.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ef60d0c2\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:libzip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:openlierox\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:ppsspp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:ppsspp-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:radare2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2015/03/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/28\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"libzip<0.11.2_2\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"ppsspp<1.0.1_5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"ppsspp-devel<1.0.1.2668_1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"radare2<0.9.8_1\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"openlierox<0.58.r3_5,1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:56:10", "references": ["https://alas.aws.amazon.com/ALAS-2015-507.html"], "pluginID": "82835", "description": "A use-after-free flaw was found in the way PHP's unserialize() function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code.\n(CVE-2015-0231)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is also embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code.\n(CVE-2015-2331)\n\nInteger overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.\n(CVE-2015-2305)", "edition": 5, "reporter": "Tenable", "published": "2015-04-17T00:00:00", "title": "Amazon Linux AMI : php55 (ALAS-2015-507)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Amazon Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2018-04-18T00:00:00", "cpe": ["p-cpe:/a:amazon:linux:php55-debuginfo", "p-cpe:/a:amazon:linux:php55-mssql", "p-cpe:/a:amazon:linux:php55-fpm", "p-cpe:/a:amazon:linux:php55-pspell", "p-cpe:/a:amazon:linux:php55", "p-cpe:/a:amazon:linux:php55-tidy", "p-cpe:/a:amazon:linux:php55-opcache", "p-cpe:/a:amazon:linux:php55-gd", "p-cpe:/a:amazon:linux:php55-odbc", "p-cpe:/a:amazon:linux:php55-mcrypt", "p-cpe:/a:amazon:linux:php55-recode", "p-cpe:/a:amazon:linux:php55-embedded", "p-cpe:/a:amazon:linux:php55-gmp", "p-cpe:/a:amazon:linux:php55-mbstring", "p-cpe:/a:amazon:linux:php55-pdo", "p-cpe:/a:amazon:linux:php55-cli", "p-cpe:/a:amazon:linux:php55-soap", "p-cpe:/a:amazon:linux:php55-imap", "p-cpe:/a:amazon:linux:php55-dba", "p-cpe:/a:amazon:linux:php55-xml", "p-cpe:/a:amazon:linux:php55-devel", "p-cpe:/a:amazon:linux:php55-intl", "p-cpe:/a:amazon:linux:php55-common", "p-cpe:/a:amazon:linux:php55-enchant", "p-cpe:/a:amazon:linux:php55-pgsql", "p-cpe:/a:amazon:linux:php55-process", "p-cpe:/a:amazon:linux:php55-snmp", "p-cpe:/a:amazon:linux:php55-xmlrpc", "p-cpe:/a:amazon:linux:php55-ldap", "p-cpe:/a:amazon:linux:php55-bcmath", "cpe:/o:amazon:linux", "p-cpe:/a:amazon:linux:php55-mysqlnd"], "id": "ALA_ALAS-2015-507.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82835", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2015-507.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82835);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/04/18 15:09:35\");\n\n script_cve_id(\"CVE-2015-0231\", \"CVE-2015-2305\", \"CVE-2015-2331\");\n script_xref(name:\"ALAS\", value:\"2015-507\");\n\n script_name(english:\"Amazon Linux AMI : php55 (ALAS-2015-507)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A use-after-free flaw was found in the way PHP's unserialize()\nfunction processed data. If a remote attacker was able to pass crafted\ninput to PHP's unserialize() function, they could cause the PHP\ninterpreter to crash or, possibly, execute arbitrary code.\n(CVE-2015-0231)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the way libzip, which is also embedded in PHP, processed\ncertain ZIP archives. If an attacker were able to supply a specially\ncrafted ZIP archive to an application using libzip, it could cause the\napplication to crash or, possibly, execute arbitrary code.\n(CVE-2015-2331)\n\nInteger overflow in the regcomp implementation in the Henry Spencer\nBSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as\nused in NetBSD through 6.1.5 and other products, might allow\ncontext-dependent attackers to execute arbitrary code via a large\nregular expression that leads to a heap-based buffer overflow.\n(CVE-2015-2305)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2015-507.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update php55' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-embedded\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-enchant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-fpm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-intl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-mssql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-mysqlnd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-opcache\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-process\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-recode\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-tidy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-xml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php55-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"php55-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-bcmath-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-cli-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-common-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-dba-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-debuginfo-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-devel-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-embedded-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-enchant-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-fpm-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-gd-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-gmp-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-imap-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-intl-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-ldap-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-mbstring-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-mcrypt-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-mssql-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-mysqlnd-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-odbc-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-opcache-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-pdo-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-pgsql-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-process-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-pspell-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-recode-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-snmp-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-soap-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-tidy-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-xml-5.5.23-1.99.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php55-xmlrpc-5.5.23-1.99.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php55 / php55-bcmath / php55-cli / php55-common / php55-dba / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:59:02", "references": ["https://alas.aws.amazon.com/ALAS-2015-508.html"], "pluginID": "82836", "description": "A use-after-free flaw was found in the way PHP's unserialize() function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code.\n(CVE-2015-0231)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is also embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code.\n(CVE-2015-2331)\n\nInteger overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.\n(CVE-2015-2305)", "edition": 5, "reporter": "Tenable", "published": "2015-04-17T00:00:00", "title": "Amazon Linux AMI : php56 (ALAS-2015-508)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Amazon Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2018-04-18T00:00:00", "cpe": ["p-cpe:/a:amazon:linux:php56-embedded", "p-cpe:/a:amazon:linux:php56-devel", "p-cpe:/a:amazon:linux:php56-opcache", "p-cpe:/a:amazon:linux:php56-debuginfo", "p-cpe:/a:amazon:linux:php56-gmp", "p-cpe:/a:amazon:linux:php56-ldap", "p-cpe:/a:amazon:linux:php56-dbg", "p-cpe:/a:amazon:linux:php56-xml", "p-cpe:/a:amazon:linux:php56-tidy", "p-cpe:/a:amazon:linux:php56-cli", "p-cpe:/a:amazon:linux:php56-fpm", "p-cpe:/a:amazon:linux:php56-bcmath", "p-cpe:/a:amazon:linux:php56-snmp", "p-cpe:/a:amazon:linux:php56-mcrypt", "p-cpe:/a:amazon:linux:php56", "p-cpe:/a:amazon:linux:php56-xmlrpc", "p-cpe:/a:amazon:linux:php56-mssql", "p-cpe:/a:amazon:linux:php56-process", "p-cpe:/a:amazon:linux:php56-imap", "p-cpe:/a:amazon:linux:php56-pspell", "p-cpe:/a:amazon:linux:php56-intl", "p-cpe:/a:amazon:linux:php56-soap", "p-cpe:/a:amazon:linux:php56-mbstring", "p-cpe:/a:amazon:linux:php56-enchant", "p-cpe:/a:amazon:linux:php56-common", "p-cpe:/a:amazon:linux:php56-pgsql", "p-cpe:/a:amazon:linux:php56-pdo", "p-cpe:/a:amazon:linux:php56-mysqlnd", "p-cpe:/a:amazon:linux:php56-gd", "cpe:/o:amazon:linux", "p-cpe:/a:amazon:linux:php56-recode", "p-cpe:/a:amazon:linux:php56-odbc", "p-cpe:/a:amazon:linux:php56-dba"], "id": "ALA_ALAS-2015-508.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=82836", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2015-508.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82836);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2018/04/18 15:09:35\");\n\n script_cve_id(\"CVE-2015-0231\", \"CVE-2015-2305\", \"CVE-2015-2331\");\n script_xref(name:\"ALAS\", value:\"2015-508\");\n\n script_name(english:\"Amazon Linux AMI : php56 (ALAS-2015-508)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A use-after-free flaw was found in the way PHP's unserialize()\nfunction processed data. If a remote attacker was able to pass crafted\ninput to PHP's unserialize() function, they could cause the PHP\ninterpreter to crash or, possibly, execute arbitrary code.\n(CVE-2015-0231)\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was\nfound in the way libzip, which is also embedded in PHP, processed\ncertain ZIP archives. If an attacker were able to supply a specially\ncrafted ZIP archive to an application using libzip, it could cause the\napplication to crash or, possibly, execute arbitrary code.\n(CVE-2015-2331)\n\nInteger overflow in the regcomp implementation in the Henry Spencer\nBSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as\nused in NetBSD through 6.1.5 and other products, might allow\ncontext-dependent attackers to execute arbitrary code via a large\nregular expression that leads to a heap-based buffer overflow.\n(CVE-2015-2305)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2015-508.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update php56' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-embedded\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-enchant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-fpm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-intl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-mssql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-mysqlnd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-opcache\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-process\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-recode\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-tidy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-xml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:php56-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"php56-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-bcmath-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-cli-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-common-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-dba-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-dbg-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-debuginfo-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-devel-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-embedded-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-enchant-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-fpm-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-gd-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-gmp-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-imap-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-intl-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-ldap-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-mbstring-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-mcrypt-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-mssql-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-mysqlnd-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-odbc-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-opcache-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-pdo-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-pgsql-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-process-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-pspell-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-recode-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-snmp-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-soap-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-tidy-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-xml-5.6.7-1.110.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"php56-xmlrpc-5.6.7-1.110.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php56 / php56-bcmath / php56-cli / php56-common / php56-dba / etc\");\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "archlinux": [{"lastseen": "2016-09-02T18:44:36", "references": ["https://www.rapid7.com/db/vulnerabilities/debian-DSA-3198", "https://security-tracker.debian.org/tracker/CVE-2015-2331", "https://bugs.php.net/bug.php?id=69253", "https://marc.info/?s=CVE-2015-2331&amp;l=oss-security", "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-2331"], "affectedPackage": [{"OS": "any", "OSVersion": "any", "packageVersion": "5.6.7-1", "packageName": "php", "arch": "any", "packageFilename": "UNKNOWN", "operator": "lt"}], "edition": 1, "description": "An integer overflow flaw, leading to a heap-based buffer overflow, was found in\nthe way libzip, which is embedded in PHP, processed certain ZIP archives. If an\nattacker were able to supply a specially crafted ZIP archive to an application\nusing libzip, it could cause the application to crash or, possibly, execute\narbitrary code.", "reporter": "Arch Linux", "published": "2015-03-28T00:00:00", "title": "php: integer overflow", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "archlinux", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2331"], "modified": "2015-03-28T00:00:00", "href": "https://lists.archlinux.org/pipermail/arch-security/2015-March/000266.html", "id": "ASA-201503-25", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "openvas": [{"lastseen": "2018-09-01T23:50:17", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html", "2015-4565"], "pluginID": "1361412562310869184", "description": "Check the version of mingw-libzip", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-04-06T00:00:00", "title": "Fedora Update for mingw-libzip FEDORA-2015-4565", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869184", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869184", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for mingw-libzip FEDORA-2015-4565\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869184\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-06 07:17:55 +0200 (Mon, 06 Apr 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for mingw-libzip FEDORA-2015-4565\");\n script_tag(name: \"summary\", value: \"Check the version of mingw-libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating,\nand modifying zip archives. Files can be added from data buffers, files, or\ncompressed data copied directly from other zip archives. Changes made without\nclosing the archive can be reverted. The API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"mingw-libzip on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4565\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"mingw-libzip\", rpm:\"mingw-libzip~0.11.2~3.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:52:01", "references": ["2015-4699", "https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html"], "pluginID": "1361412562310869272", "description": "Check the version of libzip", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-04-22T00:00:00", "title": "Fedora Update for libzip FEDORA-2015-4699", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869272", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869272", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for libzip FEDORA-2015-4699\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869272\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-22 07:21:12 +0200 (Wed, 22 Apr 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libzip FEDORA-2015-4699\");\n script_tag(name: \"summary\", value: \"Check the version of libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating, and modifying zip archives. Files\ncan be added from data buffers, files, or compressed data copied directly from\nother zip archives. Changes made without closing the archive can be reverted.\nThe API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"libzip on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4699\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"libzip\", rpm:\"libzip~0.11.2~5.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:50:49", "references": ["2015-4553", "https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html"], "pluginID": "1361412562310869549", "description": "Check the version of libzip", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-07-07T00:00:00", "title": "Fedora Update for libzip FEDORA-2015-4553", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869549", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869549", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for libzip FEDORA-2015-4553\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869549\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:24:46 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libzip FEDORA-2015-4553\");\n script_tag(name: \"summary\", value: \"Check the version of libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating, and modifying zip archives. Files\ncan be added from data buffers, files, or compressed data copied directly from\nother zip archives. Changes made without closing the archive can be reverted.\nThe API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"libzip on Fedora 22\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4553\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"libzip\", rpm:\"libzip~0.11.2~5.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:52:25", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html", "2015-4559"], "pluginID": "1361412562310869509", "description": "Check the version of mingw-libzip", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-07-07T00:00:00", "title": "Fedora Update for mingw-libzip FEDORA-2015-4559", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869509", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869509", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for mingw-libzip FEDORA-2015-4559\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869509\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:20:55 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for mingw-libzip FEDORA-2015-4559\");\n script_tag(name: \"summary\", value: \"Check the version of mingw-libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating, and modifying zip archives. Files\ncan be added from data buffers, files, or compressed data copied directly from\nother zip archives. Changes made without closing the archive can be reverted.\nThe API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"mingw-libzip on Fedora 22\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4559\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"mingw-libzip\", rpm:\"mingw-libzip~0.11.2~3.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:48", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html", "2015-4556"], "pluginID": "1361412562310869274", "description": "Check the version of libzip", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-04-22T00:00:00", "title": "Fedora Update for libzip FEDORA-2015-4556", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869274", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869274", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for libzip FEDORA-2015-4556\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869274\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-22 07:21:19 +0200 (Wed, 22 Apr 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libzip FEDORA-2015-4556\");\n script_tag(name: \"summary\", value: \"Check the version of libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating, and modifying zip archives. Files\ncan be added from data buffers, files, or compressed data copied directly from\nother zip archives. Changes made without closing the archive can be reverted.\nThe API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"libzip on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4556\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"libzip\", rpm:\"libzip~0.11.2~5.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:25", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html", "2015-4669"], "pluginID": "1361412562310869180", "description": "Check the version of mingw-libzip", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-04-06T00:00:00", "title": "Fedora Update for mingw-libzip FEDORA-2015-4669", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2331"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869180", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869180", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for mingw-libzip FEDORA-2015-4669\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869180\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-06 07:17:32 +0200 (Mon, 06 Apr 2015)\");\n script_cve_id(\"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for mingw-libzip FEDORA-2015-4669\");\n script_tag(name: \"summary\", value: \"Check the version of mingw-libzip\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"libzip is a C library for reading, creating,\nand modifying zip archives. Files can be added from data buffers, files, or\ncompressed data copied directly from other zip archives. Changes made without\nclosing the archive can be reverted. The API is documented by man pages.\n\");\n script_tag(name: \"affected\", value: \"mingw-libzip on Fedora 20\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4669\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC20\")\n{\n\n if ((res = isrpmvuln(pkg:\"mingw-libzip\", rpm:\"mingw-libzip~0.11.2~3.fc20\", rls:\"FC20\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:53:00", "references": ["http://www.debian.org/security/2015/dsa-3198.html"], "pluginID": "703198", "description": "Multiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301 \nUse-after-free in the phar extension.\n\nCVE-2015-2331 \nEmmanuel Law discovered an integer overflow in the processing\nof ZIP archives, resulting in denial of service or potentially\nthe execution of arbitrary code.", "edition": 3, "reporter": "Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net", "published": "2015-03-20T00:00:00", "title": "Debian Security Advisory DSA 3198-1 (php5 - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703198", "id": "OPENVAS:703198", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3198.nasl 6609 2017-07-07 12:05:59Z cfischer $\n# Auto-generated from advisory DSA 3198-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703198);\n script_version(\"$Revision: 6609 $\");\n script_cve_id(\"CVE-2015-2301\", \"CVE-2015-2331\");\n script_name(\"Debian Security Advisory DSA 3198-1 (php5 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-07 14:05:59 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2015-03-20 00:00:00 +0100 (Fri, 20 Mar 2015)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3198.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"php5 on Debian Linux\");\n script_tag(name: \"insight\", value: \"This package is a metapackage that, when installed, guarantees that you\nhave at least one of the four server-side versions of the PHP5 interpreter\ninstalled. Removing this package won't remove PHP5 from your system, however\nit may remove other packages that depend on this one.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (wheezy), these problems have been fixed in\nversion 5.4.39-0+deb7u1. This update also fixes a regression in the\ncurl support introduced in DSA 3195.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your php5 packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301 \nUse-after-free in the phar extension.\n\nCVE-2015-2331 \nEmmanuel Law discovered an integer overflow in the processing\nof ZIP archives, resulting in denial of service or potentially\nthe execution of arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libapache2-mod-php5\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libapache2-mod-php5filter\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libphp5-embed\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php-pear\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-cgi\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-cli\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-common\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-curl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-dbg\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-dev\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-enchant\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-fpm\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-gd\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-gmp\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-imap\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-interbase\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-intl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-ldap\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mcrypt\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mysql\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mysqlnd\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-odbc\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-pgsql\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-pspell\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-recode\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-snmp\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-sqlite\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-sybase\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-tidy\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-xmlrpc\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-xsl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:50:59", "references": ["http://www.debian.org/security/2015/dsa-3198.html"], "pluginID": "1361412562310703198", "description": "Multiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301 \nUse-after-free in the phar extension.\n\nCVE-2015-2331 \nEmmanuel Law discovered an integer overflow in the processing\nof ZIP archives, resulting in denial of service or potentially\nthe execution of arbitrary code.", "edition": 3, "reporter": "Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net", "published": "2015-03-20T00:00:00", "title": "Debian Security Advisory DSA 3198-1 (php5 - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310703198", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703198", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3198.nasl 9355 2018-04-06 07:16:07Z cfischer $\n# Auto-generated from advisory DSA 3198-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703198\");\n script_version(\"$Revision: 9355 $\");\n script_cve_id(\"CVE-2015-2301\", \"CVE-2015-2331\");\n script_name(\"Debian Security Advisory DSA 3198-1 (php5 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2018-04-06 09:16:07 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name: \"creation_date\", value: \"2015-03-20 00:00:00 +0100 (Fri, 20 Mar 2015)\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3198.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"php5 on Debian Linux\");\n script_tag(name: \"insight\", value: \"This package is a metapackage that, when installed, guarantees that you\nhave at least one of the four server-side versions of the PHP5 interpreter\ninstalled. Removing this package won't remove PHP5 from your system, however\nit may remove other packages that depend on this one.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (wheezy), these problems have been fixed in\nversion 5.4.39-0+deb7u1. This update also fixes a regression in the\ncurl support introduced in DSA 3195.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your php5 packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301 \nUse-after-free in the phar extension.\n\nCVE-2015-2331 \nEmmanuel Law discovered an integer overflow in the processing\nof ZIP archives, resulting in denial of service or potentially\nthe execution of arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libapache2-mod-php5\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libapache2-mod-php5filter\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libphp5-embed\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php-pear\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-cgi\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-cli\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-common\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-curl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-dbg\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-dev\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-enchant\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-fpm\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-gd\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-gmp\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-imap\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-interbase\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-intl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-ldap\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mcrypt\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mysql\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-mysqlnd\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-odbc\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-pgsql\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-pspell\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-recode\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-snmp\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-sqlite\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-sybase\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-tidy\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-xmlrpc\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php5-xsl\", ver:\"5.4.39-0+deb7u1\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:03", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153929.html", "2015-4236"], "pluginID": "1361412562310869145", "description": "Check the version of php", "edition": 5, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-03-31T00:00:00", "title": "Fedora Update for php FEDORA-2015-4236", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869145", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869145", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for php FEDORA-2015-4236\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869145\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-03-31 07:08:04 +0200 (Tue, 31 Mar 2015)\");\n script_cve_id(\"CVE-2015-0231\", \"CVE-2015-2305\", \"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for php FEDORA-2015-4236\");\n script_tag(name: \"summary\", value: \"Check the version of php\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"PHP is an HTML-embedded scripting language.\nPHP attempts to make it easy for developers to write dynamically generated web\npages. PHP also offers built-in database integration for several commercial and\nnon-commercial database management systems, so writing a database-enabled webpage\nwith PHP is fairly simple. The most common use of PHP coding is probably as a\nreplacement for CGI scripts.\n\nThe php package contains the module (often referred to as mod_php)\nwhich adds support for the PHP language to Apache HTTP Server.\n\");\n script_tag(name: \"affected\", value: \"php on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4236\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153929.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"php\", rpm:\"php~5.6.7~1.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:41", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153269.html", "2015-4255"], "pluginID": "1361412562310869544", "description": "Check the version of php", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-07-07T00:00:00", "title": "Fedora Update for php FEDORA-2015-4255", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869544", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869544", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for php FEDORA-2015-4255\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869544\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:24:21 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-0231\", \"CVE-2015-2305\", \"CVE-2015-2331\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for php FEDORA-2015-4255\");\n script_tag(name: \"summary\", value: \"Check the version of php\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"PHP is an HTML-embedded scripting language.\nPHP attempts to make it easy for developers to write dynamically generated web\npages. PHP also offers built-in database integration for several commercial and\nnon-commercial database management systems, so writing a database-enabled webpage\nwith PHP is fairly simple. The most common use of PHP coding is probably as a\nreplacement for CGI scripts.\n\nThe php package contains the module (often referred to as mod_php) which adds\nsupport for the PHP language to Apache HTTP Server.\n\");\n script_tag(name: \"affected\", value: \"php on Fedora 22\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-4255\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-March/153269.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"php\", rpm:\"php~5.6.7~2.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:14:43", "references": ["https://github.com/php/php-src/commit/ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5", "http://hg.nih.at/libzip/rev/9f11d54f692e", "https://bugs.php.net/bug.php?id=69253"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "0.9.8_1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "radare2", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "0.11.2_2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libzip", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "0.58.r3_5,1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "openlierox", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.0.1_5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "ppsspp", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.0.1.2668_1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "ppsspp-devel", "operator": "lt"}], "description": "\nlibzip developers report:\n\nAvoid integer overflow. Fixed similarly to patch used in PHP copy of libzip.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2015-03-18T00:00:00", "title": "libzip -- integer overflow", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2331"], "modified": "2015-09-20T00:00:00", "id": "264749AE-D565-11E4-B545-00269EE29E57", "href": "https://vuxml.freebsd.org/freebsd/264749ae-d565-11e4-b545-00269ee29e57.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "hackerone": [{"lastseen": "2018-08-31T00:39:15", "references": [], "bounty": 1500.0, "h1team": {"profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/000/029/0a20311cece1ff1938eac3f9b09a6af056bc9e90_small.png?1385119730", "medium": "https://profile-photos.hackerone-user-content.com/000/000/029/991fb39ba898696eb6ae62521c49b292b2a9cf95_medium.png?1385119730"}, "handle": "ibb-php", "url": "https://hackerone.com/ibb-php"}, "bountyState": "resolved", "description": "https://bugs.php.net/bug.php?id=69253\n\nInteger overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ZIP archive that contains many entries, leading to a heap-based buffer overflow.", "edition": 7, "reporter": "libnex", "published": "2015-03-18T00:00:00", "title": "PHP (IBB): ZIP Integer Overflow leads to writing past heap boundary", "type": "hackerone", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "h1reporter": {"profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/002/468/d096d75715775b4942331c8d6581d03121ce7c76_small.png?1397270899"}, "hacker_mediation": false, "disabled": false, "is_me?": false, "hackerone_triager": false, "url": "/libnex", "username": "libnex"}, "bulletinFamily": "bugbounty", "cvelist": ["CVE-2015-2331"], "modified": "2015-03-18T00:00:00", "id": "H1:73239", "href": "https://hackerone.com/reports/73239", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-18T13:49:32", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "5.4.39-0+deb7u2", "arch": "all", "packageFilename": "php5_5.4.39-0+deb7u2_all.deb", "packageName": "php5", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3198-2 security@debian.org\nhttp://www.debian.org/security/ Salvatore Bonaccorso\nMarch 28, 2015 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : php5\nDebian Bug : 781125\n\nThe previous update for php5, DSA-3198-1, introduced a regression\ncausing segmentation faults when using SoapClient::__setSoapHeader.\nUpdated packages are now available to address this regression. For\nreference, the original advisory text follows.\n\nMultiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301\n\n Use-after-free in the phar extension.\n\nCVE-2015-2331\n\n Emmanuel Law discovered an integer overflow in the processing\n of ZIP archives, resulting in denial of service or potentially\n the execution of arbitrary code.\n\nFor the stable distribution (wheezy), this problem has been fixed in\nversion 5.4.39-0+deb7u2.\n\nWe recommend that you upgrade your php5 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 2, "reporter": "Debian", "published": "2015-03-28T18:47:48", "title": "[SECURITY] [DSA 3198-2] php5 regression update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-18T13:49:32", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2015-03-28T18:47:48", "id": "DEBIAN:DSA-3198-2:D34B4", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2015/msg00094.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-18T13:49:03", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "5.4.39-0+deb7u1", "arch": "all", "packageFilename": "php5_5.4.39-0+deb7u1_all.deb", "packageName": "php5", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3198-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nMarch 20, 2015 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : php5\nCVE ID : CVE-2015-2301 CVE-2015-2331\n\nMultiple vulnerabilities have been discovered in the PHP language:\n\nCVE-2015-2301\n\n Use-after-free in the phar extension.\n\nCVE-2015-2331\n\n Emmanuel Law discovered an integer overflow in the processing\n of ZIP archives, resulting in denial of service or potentially\n the execution of arbitrary code.\n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 5.4.39-0+deb7u1. This update also fixes a regression in the\ncurl support introduced in DSA 3195.\n\nFor the unstable distribution (sid), these problems will be fixed soon.\n\nWe recommend that you upgrade your php5 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 2, "reporter": "Debian", "published": "2015-03-20T17:31:27", "title": "[SECURITY] [DSA 3198-1] php5 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-18T13:49:03", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2015-03-20T17:31:27", "id": "DEBIAN:DSA-3198-1:BFCF6", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2015/msg00083.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:03", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-gmp_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-mysql_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-snmp_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-intl_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-sqlite_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-cgi_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-recode_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-dev_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-ldap_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-common_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php-pear_5.3.3.1-7+squeeze26_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-sybase_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-enchant_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-enchant", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-tidy_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-dbg_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "libapache2-mod-php5_5.3.3.1-7+squeeze26_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-xmlrpc_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-cli_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-imap_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.3.3.1-7+squeeze26_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-mcrypt_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-xsl_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-odbc_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-gd_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-interbase_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-pgsql_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-pspell_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3.1-7+squeeze26", "arch": "all", "packageFilename": "php5-curl_5.3.3.1-7+squeeze26_all.deb", "packageName": "php5-curl", "operator": "lt"}], "description": "Package : php5\nVersion : 5.3.3.1-7+squeeze26\nCVE ID : CVE-2014-9705 CVE-2015-0232 CVE-2015-2301 CVE-2015-2331\n CVE-2015-2783 CVE-2015-2787 CVE-2015-3329 CVE-2015-3330\n\nCVE-2014-9705\n Heap-based buffer overflow in the enchant_broker_request_dict\n function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x\n before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers\n to execute arbitrary code via vectors that trigger creation of\n multiple dictionaries.\n\nCVE-2015-0232\n The exif_process_unicode function in ext/exif/exif.c in PHP\n before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5\n allows remote attackers to execute arbitrary code or cause a\n denial of service (uninitialized pointer free and application\n crash) via crafted EXIF data in a JPEG image.\n\nCVE-2015-2301\n Use-after-free vulnerability in the phar_rename_archive function\n in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6\n allows remote attackers to cause a denial of service or possibly\n have unspecified other impact via vectors that trigger an attempted\n renaming of a Phar archive to the name of an existing file.\n\nCVE-2015-2331\n Integer overflow in the _zip_cdir_new function in zip_dirent.c\n in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP\n before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and\n other products, allows remote attackers to cause a denial of\n service (application crash) or possibly execute arbitrary code\n via a ZIP archive that contains many entries, leading to a\n heap-based buffer overflow.\n\nCVE-2015-2783\n Buffer Over-read in unserialize when parsing Phar\n\nCVE-2015-2787\n Use-after-free vulnerability in the process_nested_data function\n in ext/standard/var_unserializer.re in PHP before 5.4.39, 5.5.x\n before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to\n execute arbitrary code via a crafted unserialize call that\n leverages use of the unset function within an __wakeup function,\n a related issue to CVE-2015-0231.\n\nCVE-2015-3329\n Buffer Overflow when parsing tar/zip/phar in phar_set_inode)\n\nCVE-2015-3330\n PHP potential remote code execution with apache 2.4 apache2handler\n\nCVE-2015-temp-68819\n denial of service when processing a crafted file with Fileinfo\n\n", "edition": 1, "reporter": "Debian", "published": "2015-04-29T21:00:22", "title": "[SECURITY] [DLA 212-1] php5 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:03", "vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2014-9705", "CVE-2015-2787", "CVE-2015-0232", "CVE-2015-2783", "CVE-2015-3329", "CVE-2015-3330", "CVE-2015-2301", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2015-04-29T21:00:22", "id": "DEBIAN:DLA-212-1:91793", "href": "https://lists.debian.org/debian-lts-announce/2015/debian-lts-announce-201504/msg00025.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:58", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n- -------------------------------------------------------------------------\r\nDebian Security Advisory DSA-3198-1 security@debian.org\r\nhttp://www.debian.org/security/ Moritz Muehlenhoff\r\nMarch 20, 2015 http://www.debian.org/security/faq\r\n- -------------------------------------------------------------------------\r\n\r\nPackage : php5\r\nCVE ID : CVE-2015-2301 CVE-2015-2331\r\n\r\nMultiple vulnerabilities have been discovered in the PHP language:\r\n\r\nCVE-2015-2301\r\n\r\n Use-after-free in the phar extension.\r\n\r\nCVE-2015-2331\r\n\r\n Emmanuel Law discovered an integer overflow in the processing\r\n of ZIP archives, resulting in denial of service or potentially\r\n the execution of arbitrary code.\r\n\r\nFor the stable distribution &#40;wheezy&#41;, these problems have been fixed in\r\nversion 5.4.39-0+deb7u1. This update also fixes a regression in the\r\ncurl support introduced in DSA 3195.\r\n\r\nFor the unstable distribution &#40;sid&#41;, these problems will be fixed soon.\r\n\r\nWe recommend that you upgrade your php5 packages.\r\n\r\nFurther information about Debian Security Advisories, how to apply\r\nthese updates to your system and frequently asked questions can be\r\nfound at: https://www.debian.org/security/\r\n\r\nMailing list: debian-security-announce@lists.debian.org\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1\r\n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\r\n6sLuKDh4rOYYp0vzyK0V\r\n=ucpL\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-03-21T00:00:00", "title": "[SECURITY] [DSA 3198-1] php5 security update", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:58", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-2301", "CVE-2015-2331"], "modified": "2015-03-21T00:00:00", "id": "SECURITYVULNS:DOC:31811", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31811", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:59", "references": ["https://vulners.com/securityvulns/securityvulns:doc:31811", "https://vulners.com/securityvulns/securityvulns:doc:31802"], "description": "Resources exhaustion, memory corruptions.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-03-21T00:00:00", "title": "PHP multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:59", "vector": "NONE", "value": 10.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "PHP", "version": "5.6", "operator": "eq"}, {"name": "PHP", "version": "5.5", "operator": "eq"}], "cvelist": ["CVE-2014-9705", "CVE-2014-8117", "CVE-2015-2301", "CVE-2015-2305", "CVE-2015-0273", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2015-03-21T00:00:00", "id": "SECURITYVULNS:VULN:14325", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14325", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:11:01", "references": [], "description": "\r\n\r\n\r\nNote: the current version of the following document is available here:\r\nhttps://h20564.www2.hpe.com/portal/site/hpsc/public/kb/\r\ndocDisplay?docId=emr_na-c04774019\r\n\r\nSUPPORT COMMUNICATION - SECURITY BULLETIN\r\n\r\nDocument ID: c04774019\r\nVersion: 1\r\n\r\nHPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple Vulnerabilities\r\n\r\nNOTICE: The information in this Security Bulletin should be acted upon as\r\nsoon as possible.\r\n\r\nRelease Date: 2015-08-24\r\nLast Updated: 2015-08-24\r\n\r\nPotential Security Impact: Remote unauthorized modification, unauthorized\r\naccess, or unauthorized disclosure of information.\r\n\r\nSource: Hewlett-Packard Company, HP Software Security Response Team\r\n\r\nVULNERABILITY SUMMARY\r\nPotential security vulnerabilities have been identified with HP Matrix\r\nOperating Environment. The vulnerabilities could be exploited remotely\r\nresulting in unauthorized modification, unauthorized access, or unauthorized\r\ndisclosure of information.\r\n\r\nReferences:\r\n\r\nCVE-2010-5107\r\nCVE-2013-0248\r\nCVE-2014-0118\r\nCVE-2014-0226\r\nCVE-2014-0231\r\nCVE-2014-1692\r\nCVE-2014-3523\r\nCVE-2014-3569\r\nCVE-2014-3570\r\nCVE-2014-3571\r\nCVE-2014-3572\r\nCVE-2014-8142\r\nCVE-2014-8275\r\nCVE-2014-9427\r\nCVE-2014-9652\r\nCVE-2014-9653\r\nCVE-2014-9705\r\nCVE-2015-0204\r\nCVE-2015-0205\r\nCVE-2015-0206\r\nCVE-2015-0207\r\nCVE-2015-0208\r\nCVE-2015-0209\r\nCVE-2015-0231\r\nCVE-2015-0232\r\nCVE-2015-0273\r\nCVE-2015-0285\r\nCVE-2015-0286\r\nCVE-2015-0287\r\nCVE-2015-0288\r\nCVE-2015-0289\r\nCVE-2015-0290\r\nCVE-2015-0291\r\nCVE-2015-0292\r\nCVE-2015-0293\r\nCVE-2015-1787\r\nCVE-2015-1788\r\nCVE-2015-1789\r\nCVE-2015-1790\r\nCVE-2015-1791\r\nCVE-2015-1792\r\nCVE-2015-2134\r\nCVE-2015-2139\r\nCVE-2015-2140\r\nCVE-2015-2301\r\nCVE-2015-2331\r\nCVE-2015-2348\r\nCVE-2015-2787\r\nCVE-2015-3113\r\nCVE-2015-5122\r\nCVE-2015-5123\r\nCVE-2015-5402\r\nCVE-2015-5403\r\nCVE-2015-5404\r\nCVE-2015-5405\r\nCVE-2015-5427\r\nCVE-2015-5428\r\nCVE-2015-5429\r\nCVE-2015-5430\r\nCVE-2015-5431\r\nCVE-2015-5432\r\nCVE-2015-5433\r\n\r\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.\r\nHP Matrix Operating Environment impacted software components and versions:\r\n\r\nHP Systems Insight Manager &#40;SIM&#41; prior to version 7.5.0\r\nHP System Management Homepage &#40;SMH&#41; prior to version 7.5.0\r\nHP Version Control Agent &#40;VCA&#41; prior to version 7.5.0\r\nHP Version Control Repository Manager &#40;VCRM&#41; prior to version 7.5.0\r\nHP Insight Orchestration prior to version 7.5.0\r\nHP Virtual Connect Enterprise Manager &#40;VCEM&#41; prior to version 7.5.0\r\n\r\nBACKGROUND\r\n\r\nCVSS 2.0 Base Metrics\r\n===========================================================\r\n Reference Base Vector Base Score\r\nCVE-2010-5107 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2013-0248 &#40;AV:L/AC:M/Au:N/C:N/I:P/A:P&#41; 3.3\r\nCVE-2014-0118 &#40;AV:N/AC:M/Au:N/C:N/I:N/A:P&#41; 4.3\r\nCVE-2014-0226 &#40;AV:N/AC:M/Au:N/C:P/I:P/A:P&#41; 6.8\r\nCVE-2014-0231 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2014-1692 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2014-3523 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2014-3569 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2014-3570 &#40;AV:N/AC:L/Au:N/C:P/I:N/A:N&#41; 5.0\r\nCVE-2014-3571 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2014-3572 &#40;AV:N/AC:L/Au:N/C:N/I:P/A:N&#41; 5.0\r\nCVE-2014-8142 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2014-8275 &#40;AV:N/AC:L/Au:N/C:N/I:P/A:N&#41; 5.0\r\nCVE-2014-9427 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2014-9652 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2014-9653 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2014-9705 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-0204 &#40;AV:N/AC:M/Au:N/C:N/I:P/A:N&#41; 4.3\r\nCVE-2015-0205 &#40;AV:N/AC:L/Au:N/C:N/I:P/A:N&#41; 5.0\r\nCVE-2015-0206 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0207 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0208 &#40;AV:N/AC:M/Au:N/C:N/I:N/A:P&#41; 4.3\r\nCVE-2015-0209 &#40;AV:N/AC:M/Au:N/C:P/I:P/A:P&#41; 6.8\r\nCVE-2015-0231 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-0232 &#40;AV:N/AC:M/Au:N/C:P/I:P/A:P&#41; 6.8\r\nCVE-2015-0273 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-0285 &#40;AV:N/AC:M/Au:N/C:P/I:N/A:N&#41; 4.3\r\nCVE-2015-0286 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0287 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0288 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0289 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0290 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0291 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-0292 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-0293 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-1787 &#40;AV:N/AC:H/Au:N/C:N/I:N/A:P&#41; 2.6\r\nCVE-2015-1788 &#40;AV:N/AC:M/Au:N/C:N/I:N/A:P&#41; 4.3\r\nCVE-2015-1789 &#40;AV:N/AC:M/Au:N/C:N/I:N/A:P&#41; 4.3\r\nCVE-2015-1790 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-1791 &#40;AV:N/AC:M/Au:N/C:P/I:P/A:P&#41; 6.8\r\nCVE-2015-1792 &#40;AV:N/AC:L/Au:N/C:N/I:N/A:P&#41; 5.0\r\nCVE-2015-2134 &#40;AV:N/AC:M/Au:S/C:P/I:P/A:P&#41; 6.0\r\nCVE-2015-2139 &#40;AV:N/AC:M/Au:S/C:P/I:N/A:N&#41; 3.5\r\nCVE-2015-2140 &#40;AV:N/AC:M/Au:S/C:P/I:P/A:N&#41; 4.9\r\nCVE-2015-2301 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-2331 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-2348 &#40;AV:N/AC:L/Au:N/C:N/I:P/A:N&#41; 5.0\r\nCVE-2015-2787 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:P&#41; 7.5\r\nCVE-2015-3113 &#40;AV:N/AC:L/Au:N/C:C/I:C/A:C&#41; 10.0\r\nCVE-2015-5122 &#40;AV:N/AC:L/Au:N/C:C/I:C/A:C&#41; 10.0\r\nCVE-2015-5123 &#40;AV:N/AC:L/Au:N/C:C/I:C/A:C&#41; 10.0\r\nCVE-2015-5402 &#40;AV:L/AC:M/Au:N/C:C/I:C/A:C&#41; 6.9\r\nCVE-2015-5403 &#40;AV:N/AC:M/Au:S/C:P/I:N/A:N&#41; 3.5\r\nCVE-2015-5404 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:N&#41; 6.4\r\nCVE-2015-5405 &#40;AV:N/AC:M/Au:S/C:P/I:P/A:P&#41; 6.0\r\nCVE-2015-5427 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:N&#41; 6.4\r\nCVE-2015-5428 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:N&#41; 6.4\r\nCVE-2015-5429 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:N&#41; 6.4\r\nCVE-2015-5430 &#40;AV:N/AC:L/Au:N/C:P/I:N/A:N&#41; 5.0\r\nCVE-2015-5431 &#40;AV:N/AC:M/Au:S/C:P/I:P/A:N&#41; 4.9\r\nCVE-2015-5432 &#40;AV:N/AC:L/Au:N/C:P/I:P/A:N&#41; 6.4\r\nCVE-2015-5433 &#40;AV:N/AC:M/Au:S/C:P/I:N/A:N&#41; 3.5\r\n===========================================================\r\n Information on CVSS is documented\r\n in HP Customer Notice: HPSN-2008-002\r\n\r\nRESOLUTION\r\n\r\nHP has made the following software updates available to resolve the\r\nvulnerabilities in the impacted versions of HP Matrix Operating Environment\r\n\r\nHP Matrix Operating Environment 7.5.0 is only available on DVD. Please order\r\nthe latest version of the HP Matrix Operating Environment 7.5.0 DVD #2 ISO\r\nfrom the following location:\r\n\r\nhttp://www.hp.com/go/insightupdates\r\n\r\nChoose the orange Select button. This presents the HP Insight Management\r\nMedia order page. Choose Insight Management 7.5 DVD-2-ZIP August 2015 from\r\nthe Software specification list. Fill out the rest of the form and submit it.\r\n\r\nHP has addressed these vulnerabilities for the affected software components\r\nbundled with the HP Matrix Operating Environment in the following HP Security\r\nBulletins.\r\n\r\nHP Matrix Operating Environment component\r\n HP Security Bulletin Number\r\n Security Bulletin Location\r\n\r\nHP Systems Insight Manager &#40;SIM&#41;\r\n HPSBMU03394\r\n HPSBMU03394\r\nhttps://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04762744\r\n\r\nHP System Management Homepage &#40;SMH&#41;\r\n HPSBMU03380\r\n http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04746490&amp;la\r\nng=en-us&amp;cc=\r\n\r\nHP Version Control Agent &#40;VCA&#41;\r\n HPSBMU03397\r\n https://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04765169\r\n\r\nHP Version Control Repository Manager &#40;VCRM&#41;\r\n HPSBMU03396\r\n https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr\r\n_na-c04765115\r\n\r\nHP Virtual Connect Enterprise Manager &#40;VCEM&#41; SDK\r\n HPSBMU03413\r\n https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay/?docId=emr\r\n_na-c04774021\r\n\r\nHISTORY\r\nVersion:1 &#40;rev.1&#41; - 24 August 2015 Initial release\r\n\r\nThird Party Security Patches: Third party security patches that are to be\r\ninstalled on systems running HP software products should be applied in\r\naccordance with the customer&#39;s patch management policy.\r\n\r\nSupport: For issues about implementing the recommendations of this Security\r\nBulletin, contact normal HP Services support channel. For other issues about\r\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com.\r\n\r\nReport: To report a potential security vulnerability with any HP supported\r\nproduct, send Email to: security-alert@hp.com\r\n\r\nSubscribe: To initiate a subscription to receive future HP Security Bulletin\r\nalerts via Email:\r\nhttp://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins\r\n\r\nSecurity Bulletin Archive: A list of recently released Security Bulletins is\r\navailable here:\r\nhttps://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/\r\n\r\nSoftware Product Category: The Software Product Category is represented in\r\nthe title by the two characters following HPSB.\r\n\r\n3C = 3COM\r\n3P = 3rd Party Software\r\nGN = HP General Software\r\nHF = HP Hardware and Firmware\r\nMP = MPE/iX\r\nMU = Multi-Platform Software\r\nNS = NonStop Servers\r\nOV = OpenVMS\r\nPI = Printing and Imaging\r\nPV = ProCurve\r\nST = Storage Software\r\nTU = Tru64 UNIX\r\nUX = HP-UX\r\n\r\nCopyright 2015 Hewlett-Packard Development Company, L.P.\r\nHewlett-Packard Company shall not be liable for technical or editorial errors\r\nor omissions contained herein. The information provided is provided &quot;as is&quot;\r\nwithout warranty of any kind. To the extent permitted by law, neither HP or\r\nits affiliates, subcontractors or suppliers will be liable for\r\nincidental,special or consequential damages including downtime cost; lost\r\nprofits; damages relating to the procurement of substitute products or\r\nservices; or damages for loss of data, or software restoration. The\r\ninformation in this document is subject to change without notice.\r\nHewlett-Packard Company and the names of Hewlett-Packard products referenced\r\nherein are trademarks of Hewlett-Packard Company in the United States and\r\nother countries. Other product and company names mentioned herein may be\r\ntrademarks of their respective owners.\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-09-14T00:00:00", "title": "[security bulletin] HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple Vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:11:01", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-2348", "CVE-2014-9705", "CVE-2015-3113", "CVE-2015-2787", "CVE-2015-0232", "CVE-2015-1792", "CVE-2014-9427", "CVE-2015-5123", "CVE-2014-0231", "CVE-2014-3572", "CVE-2015-0206", "CVE-2015-1789", "CVE-2015-2134", "CVE-2015-0286", "CVE-2014-3571", "CVE-2015-2301", "CVE-2015-5433", "CVE-2015-5430", "CVE-2015-0288", "CVE-2015-5431", "CVE-2015-0285", "CVE-2015-0273", "CVE-2015-2331", "CVE-2015-5404", "CVE-2014-8142", "CVE-2015-0207", "CVE-2015-5402", "CVE-2015-2139", "CVE-2014-8275", "CVE-2015-0208", "CVE-2015-5428", "CVE-2014-3570", "CVE-2015-5427", "CVE-2015-5122", "CVE-2015-2140", "CVE-2010-5107", "CVE-2015-0293", "CVE-2014-1692", "CVE-2015-1788", "CVE-2014-3523", "CVE-2015-5429", "CVE-2015-0209", "CVE-2014-9653", "CVE-2015-5405", "CVE-2015-5432", "CVE-2014-9652", "CVE-2015-0204", "CVE-2013-0248", "CVE-2015-1790", "CVE-2014-0118", "CVE-2015-0291", "CVE-2015-0287", "CVE-2015-5403", "CVE-2015-0289", "CVE-2015-0292", "CVE-2015-0290", "CVE-2015-0205", "CVE-2015-0231", "CVE-2015-1787", "CVE-2014-3569", "CVE-2015-1791", "CVE-2014-0226"], "modified": "2015-09-14T00:00:00", "id": "SECURITYVULNS:DOC:32494", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32494", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:11:01", "references": [], "description": "\r\n\r\nAPPLE-SA-2015-09-30-3 OS X El Capitan 10.11\r\n\r\nOS X El Capitan 10.11 is now available and addresses the following:\r\n\r\nAddress Book\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to inject arbitrary code to\r\nprocesses loading the Address Book framework\r\nDescription: An issue existed in Address Book framework&#39;s handling\r\nof an environment variable. This issue was addressed through improved\r\nenvironment variable handling.\r\nCVE-ID\r\nCVE-2015-5897 : Dan Bastone of Gotham Digital Science\r\n\r\nAirScan\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker with a privileged network position may be able\r\nto extract payload from eSCL packets sent over a secure connection\r\nDescription: An issue existed in the processing of eSCL packets.\r\nThis issue was addressed through improved validation checks.\r\nCVE-ID\r\nCVE-2015-5853 : an anonymous researcher\r\n\r\napache_mod_php\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in PHP\r\nDescription: Multiple vulnerabilities existed in PHP versions prior\r\nto 5.5.27, including one which may have led to remote code execution.\r\nThis issue was addressed by updating PHP to version 5.5.27.\r\nCVE-ID\r\nCVE-2014-9425\r\nCVE-2014-9427\r\nCVE-2014-9652\r\nCVE-2014-9705\r\nCVE-2014-9709\r\nCVE-2015-0231\r\nCVE-2015-0232\r\nCVE-2015-0235\r\nCVE-2015-0273\r\nCVE-2015-1351\r\nCVE-2015-1352\r\nCVE-2015-2301\r\nCVE-2015-2305\r\nCVE-2015-2331\r\nCVE-2015-2348\r\nCVE-2015-2783\r\nCVE-2015-2787\r\nCVE-2015-3329\r\nCVE-2015-3330\r\n\r\nApple Online Store Kit\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may gain access to a user&#39;s keychain\r\nitems\r\nDescription: An issue existed in validation of access control lists\r\nfor iCloud keychain items. This issue was addressed through improved\r\naccess control list checks.\r\nCVE-ID\r\nCVE-2015-5836 : XiaoFeng Wang of Indiana University, Luyi Xing of\r\nIndiana University, Tongxin Li of Peking University, Tongxin Li of\r\nPeking University, Xiaolong Bai of Tsinghua University\r\n\r\nAppleEvents\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A user connected through screen sharing can send Apple\r\nEvents to a local user&#39;s session\r\nDescription: An issue existed with Apple Event filtering that\r\nallowed some users to send events to other users. This was addressed\r\nby improved Apple Event handling.\r\nCVE-ID\r\nCVE-2015-5849 : Jack Lawrence &#40;@_jackhl&#41;\r\n\r\nAudio\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Playing a malicious audio file may lead to an unexpected\r\napplication termination\r\nDescription: A memory corruption issue existed in the handling of\r\naudio files. This issue issue was addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5862 : YoungJin Yoon of Information Security Lab. &#40;Adv.:\r\nProf. Taekyoung Kwon&#41;, Yonsei University, Seoul, Korea\r\n\r\nbash\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in bash\r\nDescription: Multiple vulnerabilities existed in bash versions prior\r\nto 3.2 patch level 57. These issues were addressed by updating bash\r\nversion 3.2 to patch level 57.\r\nCVE-ID\r\nCVE-2014-6277\r\nCVE-2014-7186\r\nCVE-2014-7187\r\n\r\nCertificate Trust Policy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Update to the certificate trust policy\r\nDescription: The certificate trust policy was updated. The complete\r\nlist of certificates may be viewed at https://support.apple.com/en-\r\nus/HT202858.\r\n\r\nCFNetwork Cookies\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a privileged network position can track a\r\nuser&#39;s activity\r\nDescription: A cross-domain cookie issue existed in the handling of\r\ntop level domains. The issue was address through improved\r\nrestrictions of cookie creation.\r\nCVE-ID\r\nCVE-2015-5885 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork FTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Malicious FTP servers may be able to cause the client to\r\nperform reconnaissance on other hosts\r\nDescription: An issue existed in the handling of FTP packets when\r\nusing the PASV command. This issue was resolved through improved\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5912 : Amit Klein\r\n\r\nCFNetwork HTTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A maliciously crafted URL may be able to bypass HSTS and\r\nleak sensitive data\r\nDescription: A URL parsing vulnerability existed in HSTS handling.\r\nThis issue was addressed through improved URL parsing.\r\nCVE-ID\r\nCVE-2015-5858 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork HTTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious website may be able to track users in Safari\r\nprivate browsing mode\r\nDescription: An issue existed in the handling of HSTS state in\r\nSafari private browsing mode. This issue was addressed through\r\nimproved state handling.\r\nCVE-ID\r\nCVE-2015-5860 : Sam Greenhalgh of RadicalResearch Ltd\r\n\r\nCFNetwork Proxies\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Connecting to a malicious web proxy may set malicious\r\ncookies for a website\r\nDescription: An issue existed in the handling of proxy connect\r\nresponses. This issue was addressed by removing the set-cookie header\r\nwhile parsing the connect response.\r\nCVE-ID\r\nCVE-2015-5841 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork SSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker with a privileged network position may intercept\r\nSSL/TLS connections\r\nDescription: A certificate validation issue existed in NSURL when a\r\ncertificate changed. This issue was addressed through improved\r\ncertificate validation.\r\nCVE-ID\r\nCVE-2015-5824 : Timothy J. Wood of The Omni Group\r\n\r\nCFNetwork SSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to decrypt data protected by SSL\r\nDescription: There are known attacks on the confidentiality of RC4.\r\nAn attacker could force the use of RC4, even if the server preferred\r\nbetter ciphers, by blocking TLS 1.0 and higher connections until\r\nCFNetwork tried SSL 3.0, which only allows RC4. This issue was\r\naddressed by removing the fallback to SSL 3.0.\r\n\r\nCoreCrypto\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to determine a private key\r\nDescription: By observing many signing or decryption attempts, an\r\nattacker may have been able to determine the RSA private key. This\r\nissue was addressed using improved encryption algorithms.\r\n\r\nCoreText\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Processing a maliciously crafted font file may lead to\r\narbitrary code execution\r\nDescription: A memory corruption issue existed in the processing of\r\nfont files. This issue was addressed through improved input\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5874 : John Villamil &#40;@day6reak&#41;, Yahoo Pentest Team\r\n\r\nDev Tools\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to execute arbitrary\r\ncode with system privileges\r\nDescription: A memory corruption issue existed in dyld. This was\r\naddressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5876 : beist of grayhash\r\n\r\nDev Tools\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An application may be able to bypass code signing\r\nDescription: An issue existed with validation of the code signature\r\nof executables. This issue was addressed through improved bounds\r\nchecking.\r\nCVE-ID\r\nCVE-2015-5839 : @PanguTeam\r\n\r\nDisk Images\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nsystem privileges\r\nDescription: A memory corruption issue existed in DiskImages. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5847 : Filippo Bigarella, Luca Todesco\r\n\r\ndyld\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An application may be able to bypass code signing\r\nDescription: An issue existed with validation of the code signature\r\nof executables. This issue was addressed through improved bounds\r\nchecking.\r\nCVE-ID\r\nCVE-2015-5839 : TaiG Jailbreak Team\r\n\r\nEFI\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application can prevent some systems from\r\nbooting\r\nDescription: An issue existed with the addresses covered by the\r\nprotected range register. This issue was fixed by changing the\r\nprotected range.\r\nCVE-ID\r\nCVE-2015-5900 : Xeno Kovah &amp; Corey Kallenberg from LegbaCore\r\n\r\nEFI\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious Apple Ethernet Thunderbolt adapter may be able\r\nto affect firmware flashing\r\nDescription: Apple Ethernet Thunderbolt adapters could modify the\r\nhost firmware if connected during an EFI update. This issue was\r\naddressed by not loading option ROMs during updates.\r\nCVE-ID\r\nCVE-2015-5914 : Trammell Hudson of Two Sigma Investments and snare\r\n\r\nFinder\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The &quot;Secure Empty Trash&quot; feature may not securely delete\r\nfiles placed in the Trash\r\nDescription: An issue existed in guaranteeing secure deletion of\r\nTrash files on some systems, such as those with flash storage. This\r\nissue was addressed by removing the &quot;Secure Empty Trash&quot; option.\r\nCVE-ID\r\nCVE-2015-5901 : Apple\r\n\r\nGame Center\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious Game Center application may be able to access a\r\nplayer&#39;s email address\r\nDescription: An issue existed in Game Center in the handling of a\r\nplayer&#39;s email. This issue was addressed through improved access\r\nrestrictions.\r\nCVE-ID\r\nCVE-2015-5855 : Nasser Alnasser\r\n\r\nHeimdal\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to replay Kerberos credentials to\r\nthe SMB server\r\nDescription: An authentication issue existed in Kerberos\r\ncredentials. This issue was addressed through additional validation\r\nof credentials using a list of recently seen credentials.\r\nCVE-ID\r\nCVE-2015-5913 : Tarun Chopra of Microsoft Corporation, U.S. and Yu\r\nFan of Microsoft Corporation, China\r\n\r\nICU\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in ICU\r\nDescription: Multiple vulnerabilities existed in ICU versions prior\r\nto 53.1.0. These issues were addressed by updating ICU to version\r\n55.1.\r\nCVE-ID\r\nCVE-2014-8146\r\nCVE-2014-8147\r\nCVE-2015-5922\r\n\r\nInstall Framework Legacy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to gain root privileges\r\nDescription: A restriction issue existed in the Install private\r\nframework containing a privileged executable. This issue was\r\naddressed by removing the executable.\r\nCVE-ID\r\nCVE-2015-5888 : Apple\r\n\r\nIntel Graphics Driver\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nsystem privileges\r\nDescription: Multiple memory corruption issues existed in the Intel\r\nGraphics Driver. These issues were addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5830 : Yuki MIZUNO &#40;@mzyy94&#41;\r\nCVE-2015-5877 : Camillus Gerard Cai\r\n\r\nIOAudioFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in IOAudioFamily that led to the\r\ndisclosure of kernel memory content. This issue was addressed by\r\npermuting kernel pointers.\r\nCVE-ID\r\nCVE-2015-5864 : Luca Todesco\r\n\r\nIOGraphics\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: Multiple memory corruption issues existed in the\r\nkernel. These issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5871 : Ilja van Sprundel of IOActive\r\nCVE-2015-5872 : Ilja van Sprundel of IOActive\r\nCVE-2015-5873 : Ilja van Sprundel of IOActive\r\nCVE-2015-5890 : Ilja van Sprundel of IOActive\r\n\r\nIOGraphics\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to determine kernel\r\nmemory layout\r\nDescription: An issue existed in IOGraphics which could have led to\r\nthe disclosure of kernel memory layout. This issue was addressed\r\nthrough improved memory management.\r\nCVE-ID\r\nCVE-2015-5865 : Luca Todesco\r\n\r\nIOHIDFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to execute arbitrary\r\ncode with system privileges\r\nDescription: Multiple memory corruption issues existed in\r\nIOHIDFamily. These issues were addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5866 : Apple\r\nCVE-2015-5867 : moony li of Trend Micro\r\n\r\nIOStorageFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to read kernel memory\r\nDescription: A memory initialization issue existed in the kernel.\r\nThis issue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5863 : Ilja van Sprundel of IOActive\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: Multiple memory corruption issues existed in the\r\nKernel. These issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5868 : Cererdlong of Alibaba Mobile Security Team\r\nCVE-2015-5896 : Maxime Villard of m00nbsd\r\nCVE-2015-5903 : CESG\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local process can modify other processes without\r\nentitlement checks\r\nDescription: An issue existed where root processes using the\r\nprocessor_set_tasks API were allowed to retrieve the task ports of\r\nother processes. This issue was addressed through additional\r\nentitlement checks.\r\nCVE-ID\r\nCVE-2015-5882 : Pedro Vilaca, working from original research by\r\nMing-chieh Pan and Sung-ting Tsai; Jonathan Levin\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may control the value of stack cookies\r\nDescription: Multiple weaknesses existed in the generation of user\r\nspace stack cookies. These issues were addressed through improved\r\ngeneration of stack cookies.\r\nCVE-ID\r\nCVE-2013-3951 : Stefan Esser\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to launch denial of service attacks\r\non targeted TCP connections without knowing the correct sequence\r\nnumber\r\nDescription: An issue existed in xnu&#39;s validation of TCP packet\r\nheaders. This issue was addressed through improved TCP packet header\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5879 : Jonathan Looney\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a local LAN segment may disable IPv6 routing\r\nDescription: An insufficient validation issue existed in the\r\nhandling of IPv6 router advertisements that allowed an attacker to\r\nset the hop limit to an arbitrary value. This issue was addressed by\r\nenforcing a minimum hop limit.\r\nCVE-ID\r\nCVE-2015-5869 : Dennis Spindel Ljungmark\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed that led to the disclosure of kernel\r\nmemory layout. This was addressed through improved initialization of\r\nkernel memory structures.\r\nCVE-ID\r\nCVE-2015-5842 : beist of grayhash\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in debugging interfaces that led to\r\nthe disclosure of memory content. This issue was addressed by\r\nsanitizing output from debugging interfaces.\r\nCVE-ID\r\nCVE-2015-5870 : Apple\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to cause a system denial of service\r\nDescription: A state management issue existed in debugging\r\nfunctionality. This issue was addressed through improved validation.\r\nCVE-ID\r\nCVE-2015-5902 : Sergi Alvarez &#40;pancake&#41; of NowSecure Research Team\r\n\r\nlibc\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2014-8611 : Adrian Chadd and Alfred Perlstein of Norse\r\nCorporation\r\n\r\nlibpthread\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5899 : Lufeng Li of Qihoo 360 Vulcan Team\r\n\r\nlibxpc\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Many SSH connections could cause a denial of service\r\nDescription: launchd had no limit on the number of processes that\r\ncould be started by a network connection. This issue was addressed by\r\nlimiting the number of SSH processes to 40.\r\nCVE-ID\r\nCVE-2015-5881 : Apple\r\n\r\nLogin Window\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The screen lock may not engage after the specified time\r\nperiod\r\nDescription: An issue existed with captured display locking. The\r\nissue was addressed through improved lock handling.\r\nCVE-ID\r\nCVE-2015-5833 : Carlos Moreira, Rainer Dorau of rainer dorau\r\ninformationsdesign, Chris Nehren, Kai Takac, Hans Douma, Toni\r\nVaahtera, and an anonymous researcher\r\n\r\nlukemftpd\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A remote attacker may be able to deny service to the FTP\r\nserver\r\nDescription: A glob-processing issue existed in tnftpd. This issue\r\nwas addressed through improved glob validation.\r\nCVE-ID\r\nCVE-2015-5917 : Maksymilian Arciemowicz of cxsecurity.com\r\n\r\nMail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Printing an email may leak sensitive user information\r\nDescription: An issue existed in Mail which bypassed user\r\npreferences when printing an email. This issue was addressed through\r\nimproved user preference enforcement.\r\nCVE-ID\r\nCVE-2015-5881 : Owen DeLong of Akamai Technologies, Noritaka Kamiya,\r\nDennis Klein from Eschenburg, Germany, Jeff Hammett of Systim\r\nTechnology Partners\r\n\r\nMail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a privileged network position may be able to\r\nintercept attachments of S/MIME-encrypted e-mail sent via Mail Drop\r\nDescription: An issue existed in handling encryption parameters for\r\nlarge email attachments sent via Mail Drop. The issue is addressed by\r\nno longer offering Mail Drop when sending an encrypted e-mail.\r\nCVE-ID\r\nCVE-2015-5884 : John McCombs of Integrated Mapping Ltd\r\n\r\nMultipeer Connectivity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to observe unprotected\r\nmultipeer data\r\nDescription: An issue existed in convenience initializer handling in\r\nwhich encryption could be actively downgraded to a non-encrypted\r\nsession. This issue was addressed by changing the convenience\r\ninitializer to require encryption.\r\nCVE-ID\r\nCVE-2015-5851 : Alban Diquet &#40;@nabla_c0d3&#41; of Data Theorem\r\n\r\nNetworkExtension\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to determine kernel\r\nmemory layout\r\nDescription: An uninitialized memory issue in the kernel led to the\r\ndisclosure of kernel memory content. This issue was addressed through\r\nimproved memory initialization.\r\nCVE-ID\r\nCVE-2015-5831 : Maxime Villard of m00nbsd\r\n\r\nNotes\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to leak sensitive user information\r\nDescription: An issue existed in parsing links in the Notes\r\napplication. This issue was addressed through improved input\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5878 : Craig Young of Tripwire VERT, an anonymous researcher\r\n\r\nNotes\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to leak sensitive user information\r\nDescription: A cross-site scripting issue existed in parsing text by\r\nthe Notes application. This issue was addressed through improved\r\ninput validation.\r\nCVE-ID\r\nCVE-2015-5875 : xisigr of Tencent&#39;s Xuanwu LAB &#40;www.tencent.com&#41;\r\n\r\nOpenSSH\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in OpenSSH\r\nDescription: Multiple vulnerabilities existed in OpenSSH versions\r\nprior to 6.9. These issues were addressed by updating OpenSSH to\r\nversion 6.9.\r\nCVE-ID\r\nCVE-2014-2532\r\n\r\nOpenSSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in OpenSSL\r\nDescription: Multiple vulnerabilities existed in OpenSSL versions\r\nprior to 0.9.8zg. These were addressed by updating OpenSSL to version\r\n0.9.8zg.\r\nCVE-ID\r\nCVE-2015-0286\r\nCVE-2015-0287\r\n\r\nprocmail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in procmail\r\nDescription: Multiple vulnerabilities existed in procmail versions\r\nprior to 3.22. These issues were addressed by removing procmail.\r\nCVE-ID\r\nCVE-2014-3618\r\n\r\nremote_cmds\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with root\r\nprivileges\r\nDescription: An issue existed in the usage of environment variables\r\nby the rsh binary. This issue was addressed by dropping setuid\r\nprivileges from the rsh binary.\r\nCVE-ID\r\nCVE-2015-5889 : Philip Pettersson\r\n\r\nremovefile\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Processing malicious data may lead to unexpected application\r\ntermination\r\nDescription: An overflow fault existed in the checkint division\r\nroutines. This issue was addressed with improved division routines.\r\nCVE-ID\r\nCVE-2015-5840 : an anonymous researcher\r\n\r\nRuby\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in Ruby\r\nDescription: Multiple vulnerabilities existed in Ruby versions prior\r\nto 2.0.0p645. These were addressed by updating Ruby to version\r\n2.0.0p645.\r\nCVE-ID\r\nCVE-2014-8080\r\nCVE-2014-8090\r\nCVE-2015-1855\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The lock state of the keychain may be incorrectly displayed\r\nto the user\r\nDescription: A state management issue existed in the way keychain\r\nlock status was tracked. This issue was addressed through improved\r\nstate management.\r\nCVE-ID\r\nCVE-2015-5915 : Peter Walz of University of Minnesota, David Ephron,\r\nEric E. Lawrence, Apple\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A trust evaluation configured to require revocation checking\r\nmay succeed even if revocation checking fails\r\nDescription: The kSecRevocationRequirePositiveResponse flag was\r\nspecified but not implemented. This issue was addressed by\r\nimplementing the flag.\r\nCVE-ID\r\nCVE-2015-5894 : Hannes Oud of kWallet GmbH\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A remote server may prompt for a certificate before\r\nidentifying itself\r\nDescription: Secure Transport accepted the CertificateRequest\r\nmessage before the ServerKeyExchange message. This issue was\r\naddressed by requiring the ServerKeyExchange first.\r\nCVE-ID\r\nCVE-2015-5887 : Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine\r\nDelignat-Lavaud, Alfredo Pironti, and Jean Karim Zinzindohoue of\r\nINRIA Paris-Rocquencourt, and Cedric Fournet and Markulf Kohlweiss of\r\nMicrosoft Research, Pierre-Yves Strub of IMDEA Software Institute\r\n\r\nSMB\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5891 : Ilja van Sprundel of IOActive\r\n\r\nSMB\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in SMBClient that led to the\r\ndisclosure of kernel memory content. This issue was addressed through\r\nimproved bounds checking.\r\nCVE-ID\r\nCVE-2015-5893 : Ilja van Sprundel of IOActive\r\n\r\nSQLite\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in SQLite v3.8.5\r\nDescription: Multiple vulnerabilities existed in SQLite v3.8.5.\r\nThese issues were addressed by updating SQLite to version 3.8.10.2.\r\nCVE-ID\r\nCVE-2015-3414\r\nCVE-2015-3415\r\nCVE-2015-3416\r\n\r\nTelephony\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker can place phone calls without the user&#39;s\r\nknowledge when using Continuity\r\nDescription: An issue existed in the authorization checks for\r\nplacing phone calls. This issue was addressed through improved\r\nauthorization checks.\r\nCVE-ID\r\nCVE-2015-3785 : Dan Bastone of Gotham Digital Science\r\n\r\nTerminal\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Maliciously crafted text could mislead the user in Terminal\r\nDescription: Terminal did not handle bidirectional override\r\ncharacters in the same way when displaying text and when selecting\r\ntext. This issue was addressed by suppressing bidirectional override\r\ncharacters in Terminal.\r\nCVE-ID\r\nCVE-2015-5883 : an anonymous researcher\r\n\r\ntidy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Visiting a maliciously crafted website may lead to arbitrary\r\ncode execution\r\nDescription: Multiple memory corruption issues existed in tidy.\r\nThese issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5522 : Fernando Munoz of NULLGroup.com\r\nCVE-2015-5523 : Fernando Munoz of NULLGroup.com\r\n\r\nTime Machine\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may gain access to keychain items\r\nDescription: An issue existed in backups by the Time Machine\r\nframework. This issue was addressed through improved coverage of Time\r\nMachine backups.\r\nCVE-ID\r\nCVE-2015-5854 : Jonas Magazinius of Assured AB\r\n\r\nNote: OS X El Capitan 10.11 includes the security content of\r\nSafari 9: https://support.apple.com/kb/HT205265.\r\n\r\nOS X El Capitan 10.11 may be obtained from the Mac App Store:\r\nhttp://www.apple.com/support/downloads/\r\n\r\nInformation will also be posted to the Apple Security Updates\r\nweb site: https://support.apple.com/kb/HT201222\r\n\r\nThis message is signed with Apple&#39;s Product Security PGP key,\r\nand details are available at:\r\nhttps://www.apple.com/support/security/pgp/\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-10-05T00:00:00", "title": "APPLE-SA-2015-09-30-3 OS X El Capitan 10.11", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:11:01", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-2348", "CVE-2014-9705", "CVE-2015-5883", "CVE-2015-2787", "CVE-2015-0232", "CVE-2015-5903", "CVE-2015-0235", "CVE-2015-2783", "CVE-2015-5877", "CVE-2015-3785", "CVE-2015-5847", "CVE-2014-9427", "CVE-2015-3329", "CVE-2015-3415", "CVE-2015-3330", "CVE-2015-5922", "CVE-2015-5865", "CVE-2015-5869", "CVE-2015-5879", "CVE-2015-5876", "CVE-2015-5858", "CVE-2015-5862", "CVE-2015-0286", "CVE-2015-5888", "CVE-2015-5874", "CVE-2015-5860", "CVE-2015-1855", "CVE-2014-3618", "CVE-2015-1352", "CVE-2015-2301", "CVE-2015-5868", "CVE-2015-5872", "CVE-2015-5839", "CVE-2015-5840", "CVE-2014-6277", "CVE-2014-9425", "CVE-2014-9709", "CVE-2015-2305", "CVE-2015-5873", "CVE-2015-0273", "CVE-2015-5875", "CVE-2015-5882", "CVE-2015-5842", "CVE-2015-5912", "CVE-2015-2331", "CVE-2015-5870", "CVE-2015-5913", "CVE-2015-5841", "CVE-2015-5894", "CVE-2015-5881", "CVE-2014-2532", "CVE-2015-5831", "CVE-2014-8147", "CVE-2015-5878", "CVE-2015-5855", "CVE-2014-8611", "CVE-2015-5871", "CVE-2015-5866", "CVE-2015-5901", "CVE-2014-8090", "CVE-2015-5824", "CVE-2015-5884", "CVE-2015-3416", "CVE-2015-5889", "CVE-2015-5867", "CVE-2015-5836", "CVE-2015-5915", "CVE-2015-5900", "CVE-2015-5890", "CVE-2014-7187", "CVE-2014-8146", "CVE-2015-5854", "CVE-2015-3414", "CVE-2014-9652", "CVE-2015-5523", "CVE-2015-5885", "CVE-2013-3951", "CVE-2015-5893", "CVE-2015-5917", "CVE-2014-8080", "CVE-2015-1351", "CVE-2015-5887", "CVE-2015-5902", "CVE-2015-0287", "CVE-2015-5853", "CVE-2015-5897", "CVE-2015-5830", "CVE-2015-5849", "CVE-2015-5896", "CVE-2015-5833", "CVE-2015-5863", "CVE-2015-0231", "CVE-2015-5864", "CVE-2014-7186", "CVE-2015-5891", "CVE-2015-5914", "CVE-2015-5522", "CVE-2015-5851", "CVE-2015-5899"], "modified": "2015-10-05T00:00:00", "id": "SECURITYVULNS:DOC:32522", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32522", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:02", "references": ["https://vulners.com/securityvulns/securityvulns:doc:32566", "https://vulners.com/securityvulns/securityvulns:doc:32569", "https://vulners.com/securityvulns/securityvulns:doc:32522", "https://vulners.com/securityvulns/securityvulns:doc:32568"], "description": "Code execution, information disclosure, restrictions bypass, multiple memory corruptions, multiple libraries vulnerabilities.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-10-25T00:00:00", "title": "Apple Mac OS X / Mac EFI / OS X Server multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:02", "vector": "NONE", "value": 10.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "MacOS X", "version": "10.11", "operator": "eq"}], "cvelist": ["CVE-2015-2348", "CVE-2014-9705", "CVE-2015-5883", "CVE-2015-2787", "CVE-2015-0232", "CVE-2015-5903", "CVE-2015-6976", "CVE-2015-7007", "CVE-2015-0235", "CVE-2015-2783", "CVE-2015-5877", "CVE-2015-5927", "CVE-2015-3785", "CVE-2015-5847", "CVE-2014-9427", "CVE-2015-3329", "CVE-2015-6975", "CVE-2015-3415", "CVE-2015-7035", "CVE-2015-3330", "CVE-2015-6987", "CVE-2015-5922", "CVE-2015-5865", "CVE-2015-5869", "CVE-2015-5879", "CVE-2015-7003", "CVE-2015-5876", "CVE-2015-5858", "CVE-2015-5924", "CVE-2015-5862", "CVE-2015-0286", "CVE-2015-5888", "CVE-2015-6983", "CVE-2015-5939", "CVE-2015-5874", "CVE-2015-6834", "CVE-2015-6991", "CVE-2015-5860", "CVE-2015-1855", "CVE-2015-7020", "CVE-2014-3618", "CVE-2015-6994", "CVE-2015-1352", "CVE-2015-7016", "CVE-2015-6992", "CVE-2015-2301", "CVE-2015-7021", "CVE-2015-6977", "CVE-2015-5868", "CVE-2014-3565", "CVE-2015-5872", "CVE-2015-5839", "CVE-2015-5840", "CVE-2014-6277", "CVE-2014-9425", "CVE-2014-9709", "CVE-2015-2305", "CVE-2012-6151", "CVE-2015-5934", "CVE-2015-5873", "CVE-2015-5940", "CVE-2015-5932", "CVE-2015-0273", "CVE-2015-5875", "CVE-2015-5882", "CVE-2015-5842", "CVE-2015-6995", "CVE-2015-6978", "CVE-2015-7018", "CVE-2015-5912", "CVE-2015-6985", "CVE-2015-2331", "CVE-2015-5870", "CVE-2015-5935", "CVE-2015-5722", "CVE-2015-7010", "CVE-2015-5945", "CVE-2015-6984", "CVE-2015-7008", "CVE-2015-5841", "CVE-2015-5894", "CVE-2015-5881", "CVE-2014-2532", "CVE-2015-5831", "CVE-2014-8147", "CVE-2015-5937", "CVE-2015-5878", "CVE-2015-5855", "CVE-2015-7023", "CVE-2014-8611", "CVE-2015-6993", "CVE-2015-5871", "CVE-2015-5866", "CVE-2015-5901", "CVE-2014-8090", "CVE-2015-6836", "CVE-2015-5884", "CVE-2015-3416", "CVE-2015-5936", "CVE-2015-5889", "CVE-2015-5867", "CVE-2015-5836", "CVE-2015-6989", "CVE-2015-5915", "CVE-2015-5900", "CVE-2015-5942", "CVE-2015-7015", "CVE-2015-5890", "CVE-2014-7187", "CVE-2014-8146", "CVE-2015-5854", "CVE-2015-6990", "CVE-2015-3414", "CVE-2015-7009", "CVE-2014-9652", "CVE-2015-7031", "CVE-2015-6988", "CVE-2015-5523", "CVE-2015-5986", "CVE-2015-5943", "CVE-2015-5885", "CVE-2015-6996", "CVE-2015-6837", "CVE-2013-3951", "CVE-2015-6563", "CVE-2015-5944", "CVE-2015-5893", "CVE-2015-5917", "CVE-2014-8080", "CVE-2015-1351", "CVE-2015-5524", "CVE-2015-5887", "CVE-2015-5902", "CVE-2015-5925", "CVE-2015-5938", "CVE-2015-0287", "CVE-2015-6974", "CVE-2015-5853", "CVE-2015-6835", "CVE-2015-5897", "CVE-2015-5830", "CVE-2015-5849", "CVE-2015-5896", "CVE-2015-5833", "CVE-2015-5863", "CVE-2015-0231", "CVE-2015-5864", "CVE-2014-7186", "CVE-2015-5891", "CVE-2015-7019", "CVE-2015-7006", "CVE-2015-7017", "CVE-2015-5914", "CVE-2015-5926", "CVE-2015-5522", "CVE-2015-5851", "CVE-2015-5899", "CVE-2015-6838", "CVE-2015-5933"], "modified": "2015-10-25T00:00:00", "id": "SECURITYVULNS:VULN:14702", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14702", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "amazon": [{"lastseen": "2018-10-02T16:55:19", "references": [], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-gd-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-pdo-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-pdo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-recode-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-tidy-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-embedded-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-gmp-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-gmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-pgsql-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-gmp-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-gmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-debuginfo-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-odbc-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-cli-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-odbc-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "src", "packageFilename": "php55-5.5.23-1.99.amzn1.src.rpm", "packageName": "php55", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-pspell-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-dba-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-common-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-imap-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-snmp-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-embedded-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-devel-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-fpm-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-mssql-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-imap-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-cli-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-intl-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-ldap-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-debuginfo-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-pgsql-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-mbstring-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-tidy-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-soap-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-enchant-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-gd-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-mssql-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-soap-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-process-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-snmp-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-mbstring-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-xml-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-xml", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-common-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-mysqlnd-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-bcmath-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-mcrypt-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-pdo-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-pdo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-xml-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-xml", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-pspell-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-opcache-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-opcache", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-dba-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-process-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-bcmath-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-recode-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-enchant-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-opcache-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-opcache", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-xmlrpc-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-fpm-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-xmlrpc-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-intl-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-mcrypt-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-mysqlnd-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "i686", "packageFilename": "php55-ldap-5.5.23-1.99.amzn1.i686.rpm", "packageName": "php55-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.5.23-1.99.amzn1", "arch": "x86_64", "packageFilename": "php55-devel-5.5.23-1.99.amzn1.x86_64.rpm", "packageName": "php55-devel", "operator": "lt"}], "description": "**Issue Overview:**\n\nA use-after-free flaw was found in the way PHP's unserialize() function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. ([CVE-2015-0231 __](<https://access.redhat.com/security/cve/CVE-2015-0231>))\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is also embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code. ([CVE-2015-2331 __](<https://access.redhat.com/security/cve/CVE-2015-2331>))\n\nInteger overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow. ([CVE-2015-2305 __](<https://access.redhat.com/security/cve/CVE-2015-2305>))\n\n \n**Affected Packages:** \n\n\nphp55\n\n \n**Issue Correction:** \nRun _yum update php55_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n php55-embedded-5.5.23-1.99.amzn1.i686 \n php55-mysqlnd-5.5.23-1.99.amzn1.i686 \n php55-common-5.5.23-1.99.amzn1.i686 \n php55-devel-5.5.23-1.99.amzn1.i686 \n php55-pgsql-5.5.23-1.99.amzn1.i686 \n php55-recode-5.5.23-1.99.amzn1.i686 \n php55-intl-5.5.23-1.99.amzn1.i686 \n php55-cli-5.5.23-1.99.amzn1.i686 \n php55-gd-5.5.23-1.99.amzn1.i686 \n php55-bcmath-5.5.23-1.99.amzn1.i686 \n php55-ldap-5.5.23-1.99.amzn1.i686 \n php55-mcrypt-5.5.23-1.99.amzn1.i686 \n php55-xmlrpc-5.5.23-1.99.amzn1.i686 \n php55-process-5.5.23-1.99.amzn1.i686 \n php55-gmp-5.5.23-1.99.amzn1.i686 \n php55-snmp-5.5.23-1.99.amzn1.i686 \n php55-mssql-5.5.23-1.99.amzn1.i686 \n php55-tidy-5.5.23-1.99.amzn1.i686 \n php55-imap-5.5.23-1.99.amzn1.i686 \n php55-5.5.23-1.99.amzn1.i686 \n php55-opcache-5.5.23-1.99.amzn1.i686 \n php55-pspell-5.5.23-1.99.amzn1.i686 \n php55-xml-5.5.23-1.99.amzn1.i686 \n php55-debuginfo-5.5.23-1.99.amzn1.i686 \n php55-fpm-5.5.23-1.99.amzn1.i686 \n php55-pdo-5.5.23-1.99.amzn1.i686 \n php55-soap-5.5.23-1.99.amzn1.i686 \n php55-odbc-5.5.23-1.99.amzn1.i686 \n php55-mbstring-5.5.23-1.99.amzn1.i686 \n php55-enchant-5.5.23-1.99.amzn1.i686 \n php55-dba-5.5.23-1.99.amzn1.i686 \n \n src: \n php55-5.5.23-1.99.amzn1.src \n \n x86_64: \n php55-gd-5.5.23-1.99.amzn1.x86_64 \n php55-cli-5.5.23-1.99.amzn1.x86_64 \n php55-mssql-5.5.23-1.99.amzn1.x86_64 \n php55-common-5.5.23-1.99.amzn1.x86_64 \n php55-gmp-5.5.23-1.99.amzn1.x86_64 \n php55-process-5.5.23-1.99.amzn1.x86_64 \n php55-ldap-5.5.23-1.99.amzn1.x86_64 \n php55-pdo-5.5.23-1.99.amzn1.x86_64 \n php55-mcrypt-5.5.23-1.99.amzn1.x86_64 \n php55-embedded-5.5.23-1.99.amzn1.x86_64 \n php55-enchant-5.5.23-1.99.amzn1.x86_64 \n php55-mbstring-5.5.23-1.99.amzn1.x86_64 \n php55-soap-5.5.23-1.99.amzn1.x86_64 \n php55-pspell-5.5.23-1.99.amzn1.x86_64 \n php55-recode-5.5.23-1.99.amzn1.x86_64 \n php55-mysqlnd-5.5.23-1.99.amzn1.x86_64 \n php55-imap-5.5.23-1.99.amzn1.x86_64 \n php55-opcache-5.5.23-1.99.amzn1.x86_64 \n php55-xml-5.5.23-1.99.amzn1.x86_64 \n php55-intl-5.5.23-1.99.amzn1.x86_64 \n php55-snmp-5.5.23-1.99.amzn1.x86_64 \n php55-devel-5.5.23-1.99.amzn1.x86_64 \n php55-pgsql-5.5.23-1.99.amzn1.x86_64 \n php55-fpm-5.5.23-1.99.amzn1.x86_64 \n php55-tidy-5.5.23-1.99.amzn1.x86_64 \n php55-dba-5.5.23-1.99.amzn1.x86_64 \n php55-debuginfo-5.5.23-1.99.amzn1.x86_64 \n php55-5.5.23-1.99.amzn1.x86_64 \n php55-xmlrpc-5.5.23-1.99.amzn1.x86_64 \n php55-bcmath-5.5.23-1.99.amzn1.x86_64 \n php55-odbc-5.5.23-1.99.amzn1.x86_64 \n \n \n", "edition": 1, "reporter": "Amazon", "published": "2015-04-15T22:21:00", "title": "Important: php55", "type": "amazon", "enchantments": {"score": {"modified": "2018-10-02T16:55:19", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2015-04-15T22:21:00", "id": "ALAS-2015-507", "href": "https://alas.aws.amazon.com/ALAS-2015-507.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-02T16:55:22", "references": [], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-mcrypt-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-snmp-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-pspell-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-dba-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-dba-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-mbstring-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-common-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-intl-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-process-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-pgsql-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-ldap-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-xml-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-xml", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-enchant-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-cli-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-embedded-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-tidy-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-soap-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-pspell-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-mbstring-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-fpm-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-gd-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-odbc-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-gd-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-mysql-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-mysql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-debuginfo-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-pgsql-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "src", "packageFilename": "php54-5.4.39-1.67.amzn1.src.rpm", "packageName": "php54", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-ldap-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-mssql-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-mysql-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-mysql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-enchant-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-embedded-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-xmlrpc-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-xmlrpc-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-devel-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-odbc-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-recode-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-imap-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-mysqlnd-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-devel-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-tidy-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-cli-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-pdo-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-pdo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-common-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-snmp-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-imap-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-pdo-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-pdo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-mcrypt-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-recode-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-process-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-intl-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-bcmath-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-soap-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-bcmath-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-mysqlnd-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-fpm-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "x86_64", "packageFilename": "php54-debuginfo-5.4.39-1.67.amzn1.x86_64.rpm", "packageName": "php54-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-mssql-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.4.39-1.67.amzn1", "arch": "i686", "packageFilename": "php54-xml-5.4.39-1.67.amzn1.i686.rpm", "packageName": "php54-xml", "operator": "lt"}], "description": "**Issue Overview:**\n\nA use-after-free flaw was found in the way PHP's unserialize() function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. ([CVE-2015-0231 __](<https://access.redhat.com/security/cve/CVE-2015-0231>))\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is also embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code. ([CVE-2015-2331 __](<https://access.redhat.com/security/cve/CVE-2015-2331>))\n\nInteger overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow. ([CVE-2015-2305 __](<https://access.redhat.com/security/cve/CVE-2015-2305>))\n\n \n**Affected Packages:** \n\n\nphp54\n\n \n**Issue Correction:** \nRun _yum update php54_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n php54-xmlrpc-5.4.39-1.67.amzn1.i686 \n php54-devel-5.4.39-1.67.amzn1.i686 \n php54-pdo-5.4.39-1.67.amzn1.i686 \n php54-5.4.39-1.67.amzn1.i686 \n php54-mcrypt-5.4.39-1.67.amzn1.i686 \n php54-fpm-5.4.39-1.67.amzn1.i686 \n php54-pgsql-5.4.39-1.67.amzn1.i686 \n php54-odbc-5.4.39-1.67.amzn1.i686 \n php54-ldap-5.4.39-1.67.amzn1.i686 \n php54-cli-5.4.39-1.67.amzn1.i686 \n php54-mssql-5.4.39-1.67.amzn1.i686 \n php54-debuginfo-5.4.39-1.67.amzn1.i686 \n php54-process-5.4.39-1.67.amzn1.i686 \n php54-intl-5.4.39-1.67.amzn1.i686 \n php54-snmp-5.4.39-1.67.amzn1.i686 \n php54-dba-5.4.39-1.67.amzn1.i686 \n php54-mysqlnd-5.4.39-1.67.amzn1.i686 \n php54-tidy-5.4.39-1.67.amzn1.i686 \n php54-gd-5.4.39-1.67.amzn1.i686 \n php54-embedded-5.4.39-1.67.amzn1.i686 \n php54-pspell-5.4.39-1.67.amzn1.i686 \n php54-recode-5.4.39-1.67.amzn1.i686 \n php54-xml-5.4.39-1.67.amzn1.i686 \n php54-mysql-5.4.39-1.67.amzn1.i686 \n php54-imap-5.4.39-1.67.amzn1.i686 \n php54-bcmath-5.4.39-1.67.amzn1.i686 \n php54-common-5.4.39-1.67.amzn1.i686 \n php54-mbstring-5.4.39-1.67.amzn1.i686 \n php54-soap-5.4.39-1.67.amzn1.i686 \n php54-enchant-5.4.39-1.67.amzn1.i686 \n \n src: \n php54-5.4.39-1.67.amzn1.src \n \n x86_64: \n php54-mssql-5.4.39-1.67.amzn1.x86_64 \n php54-mysqlnd-5.4.39-1.67.amzn1.x86_64 \n php54-dba-5.4.39-1.67.amzn1.x86_64 \n php54-odbc-5.4.39-1.67.amzn1.x86_64 \n php54-imap-5.4.39-1.67.amzn1.x86_64 \n php54-pspell-5.4.39-1.67.amzn1.x86_64 \n php54-embedded-5.4.39-1.67.amzn1.x86_64 \n php54-xmlrpc-5.4.39-1.67.amzn1.x86_64 \n php54-debuginfo-5.4.39-1.67.amzn1.x86_64 \n php54-fpm-5.4.39-1.67.amzn1.x86_64 \n php54-tidy-5.4.39-1.67.amzn1.x86_64 \n php54-recode-5.4.39-1.67.amzn1.x86_64 \n php54-cli-5.4.39-1.67.amzn1.x86_64 \n php54-5.4.39-1.67.amzn1.x86_64 \n php54-ldap-5.4.39-1.67.amzn1.x86_64 \n php54-xml-5.4.39-1.67.amzn1.x86_64 \n php54-process-5.4.39-1.67.amzn1.x86_64 \n php54-common-5.4.39-1.67.amzn1.x86_64 \n php54-bcmath-5.4.39-1.67.amzn1.x86_64 \n php54-snmp-5.4.39-1.67.amzn1.x86_64 \n php54-gd-5.4.39-1.67.amzn1.x86_64 \n php54-devel-5.4.39-1.67.amzn1.x86_64 \n php54-mysql-5.4.39-1.67.amzn1.x86_64 \n php54-mcrypt-5.4.39-1.67.amzn1.x86_64 \n php54-pdo-5.4.39-1.67.amzn1.x86_64 \n php54-enchant-5.4.39-1.67.amzn1.x86_64 \n php54-soap-5.4.39-1.67.amzn1.x86_64 \n php54-pgsql-5.4.39-1.67.amzn1.x86_64 \n php54-intl-5.4.39-1.67.amzn1.x86_64 \n php54-mbstring-5.4.39-1.67.amzn1.x86_64 \n \n \n", "edition": 1, "reporter": "Amazon", "published": "2015-04-15T22:21:00", "title": "Important: php54", "type": "amazon", "enchantments": {"score": {"modified": "2018-10-02T16:55:22", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2015-04-15T22:21:00", "id": "ALAS-2015-506", "href": "https://alas.aws.amazon.com/ALAS-2015-506.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-02T16:55:05", "references": [], "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-dba-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-bcmath-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-fpm-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-enchant-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-enchant-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-enchant", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-cli-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-mysqlnd-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-fpm-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-fpm", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-snmp-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-xml-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-xml", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-embedded-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-xmlrpc-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-ldap-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-mbstring-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-embedded-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-embedded", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-opcache-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-opcache", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-gd-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-recode-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-tidy-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-pspell-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-mssql-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-imap-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-process-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "src", "packageFilename": "php56-5.6.7-1.110.amzn1.src.rpm", "packageName": "php56", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-odbc-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-debuginfo-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-cli-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-cli", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-mysqlnd-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-mysqlnd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-gmp-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-gmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-pspell-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-pspell", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-odbc-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-odbc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-gd-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-gd", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-gmp-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-gmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-soap-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-intl-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-opcache-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-opcache", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-dbg-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-dbg", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-snmp-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-snmp", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-devel-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-common-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-ldap-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-ldap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-pgsql-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-bcmath-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-bcmath", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-intl-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-intl", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-mbstring-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-mbstring", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-dbg-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-dbg", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-mcrypt-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-pgsql-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-pgsql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-dba-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-dba", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-process-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-process", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-recode-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-recode", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-soap-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-soap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-imap-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-imap", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-pdo-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-pdo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-mcrypt-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-mcrypt", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-xml-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-xml", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-xmlrpc-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-xmlrpc", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-debuginfo-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-debuginfo", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-common-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-common", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-devel-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-devel", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-mssql-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-mssql", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "x86_64", "packageFilename": "php56-tidy-5.6.7-1.110.amzn1.x86_64.rpm", "packageName": "php56-tidy", "operator": "lt"}, {"OS": "Amazon Linux", "OSVersion": "any", "packageVersion": "5.6.7-1.110.amzn1", "arch": "i686", "packageFilename": "php56-pdo-5.6.7-1.110.amzn1.i686.rpm", "packageName": "php56-pdo", "operator": "lt"}], "description": "**Issue Overview:**\n\nA use-after-free flaw was found in the way PHP's unserialize() function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize() function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. ([CVE-2015-0231 __](<https://access.redhat.com/security/cve/CVE-2015-0231>))\n\nAn integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is also embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code. ([CVE-2015-2331 __](<https://access.redhat.com/security/cve/CVE-2015-2331>))\n\nInteger overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow. ([CVE-2015-2305 __](<https://access.redhat.com/security/cve/CVE-2015-2305>))\n\n \n**Affected Packages:** \n\n\nphp56\n\n \n**Issue Correction:** \nRun _yum update php56_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n php56-gd-5.6.7-1.110.amzn1.i686 \n php56-bcmath-5.6.7-1.110.amzn1.i686 \n php56-mysqlnd-5.6.7-1.110.amzn1.i686 \n php56-gmp-5.6.7-1.110.amzn1.i686 \n php56-imap-5.6.7-1.110.amzn1.i686 \n php56-devel-5.6.7-1.110.amzn1.i686 \n php56-soap-5.6.7-1.110.amzn1.i686 \n php56-ldap-5.6.7-1.110.amzn1.i686 \n php56-dbg-5.6.7-1.110.amzn1.i686 \n php56-pdo-5.6.7-1.110.amzn1.i686 \n php56-common-5.6.7-1.110.amzn1.i686 \n php56-embedded-5.6.7-1.110.amzn1.i686 \n php56-enchant-5.6.7-1.110.amzn1.i686 \n php56-xmlrpc-5.6.7-1.110.amzn1.i686 \n php56-5.6.7-1.110.amzn1.i686 \n php56-mssql-5.6.7-1.110.amzn1.i686 \n php56-odbc-5.6.7-1.110.amzn1.i686 \n php56-xml-5.6.7-1.110.amzn1.i686 \n php56-fpm-5.6.7-1.110.amzn1.i686 \n php56-intl-5.6.7-1.110.amzn1.i686 \n php56-mcrypt-5.6.7-1.110.amzn1.i686 \n php56-pspell-5.6.7-1.110.amzn1.i686 \n php56-snmp-5.6.7-1.110.amzn1.i686 \n php56-dba-5.6.7-1.110.amzn1.i686 \n php56-pgsql-5.6.7-1.110.amzn1.i686 \n php56-opcache-5.6.7-1.110.amzn1.i686 \n php56-recode-5.6.7-1.110.amzn1.i686 \n php56-process-5.6.7-1.110.amzn1.i686 \n php56-debuginfo-5.6.7-1.110.amzn1.i686 \n php56-cli-5.6.7-1.110.amzn1.i686 \n php56-tidy-5.6.7-1.110.amzn1.i686 \n php56-mbstring-5.6.7-1.110.amzn1.i686 \n \n src: \n php56-5.6.7-1.110.amzn1.src \n \n x86_64: \n php56-pgsql-5.6.7-1.110.amzn1.x86_64 \n php56-fpm-5.6.7-1.110.amzn1.x86_64 \n php56-common-5.6.7-1.110.amzn1.x86_64 \n php56-mbstring-5.6.7-1.110.amzn1.x86_64 \n php56-cli-5.6.7-1.110.amzn1.x86_64 \n php56-bcmath-5.6.7-1.110.amzn1.x86_64 \n php56-recode-5.6.7-1.110.amzn1.x86_64 \n php56-process-5.6.7-1.110.amzn1.x86_64 \n php56-ldap-5.6.7-1.110.amzn1.x86_64 \n php56-snmp-5.6.7-1.110.amzn1.x86_64 \n php56-xmlrpc-5.6.7-1.110.amzn1.x86_64 \n php56-mcrypt-5.6.7-1.110.amzn1.x86_64 \n php56-intl-5.6.7-1.110.amzn1.x86_64 \n php56-pdo-5.6.7-1.110.amzn1.x86_64 \n php56-5.6.7-1.110.amzn1.x86_64 \n php56-mssql-5.6.7-1.110.amzn1.x86_64 \n php56-imap-5.6.7-1.110.amzn1.x86_64 \n php56-devel-5.6.7-1.110.amzn1.x86_64 \n php56-soap-5.6.7-1.110.amzn1.x86_64 \n php56-mysqlnd-5.6.7-1.110.amzn1.x86_64 \n php56-enchant-5.6.7-1.110.amzn1.x86_64 \n php56-pspell-5.6.7-1.110.amzn1.x86_64 \n php56-tidy-5.6.7-1.110.amzn1.x86_64 \n php56-embedded-5.6.7-1.110.amzn1.x86_64 \n php56-dbg-5.6.7-1.110.amzn1.x86_64 \n php56-dba-5.6.7-1.110.amzn1.x86_64 \n php56-gd-5.6.7-1.110.amzn1.x86_64 \n php56-gmp-5.6.7-1.110.amzn1.x86_64 \n php56-opcache-5.6.7-1.110.amzn1.x86_64 \n php56-debuginfo-5.6.7-1.110.amzn1.x86_64 \n php56-odbc-5.6.7-1.110.amzn1.x86_64 \n php56-xml-5.6.7-1.110.amzn1.x86_64 \n \n \n", "edition": 1, "reporter": "Amazon", "published": "2015-04-15T22:21:00", "title": "Important: php56", "type": "amazon", "enchantments": {"score": {"modified": "2018-10-02T16:55:05", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2015-04-15T22:21:00", "id": "ALAS-2015-508", "href": "https://alas.aws.amazon.com/ALAS-2015-508.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "kaspersky": [{"lastseen": "2018-12-17T15:15:28", "references": [], "description": "### *CVSS*:\n7.5\n\n### *Detect date*:\n03/30/2015\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple serious vulnerabilities have been found in PHP and extensions. Malicious users can exploit these vulnerabilities to cause denial of service or inject code.\n\n### *Affected products*:\nPHP versions 5.6.7 and possibly earlier \nPHP extensions calendar and pgsql\n\n### *Solution*:\nThese vulnerabilities aren\u2019t mitigated by vendor. You can protect yourself with disabling some functionality.\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[PHP](<https://threats.kaspersky.com/en/product/PHP/>)\n\n### *CVE-IDS*:\n[CVE-2015-2331](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331>) \n[CVE-2015-0231](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0231>) \n[CVE-2015-2305](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305>)", "edition": 29, "reporter": "Kaspersky Lab", "published": "2015-03-30T00:00:00", "title": "\r KLA10515Multiple vulnerabilities in PHP and extensions ", "type": "kaspersky", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2015-2305", "CVE-2015-2331", "CVE-2015-0231"], "modified": "2018-12-06T00:00:00", "id": "KLA10515", "href": "https://threats.kaspersky.com/en/vulnerability/KLA10515", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-17T15:15:18", "references": [], "description": "### *CVSS*:\n7.5\n\n### *Detect date*:\n03/30/2015\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple serious vulnerabilities have been found in PHP. Malicious users can exploit these vulnerabilities to inject or execute arbitrary code, bypass security restrictions or cause denial of service.\n\n### *Affected products*:\nPHP versions earlier than 5.4.39 \nPHP 5.5 versions earlier than 5.5.23 \nPHP 5.6 versions earlier than 5.6.7\n\n### *Solution*:\nUpdate to the latest version \n[Get PHP](<http://php.net/downloads.php>)\n\n### *Original advisories*:\n[PHP changelog](<http://php.net/ChangeLog-5.php>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[PHP](<https://threats.kaspersky.com/en/product/PHP/>)\n\n### *CVE-IDS*:\n[CVE-2015-2787](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787>) \n[CVE-2015-2348](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2348>) \n[CVE-2015-2331](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331>) \n[CVE-2015-2301](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2301>) \n[CVE-2015-1351](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1351>) \n[CVE-2015-0273](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0273>) \n[CVE-2014-9709](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9709>) \n[CVE-2014-9705](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9705>) \n[CVE-2014-9653](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9653>) \n[CVE-2014-9652](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9652>)", "edition": 28, "reporter": "Kaspersky Lab", "published": "2015-03-30T00:00:00", "title": "\r KLA10514Multiple vulnerabilities in PHP and plugins ", "type": "kaspersky", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "info", "cvelist": ["CVE-2015-2348", "CVE-2014-9705", "CVE-2015-2787", "CVE-2015-2301", "CVE-2014-9709", "CVE-2015-0273", "CVE-2015-2331", "CVE-2014-9653", "CVE-2014-9652", "CVE-2015-1351"], "modified": "2018-12-06T00:00:00", "id": "KLA10514", "href": "https://threats.kaspersky.com/en/vulnerability/KLA10514", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "slackware": [{"lastseen": "2018-08-31T00:37:12", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "5.4.40", "arch": "i486", "packageFilename": "php-5.4.40-i486-1_slack14.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "5.4.40", "arch": "i486", "packageFilename": "php-5.4.40-i486-1_slack14.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "5.4.40", "arch": "x86_64", "packageFilename": "php-5.4.40-x86_64-1_slack14.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "5.4.40", "arch": "x86_64", "packageFilename": "php-5.4.40-x86_64-1_slack14.0.txz", "packageName": "php", "operator": "lt"}], "description": "New php packages are available for Slackware 14.0, 14.1, and -current to\nfix security issues.\n\n\nHere are the details from the Slackware 14.1 ChangeLog:\n\npatches/packages/php-5.4.40-i486-1_slack14.1.txz: Upgraded.\n This update fixes some security issues.\n Please note that this package build also moves the configuration files\n from /etc/httpd to /etc, /etc/php.d, and /etc/php-fpm.d.\n For more information, see:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9709\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0231\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1351\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1352\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2301\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2783\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3330\n (* Security fix *)\n\nWhere to find the new packages:\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the &quot;Get Slack&quot; section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/php-5.4.40-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/php-5.4.40-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/php-5.4.40-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/php-5.4.40-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-5.6.8-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/php-5.6.8-x86_64-1.txz\n\n\nMD5 signatures:\n\nSlackware 14.0 package:\n2666059d6540b1b4385d25dfc5ebbe99 php-5.4.40-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\nc146f500912ba9c7e5d652e5e3643c04 php-5.4.40-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\n9efc8a96f9a3f3261e5f640292b1b781 php-5.4.40-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\n2c95e077f314f1cfa3ee83b9aba90b91 php-5.4.40-x86_64-1_slack14.1.txz\n\nSlackware -current package:\n30d14f237c71fada0d594c2360a58016 n/php-5.6.8-i486-1.txz\n\nSlackware x86_64 -current package:\n1a0fcc590aa4dff5de5f08293936d0d9 n/php-5.6.8-x86_64-1.txz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg php-5.4.40-i486-1_slack14.1.txz\n\nThen, restart Apache httpd:\n > /etc/rc.d/rc.httpd stop\n > /etc/rc.d/rc.httpd start", "edition": 3, "reporter": "Slackware Linux Project", "published": "2015-04-21T18:22:40", "title": "php", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2783", "CVE-2015-3330", "CVE-2015-1352", "CVE-2015-2301", "CVE-2014-9709", "CVE-2015-2305", "CVE-2015-2331", "CVE-2015-1351", "CVE-2015-0231"], "modified": "2015-04-21T18:22:40", "id": "SSA-2015-111-10", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.429606", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}