Search...

SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)

2011-04-04T00:00:00

ID SUSE_11_APACHE2-MOD_PHP5-110310.NASL
Type nessus
Reporter Tenable
Modified 2013-10-25T00:00:00

Description

PHP5 was updated to fix several security issues.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL &lt; 3000) exit(0);

include("compat.inc");

if (description)
{
  script_id(53282);
  script_version("$Revision: 1.4 $");
  script_cvs_date("$Date: 2013/10/25 23:41:51 $");

  script_cve_id("CVE-2010-4150", "CVE-2010-4645", "CVE-2010-4697", "CVE-2010-4698", "CVE-2010-4699", "CVE-2011-0708", "CVE-2011-0752", "CVE-2011-0753", "CVE-2011-0755");

  script_name(english:"SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:"PHP5 was updated to fix several security issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=655968"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=656523"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=662932"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=666512"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=669162"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=669188"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=669189"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=671710"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-4150.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-4645.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-4697.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-4698.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-4699.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0708.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0752.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0753.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-0755.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 4133.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-mod_php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-bcmath");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-bz2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-calendar");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-ctype");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-dba");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-dbase");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-dom");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-exif");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-fastcgi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-ftp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-gettext");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-gmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-hash");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-iconv");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-json");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-mbstring");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-mcrypt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-openssl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-pcntl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-pdo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-pear");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-pspell");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-shmop");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-suhosin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-sysvmsg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-sysvsem");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-sysvshm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-tokenizer");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-wddx");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-xmlreader");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-xmlwriter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-xsl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-zip");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:php5-zlib");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/03/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/04/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" &gt;!&lt; cpu && "s390x" &gt;!&lt; cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, "SuSE 11.1");


flag = 0;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-mod_php5-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-bcmath-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-bz2-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-calendar-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-ctype-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-curl-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-dba-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-dbase-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-dom-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-exif-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-fastcgi-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-ftp-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-gd-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-gettext-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-gmp-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-hash-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-iconv-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-json-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-ldap-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-mbstring-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-mcrypt-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-mysql-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-odbc-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-openssl-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-pcntl-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-pdo-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-pear-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-pgsql-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-pspell-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-shmop-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-snmp-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-soap-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-suhosin-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-sysvmsg-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-sysvsem-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-sysvshm-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-tokenizer-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-wddx-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-xmlreader-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-xmlrpc-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-xmlwriter-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-xsl-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-zip-5.2.14-0.7.22.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"php5-zlib-5.2.14-0.7.22.1")) flag++;


if (flag)
{
  if (report_verbosity &gt; 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

JSON Vulners Source

Initial Source

{"id": "SUSE_11_APACHE2-MOD_PHP5-110310.NASL", "bulletinFamily": "scanner", "title": "SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)", "description": "PHP5 was updated to fix several security issues.", "published": "2011-04-04T00:00:00", "modified": "2013-10-25T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=53282", "reporter": "Tenable", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "http://support.novell.com/security/cve/CVE-2011-0752.html", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "http://support.novell.com/security/cve/CVE-2010-4698.html", "http://support.novell.com/security/cve/CVE-2010-4645.html", "http://support.novell.com/security/cve/CVE-2011-0708.html", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "http://support.novell.com/security/cve/CVE-2010-4150.html", "http://support.novell.com/security/cve/CVE-2011-0753.html", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "http://support.novell.com/security/cve/CVE-2011-0755.html", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "http://support.novell.com/security/cve/CVE-2010-4699.html", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "http://support.novell.com/security/cve/CVE-2010-4697.html"], "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699"], "type": "nessus", "lastseen": "2018-09-01T23:38:11", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:novell:suse_linux:11:php5-mysql", "p-cpe:/a:novell:suse_linux:11:php5-bcmath", "p-cpe:/a:novell:suse_linux:11:php5-json", "p-cpe:/a:novell:suse_linux:11:php5-zlib", "p-cpe:/a:novell:suse_linux:11:php5-dbase", "p-cpe:/a:novell:suse_linux:11:php5-soap", "p-cpe:/a:novell:suse_linux:11:php5-pgsql", "p-cpe:/a:novell:suse_linux:11:php5-bz2", "p-cpe:/a:novell:suse_linux:11:php5-gd", "p-cpe:/a:novell:suse_linux:11:php5-suhosin", "p-cpe:/a:novell:suse_linux:11:php5-mcrypt", "p-cpe:/a:novell:suse_linux:11:php5-dom", "p-cpe:/a:novell:suse_linux:11:php5-sysvshm", "p-cpe:/a:novell:suse_linux:11:php5-gmp", "p-cpe:/a:novell:suse_linux:11:php5-pdo", "p-cpe:/a:novell:suse_linux:11:php5-fastcgi", "p-cpe:/a:novell:suse_linux:11:php5-ldap", "p-cpe:/a:novell:suse_linux:11:php5-mbstring", "p-cpe:/a:novell:suse_linux:11:php5-odbc", "p-cpe:/a:novell:suse_linux:11:php5-dba", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:11:php5-openssl", "p-cpe:/a:novell:suse_linux:11:php5-tokenizer", "p-cpe:/a:novell:suse_linux:11:php5-pspell", "p-cpe:/a:novell:suse_linux:11:php5-zip", "p-cpe:/a:novell:suse_linux:11:php5-gettext", "p-cpe:/a:novell:suse_linux:11:php5-ctype", "p-cpe:/a:novell:suse_linux:11:php5-sysvmsg", "p-cpe:/a:novell:suse_linux:11:php5", "p-cpe:/a:novell:suse_linux:11:apache2-mod_php5", "p-cpe:/a:novell:suse_linux:11:php5-snmp", "p-cpe:/a:novell:suse_linux:11:php5-wddx", "p-cpe:/a:novell:suse_linux:11:php5-pcntl", "p-cpe:/a:novell:suse_linux:11:php5-xmlrpc", "p-cpe:/a:novell:suse_linux:11:php5-hash", "p-cpe:/a:novell:suse_linux:11:php5-exif", "p-cpe:/a:novell:suse_linux:11:php5-sysvsem", "p-cpe:/a:novell:suse_linux:11:php5-pear", "p-cpe:/a:novell:suse_linux:11:php5-calendar", "p-cpe:/a:novell:suse_linux:11:php5-xsl", "p-cpe:/a:novell:suse_linux:11:php5-curl", "p-cpe:/a:novell:suse_linux:11:php5-xmlreader", "p-cpe:/a:novell:suse_linux:11:php5-shmop", "p-cpe:/a:novell:suse_linux:11:php5-xmlwriter", "p-cpe:/a:novell:suse_linux:11:php5-iconv", "p-cpe:/a:novell:suse_linux:11:php5-ftp"], "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699"], "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "PHP5 was updated to fix several security issues.", "edition": 2, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "fc56db9d42a46a4e805970ea67e7f46b33be8196d36d39865977380ab8bb766b", "hashmap": [{"hash": "6fcc40cf9f5531280ed7d8272736323c", "key": "cpe"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "0c0ef9830ee1829b0ca673e635df5c04", "key": "cvelist"}, {"hash": "7ffda9669264dbb8d98fe2f4177b79f6", "key": "modified"}, {"hash": "1a352971f72b93c318824881342eabc2", "key": "href"}, {"hash": "1e7ed0e47f2cfa64bc747fed9a768987", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "71a40666da62ba38d22539c8277870c7", "key": "naslFamily"}, {"hash": "ce1a07b1ec31b999a1e8fb7330b8d09e", "key": "references"}, {"hash": "0ba1d9450f4ebc0439ee915e39e92e1a", "key": "published"}, {"hash": "737e2591b537c46d1ca7ce6f0cea5cb9", "key": "cvss"}, {"hash": "77892d33d7046082482bde71e5d87874", "key": "pluginID"}, {"hash": "b07c570f0ce89c95af141385cc7d6dea", "key": "title"}, {"hash": "10680c919c78d39221be2eec21fd1a34", "key": "sourceData"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=53282", "id": "SUSE_11_APACHE2-MOD_PHP5-110310.NASL", "lastseen": "2017-10-29T13:35:26", "modified": "2013-10-25T00:00:00", "naslFamily": "SuSE Local Security Checks", "objectVersion": "1.3", "pluginID": "53282", "published": "2011-04-04T00:00:00", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "http://support.novell.com/security/cve/CVE-2011-0752.html", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "http://support.novell.com/security/cve/CVE-2010-4698.html", "http://support.novell.com/security/cve/CVE-2010-4645.html", "http://support.novell.com/security/cve/CVE-2011-0708.html", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "http://support.novell.com/security/cve/CVE-2010-4150.html", "http://support.novell.com/security/cve/CVE-2011-0753.html", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "http://support.novell.com/security/cve/CVE-2011-0755.html", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "http://support.novell.com/security/cve/CVE-2010-4699.html", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "http://support.novell.com/security/cve/CVE-2010-4697.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53282);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2013/10/25 23:41:51 $\");\n\n script_cve_id(\"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"PHP5 was updated to fix several security issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4150.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4645.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4697.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4698.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4699.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0708.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0752.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0755.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 4133.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dbase\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/04/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, \"SuSE 11.1\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"apache2-mod_php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bcmath-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bz2-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-calendar-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ctype-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-curl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dba-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dbase-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dom-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-exif-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-fastcgi-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ftp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gd-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gettext-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-hash-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-iconv-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-json-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ldap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mbstring-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mcrypt-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mysql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-odbc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-openssl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pcntl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pdo-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pear-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pgsql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pspell-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-shmop-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-snmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-soap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-suhosin-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvmsg-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvsem-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvshm-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-tokenizer-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-wddx-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlreader-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlrpc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlwriter-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xsl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zip-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zlib-5.2.14-0.7.22.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2017-10-29T13:35:26"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699"], "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "PHP5 was updated to fix several security issues.", "edition": 1, "enchantments": {}, "hash": "c8dcf3b9569fb20e1d451e7e95ef92955a0833208411b70adbc05f1a30da47a1", "hashmap": [{"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "0c0ef9830ee1829b0ca673e635df5c04", "key": "cvelist"}, {"hash": "7ffda9669264dbb8d98fe2f4177b79f6", "key": "modified"}, {"hash": "1a352971f72b93c318824881342eabc2", "key": "href"}, {"hash": "1e7ed0e47f2cfa64bc747fed9a768987", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "71a40666da62ba38d22539c8277870c7", "key": "naslFamily"}, {"hash": "ce1a07b1ec31b999a1e8fb7330b8d09e", "key": "references"}, {"hash": "0ba1d9450f4ebc0439ee915e39e92e1a", "key": "published"}, {"hash": "737e2591b537c46d1ca7ce6f0cea5cb9", "key": "cvss"}, {"hash": "77892d33d7046082482bde71e5d87874", "key": "pluginID"}, {"hash": "b07c570f0ce89c95af141385cc7d6dea", "key": "title"}, {"hash": "10680c919c78d39221be2eec21fd1a34", "key": "sourceData"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=53282", "id": "SUSE_11_APACHE2-MOD_PHP5-110310.NASL", "lastseen": "2016-09-26T17:23:47", "modified": "2013-10-25T00:00:00", "naslFamily": "SuSE Local Security Checks", "objectVersion": "1.2", "pluginID": "53282", "published": "2011-04-04T00:00:00", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "http://support.novell.com/security/cve/CVE-2011-0752.html", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "http://support.novell.com/security/cve/CVE-2010-4698.html", "http://support.novell.com/security/cve/CVE-2010-4645.html", "http://support.novell.com/security/cve/CVE-2011-0708.html", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "http://support.novell.com/security/cve/CVE-2010-4150.html", "http://support.novell.com/security/cve/CVE-2011-0753.html", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "http://support.novell.com/security/cve/CVE-2011-0755.html", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "http://support.novell.com/security/cve/CVE-2010-4699.html", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "http://support.novell.com/security/cve/CVE-2010-4697.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53282);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2013/10/25 23:41:51 $\");\n\n script_cve_id(\"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"PHP5 was updated to fix several security issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4150.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4645.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4697.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4698.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4699.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0708.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0752.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0755.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 4133.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dbase\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/04/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, \"SuSE 11.1\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"apache2-mod_php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bcmath-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bz2-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-calendar-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ctype-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-curl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dba-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dbase-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dom-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-exif-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-fastcgi-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ftp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gd-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gettext-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-hash-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-iconv-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-json-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ldap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mbstring-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mcrypt-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mysql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-odbc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-openssl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pcntl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pdo-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pear-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pgsql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pspell-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-shmop-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-snmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-soap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-suhosin-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvmsg-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvsem-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvshm-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-tokenizer-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-wddx-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlreader-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlrpc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlwriter-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xsl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zip-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zlib-5.2.14-0.7.22.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2016-09-26T17:23:47"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:novell:suse_linux:11:php5-mysql", "p-cpe:/a:novell:suse_linux:11:php5-bcmath", "p-cpe:/a:novell:suse_linux:11:php5-json", "p-cpe:/a:novell:suse_linux:11:php5-zlib", "p-cpe:/a:novell:suse_linux:11:php5-dbase", "p-cpe:/a:novell:suse_linux:11:php5-soap", "p-cpe:/a:novell:suse_linux:11:php5-pgsql", "p-cpe:/a:novell:suse_linux:11:php5-bz2", "p-cpe:/a:novell:suse_linux:11:php5-gd", "p-cpe:/a:novell:suse_linux:11:php5-suhosin", "p-cpe:/a:novell:suse_linux:11:php5-mcrypt", "p-cpe:/a:novell:suse_linux:11:php5-dom", "p-cpe:/a:novell:suse_linux:11:php5-sysvshm", "p-cpe:/a:novell:suse_linux:11:php5-gmp", "p-cpe:/a:novell:suse_linux:11:php5-pdo", "p-cpe:/a:novell:suse_linux:11:php5-fastcgi", "p-cpe:/a:novell:suse_linux:11:php5-ldap", "p-cpe:/a:novell:suse_linux:11:php5-mbstring", "p-cpe:/a:novell:suse_linux:11:php5-odbc", "p-cpe:/a:novell:suse_linux:11:php5-dba", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:11:php5-openssl", "p-cpe:/a:novell:suse_linux:11:php5-tokenizer", "p-cpe:/a:novell:suse_linux:11:php5-pspell", "p-cpe:/a:novell:suse_linux:11:php5-zip", "p-cpe:/a:novell:suse_linux:11:php5-gettext", "p-cpe:/a:novell:suse_linux:11:php5-ctype", "p-cpe:/a:novell:suse_linux:11:php5-sysvmsg", "p-cpe:/a:novell:suse_linux:11:php5", "p-cpe:/a:novell:suse_linux:11:apache2-mod_php5", "p-cpe:/a:novell:suse_linux:11:php5-snmp", "p-cpe:/a:novell:suse_linux:11:php5-wddx", "p-cpe:/a:novell:suse_linux:11:php5-pcntl", "p-cpe:/a:novell:suse_linux:11:php5-xmlrpc", "p-cpe:/a:novell:suse_linux:11:php5-hash", "p-cpe:/a:novell:suse_linux:11:php5-exif", "p-cpe:/a:novell:suse_linux:11:php5-sysvsem", "p-cpe:/a:novell:suse_linux:11:php5-pear", "p-cpe:/a:novell:suse_linux:11:php5-calendar", "p-cpe:/a:novell:suse_linux:11:php5-xsl", "p-cpe:/a:novell:suse_linux:11:php5-curl", "p-cpe:/a:novell:suse_linux:11:php5-xmlreader", "p-cpe:/a:novell:suse_linux:11:php5-shmop", "p-cpe:/a:novell:suse_linux:11:php5-xmlwriter", "p-cpe:/a:novell:suse_linux:11:php5-iconv", "p-cpe:/a:novell:suse_linux:11:php5-ftp"], "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "PHP5 was updated to fix several security issues.", "edition": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "b5771643721eac54cabc481c0af0a6b75b38479d5370efb69032aeefcc209298", "hashmap": [{"hash": "6fcc40cf9f5531280ed7d8272736323c", "key": "cpe"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "0c0ef9830ee1829b0ca673e635df5c04", "key": "cvelist"}, {"hash": "7ffda9669264dbb8d98fe2f4177b79f6", "key": "modified"}, {"hash": "1a352971f72b93c318824881342eabc2", "key": "href"}, {"hash": "1e7ed0e47f2cfa64bc747fed9a768987", "key": "description"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "71a40666da62ba38d22539c8277870c7", "key": "naslFamily"}, {"hash": "ce1a07b1ec31b999a1e8fb7330b8d09e", "key": "references"}, {"hash": "0ba1d9450f4ebc0439ee915e39e92e1a", "key": "published"}, {"hash": "77892d33d7046082482bde71e5d87874", "key": "pluginID"}, {"hash": "b07c570f0ce89c95af141385cc7d6dea", "key": "title"}, {"hash": "10680c919c78d39221be2eec21fd1a34", "key": "sourceData"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=53282", "id": "SUSE_11_APACHE2-MOD_PHP5-110310.NASL", "lastseen": "2018-08-30T19:34:28", "modified": "2013-10-25T00:00:00", "naslFamily": "SuSE Local Security Checks", "objectVersion": "1.3", "pluginID": "53282", "published": "2011-04-04T00:00:00", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "http://support.novell.com/security/cve/CVE-2011-0752.html", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "http://support.novell.com/security/cve/CVE-2010-4698.html", "http://support.novell.com/security/cve/CVE-2010-4645.html", "http://support.novell.com/security/cve/CVE-2011-0708.html", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "http://support.novell.com/security/cve/CVE-2010-4150.html", "http://support.novell.com/security/cve/CVE-2011-0753.html", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "http://support.novell.com/security/cve/CVE-2011-0755.html", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "http://support.novell.com/security/cve/CVE-2010-4699.html", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "http://support.novell.com/security/cve/CVE-2010-4697.html"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53282);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2013/10/25 23:41:51 $\");\n\n script_cve_id(\"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"PHP5 was updated to fix several security issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4150.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4645.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4697.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4698.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4699.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0708.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0752.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0755.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 4133.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dbase\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/04/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, \"SuSE 11.1\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"apache2-mod_php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bcmath-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bz2-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-calendar-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ctype-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-curl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dba-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dbase-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dom-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-exif-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-fastcgi-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ftp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gd-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gettext-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-hash-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-iconv-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-json-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ldap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mbstring-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mcrypt-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mysql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-odbc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-openssl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pcntl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pdo-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pear-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pgsql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pspell-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-shmop-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-snmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-soap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-suhosin-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvmsg-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvsem-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvshm-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-tokenizer-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-wddx-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlreader-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlrpc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlwriter-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xsl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zip-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zlib-5.2.14-0.7.22.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:34:28"}], "edition": 4, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "6fcc40cf9f5531280ed7d8272736323c"}, {"key": "cvelist", "hash": "0c0ef9830ee1829b0ca673e635df5c04"}, {"key": "cvss", "hash": "737e2591b537c46d1ca7ce6f0cea5cb9"}, {"key": "description", "hash": "1e7ed0e47f2cfa64bc747fed9a768987"}, {"key": "href", "hash": "1a352971f72b93c318824881342eabc2"}, {"key": "modified", "hash": "7ffda9669264dbb8d98fe2f4177b79f6"}, {"key": "naslFamily", "hash": "71a40666da62ba38d22539c8277870c7"}, {"key": "pluginID", "hash": "77892d33d7046082482bde71e5d87874"}, {"key": "published", "hash": "0ba1d9450f4ebc0439ee915e39e92e1a"}, {"key": "references", "hash": "ce1a07b1ec31b999a1e8fb7330b8d09e"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "10680c919c78d39221be2eec21fd1a34"}, {"key": "title", "hash": "b07c570f0ce89c95af141385cc7d6dea"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "fc56db9d42a46a4e805970ea67e7f46b33be8196d36d39865977380ab8bb766b", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from SuSE 11 update information. The text itself is\n# copyright (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53282);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2013/10/25 23:41:51 $\");\n\n script_cve_id(\"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 11 host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\"PHP5 was updated to fix several security issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4150.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4645.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4697.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4698.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4699.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0708.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0752.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0755.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply SAT patch number 4133.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dbase\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:11:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/04/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)11\") audit(AUDIT_OS_NOT, \"SuSE 11\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SuSE 11\", cpu);\n\npl = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, \"SuSE 11.1\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"apache2-mod_php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bcmath-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-bz2-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-calendar-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ctype-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-curl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dba-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dbase-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-dom-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-exif-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-fastcgi-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ftp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gd-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gettext-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-gmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-hash-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-iconv-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-json-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-ldap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mbstring-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mcrypt-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-mysql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-odbc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-openssl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pcntl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pdo-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pear-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pgsql-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-pspell-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-shmop-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-snmp-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-soap-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-suhosin-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvmsg-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvsem-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-sysvshm-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-tokenizer-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-wddx-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlreader-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlrpc-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xmlwriter-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-xsl-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zip-5.2.14-0.7.22.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:1, reference:\"php5-zlib-5.2.14-0.7.22.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "SuSE Local Security Checks", "pluginID": "53282", "cpe": ["p-cpe:/a:novell:suse_linux:11:php5-mysql", "p-cpe:/a:novell:suse_linux:11:php5-bcmath", "p-cpe:/a:novell:suse_linux:11:php5-json", "p-cpe:/a:novell:suse_linux:11:php5-zlib", "p-cpe:/a:novell:suse_linux:11:php5-dbase", "p-cpe:/a:novell:suse_linux:11:php5-soap", "p-cpe:/a:novell:suse_linux:11:php5-pgsql", "p-cpe:/a:novell:suse_linux:11:php5-bz2", "p-cpe:/a:novell:suse_linux:11:php5-gd", "p-cpe:/a:novell:suse_linux:11:php5-suhosin", "p-cpe:/a:novell:suse_linux:11:php5-mcrypt", "p-cpe:/a:novell:suse_linux:11:php5-dom", "p-cpe:/a:novell:suse_linux:11:php5-sysvshm", "p-cpe:/a:novell:suse_linux:11:php5-gmp", "p-cpe:/a:novell:suse_linux:11:php5-pdo", "p-cpe:/a:novell:suse_linux:11:php5-fastcgi", "p-cpe:/a:novell:suse_linux:11:php5-ldap", "p-cpe:/a:novell:suse_linux:11:php5-mbstring", "p-cpe:/a:novell:suse_linux:11:php5-odbc", "p-cpe:/a:novell:suse_linux:11:php5-dba", "cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:11:php5-openssl", "p-cpe:/a:novell:suse_linux:11:php5-tokenizer", "p-cpe:/a:novell:suse_linux:11:php5-pspell", "p-cpe:/a:novell:suse_linux:11:php5-zip", "p-cpe:/a:novell:suse_linux:11:php5-gettext", "p-cpe:/a:novell:suse_linux:11:php5-ctype", "p-cpe:/a:novell:suse_linux:11:php5-sysvmsg", "p-cpe:/a:novell:suse_linux:11:php5", "p-cpe:/a:novell:suse_linux:11:apache2-mod_php5", "p-cpe:/a:novell:suse_linux:11:php5-snmp", "p-cpe:/a:novell:suse_linux:11:php5-wddx", "p-cpe:/a:novell:suse_linux:11:php5-pcntl", "p-cpe:/a:novell:suse_linux:11:php5-xmlrpc", "p-cpe:/a:novell:suse_linux:11:php5-hash", "p-cpe:/a:novell:suse_linux:11:php5-exif", "p-cpe:/a:novell:suse_linux:11:php5-sysvsem", "p-cpe:/a:novell:suse_linux:11:php5-pear", "p-cpe:/a:novell:suse_linux:11:php5-calendar", "p-cpe:/a:novell:suse_linux:11:php5-xsl", "p-cpe:/a:novell:suse_linux:11:php5-curl", "p-cpe:/a:novell:suse_linux:11:php5-xmlreader", "p-cpe:/a:novell:suse_linux:11:php5-shmop", "p-cpe:/a:novell:suse_linux:11:php5-xmlwriter", "p-cpe:/a:novell:suse_linux:11:php5-iconv", "p-cpe:/a:novell:suse_linux:11:php5-ftp"]}

{"nessus": [{"lastseen": "2019-01-16T20:12:53", "references": ["http://support.novell.com/security/cve/CVE-2011-0752.html", "http://support.novell.com/security/cve/CVE-2010-4698.html", "http://support.novell.com/security/cve/CVE-2010-4645.html", "http://support.novell.com/security/cve/CVE-2011-0708.html", "http://support.novell.com/security/cve/CVE-2010-4150.html", "http://support.novell.com/security/cve/CVE-2011-0753.html", "http://support.novell.com/security/cve/CVE-2011-0755.html", "http://support.novell.com/security/cve/CVE-2010-4699.html", "http://support.novell.com/security/cve/CVE-2010-4697.html"], "pluginID": "57157", "description": "PHP5 was updated to fix several security issues. (CVE-2010-4150 /\nCVE-2010-4645 / CVE-2010-4697 / CVE-2010-4698 / CVE-2010-4699 /\nCVE-2011-0708 / CVE-2011-0752 / CVE-2011-0753 / CVE-2011-0755)", "edition": 5, "reporter": "Tenable", "published": "2011-12-13T00:00:00", "title": "SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7393)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699"], "modified": "2012-05-17T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_APACHE2-MOD_PHP5-7393.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=57157", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(57157);\n script_version (\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2012/05/17 10:53:20 $\");\n\n script_cve_id(\"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7393)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"PHP5 was updated to fix several security issues. (CVE-2010-4150 /\nCVE-2010-4645 / CVE-2010-4697 / CVE-2010-4698 / CVE-2010-4699 /\nCVE-2011-0708 / CVE-2011-0752 / CVE-2011-0753 / CVE-2011-0755)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4150.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4645.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4697.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4698.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2010-4699.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0708.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0752.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0753.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2011-0755.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 7393.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"apache2-mod_php5-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-bcmath-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-bz2-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-calendar-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-ctype-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-curl-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-dba-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-dbase-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-devel-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-dom-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-exif-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-fastcgi-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-ftp-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-gd-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-gettext-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-gmp-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-hash-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-iconv-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-imap-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-json-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-ldap-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-mbstring-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-mcrypt-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-mhash-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-mysql-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-ncurses-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-odbc-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-openssl-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-pcntl-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-pdo-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-pear-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-pgsql-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-posix-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-pspell-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-shmop-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-snmp-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-soap-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-sockets-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-sqlite-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-suhosin-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-sysvmsg-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-sysvsem-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-sysvshm-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-tokenizer-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-wddx-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-xmlreader-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-xmlrpc-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-xsl-5.2.14-0.14.3\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:4, reference:\"php5-zlib-5.2.14-0.14.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:18:56", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "https://bugzilla.novell.com/show_bug.cgi?id=660102", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "https://bugzilla.novell.com/show_bug.cgi?id=672933", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "https://lists.opensuse.org/opensuse-updates/2011-04/msg00002.html"], "pluginID": "75431", "description": "php5 was updated to fix several security issues. (CVE-2010-3709,\nCVE-2010-4150, CVE-2010-4645, CVE-2010-4697, CVE-2010-4698,\nCVE-2010-4699, CVE-2010-4700, CVE-2011-0752, CVE-2011-0753,\nCVE-2011-0755,CVE-2011-0708, CVE-2011-0420)", "edition": 6, "reporter": "Tenable", "published": "2014-06-13T00:00:00", "title": "openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0276-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2011-0420", "CVE-2010-3709", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-4700"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:php5-openssl", "p-cpe:/a:novell:opensuse:php5-dba", "p-cpe:/a:novell:opensuse:php5-mcrypt", "p-cpe:/a:novell:opensuse:php5-sysvmsg", "p-cpe:/a:novell:opensuse:php5-bz2", "p-cpe:/a:novell:opensuse:php5-xmlrpc", "p-cpe:/a:novell:opensuse:php5-json", "p-cpe:/a:novell:opensuse:php5-sqlite", "p-cpe:/a:novell:opensuse:php5-suhosin", "p-cpe:/a:novell:opensuse:php5-curl", "p-cpe:/a:novell:opensuse:php5-mysql", "p-cpe:/a:novell:opensuse:php5-fileinfo", "p-cpe:/a:novell:opensuse:php5-calendar", "p-cpe:/a:novell:opensuse:php5-pear", "p-cpe:/a:novell:opensuse:php5-intl", "p-cpe:/a:novell:opensuse:php5-enchant", "p-cpe:/a:novell:opensuse:php5-ftp", "p-cpe:/a:novell:opensuse:php5-tidy", "p-cpe:/a:novell:opensuse:php5-tokenizer", "p-cpe:/a:novell:opensuse:php5-imap", "p-cpe:/a:novell:opensuse:php5-sockets", "p-cpe:/a:novell:opensuse:php5-gd", "p-cpe:/a:novell:opensuse:php5-posix", "p-cpe:/a:novell:opensuse:php5-sysvsem", "p-cpe:/a:novell:opensuse:php5-fastcgi", "p-cpe:/a:novell:opensuse:php5-wddx", "p-cpe:/a:novell:opensuse:php5-odbc", "p-cpe:/a:novell:opensuse:php5-xmlreader", "p-cpe:/a:novell:opensuse:php5-gmp", "p-cpe:/a:novell:opensuse:php5-zlib", "p-cpe:/a:novell:opensuse:php5-hash", "p-cpe:/a:novell:opensuse:php5-phar", "p-cpe:/a:novell:opensuse:php5-dom", "p-cpe:/a:novell:opensuse:php5-soap", "p-cpe:/a:novell:opensuse:php5-snmp", "p-cpe:/a:novell:opensuse:php5-pdo", "p-cpe:/a:novell:opensuse:php5-pspell", "p-cpe:/a:novell:opensuse:php5-ctype", "p-cpe:/a:novell:opensuse:apache2-mod_php5", "p-cpe:/a:novell:opensuse:php5-pcntl", "p-cpe:/a:novell:opensuse:php5-zip", "p-cpe:/a:novell:opensuse:php5-sysvshm", "p-cpe:/a:novell:opensuse:php5", "p-cpe:/a:novell:opensuse:php5-shmop", "cpe:/o:novell:opensuse:11.3", "p-cpe:/a:novell:opensuse:php5-devel", "p-cpe:/a:novell:opensuse:php5-iconv", "p-cpe:/a:novell:opensuse:php5-gettext", "p-cpe:/a:novell:opensuse:php5-xmlwriter", "p-cpe:/a:novell:opensuse:php5-bcmath", "p-cpe:/a:novell:opensuse:php5-pgsql", "p-cpe:/a:novell:opensuse:php5-xsl", "p-cpe:/a:novell:opensuse:php5-readline", "p-cpe:/a:novell:opensuse:php5-mbstring", "p-cpe:/a:novell:opensuse:php5-exif", "p-cpe:/a:novell:opensuse:php5-ldap"], "id": "SUSE_11_3_APACHE2-MOD_PHP5-110309.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=75431", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update apache2-mod_php5-4119.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(75431);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2018/11/10 11:49:59\");\n\n script_cve_id(\"CVE-2010-3709\", \"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2010-4700\", \"CVE-2011-0420\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0276-1)\");\n script_summary(english:\"Check for the apache2-mod_php5-4119 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"php5 was updated to fix several security issues. (CVE-2010-3709,\nCVE-2010-4150, CVE-2010-4645, CVE-2010-4697, CVE-2010-4698,\nCVE-2010-4699, CVE-2010-4700, CVE-2011-0752, CVE-2011-0753,\nCVE-2011-0755,CVE-2011-0708, CVE-2011-0420)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=660102\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=672933\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2011-04/msg00002.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected apache2-mod_php5 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-enchant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-fileinfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-intl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-phar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-posix\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-readline\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sockets\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sqlite\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-tidy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.3\", reference:\"apache2-mod_php5-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-bcmath-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-bz2-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-calendar-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-ctype-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-curl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-dba-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-devel-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-dom-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-enchant-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-exif-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-fastcgi-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-fileinfo-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-ftp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-gd-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-gettext-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-gmp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-hash-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-iconv-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-imap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-intl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-json-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-ldap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-mbstring-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-mcrypt-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-mysql-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-odbc-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-openssl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-pcntl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-pdo-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-pear-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-pgsql-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-phar-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-posix-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-pspell-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-readline-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-shmop-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-snmp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-soap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-sockets-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-sqlite-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-suhosin-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-sysvmsg-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-sysvsem-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-sysvshm-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-tidy-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-tokenizer-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-wddx-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-xmlreader-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-xmlrpc-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-xmlwriter-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-xsl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-zip-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.3\", reference:\"php5-zlib-5.3.3-0.17.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php5\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:12:05", "references": ["https://bugzilla.novell.com/show_bug.cgi?id=671710", "https://bugzilla.novell.com/show_bug.cgi?id=669189", "https://bugzilla.novell.com/show_bug.cgi?id=669162", "https://bugzilla.novell.com/show_bug.cgi?id=666512", "https://bugzilla.novell.com/show_bug.cgi?id=656523", "https://bugzilla.novell.com/show_bug.cgi?id=660102", "https://bugzilla.novell.com/show_bug.cgi?id=669188", "https://bugzilla.novell.com/show_bug.cgi?id=672933", "https://bugzilla.novell.com/show_bug.cgi?id=655968", "https://bugzilla.novell.com/show_bug.cgi?id=662932", "https://lists.opensuse.org/opensuse-updates/2011-04/msg00002.html"], "pluginID": "53695", "description": "php5 was updated to fix several security issues. (CVE-2010-3709,\nCVE-2010-4150, CVE-2010-4645, CVE-2010-4697, CVE-2010-4698,\nCVE-2010-4699, CVE-2010-4700, CVE-2011-0752, CVE-2011-0753,\nCVE-2011-0755,CVE-2011-0708, CVE-2011-0420)", "edition": 6, "reporter": "Tenable", "published": "2011-05-05T00:00:00", "title": "openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0276-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2011-0753", "CVE-2010-4645", "CVE-2011-0708", "CVE-2011-0420", "CVE-2010-3709", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-4700"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:php5-openssl", "p-cpe:/a:novell:opensuse:php5-dba", "p-cpe:/a:novell:opensuse:php5-mcrypt", "p-cpe:/a:novell:opensuse:php5-sysvmsg", "p-cpe:/a:novell:opensuse:php5-bz2", "p-cpe:/a:novell:opensuse:php5-xmlrpc", "p-cpe:/a:novell:opensuse:php5-json", "p-cpe:/a:novell:opensuse:php5-sqlite", "p-cpe:/a:novell:opensuse:php5-suhosin", "p-cpe:/a:novell:opensuse:php5-curl", "p-cpe:/a:novell:opensuse:php5-mysql", "p-cpe:/a:novell:opensuse:php5-fileinfo", "p-cpe:/a:novell:opensuse:php5-calendar", "p-cpe:/a:novell:opensuse:php5-pear", "p-cpe:/a:novell:opensuse:php5-intl", "p-cpe:/a:novell:opensuse:php5-enchant", "p-cpe:/a:novell:opensuse:php5-ftp", "p-cpe:/a:novell:opensuse:php5-tidy", "p-cpe:/a:novell:opensuse:php5-tokenizer", "p-cpe:/a:novell:opensuse:php5-imap", "p-cpe:/a:novell:opensuse:php5-sockets", "p-cpe:/a:novell:opensuse:php5-gd", "p-cpe:/a:novell:opensuse:php5-posix", "cpe:/o:novell:opensuse:11.2", "p-cpe:/a:novell:opensuse:php5-sysvsem", "p-cpe:/a:novell:opensuse:php5-fastcgi", "p-cpe:/a:novell:opensuse:php5-wddx", "p-cpe:/a:novell:opensuse:php5-odbc", "p-cpe:/a:novell:opensuse:php5-xmlreader", "p-cpe:/a:novell:opensuse:php5-gmp", "p-cpe:/a:novell:opensuse:php5-zlib", "p-cpe:/a:novell:opensuse:php5-hash", "p-cpe:/a:novell:opensuse:php5-phar", "p-cpe:/a:novell:opensuse:php5-dom", "p-cpe:/a:novell:opensuse:php5-soap", "p-cpe:/a:novell:opensuse:php5-snmp", "p-cpe:/a:novell:opensuse:php5-pdo", "p-cpe:/a:novell:opensuse:php5-pspell", "p-cpe:/a:novell:opensuse:php5-ctype", "p-cpe:/a:novell:opensuse:apache2-mod_php5", "p-cpe:/a:novell:opensuse:php5-pcntl", "p-cpe:/a:novell:opensuse:php5-zip", "p-cpe:/a:novell:opensuse:php5-sysvshm", "p-cpe:/a:novell:opensuse:php5", "p-cpe:/a:novell:opensuse:php5-shmop", "p-cpe:/a:novell:opensuse:php5-devel", "p-cpe:/a:novell:opensuse:php5-iconv", "p-cpe:/a:novell:opensuse:php5-gettext", "p-cpe:/a:novell:opensuse:php5-xmlwriter", "p-cpe:/a:novell:opensuse:php5-bcmath", "p-cpe:/a:novell:opensuse:php5-pgsql", "p-cpe:/a:novell:opensuse:php5-xsl", "p-cpe:/a:novell:opensuse:php5-readline", "p-cpe:/a:novell:opensuse:php5-mbstring", "p-cpe:/a:novell:opensuse:php5-exif", "p-cpe:/a:novell:opensuse:php5-ldap"], "id": "SUSE_11_2_APACHE2-MOD_PHP5-110309.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=53695", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update apache2-mod_php5-4119.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(53695);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/11/10 11:49:59\");\n\n script_cve_id(\"CVE-2010-3709\", \"CVE-2010-4150\", \"CVE-2010-4645\", \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2010-4699\", \"CVE-2010-4700\", \"CVE-2011-0420\", \"CVE-2011-0708\", \"CVE-2011-0752\", \"CVE-2011-0753\", \"CVE-2011-0755\");\n\n script_name(english:\"openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0276-1)\");\n script_summary(english:\"Check for the apache2-mod_php5-4119 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"php5 was updated to fix several security issues. (CVE-2010-3709,\nCVE-2010-4150, CVE-2010-4645, CVE-2010-4697, CVE-2010-4698,\nCVE-2010-4699, CVE-2010-4700, CVE-2011-0752, CVE-2011-0753,\nCVE-2011-0755,CVE-2011-0708, CVE-2011-0420)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=655968\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=656523\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=660102\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=662932\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=666512\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669162\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669188\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=669189\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=671710\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.novell.com/show_bug.cgi?id=672933\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.opensuse.org/opensuse-updates/2011-04/msg00002.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected apache2-mod_php5 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:apache2-mod_php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-bcmath\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-bz2\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-calendar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ctype\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-curl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-dba\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-dom\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-enchant\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-exif\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-fastcgi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-fileinfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ftp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gd\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gettext\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-gmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-hash\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-iconv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-imap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-intl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-ldap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mbstring\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mcrypt\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-mysql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-odbc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-openssl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pcntl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pdo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pear\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pgsql\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-phar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-posix\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-pspell\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-readline\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-shmop\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-snmp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-soap\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sockets\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sqlite\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-suhosin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvmsg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvsem\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-sysvshm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-tidy\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-tokenizer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-wddx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlreader\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlrpc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xmlwriter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-xsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-zip\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:php5-zlib\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:11.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/03/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/05/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE11\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"11.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE11.2\", reference:\"apache2-mod_php5-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-bcmath-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-bz2-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-calendar-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-ctype-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-curl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-dba-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-devel-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-dom-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-enchant-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-exif-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-fastcgi-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-fileinfo-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-ftp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-gd-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-gettext-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-gmp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-hash-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-iconv-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-imap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-intl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-json-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-ldap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-mbstring-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-mcrypt-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-mysql-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-odbc-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-openssl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-pcntl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-pdo-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-pear-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-pgsql-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-phar-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-posix-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-pspell-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-readline-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-shmop-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-snmp-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-soap-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-sockets-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-sqlite-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-suhosin-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-sysvmsg-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-sysvsem-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-sysvshm-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-tidy-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-tokenizer-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-wddx-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-xmlreader-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-xmlrpc-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-xmlwriter-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-xsl-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-zip-5.3.3-0.17.1\") ) flag++;\nif ( rpm_check(release:\"SUSE11.2\", reference:\"php5-zlib-5.3.3-0.17.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"php5\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:32", "references": ["http://www.php.net/ChangeLog-5.php#5.2.15", "http://www.php.net/releases/5_2_15.php"], "pluginID": "51139", "description": "According to its banner, the version of PHP 5.2 installed on the\nremote host is older than 5.2.15. Such versions may be affected by\nseveral security issues :\n - A crash in the zip extract method.\n\n - A possible double free exists in the imap extension.\n (CVE-2010-4150)\n\n - An unspecified flaw exists in 'open_basedir'. \n (CVE-2010-3436)\n\n - A possible crash could occur in 'mssql_fetch_batch()'.\n - A NULL pointer dereference exists in \n 'ZipArchive::getArchiveComment'. (CVE-2010-3709)\n\n - A crash exists if anti-aliasing steps are invalid.\n (Bug #53492)\n\n - A crash exists in pdo_firebird getAttribute(). (Bug \n #53323)\n\n - A user-after-free vulnerability in the Zend engine when\n a '__set()', '__get()', '__isset()' or '__unset()' \n method is called can allow for a denial of service \n attack. (Bug #52879 / CVE-2010-4697)\n\n - A stack-based buffer overflow exists in the \n 'imagepstext()' function in the GD extension. (Bug \n #53492 / CVE-2010-4698)\n \n - The extract function does not prevent use of the\n EXTR_OVERWRITE parameter to overwrite the GLOBALS\n superglobal array and the 'this' variable, which\n allows attackers to bypass intended access restrictions.\n (CVE-2011-0752)", "edition": 6, "reporter": "Tenable", "published": "2010-12-13T00:00:00", "title": "PHP 5.2 < 5.2.15 Multiple Vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CGI abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2010-3436", "CVE-2010-3709", "CVE-2010-4150"], "modified": "2018-07-24T00:00:00", "cpe": ["cpe:/a:php:php"], "id": "PHP_5_2_15.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51139", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51139);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/07/24 18:56:10\");\n\n script_cve_id(\n \"CVE-2010-3436\",\n \"CVE-2010-3709\",\n \"CVE-2010-4150\",\n \"CVE-2010-4697\",\n \"CVE-2010-4698\",\n \"CVE-2011-0752\"\n );\n script_bugtraq_id(44718, 44723, 45335, 45952, 46448);\n\n script_name(english:\"PHP 5.2 < 5.2.15 Multiple Vulnerabilities\");\n script_summary(english:\"Checks version of PHP\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote web server uses a version of PHP that is affected by\nmultiple flaws.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its banner, the version of PHP 5.2 installed on the\nremote host is older than 5.2.15. Such versions may be affected by\nseveral security issues :\n \n - A crash in the zip extract method.\n\n - A possible double free exists in the imap extension.\n (CVE-2010-4150)\n\n - An unspecified flaw exists in 'open_basedir'. \n (CVE-2010-3436)\n\n - A possible crash could occur in 'mssql_fetch_batch()'.\n \n - A NULL pointer dereference exists in \n 'ZipArchive::getArchiveComment'. (CVE-2010-3709)\n\n - A crash exists if anti-aliasing steps are invalid.\n (Bug #53492)\n\n - A crash exists in pdo_firebird getAttribute(). (Bug \n #53323)\n\n - A user-after-free vulnerability in the Zend engine when\n a '__set()', '__get()', '__isset()' or '__unset()' \n method is called can allow for a denial of service \n attack. (Bug #52879 / CVE-2010-4697)\n\n - A stack-based buffer overflow exists in the \n 'imagepstext()' function in the GD extension. (Bug \n #53492 / CVE-2010-4698)\n \n - The extract function does not prevent use of the\n EXTR_OVERWRITE parameter to overwrite the GLOBALS\n superglobal array and the 'this' variable, which\n allows attackers to bypass intended access restrictions.\n (CVE-2011-0752)\"\n );\n\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/releases/5_2_15.php\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/ChangeLog-5.php#5.2.15\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to PHP version 5.2.15 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2010/12/10\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/12/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:php:php\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"php_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"audit.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:80, php:TRUE);\n\nphp = get_php_from_kb(\n port : port,\n exit_on_fail : TRUE\n);\n\nversion = php[\"ver\"];\nsource = php[\"src\"];\n\nbackported = get_kb_item('www/php/'+port+'/'+version+'/backported');\n\nif (report_paranoia < 2 && backported)\n audit(AUDIT_BACKPORT_SERVICE, port, \"PHP \"+version+\" install\");\n\nif (version =~ \"^5\\.2\\.([0-9]|1[0-4])($|[^0-9])\")\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Version source : '+source +\n '\\n Installed version : '+version+\n '\\n Fixed version : 5.2.15\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, \"PHP\", port, version);\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:32", "references": ["http://www.php.net/ChangeLog-5.php#5.3.4", "http://www.php.net/releases/5_3_4.php"], "pluginID": "51140", "description": "According to its banner, the version of PHP 5.3 installed on the\nremote host is older than 5.3.4. Such versions may be affected by\nseveral security issues :\n\n - A crash in the zip extract method.\n\n - A stack-based buffer overflow in impagepstext()\n of the GD extension.\n\n - An unspecified vulnerability related to\n symbolic resolution when using a DFS share.\n\n - A security bypass vulnerability related\n to using pathnames containing NULL bytes.\n (CVE-2006-7243)\n\n - Multiple format string vulnerabilities.\n (CVE-2010-2094, CVE-2010-2950)\n\n - An unspecified security bypass vulnerability\n in open_basedir(). (CVE-2010-3436)\n\n - A NULL pointer dereference in\n ZipArchive::getArchiveComment. (CVE-2010-3709)\n\n - Memory corruption in php_filter_validate_email().\n (CVE-2010-3710)\n\n - An input validation vulnerability in\n xml_utf8_decode(). (CVE-2010-3870)\n\n - A possible double free in the IMAP extension.\n (CVE-2010-4150)\n\n - An information disclosure vulnerability in\n 'mb_strcut()'. (CVE-2010-4156)\n\n - An integer overflow vulnerability in 'getSymbol()'.\n (CVE-2010-4409)\n\n - A use-after-free vulnerability in the Zend engine when\n a '__set()', '__get()', '__isset()' or '__unset()'\n method is called can allow for a denial of service\n attack. (Bug #52879 / CVE-2010-4697)\n\n - A stack-based buffer overflow exists in the\n 'imagepstext()' function in the GD extension. (Bug\n #53492 / CVE-2010-4698)\n\n - The 'iconv_mime_decode_headers()' function in the iconv\n extension fails to properly handle encodings that are\n not recognized by the iconv and mbstring\n implementations. (Bug #52941 / CVE-2010-4699)\n\n - The 'set_magic_quotes_runtime()' function when the\n MySQLi extension is used does not properly interact\n with the 'mysqli_fetch_assoc()' function. (Bug #52221 /\n CVE-2010-4700)\n\n - A race condition exists in the PCNTL extension.\n (CVE-2011-0753)\n\n - The SplFileInfo::getType function in the Standard PHP\n Library extension does not properly detect symbolic\n links. (CVE-2011-0754)\n\n - An integer overflow exists in the mt_rand function.\n (CVE-2011-0755)", "edition": 9, "reporter": "Tenable", "published": "2010-12-13T00:00:00", "title": "PHP 5.3 < 5.3.4 Multiple Vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CGI abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0754", "CVE-2010-4697", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0753", "CVE-2010-3436", "CVE-2010-3870", "CVE-2010-2094", "CVE-2010-3709", "CVE-2010-4156", "CVE-2010-3710", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-2950", "CVE-2010-4700", "CVE-2010-4409"], "modified": "2018-09-17T00:00:00", "cpe": ["cpe:/a:php:php"], "id": "PHP_5_3_4.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51140", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51140);\n script_version(\"1.22\");\n script_cvs_date(\"Date: 2018/09/17 21:46:52\");\n\n script_cve_id(\n \"CVE-2006-7243\",\n \"CVE-2010-2094\",\n \"CVE-2010-2950\",\n \"CVE-2010-3436\",\n \"CVE-2010-3709\",\n \"CVE-2010-3710\",\n \"CVE-2010-3870\",\n \"CVE-2010-4150\",\n \"CVE-2010-4156\",\n \"CVE-2010-4409\",\n \"CVE-2010-4697\",\n \"CVE-2010-4698\",\n \"CVE-2010-4699\",\n \"CVE-2010-4700\",\n \"CVE-2011-0753\",\n \"CVE-2011-0754\",\n \"CVE-2011-0755\"\n );\n script_bugtraq_id(\n 40173,\n 43926,\n 44605,\n 44718,\n 44723,\n 44951,\n 44980,\n 45119,\n 45335,\n 45338,\n 45339,\n 45952,\n 45954,\n 46056,\n 46168\n );\n script_xref(name:\"CERT\", value:\"479900\");\n\n script_name(english:\"PHP 5.3 < 5.3.4 Multiple Vulnerabilities\");\n script_summary(english:\"Checks version of PHP\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote web server uses a version of PHP that is affected by\nmultiple flaws.\"\n );\n\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its banner, the version of PHP 5.3 installed on the\nremote host is older than 5.3.4. Such versions may be affected by\nseveral security issues :\n\n - A crash in the zip extract method.\n\n - A stack-based buffer overflow in impagepstext()\n of the GD extension.\n\n - An unspecified vulnerability related to\n symbolic resolution when using a DFS share.\n\n - A security bypass vulnerability related\n to using pathnames containing NULL bytes.\n (CVE-2006-7243)\n\n - Multiple format string vulnerabilities.\n (CVE-2010-2094, CVE-2010-2950)\n\n - An unspecified security bypass vulnerability\n in open_basedir(). (CVE-2010-3436)\n\n - A NULL pointer dereference in\n ZipArchive::getArchiveComment. (CVE-2010-3709)\n\n - Memory corruption in php_filter_validate_email().\n (CVE-2010-3710)\n\n - An input validation vulnerability in\n xml_utf8_decode(). (CVE-2010-3870)\n\n - A possible double free in the IMAP extension.\n (CVE-2010-4150)\n\n - An information disclosure vulnerability in\n 'mb_strcut()'. (CVE-2010-4156)\n\n - An integer overflow vulnerability in 'getSymbol()'.\n (CVE-2010-4409)\n\n - A use-after-free vulnerability in the Zend engine when\n a '__set()', '__get()', '__isset()' or '__unset()'\n method is called can allow for a denial of service\n attack. (Bug #52879 / CVE-2010-4697)\n\n - A stack-based buffer overflow exists in the\n 'imagepstext()' function in the GD extension. (Bug\n #53492 / CVE-2010-4698)\n\n - The 'iconv_mime_decode_headers()' function in the iconv\n extension fails to properly handle encodings that are\n not recognized by the iconv and mbstring\n implementations. (Bug #52941 / CVE-2010-4699)\n\n - The 'set_magic_quotes_runtime()' function when the\n MySQLi extension is used does not properly interact\n with the 'mysqli_fetch_assoc()' function. (Bug #52221 /\n CVE-2010-4700)\n\n - A race condition exists in the PCNTL extension.\n (CVE-2011-0753)\n\n - The SplFileInfo::getType function in the Standard PHP\n Library extension does not properly detect symbolic\n links. (CVE-2011-0754)\n\n - An integer overflow exists in the mt_rand function.\n (CVE-2011-0755)\"\n );\n\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/releases/5_3_4.php\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/ChangeLog-5.php#5.3.4\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to PHP 5.3.4 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2010-4700\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/12/18\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/12/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/12/13\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:php:php\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"php_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"audit.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:80, php:TRUE);\n\nphp = get_php_from_kb(\n port : port,\n exit_on_fail : TRUE\n);\n\nversion = php[\"ver\"];\nsource = php[\"src\"];\n\nbackported = get_kb_item('www/php/'+port+'/'+version+'/backported');\n\nif (report_paranoia < 2 && backported)\n audit(AUDIT_BACKPORT_SERVICE, port, \"PHP \"+version+\" install\");\n\nif (version =~ \"^5\\.3\\.[0-3]($|[^0-9])\") \n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Version source : '+source +\n '\\n Installed version : '+version+\n '\\n Fixed version : 5.3.4\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, \"PHP\", port, version);\n", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:35", "references": ["http://www.nessus.org/u?e4f80ea1"], "pluginID": "51451", "description": "New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2,\n13.0, 13.1, and -current to fix a security issue.", "edition": 6, "reporter": "Tenable", "published": "2011-01-11T00:00:00", "title": "Slackware 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / current : php (SSA:2011-010-01)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-06-27T00:00:00", "cpe": ["cpe:/o:slackware:slackware_linux:12.0", "cpe:/o:slackware:slackware_linux:12.2", "cpe:/o:slackware:slackware_linux:13.0", "p-cpe:/a:slackware:slackware_linux:php", "cpe:/o:slackware:slackware_linux:11.0", "cpe:/o:slackware:slackware_linux", "cpe:/o:slackware:slackware_linux:12.1", "cpe:/o:slackware:slackware_linux:13.1"], "id": "SLACKWARE_SSA_2011-010-01.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51451", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Slackware Security Advisory 2011-010-01. The text \n# itself is copyright (C) Slackware Linux, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51451);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/06/27 18:42:26\");\n\n script_cve_id(\"CVE-2010-4645\");\n script_bugtraq_id(45668);\n script_xref(name:\"SSA\", value:\"2011-010-01\");\n\n script_name(english:\"Slackware 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / current : php (SSA:2011-010-01)\");\n script_summary(english:\"Checks for updated package in /var/log/packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Slackware host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2,\n13.0, 13.1, and -current to fix a security issue.\"\n );\n # http://www.slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.484686\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e4f80ea1\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected php package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:slackware:slackware_linux:php\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:11.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:12.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:13.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:13.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/01/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Slackware Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Slackware/release\", \"Host/Slackware/packages\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"slackware.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Slackware/release\")) audit(AUDIT_OS_NOT, \"Slackware\");\nif (!get_kb_item(\"Host/Slackware/packages\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Slackware\", cpu);\n\n\nflag = 0;\nif (slackware_check(osver:\"11.0\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack11.0\")) flag++;\n\nif (slackware_check(osver:\"12.0\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack12.0\")) flag++;\n\nif (slackware_check(osver:\"12.1\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack12.1\")) flag++;\n\nif (slackware_check(osver:\"12.2\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack12.2\")) flag++;\n\nif (slackware_check(osver:\"13.0\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack13.0\")) flag++;\nif (slackware_check(osver:\"13.0\", arch:\"x86_64\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"x86_64\", pkgnum:\"1_slack13.0\")) flag++;\n\nif (slackware_check(osver:\"13.1\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"i486\", pkgnum:\"1_slack13.1\")) flag++;\nif (slackware_check(osver:\"13.1\", arch:\"x86_64\", pkgname:\"php\", pkgver:\"5.2.17\", pkgarch:\"x86_64\", pkgnum:\"1_slack13.1\")) flag++;\n\nif (slackware_check(osver:\"current\", pkgname:\"php\", pkgver:\"5.3.5\", pkgarch:\"i486\", pkgnum:\"1\")) flag++;\nif (slackware_check(osver:\"current\", arch:\"x86_64\", pkgname:\"php\", pkgver:\"5.3.5\", pkgarch:\"x86_64\", pkgnum:\"1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:slackware_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:35", "references": ["http://www.php.net/distributions/test_bug53632.txt", "https://bugs.php.net/bug.php?id=53632", "http://www.php.net/releases/5_3_5.php", "http://www.php.net/releases/5_2_17.php"], "pluginID": "51439", "description": "According to its banner, the version of PHP 5.x installed on the\nremote host is older than 5.2.17 or 5.3.5. \n\nSuch versions may experience a crash while performing string to double\nconversion for certain numeric values. Only x86 32-bit PHP processes\nare known to be affected by this issue regardless of whether the\nsystem running PHP is 32-bit or 64-bit.", "edition": 7, "reporter": "Tenable", "published": "2011-01-07T00:00:00", "title": "PHP 5.2 < 5.2.17 / 5.3 < 5.3.5 String To Double Conversion DoS", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CGI abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-11-15T00:00:00", "cpe": ["cpe:/a:php:php"], "id": "PHP_5_3_5.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51439", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51439);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2018/11/15 20:50:18\");\n\n script_cve_id(\"CVE-2010-4645\");\n script_bugtraq_id(45668);\n\n script_name(english:\"PHP 5.2 < 5.2.17 / 5.3 < 5.3.5 String To Double Conversion DoS\");\n script_summary(english:\"Checks version of PHP\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote web server uses a version of PHP that is affected by\na denial of service vulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its banner, the version of PHP 5.x installed on the\nremote host is older than 5.2.17 or 5.3.5. \n\nSuch versions may experience a crash while performing string to double\nconversion for certain numeric values. Only x86 32-bit PHP processes\nare known to be affected by this issue regardless of whether the\nsystem running PHP is 32-bit or 64-bit.\"\n );\n\n script_set_attribute(attribute:\"see_also\", value:\"https://bugs.php.net/bug.php?id=53632\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/distributions/test_bug53632.txt\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/releases/5_2_17.php\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.php.net/releases/5_3_5.php\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to PHP 5.2.17/5.3.5 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No exploit is required\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2010/12/30\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/01/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/07\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:php:php\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"php_version.nasl\");\n script_require_ports(\"Services/www\", 80);\n script_require_keys(\"www/PHP\");\n exit(0);\n}\n\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\ninclude(\"audit.inc\");\ninclude(\"webapp_func.inc\");\n\nport = get_http_port(default:80, php:TRUE);\n\nphp = get_php_from_kb(\n port : port,\n exit_on_fail : TRUE\n);\n\nversion = php[\"ver\"];\nsource = php[\"src\"];\n\nbackported = get_kb_item('www/php/'+port+'/'+version+'/backported');\n\nif (report_paranoia < 2 && backported)\n audit(AUDIT_BACKPORT_SERVICE, port, \"PHP \"+version+\" install\");\n\nif (\n (version =~ \"^5\\.2\\.([0-9]|1[0-6])($|[^0-9])\") ||\n (version =~ \"^5\\.3\\.[0-4]($|[^0-9])\")\n)\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Version source : '+source +\n '\\n Installed version : '+version+\n '\\n Fixed version : 5.2.17/5.3.5\\n';\n security_warning(port:port, extra:report);\n }\n else security_warning(port);\n exit(0);\n}\nelse audit(AUDIT_LISTEN_NOT_VULN, \"PHP\", port, version);\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:19:49", "references": ["https://support.f5.com/csp/article/K12650"], "pluginID": "78127", "description": "The strtod.c function may allow context-dependent attackers to cause a\ndenial-of-service via a certain floating-point value in scientific\nnotation, which is not properly handled in x87 FPU registers.", "edition": 8, "reporter": "Tenable", "published": "2014-10-10T00:00:00", "title": "F5 Networks BIG-IP : PHP vulnerability (SOL12650)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "F5 Networks Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2019-01-04T00:00:00", "cpe": ["cpe:/h:f5:big-ip", "cpe:/a:f5:big-ip_access_policy_manager"], "id": "F5_BIGIP_SOL12650.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78127", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from F5 Networks BIG-IP Solution SOL12650.\n#\n# The text description of this plugin is (C) F5 Networks.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78127);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/01/04 10:03:40\");\n\n script_cve_id(\"CVE-2010-4645\");\n script_bugtraq_id(45668);\n\n script_name(english:\"F5 Networks BIG-IP : PHP vulnerability (SOL12650)\");\n script_summary(english:\"Checks the BIG-IP version.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote device is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The strtod.c function may allow context-dependent attackers to cause a\ndenial-of-service via a certain floating-point value in scientific\nnotation, which is not properly handled in x87 FPU registers.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://support.f5.com/csp/article/K12650\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade to one of the non-vulnerable versions listed in the F5\nSolution SOL12650.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:f5:big-ip_access_policy_manager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:f5:big-ip\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/02/28\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"F5 Networks Local Security Checks\");\n\n script_dependencies(\"f5_bigip_detect.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/BIG-IP/hotfix\", \"Host/BIG-IP/modules\", \"Host/BIG-IP/version\");\n\n exit(0);\n}\n\n\ninclude(\"f5_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nversion = get_kb_item(\"Host/BIG-IP/version\");\nif ( ! version ) audit(AUDIT_OS_NOT, \"F5 Networks BIG-IP\");\nif ( isnull(get_kb_item(\"Host/BIG-IP/hotfix\")) ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/hotfix\");\nif ( ! get_kb_item(\"Host/BIG-IP/modules\") ) audit(AUDIT_KB_MISSING, \"Host/BIG-IP/modules\");\n\nsol = \"SOL12650\";\nvmatrix = make_array();\n\n# APM\nvmatrix[\"APM\"] = make_array();\nvmatrix[\"APM\"][\"affected\" ] = make_list(\"10.0.0-10.2.1\");\nvmatrix[\"APM\"][\"unaffected\"] = make_list(\"10.2.2-10.2.4\",\"11\");\n\n\nif (bigip_is_affected(vmatrix:vmatrix, sol:sol))\n{\n if (report_verbosity > 0) security_warning(port:0, extra:bigip_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = bigip_get_tested_modules();\n audit_extra = \"For BIG-IP module(s) \" + tested + \",\";\n if (tested) audit(AUDIT_INST_VER_NOT_VULN, audit_extra, version);\n else audit(AUDIT_HOST_NOT, \"running the affected module APM\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:35", "references": ["http://www.nessus.org/u?2913882f"], "pluginID": "51450", "description": "PHP developers reports :\n\nSecurity Enhancements and Fixes in PHP 5.3.5 :\n\n- Fixed bug #53632 (PHP hangs on numeric value\n2.2250738585072011e-308). (CVE-2010-4645)\n\nSecurity Enhancements and Fixes in PHP 5.2.17 :\n\n- Fixed bug #53632 (PHP hangs on numeric value\n2.2250738585072011e-308). (CVE-2010-4645)", "edition": 6, "reporter": "Tenable", "published": "2011-01-10T00:00:00", "title": "FreeBSD : php -- multiple vulnerabilities (2b6ed5c7-1a7f-11e0-b61d-000c29d1636d)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-11-10T00:00:00", "cpe": ["cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:php5", "p-cpe:/a:freebsd:freebsd:php52"], "id": "FREEBSD_PKG_2B6ED5C71A7F11E0B61D000C29D1636D.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51450", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51450);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2018/11/10 11:49:42\");\n\n script_cve_id(\"CVE-2010-4645\");\n\n script_name(english:\"FreeBSD : php -- multiple vulnerabilities (2b6ed5c7-1a7f-11e0-b61d-000c29d1636d)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"PHP developers reports :\n\nSecurity Enhancements and Fixes in PHP 5.3.5 :\n\n- Fixed bug #53632 (PHP hangs on numeric value\n2.2250738585072011e-308). (CVE-2010-4645)\n\nSecurity Enhancements and Fixes in PHP 5.2.17 :\n\n- Fixed bug #53632 (PHP hangs on numeric value\n2.2250738585072011e-308). (CVE-2010-4645)\"\n );\n # https://vuxml.freebsd.org/freebsd/2b6ed5c7-1a7f-11e0-b61d-000c29d1636d.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2913882f\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php5\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:php52\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/01/06\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/01/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"php5<5.3.5\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"php52<5.2.17\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-01-16T20:11:38", "references": ["http://www.nessus.org/u?217b0159", "http://www.nessus.org/u?91a377bc", "http://www.nessus.org/u?fd839aef", "https://bugzilla.redhat.com/show_bug.cgi?id=667806", "http://www.nessus.org/u?a5d1258e"], "pluginID": "51648", "description": "This release resolves a critical issue, reported as PHP bug #53632 and\nCVE-2010-4645, where conversions from string to double might cause the\nPHP interpreter to hang on systems using x87 FPU registers.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2011-01-24T00:00:00", "title": "Fedora 13 : maniadrive-1.2-26.fc13.1 / maniadrive-data-1.2-5.fc13 / php-5.3.5-1.fc13 / etc (2011-0321)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-07-12T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:13", "p-cpe:/a:fedoraproject:fedora:php-eaccelerator", "p-cpe:/a:fedoraproject:fedora:php", "p-cpe:/a:fedoraproject:fedora:maniadrive-data", "p-cpe:/a:fedoraproject:fedora:maniadrive"], "id": "FEDORA_2011-0321.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=51648", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2011-0321.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(51648);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2018/07/12 15:01:52\");\n\n script_cve_id(\"CVE-2010-4645\");\n script_xref(name:\"FEDORA\", value:\"2011-0321\");\n\n script_name(english:\"Fedora 13 : maniadrive-1.2-26.fc13.1 / maniadrive-data-1.2-5.fc13 / php-5.3.5-1.fc13 / etc (2011-0321)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This release resolves a critical issue, reported as PHP bug #53632 and\nCVE-2010-4645, where conversions from string to double might cause the\nPHP interpreter to hang on systems using x87 FPU registers.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=667806\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-January/053355.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a5d1258e\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-January/053356.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?91a377bc\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-January/053357.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?fd839aef\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2011-January/053358.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?217b0159\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:maniadrive\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:maniadrive-data\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:php\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:php-eaccelerator\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:13\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/01/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/01/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^13([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 13.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC13\", reference:\"maniadrive-1.2-26.fc13.1\")) flag++;\nif (rpm_check(release:\"FC13\", reference:\"maniadrive-data-1.2-5.fc13\")) flag++;\nif (rpm_check(release:\"FC13\", reference:\"php-5.3.5-1.fc13\")) flag++;\nif (rpm_check(release:\"FC13\", reference:\"php-eaccelerator-0.9.6.1-4.fc13\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"maniadrive / maniadrive-data / php / php-eaccelerator\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "cve": [{"lastseen": "2018-11-01T05:12:50", "references": ["http://www.php.net/ChangeLog-5.php", "http://bugs.php.net/52879", "https://exchange.xforce.ibmcloud.com/vulnerabilities/65310", "http://www.securityfocus.com/bid/45952", "http://marc.info/?l=bugtraq&m=133469208622507&w=2"], "description": "Use-after-free vulnerability in the Zend engine in PHP before 5.2.15 and 5.3.x before 5.3.4 might allow context-dependent attackers to cause a denial of service (heap memory corruption) or have unspecified other impact via vectors related to use of __set, __get, __isset, and __unset methods on objects accessed by a reference.", "edition": 4, "reporter": "NVD", "published": "2011-01-18T15:00:10", "title": "CVE-2010-4697", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:12:50", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12528", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12528"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2010-4697"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12528", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12528"}], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6"], "id": "CVE-2010-4697", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4697", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-09-19T13:37:12", "references": ["http://www.securityfocus.com/bid/45338", "http://bugs.php.net/53492", "http://seclists.org/fulldisclosure/2010/Dec/180", "http://www.php.net/ChangeLog-5.php", "http://marc.info/?l=bugtraq&m=133469208622507&w=2"], "description": "Stack-based buffer overflow in the GD extension in PHP before 5.2.15 and 5.3.x before 5.3.4 allows context-dependent attackers to cause a denial of service (application crash) via a large number of anti-aliasing steps in an argument to the imagepstext function.", "edition": 2, "reporter": "NVD", "published": "2011-01-18T15:00:10", "title": "CVE-2010-4698", "type": "cve", "enchantments": {"score": {"modified": "2017-09-19T13:37:12", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11939", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11939"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2010-4698"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:11939", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11939"}], "modified": "2017-09-18T21:31:49", "cpe": ["cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:5.2.14"], "id": "CVE-2010-4698", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4698", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-08-17T11:15:01", "references": ["http://www.vupen.com/english/advisories/2011/0198", "http://www.ubuntu.com/usn/USN-1042-1", "http://www.vupen.com/english/advisories/2011/0060", "http://svn.php.net/viewvc/php/php-src/branches/PHP_5_2/Zend/zend_strtod.c?r1=266327&r2=307095&pathrev=307095", "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053333.html", "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html", "http://www.redhat.com/support/errata/RHSA-2011-0195.html", "http://www.vupen.com/english/advisories/2011/0077", "http://www.exploringbinary.com/php-hangs-on-numeric-value-2-2250738585072011e-308/", "http://www.redhat.com/support/errata/RHSA-2011-0196.html", "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053355.html", "http://support.apple.com/kb/HT5002", "http://www.openwall.com/lists/oss-security/2011/01/06/5", "http://bugs.php.net/53632", "http://www.openwall.com/lists/oss-security/2011/01/05/2", "http://hal.archives-ouvertes.fr/docs/00/28/14/29/PDF/floating-point-article.pdf", "https://exchange.xforce.ibmcloud.com/vulnerabilities/64470", "http://www.securityfocus.com/bid/45668", "http://marc.info/?l=bugtraq&m=133226187115472&w=2", "http://marc.info/?l=bugtraq&m=133469208622507&w=2", "http://www.vupen.com/english/advisories/2011/0066", "http://slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.484686", "http://www.openwall.com/lists/oss-security/2011/01/05/8"], "description": "strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308.", "edition": 2, "reporter": "NVD", "published": "2011-01-10T22:00:04", "title": "CVE-2010-4645", "type": "cve", "enchantments": {"score": {"modified": "2017-08-17T11:15:01", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2010-4645"], "scanner": [], "modified": "2017-08-16T21:33:17", "cpe": ["cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.3.4", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:5.2.15", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.2.16"], "id": "CVE-2010-4645", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4645", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:12:50", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/64963", "http://bugs.php.net/52941", "http://coding.derkeiler.com/Archive/PHP/php.general/2007-04/msg00605.html", "http://www.php.net/ChangeLog-5.php"], "description": "The iconv_mime_decode_headers function in the Iconv extension in PHP before 5.3.4 does not properly handle encodings that are unrecognized by the iconv and mbstring (aka Multibyte String) implementations, which allows remote attackers to trigger an incomplete output array, and possibly bypass spam detection or have unspecified other impact, via a crafted Subject header in an e-mail message, as demonstrated by the ks_c_5601-1987 character set.", "edition": 4, "reporter": "NVD", "published": "2011-01-18T15:00:10", "title": "CVE-2010-4699", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:12:50", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12393", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12393"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2010-4699"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12393", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12393"}], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:4.0", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:5.2.4::windows", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.2.15", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.2.17", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6", "cpe:/a:php:php:5.2.16"], "id": "CVE-2010-4699", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4699", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-09-19T13:37:09", "references": ["http://www.mandriva.com/security/advisories?name=MDVSA-2010:239", "http://www.securityfocus.com/bid/44980", "http://www.vupen.com/english/advisories/2010/3027", "http://www.vupen.com/english/advisories/2011/0020", "http://svn.php.net/viewvc?view=revision&revision=305032", "http://www.vupen.com/english/advisories/2010/3313", "http://www.vupen.com/english/advisories/2011/0021", "http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.490619", "http://www.php.net/releases/5_2_15.php", "http://www.php.net/archive/2010.php#id2010-12-10-1", "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052836.html", "http://www.php.net/releases/5_3_4.php", "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052845.html", "http://www.securitytracker.com/id?1024761", "http://www.php.net/ChangeLog-5.php", "https://exchange.xforce.ibmcloud.com/vulnerabilities/63390", "http://support.apple.com/kb/HT4581", "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html", "https://bugzilla.redhat.com/show_bug.cgi?id=656917", "http://marc.info/?l=bugtraq&m=133469208622507&w=2"], "description": "Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.", "edition": 3, "reporter": "NVD", "published": "2010-12-07T17:00:02", "title": "CVE-2010-4150", "type": "cve", "enchantments": {"score": {"modified": "2017-09-19T13:37:09", "vector": "NONE", "value": 7.5}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12489", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12489"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2010-4150"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12489", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12489"}], "modified": "2017-09-18T21:31:41", "cpe": ["cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:5.2.14"], "id": "CVE-2010-4150", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4150", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:13:13", "references": ["http://www.php.net/releases/5_2_15.php", "http://www.php.net/archive/2010.php#id2010-12-10-1", "https://exchange.xforce.ibmcloud.com/vulnerabilities/65432", "http://www.php.net/ChangeLog-5.php", "http://www.openwall.com/lists/oss-security/2010/12/13/4", "http://marc.info/?l=bugtraq&m=133469208622507&w=2"], "description": "The extract function in PHP before 5.2.15 does not prevent use of the EXTR_OVERWRITE parameter to overwrite (1) the GLOBALS superglobal array and (2) the this variable, which allows context-dependent attackers to bypass intended access restrictions by modifying data structures that were not intended to depend on external input, a related issue to CVE-2005-2691 and CVE-2006-3758.", "edition": 4, "reporter": "NVD", "published": "2011-02-02T17:00:01", "title": "CVE-2011-0752", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:13:13", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12016", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12016"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-0752"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12016", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12016"}], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6"], "id": "CVE-2011-0752", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0752", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-11-01T05:13:13", "references": ["http://svn.php.net/viewvc?view=revision&revision=308316", "http://www.vupen.com/english/advisories/2011/0764", "http://bugs.php.net/bug.php?id=54002", "http://www.php.net/archive/2011.php", "http://www.mandriva.com/security/advisories?name=MDVSA-2011:053", "http://www.php.net/releases/5_3_6.php", "http://www.exploit-db.com/exploits/16261/", "http://openwall.com/lists/oss-security/2011/02/14/1", "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2011:052", "http://rhn.redhat.com/errata/RHSA-2012-0071.html", "http://support.apple.com/kb/HT5002", "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056642.html", "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057710.html", "http://www.vupen.com/english/advisories/2011/0890", "http://www.php.net/ChangeLog-5.php", "https://bugzilla.redhat.com/show_bug.cgi?id=680972", "http://www.redhat.com/support/errata/RHSA-2011-1423.html", "http://www.debian.org/security/2011/dsa-2266", "http://www.securityfocus.com/bid/46365", "http://www.vupen.com/english/advisories/2011/0744", "http://openwall.com/lists/oss-security/2011/02/16/7", "http://marc.info/?l=bugtraq&m=133469208622507&w=2", "http://securityreason.com/securityalert/8114", "http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057709.html"], "description": "exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD) that triggers a buffer over-read.", "edition": 2, "reporter": "NVD", "published": "2011-03-19T22:00:03", "title": "CVE-2011-0708", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:13:13", "vector": "NONE", "value": 4.3}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-0708"], "scanner": [], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.3.4", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:4.0", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:5.2.4::windows", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:5.3.5", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.2.15", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.2.17", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6", "cpe:/a:php:php:5.2.16"], "id": "CVE-2011-0708", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0708", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:13:13", "references": ["http://www.php.net/ChangeLog-5.php", "http://bugs.php.net/52784", "https://exchange.xforce.ibmcloud.com/vulnerabilities/65431"], "description": "Race condition in the PCNTL extension in PHP before 5.3.4, when a user-defined signal handler exists, might allow context-dependent attackers to cause a denial of service (memory corruption) via a large number of concurrent signals.", "edition": 4, "reporter": "NVD", "published": "2011-02-02T17:00:02", "title": "CVE-2011-0753", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:13:13", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12271", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12271"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-0753"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12271", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12271"}], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:4.0", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6"], "id": "CVE-2011-0753", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0753", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-11-01T05:13:13", "references": ["http://bugs.php.net/46587", "http://www.php.net/ChangeLog-5.php", "https://exchange.xforce.ibmcloud.com/vulnerabilities/65426"], "description": "Integer overflow in the mt_rand function in PHP before 5.3.4 might make it easier for context-dependent attackers to predict the return values by leveraging a script's use of a large max parameter, as demonstrated by a value that exceeds mt_getrandmax.", "edition": 4, "reporter": "NVD", "published": "2011-02-02T17:00:02", "title": "CVE-2011-0755", "type": "cve", "enchantments": {"score": {"modified": "2018-11-01T05:13:13", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12589", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12589"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2011-0755"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:12589", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:12589"}], "modified": "2018-10-30T12:26:21", "cpe": ["cpe:/a:php:php:4.4.0", "cpe:/a:php:php:4.4.6", "cpe:/a:php:php:5.1.5", "cpe:/a:php:php:4.0.4", "cpe:/a:php:php:4.0:beta4", "cpe:/a:php:php:5.2.1", "cpe:/a:php:php:5.2.12", "cpe:/a:php:php:3.0.11", "cpe:/a:php:php:3.0.17", "cpe:/a:php:php:5.0.0:rc1", "cpe:/a:php:php:5.0.1", "cpe:/a:php:php:5.2.11", "cpe:/a:php:php:5.2.9", "cpe:/a:php:php:5.2.6", "cpe:/a:php:php:4.4.2", "cpe:/a:php:php:5.1.4", "cpe:/a:php:php:3.0.12", "cpe:/a:php:php:4.4.8", "cpe:/a:php:php:4.4.9", "cpe:/a:php:php:4.0", "cpe:/a:php:php:3.0.15", "cpe:/a:php:php:4.3.6", "cpe:/a:php:php:4.4.3", "cpe:/a:php:php:4.3.0", "cpe:/a:php:php:4.0.2", "cpe:/a:php:php:4.0.7", "cpe:/a:php:php:4.3.7", "cpe:/a:php:php:5.1.3", "cpe:/a:php:php:3.0.16", "cpe:/a:php:php:4.3.4", "cpe:/a:php:php:4.0:beta1", "cpe:/a:php:php:5.2.4::windows", "cpe:/a:php:php:5.1.6", "cpe:/a:php:php:5.2.3", "cpe:/a:php:php:5.2.5", "cpe:/a:php:php:3.0.9", "cpe:/a:php:php:3.0.4", "cpe:/a:php:php:4.3.5", "cpe:/a:php:php:3.0.8", "cpe:/a:php:php:4.2.0", "cpe:/a:php:php:3.0.2", "cpe:/a:php:php:3.0", "cpe:/a:php:php:5.0.2", "cpe:/a:php:php:3.0.1", "cpe:/a:php:php:2.0", "cpe:/a:php:php:4.3.2", "cpe:/a:php:php:3.0.14", "cpe:/a:php:php:5.3.1", "cpe:/a:php:php:5.2.10", "cpe:/a:php:php:4.4.7", "cpe:/a:php:php:4.3.1", "cpe:/a:php:php:5.2.4", "cpe:/a:php:php:5.1.0", "cpe:/a:php:php:5.2.0", "cpe:/a:php:php:5.3.0", "cpe:/a:php:php:4.3.10", "cpe:/a:php:php:4.2.1", "cpe:/a:php:php:5.2.15", "cpe:/a:php:php:5.0.4", "cpe:/a:php:php:3.0.7", "cpe:/a:php:php:5.0.0:beta3", "cpe:/a:php:php:4.0.0", "cpe:/a:php:php:4.3.11", "cpe:/a:php:php:4.1.2", "cpe:/a:php:php:5.2.8", "cpe:/a:php:php:3.0.3", "cpe:/a:php:php:4.4.1", "cpe:/a:php:php:4.1.0", "cpe:/a:php:php:4.0.5", "cpe:/a:php:php:4.3.8", "cpe:/a:php:php:4.0:beta2", "cpe:/a:php:php:5.2.13", "cpe:/a:php:php:5.1.1", "cpe:/a:php:php:4.4.4", "cpe:/a:php:php:4.3.3", "cpe:/a:php:php:5.0.0:beta1", "cpe:/a:php:php:5.0.0:rc3", "cpe:/a:php:php:5.2.2", "cpe:/a:php:php:3.0.10", "cpe:/a:php:php:4.0:beta_4_patch1", "cpe:/a:php:php:4.3.9", "cpe:/a:php:php:4.0.3", "cpe:/a:php:php:5.2.17", "cpe:/a:php:php:5.0.5", "cpe:/a:php:php:4.2.2", "cpe:/a:php:php:3.0.13", "cpe:/a:php:php:3.0.5", "cpe:/a:php:php:5.3.2", "cpe:/a:php:php:4.0.1", "cpe:/a:php:php:5.0.3", "cpe:/a:php:php:4.4.5", "cpe:/a:php:php:5.2.7", "cpe:/a:php:php:3.0.6", "cpe:/a:php:php:2.0b10", "cpe:/a:php:php:5.0.0:beta4", "cpe:/a:php:php:5.1.2", "cpe:/a:php:php:4.2.3", "cpe:/a:php:php:5.0.0:beta2", "cpe:/a:php:php:1.0", "cpe:/a:php:php:4.0:beta3", "cpe:/a:php:php:5.3.3", "cpe:/a:php:php:4.1.1", "cpe:/a:php:php:5.0.0", "cpe:/a:php:php:5.2.14", "cpe:/a:php:php:5.0.0:rc2", "cpe:/a:php:php:3.0.18", "cpe:/a:php:php:4.0.6", "cpe:/a:php:php:5.2.16"], "id": "CVE-2011-0755", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0755", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "f5": [{"lastseen": "2017-06-08T00:16:32", "references": [], "edition": 1, "description": "", "reporter": "f5", "published": "2011-02-28T22:02:00", "title": "PHP vulnerability CVE-2010-4645", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP APM", "version": "10.2.1", "operator": "le"}], "cvelist": ["CVE-2010-4645"], "modified": "2016-01-09T02:32:00", "href": "https://support.f5.com/csp/article/K12650", "id": "F5:K12650", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2016-09-26T17:22:57", "references": [], "edition": 1, "description": "The **strtod.c** function may allow context-dependent attackers to cause a denial-of-service via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers.\n\nInformation about this advisory is available at the following location:\n\n<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4645> \n \n**Note**: The previous link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge.\n\nF5 Product Development tracked this issue as ID 350120 and it was fixed in BIG-IP APM 10.2.2. \n\n", "reporter": "f5", "published": "2011-02-28T00:00:00", "title": "SOL12650 - PHP vulnerability CVE-2010-4645", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP APM", "version": "10.2.1", "operator": "le"}], "cvelist": ["CVE-2010-4645"], "modified": "2013-07-05T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/12000/600/sol12650.html", "id": "SOL12650", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-06-08T00:16:38", "references": [], "edition": 1, "description": "\nF5 Product Development has evaluated the currently-supported releases for potential vulnerability, and has determined that none of the products listed below are affected.\n\nProduct| Versions known to be vulnerable| Versions known to be not vulnerable| Vulnerable component or feature \n---|---|---|--- \nBIG-IP LTM| None| 10.x \n11.x| None \nBIG-IP GTM| None| 10.x \n11.x| None \nBIG-IP ASM| None| 10.x \n11.x| None \nBIG-IP Link Controller| None| 10.x \n11.x| None \nBIG-IP WebAccelerator| None| 10.x \n11.x| None \nBIG-IP PSM| None| 10.x \n11.x| None \nBIG-IP WOM| None| 10.x \n11.x| None \nBIG-IP APM| None| 10.x \n11.x| None \nBIG-IP Edge Gateway| None| 10.x \n11.x| None \nBIG-IP Analytics| None| 11.x| None \nBIG-IP AFM| None| 11.x| None \nBIG-IP PEM| None| 11.x| None \nBIG-IP AAM| None| 11.x| None \nFirePass| None| 6.x \n7.x| None \nEnterprise Manager| None| 1.x \n2.x \n3.x| None \nARX| None| 5.x \n6.x| None\n\nNone\n\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents.](<https://support.f5.com/csp/article/K9957>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n", "reporter": "f5", "published": "2012-04-05T02:07:00", "title": "Multiple PHP vulnerabilities", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-0421", "CVE-2011-0752", "CVE-2011-1467", "CVE-2011-1153", "CVE-2012-2311", "CVE-2012-2376", "CVE-2011-1466", "CVE-2012-0789", "CVE-2012-1823", "CVE-2011-1092", "CVE-2010-4698", "CVE-2011-2483", "CVE-2012-0788", "CVE-2010-4645", "CVE-2007-4658", "CVE-2011-0708", "CVE-2011-1468", "CVE-2012-0057", "CVE-2010-3709", "CVE-2011-1469", "CVE-2010-4150", "CVE-2011-1464", "CVE-2011-0755", "CVE-2010-4699", "CVE-2012-0831"], "modified": "2017-04-06T16:51:00", "href": "https://support.f5.com/csp/article/K13518", "id": "F5:K13518", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-09-26T17:23:05", "references": ["https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "Vulnerability Recommended Actions\n\nNone\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents.\n * SOL4602: Overview of the F5 security vulnerability response policy\n", "reporter": "f5", "published": "2012-04-04T00:00:00", "title": "SOL13518 - Multiple PHP vulnerabilities", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-0421", "CVE-2011-0752", "CVE-2011-1467", "CVE-2011-1153", "CVE-2012-2311", "CVE-2012-2376", "CVE-2011-1466", "CVE-2012-0789", "CVE-2012-1823", "CVE-2011-1092", "CVE-2010-4698", "CVE-2011-2483", "CVE-2012-0788", "CVE-2010-4645", "CVE-2007-4658", "CVE-2011-0708", "CVE-2011-1468", "CVE-2012-0057", "CVE-2010-3709", "CVE-2011-1469", "CVE-2010-4150", "CVE-2011-1464", "CVE-2011-0755", "CVE-2010-4699", "CVE-2012-0831"], "modified": "2016-07-25T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/13000/500/sol13518.html", "id": "SOL13518", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2016-11-09T00:09:36", "references": ["https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html", "https://support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html", "https://support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html", "https://support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html"], "edition": 1, "description": "Vulnerability Recommended Actions\n\nTo mitigate this vulnerability, expose the administrative interface only on trusted networks and limit login access to trusted users.\n\n**Impact of action:** None. \n\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n", "reporter": "f5", "published": "2012-04-04T00:00:00", "type": "f5", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "SOL13519 - Multiple PHP vulnerabilities", "bulletinFamily": "software", "affectedSoftware": [{"name": "BIG-IP Link Controller", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP Edge Gateway", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP LTM", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP PSM", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP APM", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "FirePass", "version": "6.x 7.x", "operator": "le"}, {"name": "BIG-IP ASM", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP Analytics", "version": "11.1.0", "operator": "le"}, {"name": "BIG-IP WOM", "version": "10.2.4 11.0.0", "operator": "le"}, {"name": "BIG-IP GTM", "version": "10.2.4 11.0.0", "operator": "le"}], "cvelist": ["CVE-2007-3799", "CVE-2010-4697", "CVE-2011-4885", "CVE-2011-2483", "CVE-2012-0830", "CVE-2006-7243", "CVE-2011-0708", "CVE-2010-3870", "CVE-2011-3268", "CVE-2011-3182", "CVE-2011-1470", "CVE-2011-4566", "CVE-2011-3267", "CVE-2010-3710", "CVE-2006-0207"], "modified": "2016-07-25T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/13000/500/sol13519.html", "id": "SOL13519", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-06-08T00:16:30", "references": [], "edition": 1, "description": "\nF5 Product Development has assigned ID 383081 (BIG-IP 10.x), ID 375749 (BIG-IP 11.x), and ID 383544 (FirePass) to this vulnerability. To find out whether F5 has determined whether your release is vulnerable, refer to the following table: \n\n\nProduct| Versions known to be vulnerable| Versions known to be not vulnerable| Vulnerable component or feature \n---|---|---|--- \nBIG-IP LTM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0 \n \n| administrative access on any interface \n \nBIG-IP GTM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \n \nBIG-IP ASM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \n \nBIG-IP Link Controller| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \n \nBIG-IP WebAccelerator| None| 10.0.0 1 10.2.4 \n11.0.0 - 11.3.0 \n| None \nBIG-IP PSM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \n \nBIG-IP WOM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.3.0| administrative access on any interface \n \nBIG-IP APM| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \n \nBIG-IP Edge Gateway \n| 10.0.0 - 10.2.4 \n11.0.0 - 11.1.0 \n| 11.2.0 - 11.4.0| administrative access on any interface \nBIG-IP Analytics \n| 11.0.0 - 11.1.0| 11.2.0 - 11.4.0 \n| administrative access on any interface \nBIG-IP AFM \n| None| 11.3.0 - 11.4.0| None \nBIG-IP PEM \n| None| 11.3.0 - 11.4.0| None \nBIG-IP AAM| None| 11.4.0 \n| None \nFirePass| 6.x \n7.x| None \n| Administrative console logon page \nUser access logon page \nEnterprise Manager| None \n| 1.x \n2.x \n3.x| None \n \nARX| None| 5.x \n6.x| None \n\n\nTo mitigate this vulnerability, expose the administrative interface only on trusted networks and limit login access to trusted users.\n\n**Impact of action:** None. \n\n\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents](<https://support.f5.com/csp/article/K9957>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K4918: Overview of the F5 critical issue hotfix policy](<https://support.f5.com/csp/article/K4918>)\n", "reporter": "f5", "published": "2012-04-05T03:11:00", "type": "f5", "title": "Multiple PHP vulnerabilities", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2007-3799", "CVE-2010-4697", "CVE-2011-4885", "CVE-2011-2483", "CVE-2012-0830", "CVE-2006-7243", "CVE-2011-0708", "CVE-2010-3870", "CVE-2011-3268", "CVE-2011-3182", "CVE-2011-1470", "CVE-2011-4566", "CVE-2011-3267", "CVE-2010-3710", "CVE-2006-0207"], "modified": "2017-04-06T16:51:00", "href": "https://support.f5.com/csp/article/K13519", "id": "F5:K13519", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-09-01T23:36:08", "references": [], "pluginID": "1361412562310110066", "description": "PHP 5.2 < 5.2.15 suffers from multiple vulnerabilities such as a crash\n in the zip extract method, NULL pointer dereference and stack-based buffer overflow.", "edition": 5, "reporter": "Copyright NopSec Inc. 2012", "published": "2012-06-21T00:00:00", "title": "PHP Version 5.2 < 5.2.15 Multiple Vulnerabilities", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Web application abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0752", "CVE-2010-4697", "CVE-2010-4698", "CVE-2010-3436", "CVE-2010-3709", "CVE-2010-4150"], "modified": "2018-07-09T00:00:00", "id": "OPENVAS:1361412562310110066", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310110066", "sourceData": "##############################################################################\n# OpenVAS Vulnerability Test\n# $Id: nopsec_php_5_2_15.nasl 10460 2018-07-09 07:50:03Z cfischer $\n#\n# PHP Version 5.2 < 5.2.15 Multiple Vulnerabilities\n#\n# Authors:\n# Songhan Yu <syu@nopsec.com>\n#\n# Copyright:\n# Copyright NopSec Inc. 2012, http://www.nopsec.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.110066\");\n script_version(\"$Revision: 10460 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-09 09:50:03 +0200 (Mon, 09 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-21 11:43:12 +0100 (Thu, 21 Jun 2012)\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_cve_id(\"CVE-2010-3436\", \"CVE-2010-3709\", \"CVE-2010-4150\",\n \"CVE-2010-4697\", \"CVE-2010-4698\", \"CVE-2011-0752\");\n script_bugtraq_id(44718, 44723, 45335, 45952, 46448);\n script_name(\"PHP Version 5.2 < 5.2.15 Multiple Vulnerabilities\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Web application abuses\");\n script_copyright(\"Copyright NopSec Inc. 2012\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_tag(name:\"solution\", value:\"Upgrade to PHP version 5.2.15 or later.\");\n\n script_tag(name:\"summary\", value:\"PHP 5.2 < 5.2.15 suffers from multiple vulnerabilities such as a crash\n in the zip extract method, NULL pointer dereference and stack-based buffer overflow.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( port = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! vers = get_app_version( cpe:CPE, port:port ) ) exit( 0 );\n\nif( version_in_range( version:vers, test_version:\"5.2\", test_version2:\"5.2.14\" ) ) {\n report = report_fixed_ver( installed_version:vers, fixed_version:\"5.2.15\" );\n security_message( data:report, port:port );\n exit( 0 );\n}\n\nexit( 99 );", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:44:15", "references": ["http://www.php.net/ChangeLog-5.php", "http://bugs.php.net/52879", "http://www.php.net/downloads.php"], "pluginID": "1361412562310801586", "description": "This host is running PHP and is prone to multiple denial of\n service vulnerabilities.", "edition": 5, "reporter": "Copyright (C) 2011 Greenbone Networks GmbH", "published": "2011-02-01T00:00:00", "title": "PHP Zend and GD Multiple Denial of Service Vulnerabilities", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Denial of Service", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4697", "CVE-2010-4698"], "modified": "2018-10-20T00:00:00", "id": "OPENVAS:1361412562310801586", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801586", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_php_zend_mult_dos_vuln.nasl 11997 2018-10-20 11:59:41Z mmartin $\n#\n# PHP Zend and GD Multiple Denial of Service Vulnerabilities\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801586\");\n script_version(\"$Revision: 11997 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-20 13:59:41 +0200 (Sat, 20 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-02-01 16:46:08 +0100 (Tue, 01 Feb 2011)\");\n script_cve_id(\"CVE-2010-4697\", \"CVE-2010-4698\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_name(\"PHP Zend and GD Multiple Denial of Service Vulnerabilities\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2011 Greenbone Networks GmbH\");\n script_family(\"Denial of Service\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_xref(name:\"URL\", value:\"http://bugs.php.net/52879\");\n script_xref(name:\"URL\", value:\"http://www.php.net/ChangeLog-5.php\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation could allow local attackers to crash the affected\n application, denying service to legitimate users.\");\n\n script_tag(name:\"affected\", value:\"PHP version prior to 5.2.15 and 5.3.x before 5.3.4\");\n\n script_tag(name:\"insight\", value:\"The flaws are due to:\n\n - An use-after-free error in the 'Zend' engine, which allows remote attackers\n to cause a denial of service.\n\n - A stack-based buffer overflow in the 'GD' extension, which allows attackers\n to cause a denial of service.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to PHP 5.3.5 or later\");\n\n script_tag(name:\"summary\", value:\"This host is running PHP and is prone to multiple denial of\n service vulnerabilities.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n script_xref(name:\"URL\", value:\"http://www.php.net/downloads.php\");\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( phpPort = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! phpVer = get_app_version( cpe:CPE, port:phpPort ) ) exit( 0 );\n\nif(version_is_less(version:phpVer, test_version:\"5.2.15\") ||\n version_in_range(version:phpVer, test_version:\"5.3\", test_version2:\"5.3.3\")){\n report = report_fixed_ver(installed_version:phpVer, fixed_version:\"5.2.15/5.3.5\");\n security_message(data:report, port:phpPort);\n exit(0);\n}\n\nexit(99);", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:45:07", "references": ["http://svn.php.net/viewvc?view=revision&revision=305507", "http://www.php.net/releases/5_3_4.php", "http://www.php.net/ChangeLog-5.php", "http://openwall.com/lists/oss-security/2010/12/09/9", "http://www.php.net/downloads.php"], "pluginID": "1361412562310801585", "description": "This host is running PHP and is prone to multiple security\n bypass vulnerability.", "edition": 5, "reporter": "Copyright (C) 2011 Greenbone Networks GmbH", "published": "2011-02-01T00:00:00", "title": "PHP Multiple Security Bypass Vulnerabilities", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Web application abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0754", "CVE-2006-7243", "CVE-2011-0753", "CVE-2011-0755", "CVE-2010-4699"], "modified": "2018-10-19T00:00:00", "id": "OPENVAS:1361412562310801585", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801585", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_php_mult_sec_bypass_vuln.nasl 11987 2018-10-19 11:05:52Z mmartin $\n#\n# PHP Multiple Security Bypass Vulnerabilities\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Updated By: Madhuri D <dmadhuri@secpod.com> on 2011-02-04\n# - Added CVE and updated description\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801585\");\n script_version(\"$Revision: 11987 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-19 13:05:52 +0200 (Fri, 19 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-02-01 16:46:08 +0100 (Tue, 01 Feb 2011)\");\n script_cve_id(\"CVE-2006-7243\", \"CVE-2010-4699\", \"CVE-2011-0754\",\n \"CVE-2011-0753\", \"CVE-2011-0755\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"PHP Multiple Security Bypass Vulnerabilities\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2011 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_xref(name:\"URL\", value:\"http://www.php.net/ChangeLog-5.php\");\n script_xref(name:\"URL\", value:\"http://www.php.net/releases/5_3_4.php\");\n script_xref(name:\"URL\", value:\"http://openwall.com/lists/oss-security/2010/12/09/9\");\n script_xref(name:\"URL\", value:\"http://svn.php.net/viewvc?view=revision&revision=305507\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation could allow remote attackers to trigger an incomplete\n output array, and possibly bypass spam detection or have unspecified other impact.\");\n\n script_tag(name:\"affected\", value:\"PHP version prior to 5.3.4\");\n\n script_tag(name:\"insight\", value:\"The flaws are caused to:\n\n - An error in handling pathname which accepts the '?' character in a\n pathname.\n\n - An error in 'iconv_mime_decode_headers()' function in the 'Iconv'\n extension.\n\n - 'SplFileInfo::getType' function in the Standard PHP Library (SPL) extension,\n does not properly detect symbolic links in windows.\n\n - Integer overflow in the 'mt_rand' function.\n\n - Race condition in the 'PCNTL extension', when a user-defined signal handler exists.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to PHP 5.3.4 or later\");\n\n script_tag(name:\"summary\", value:\"This host is running PHP and is prone to multiple security\n bypass vulnerability.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n script_xref(name:\"URL\", value:\"http://www.php.net/downloads.php\");\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( phpPort = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! phpVer = get_app_version( cpe:CPE, port:phpPort ) ) exit( 0 );\n\nif(version_is_less(version:phpVer, test_version:\"5.3.4\")){\n report = report_fixed_ver(installed_version:phpVer, fixed_version:\"5.3.4\");\n security_message(data:report, port:phpPort);\n exit(0);\n}\n\nexit(99);", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:36:08", "references": [], "pluginID": "1361412562310110181", "description": "PHP version smaller than 5.3.4 suffers from multiple vulnerabilities.", "edition": 5, "reporter": "Copyright NopSec Inc. 2012", "published": "2012-06-21T00:00:00", "title": "PHP Version < 5.3.4 Multiple Vulnerabilities", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Web application abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2011-0754", "CVE-2010-4697", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0753", "CVE-2010-3436", "CVE-2010-3870", "CVE-2010-2094", "CVE-2010-3709", "CVE-2010-4156", "CVE-2010-3710", "CVE-2010-4150", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-2950", "CVE-2010-4700", "CVE-2010-4409"], "modified": "2018-07-09T00:00:00", "id": "OPENVAS:1361412562310110181", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310110181", "sourceData": "##############################################################################\n# OpenVAS Vulnerability Test\n# $Id: nopsec_php_5_3_4.nasl 10460 2018-07-09 07:50:03Z cfischer $\n#\n# PHP Version < 5.3.4 Multiple Vulnerabilities\n#\n# Authors:\n# Songhan Yu <syu@nopsec.com>\n#\n# Copyright:\n# Copyright NopSec Inc. 2012, http://www.nopsec.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.110181\");\n script_version(\"$Revision: 10460 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-09 09:50:03 +0200 (Mon, 09 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-06-21 11:43:12 +0100 (Thu, 21 Jun 2012)\");\n script_tag(name:\"cvss_base\", value:\"6.8\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_cve_id(\"CVE-2006-7243\", \"CVE-2010-2094\", \"CVE-2010-2950\", \"CVE-2010-3436\",\n \"CVE-2010-3709\", \"CVE-2010-3710\", \"CVE-2010-3870\", \"CVE-2010-4150\",\n \"CVE-2010-4156\", \"CVE-2010-4409\", \"CVE-2010-4697\", \"CVE-2010-4698\",\n \"CVE-2010-4699\", \"CVE-2010-4700\", \"CVE-2011-0753\", \"CVE-2011-0754\",\n \"CVE-2011-0755\");\n script_bugtraq_id(40173, 43926, 44605, 44718, 44723, 44951, 44980, 45119, 45335,\n 45338, 45339, 45952, 45954, 46056, 46168);\n script_name(\"PHP Version < 5.3.4 Multiple Vulnerabilities\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Web application abuses\");\n script_copyright(\"Copyright NopSec Inc. 2012\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_tag(name:\"solution\", value:\"Update PHP to version 5.3.4 or later.\");\n\n script_tag(name:\"summary\", value:\"PHP version smaller than 5.3.4 suffers from multiple vulnerabilities.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( port = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! vers = get_app_version( cpe:CPE, port:port ) ) exit( 0 );\n\nif( version_is_less( version:vers, test_version:\"5.3.4\" ) ) {\n report = report_fixed_ver( installed_version:vers, fixed_version:\"5.3.4\" );\n security_message( data:report, port:port );\n exit( 0 );\n}\n\nexit( 99 );", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:02:59", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053331.html", "2011-0329"], "pluginID": "1361412562310862819", "description": "Check for the Version of maniadrive", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-01-24T00:00:00", "title": "Fedora Update for maniadrive FEDORA-2011-0329", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310862819", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310862819", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for maniadrive FEDORA-2011-0329\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"maniadrive on Fedora 14\";\ntag_insight = \"ManiaDrive is an arcade car game on acrobatic tracks, with a quick and nervous\n gameplay (tracks almost never exceed one minute). Features: Complex car\n physics, Challenging "story mode", LAN and Internet mode, Live scores,\n Track editor, Dedicated server with HTTP interface and More than 30 blocks.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053331.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.862819\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-24 15:31:16 +0100 (Mon, 24 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-0329\");\n script_cve_id(\"CVE-2010-4645\");\n script_name(\"Fedora Update for maniadrive FEDORA-2011-0329\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of maniadrive\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"maniadrive\", rpm:\"maniadrive~1.2~26.fc14.1\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:55:42", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053332.html", "2011-0329"], "pluginID": "862809", "description": "Check for the Version of php-eaccelerator", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-01-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "Fedora Update for php-eaccelerator FEDORA-2011-0329", "type": "openvas", "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=862809", "id": "OPENVAS:862809", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for php-eaccelerator FEDORA-2011-0329\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_affected = \"php-eaccelerator on Fedora 14\";\ntag_insight = \"eAccelerator is a further development of the MMCache PHP Accelerator & Encoder.\n It increases performance of PHP scripts by caching them in compiled state, so\n that the overhead of compiling is almost completely eliminated.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053332.html\");\n script_id(862809);\n script_version(\"$Revision: 6626 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:30:10 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-24 15:31:16 +0100 (Mon, 24 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-0329\");\n script_cve_id(\"CVE-2010-4645\");\n script_name(\"Fedora Update for php-eaccelerator FEDORA-2011-0329\");\n\n script_summary(\"Check for the Version of php-eaccelerator\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"php-eaccelerator\", rpm:\"php-eaccelerator~0.9.6.1~4.fc14\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-25T10:55:32", "references": ["2011-0321", "http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053355.html"], "pluginID": "862807", "description": "Check for the Version of maniadrive-data", "edition": 2, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-01-24T00:00:00", "title": "Fedora Update for maniadrive-data FEDORA-2011-0321", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2017-07-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=862807", "id": "OPENVAS:862807", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for maniadrive-data FEDORA-2011-0321\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Data files for maniadrive, a 3D stunt driving game. Notice this package does\n not include the original ManiaDrive soundtrack as the original soundtrack is\n licensed under a CC BY-NC-SA license, which is not acceptable to Fedora.\n\n A replacement soundtrack is available in the maniadrive-music package (and will\n get automatically installed together with maniadrive itself).\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"maniadrive-data on Fedora 13\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053355.html\");\n script_id(862807);\n script_version(\"$Revision: 6626 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:30:10 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-24 15:31:16 +0100 (Mon, 24 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-0321\");\n script_cve_id(\"CVE-2010-4645\");\n script_name(\"Fedora Update for maniadrive-data FEDORA-2011-0321\");\n\n script_summary(\"Check for the Version of maniadrive-data\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC13\")\n{\n\n if ((res = isrpmvuln(pkg:\"maniadrive-data\", rpm:\"maniadrive-data~1.2~5.fc13\", rls:\"FC13\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-10-22T16:44:22", "references": ["http://svn.php.net/viewvc?view=revision&revision=305032", "http://xforce.iss.net/xforce/xfdb/63390", "http://www.php.net/downloads.php"], "pluginID": "1361412562310801583", "description": "This host is running PHP and is prone to denial of service\n vulnerability.", "edition": 5, "reporter": "Copyright (C) 2011 Greenbone Networks GmbH", "published": "2011-01-31T00:00:00", "title": "PHP 'ext/imap/php_imap.c' Use After Free Denial of Service Vulnerability", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Denial of Service", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4150"], "modified": "2018-10-20T00:00:00", "id": "OPENVAS:1361412562310801583", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310801583", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_php_imap_do_open_dos_vuln.nasl 11997 2018-10-20 11:59:41Z mmartin $\n#\n# PHP 'ext/imap/php_imap.c' Use After Free Denial of Service Vulnerability\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:php:php\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.801583\");\n script_version(\"$Revision: 11997 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-20 13:59:41 +0200 (Sat, 20 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-31 05:37:34 +0100 (Mon, 31 Jan 2011)\");\n script_cve_id(\"CVE-2010-4150\");\n script_bugtraq_id(44980);\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_name(\"PHP 'ext/imap/php_imap.c' Use After Free Denial of Service Vulnerability\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2011 Greenbone Networks GmbH\");\n script_family(\"Denial of Service\");\n script_dependencies(\"gb_php_detect.nasl\");\n script_mandatory_keys(\"php/installed\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation could allow local attackers to crash the affected\n application, denying service to legitimate users.\");\n\n script_tag(name:\"affected\", value:\"PHP version 5.2 before 5.2.15 and 5.3 before 5.3.4\");\n\n script_tag(name:\"insight\", value:\"The flaw is due to an erron in 'imap_do_open' function in the IMAP\n extension 'ext/imap/php_imap.c'.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to PHP 5.2.15 or 5.3.4\");\n\n script_tag(name:\"summary\", value:\"This host is running PHP and is prone to denial of service\n vulnerability.\");\n\n script_xref(name:\"URL\", value:\"http://xforce.iss.net/xforce/xfdb/63390\");\n script_xref(name:\"URL\", value:\"http://svn.php.net/viewvc?view=revision&revision=305032\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n\n script_xref(name:\"URL\", value:\"http://www.php.net/downloads.php\");\n exit(0);\n}\n\ninclude(\"version_func.inc\");\ninclude(\"host_details.inc\");\n\nif( isnull( phpPort = get_app_port( cpe:CPE ) ) ) exit( 0 );\nif( ! phpVer = get_app_version( cpe:CPE, port:phpPort ) ) exit( 0 );\n\nif(version_in_range(version:phpVer, test_version:\"5.2\", test_version2:\"5.2.14\") ||\n version_in_range(version:phpVer, test_version:\"5.3\", test_version2:\"5.3.3\")){\n report = report_fixed_ver(installed_version:phpVer, fixed_version:\"5.2.15/5.3.4\");\n security_message(data:report, port:phpPort);\n exit(0);\n}\n\nexit(99);\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:02:58", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053333.html", "2011-0329"], "pluginID": "1361412562310862815", "description": "Check for the Version of maniadrive-data", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-01-24T00:00:00", "title": "Fedora Update for maniadrive-data FEDORA-2011-0329", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310862815", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310862815", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for maniadrive-data FEDORA-2011-0329\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Data files for maniadrive, a 3D stunt driving game. Notice this package does\n not include the original ManiaDrive soundtrack as the original soundtrack is\n licensed under a CC BY-NC-SA license, which is not acceptable to Fedora.\n\n A replacement soundtrack is available in the maniadrive-music package (and will\n get automatically installed together with maniadrive itself).\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"maniadrive-data on Fedora 14\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053333.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.862815\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-24 15:31:16 +0100 (Mon, 24 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-0329\");\n script_cve_id(\"CVE-2010-4645\");\n script_name(\"Fedora Update for maniadrive-data FEDORA-2011-0329\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of maniadrive-data\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"maniadrive-data\", rpm:\"maniadrive-data~1.2~5.fc14\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:02:44", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053330.html", "2011-0329"], "pluginID": "1361412562310862820", "description": "Check for the Version of php", "edition": 4, "reporter": "Copyright (c) 2011 Greenbone Networks GmbH", "published": "2011-01-24T00:00:00", "title": "Fedora Update for php FEDORA-2011-0329", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2010-4645"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310862820", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310862820", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for php FEDORA-2011-0329\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2011 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"PHP is an HTML-embedded scripting language. PHP attempts to make it\n easy for developers to write dynamically generated web pages. PHP also\n offers built-in database integration for several commercial and\n non-commercial database management systems, so writing a\n database-enabled webpage with PHP is fairly simple. The most common\n use of PHP coding is probably as a replacement for CGI scripts.\n\n The php package contains the module which adds support for the PHP\n language to Apache HTTP Server.\";\ntag_solution = \"Please Install the Updated Packages.\";\n\ntag_affected = \"php on Fedora 14\";\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053330.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.862820\");\n script_version(\"$Revision: 9371 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:55:06 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2011-01-24 15:31:16 +0100 (Mon, 24 Jan 2011)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-0329\");\n script_cve_id(\"CVE-2010-4645\");\n script_name(\"Fedora Update for php FEDORA-2011-0329\");\n\n script_tag(name:\"summary\", value:\"Check for the Version of php\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2011 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC14\")\n{\n\n if ((res = isrpmvuln(pkg:\"php\", rpm:\"php~5.3.5~1.fc14\", rls:\"FC14\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "seebug": [{"lastseen": "2017-11-19T17:53:45", "_object_types": ["robots.models.base.Bulletin", "robots.models.seebug.SeebugBulletin"], "references": [], "enchantments_done": [], "description": "BUGTRAQ ID: 45952\r\nCVE ID: CVE-2010-4697\r\n\r\nPHP\u662f\u4e00\u79cdHTML\u5185\u5d4c\u5f0f\u7684\u8bed\u8a00\uff0cPHP\u4e0e\u5fae\u8f6f\u7684ASP\u9887\u6709\u51e0\u5206\u76f8\u4f3c\uff0c\u90fd\u662f\u4e00\u79cd\u5728\u670d\u52a1\u5668\u7aef\u6267\u884c\u7684\u5d4c\u5165HTML\u6587\u6863\u7684\u811a\u672c\u8bed\u8a00\uff0c\u8bed\u8a00\u7684\u98ce\u683c\u6709\u7c7b\u4f3c\u4e8eC\u8bed\u8a00\uff0c\u73b0\u5728\u88ab\u5f88\u591a\u7684\u7f51\u7ad9\u7f16\u7a0b\u4eba\u5458\u5e7f\u6cdb\u7684\u8fd0\u7528\u3002\r\n\r\nPHP 5.2.15\u4e4b\u524d\u7248\u672c\u548c5.3.4\u4e4b\u524d\u7248\u672c\u7684Zend\u5f15\u64ce\u4e2d\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\uff0c\u901a\u8fc7\u5f15\u7528\u6240\u8bbf\u95ee\u5bf9\u8c61\u4e0a\u7684use of __set, __get, __isset\u548c__unset\u65b9\u6cd5\uff0c\u653b\u51fb\u8005\u53ef\u9020\u6210\u62d2\u7edd\u670d\u52a1\u6216\u5176\u4ed6\u653b\u51fb\u3002\r\n0\r\nPHP 5.3.x\r\nPHP 5.2.x\r\n\u5382\u5546\u8865\u4e01\uff1a\r\n\r\nPHP\r\n---\r\n\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\n\r\nhttp://www.php.net", "reporter": "Root", "published": "2012-04-12T00:00:00", "type": "seebug", "title": "PHP Zend\u5f15\u64ce\u91ca\u653e\u540e\u91cd\u7528\u5806\u7834\u574f\u6f0f\u6d1e(CVE-2010-4697)", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2010-4697"], "_object_type": "robots.models.seebug.SeebugBulletin", "modified": "2012-04-12T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-60052", "id": "SSV:60052", "sourceData": "", "sourceHref": "", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "status": "cve,details"}], "slackware": [{"lastseen": "2018-08-31T02:36:53", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "12.2", "packageVersion": "5.2.17", "arch": "i486", "packageFilename": "php-5.2.17-i486-1_slack12.2.tgz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "5.2.17", "arch": "i486", "packageFilename": "php-5.2.17-i486-1_slack13.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "5.2.17", "arch": "x86_64", "packageFilename": "php-5.2.17-x86_64-1_slack13.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "12.0", "packageVersion": "5.2.17", "arch": "i486", "packageFilename": "php-5.2.17-i486-1_slack12.0.tgz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "5.2.17", "arch": "x86_64", "packageFilename": "php-5.2.17-x86_64-1_slack13.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "5.2.17", "arch": "i486", "packageFilename": "php-5.2.17-i486-1_slack13.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "12.1", "packageVersion": "5.2.17", "arch": "i486", "packageFilename": "php-5.2.17-i486-1_slack12.1.tgz", "packageName": "php", "operator": "lt"}], "description": "New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0,\n13.1, and -current to fix a security issue.\n\n\nHere are the details from the Slackware 13.1 ChangeLog:\n\npatches/packages/php-5.2.17-i486-1_slack13.1.txz: Upgraded.\n This update fixes an infinite loop with conversions from string to\n double that may result in a denial of service.\n For more information, see:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4645\n (* Security fix *)\n\nWhere to find the new packages:\n\nHINT: Getting slow download speeds from ftp.slackware.com?\nGive slackware.osuosl.org a try. This is another primary FTP site\nfor Slackware that can be considerably faster than downloading\ndirectly from ftp.slackware.com.\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating additional FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the "Get Slack" section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 11.0:\nftp://ftp.slackware.com/pub/slackware/slackware-11.0/extra/php5/php-5.2.17-i486-1_slack11.0.tgz\n\nUpdated package for Slackware 12.0:\nftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/php-5.2.17-i486-1_slack12.0.tgz\n\nUpdated package for Slackware 12.1:\nftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/php-5.2.17-i486-1_slack12.1.tgz\n\nUpdated package for Slackware 12.2:\nftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/php-5.2.17-i486-1_slack12.2.tgz\n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/php-5.2.17-i486-1_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/php-5.2.17-x86_64-1_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/php-5.2.17-i486-1_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/php-5.2.17-x86_64-1_slack13.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-5.3.5-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/php-5.3.5-x86_64-1.txz\n\n\nMD5 signatures:\n\nSlackware 11.0 package:\n33fc4742d0b2aaaee8f721bc31b2fb61 php-5.2.17-i486-1_slack11.0.tgz\n\nSlackware 12.0 package:\n475de0e40b090837c9ae319e1f876063 php-5.2.17-i486-1_slack12.0.tgz\n\nSlackware 12.1 package:\na60ad1024fe3a61b5af945337e1393c0 php-5.2.17-i486-1_slack12.1.tgz\n\nSlackware 12.2 package:\n9b01607ddc0f772ddbc1c1f79e650656 php-5.2.17-i486-1_slack12.2.tgz\n\nSlackware 13.0 package:\nb523d8520728aa48fafdb626e573a91d php-5.2.17-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 package:\n62dfbaa0bd43d9232bcda21e76a48819 php-5.2.17-x86_64-1_slack13.0.txz\n\nSlackware 13.1 package:\n4fd1c56dbd91b5d2f98cdfc787a84df4 php-5.2.17-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 package:\naed43c0c8b6a8a9fb360a6817eb3ab76 php-5.2.17-x86_64-1_slack13.1.txz\n\nSlackware -current package:\nf81339314f047f47d7c6c6696b7713f6 php-5.3.5-i486-1.txz\n\nSlackware x86_64 -current package:\n5cc3c521b798ff3c6fe1206349577f26 php-5.3.5-x86_64-1.txz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg php-5.2.17-i486-1_slack13.1.txz\n\nThen, restart Apache httpd:\n > /etc/rc.d/rc.httpd stop\n > /etc/rc.d/rc.httpd start", "edition": 3, "reporter": "Slackware Linux Project", "published": "2011-01-10T16:47:45", "title": "php", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645"], "modified": "2011-01-10T16:47:45", "id": "SSA-2011-010-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2011&m=slackware-security.484686", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T02:36:50", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "12.0", "packageVersion": "5.2.16", "arch": "i486", "packageFilename": "php-5.2.16-i486-1_slack12.0.tgz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "12.1", "packageVersion": "5.2.16", "arch": "i486", "packageFilename": "php-5.2.16-i486-1_slack12.1.tgz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "12.2", "packageVersion": "5.2.16", "arch": "i486", "packageFilename": "php-5.2.16-i486-1_slack12.2.tgz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "5.2.16", "arch": "x86_64", "packageFilename": "php-5.2.16-x86_64-1_slack13.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "5.2.16", "arch": "i486", "packageFilename": "php-5.2.16-i486-1_slack13.0.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "5.2.16", "arch": "i486", "packageFilename": "php-5.2.16-i486-1_slack13.1.txz", "packageName": "php", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "5.2.16", "arch": "x86_64", "packageFilename": "php-5.2.16-x86_64-1_slack13.1.txz", "packageName": "php", "operator": "lt"}], "description": "New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0,\n13.1, and -current to fix security issues.\n\n\nHere are the details from the Slackware 13.1 ChangeLog:\n\npatches/packages/php-5.2.16-i486-1_slack13.1.txz: Upgraded.\n This fixes many bugs, including some security issues.\n For more information, see:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3436\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3709\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4150\n (* Security fix *)\n\nWhere to find the new packages:\n\nHINT: Getting slow download speeds from ftp.slackware.com?\nGive slackware.osuosl.org a try. This is another primary FTP site\nfor Slackware that can be considerably faster than downloading\ndirectly from ftp.slackware.com.\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating additional FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the "Get Slack" section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 11.0:\nftp://ftp.slackware.com/pub/slackware/slackware-11.0/extra/php5/php-5.2.16-i486-1_slack11.0.tgz\n\nUpdated package for Slackware 12.0:\nftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/php-5.2.16-i486-1_slack12.0.tgz\n\nUpdated package for Slackware 12.1:\nftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/php-5.2.16-i486-1_slack12.1.tgz\n\nUpdated package for Slackware 12.2:\nftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/php-5.2.16-i486-1_slack12.2.tgz\n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/php-5.2.16-i486-1_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/php-5.2.16-x86_64-1_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/php-5.2.16-i486-1_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/php-5.2.16-x86_64-1_slack13.1.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-5.3.4-i486-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/php-5.3.4-x86_64-1.txz\n\n\nMD5 signatures:\n\nSlackware 11.0 package:\n3d6edfc3ddd3ad05ffc491263286f76c php-5.2.16-i486-1_slack11.0.tgz\n\nSlackware 12.0 package:\n6f92c37bd3d3086c0216b9ebac471fa8 php-5.2.16-i486-1_slack12.0.tgz\n\nSlackware 12.1 package:\n60ce6cf9606a0a551f974ba28fa61bff php-5.2.16-i486-1_slack12.1.tgz\n\nSlackware 12.2 package:\n09e1478711c28d8eb0b2e848effd70f5 php-5.2.16-i486-1_slack12.2.tgz\n\nSlackware 13.0 package:\n676095da6e40ae4a1e849f608e054585 php-5.2.16-i486-1_slack13.0.txz\n\nSlackware x86_64 13.0 package:\n516b99ce18a48ac3f2ae379e1fb5250e php-5.2.16-x86_64-1_slack13.0.txz\n\nSlackware 13.1 package:\nbdabc7f1e22bf106839760d9713eeb7b php-5.2.16-i486-1_slack13.1.txz\n\nSlackware x86_64 13.1 package:\neeb3b6bf9a2b4c86e98d5af97f60f363 php-5.2.16-x86_64-1_slack13.1.txz\n\nSlackware -current package:\n4dcc063694dd796a346aeaea877db8dd n/php-5.3.4-i486-1.txz\n\nSlackware x86_64 -current package:\n9d1ea91c1e38a7186f595b6471614aa5 n/php-5.3.4-x86_64-1.txz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg php-5.2.16-i486-1_slack13.1.txz\n\nThen, restart Apache httpd:\n > /etc/rc.d/rc.httpd stop\n > /etc/rc.d/rc.httpd start", "edition": 3, "reporter": "Slackware Linux Project", "published": "2010-12-23T19:35:50", "title": "php", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-3436", "CVE-2010-3709", "CVE-2010-4150"], "modified": "2010-12-23T19:35:50", "id": "SSA-2010-357-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.490619", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:17", "references": [], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.2.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php52", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.3.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}], "description": "\nPHP developers reports:\n\nSecurity Enhancements and Fixes in PHP 5.3.5:\n\nFixed bug #53632 (PHP hangs on numeric value\n\t 2.2250738585072011e-308). (CVE-2010-4645)\n\n\n\nSecurity Enhancements and Fixes in PHP 5.2.17:\n\nFixed bug #53632 (PHP hangs on numeric value\n\t 2.2250738585072011e-308). (CVE-2010-4645)\n\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2011-01-06T00:00:00", "title": "php -- multiple vulnerabilities", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645"], "modified": "2011-01-09T00:00:00", "id": "2B6ED5C7-1A7F-11E0-B61D-000C29D1636D", "href": "https://vuxml.freebsd.org/freebsd/2b6ed5c7-1a7f-11e0-b61d-000c29d1636d.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:15:15", "references": [], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.3.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-exif", "operator": "lt"}], "description": "\nUS-CERT/NIST reports:\n\nexif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms\n\t performs an incorrect cast, which allows remote attackers to cause a\n\t denial of service (application crash) via an image with a crafted\n\t Image File Directory (IFD) that triggers a buffer over-read.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2011-03-20T00:00:00", "title": "php -- crash on crafted tag in exif", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0708"], "modified": "2011-03-20T00:00:00", "id": "CC3BFEC6-56CD-11E0-9668-001FD0D616CF", "href": "https://vuxml.freebsd.org/freebsd/cc3bfec6-56cd-11e0-9668-001fd0d616cf.html", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:15:17", "references": ["http://www.php.net/releases/5_2_15.php", "http://www.php.net/releases/5_3_4.php"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.3.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-imap", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "5.2.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php52-imap", "operator": "lt"}], "description": "\nThe following DoS condition in IMAP extension\n\t was fixed in PHP 5.3.4 and PHP 5.2.15:\n\nA remote user can send specially crafted IMAP user name\n\t or password data to trigger a double free memory error\n\t in 'ext/imap/php_imap.c' and cause the target service\n\t to crash.\nIt may be possible to execute arbitrary code.\n\t However, code execution was not confirmed.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2010-12-13T00:00:00", "title": "php-imap -- Denial of Service", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4150"], "modified": "2010-12-13T00:00:00", "id": "1A0704E7-0EDF-11E0-BECC-0022156E8794", "href": "https://vuxml.freebsd.org/freebsd/1a0704e7-0edf-11e0-becc-0022156e8794.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "exploitdb": [{"lastseen": "2016-02-04T00:45:04", "osvdbidlist": ["70370"], "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "references": [], "description": "PHP 5.3.2 'zend_strtod()' Function Floating-Point Value Denial of Service Vulnerability. CVE-2010-4645 . Dos exploit for php platform", "reporter": "Rick Regan", "published": "2011-01-03T00:00:00", "type": "exploitdb", "title": "PHP <= 5.3.2 - 'zend_strtod' Function Floating-Point Value Denial of Service Vulnerability", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2010-4645"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "modified": "2011-01-03T00:00:00", "id": "EDB-ID:35164", "href": "https://www.exploit-db.com/exploits/35164/", "sourceData": "source: http://www.securityfocus.com/bid/45668/info\r\n\r\nPHP is prone to a remote denial-of-service vulnerability.\r\n\r\nSuccessful attacks will cause applications written in PHP to hang, creating a denial-of-service condition.\r\n\r\nPHP 5.3.3 is vulnerable; other versions may also be affected. \r\n\r\n<?php $d = 2.2250738585072011e-308; ?>", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/35164/"}, {"lastseen": "2016-02-01T23:26:18", "osvdbidlist": [], "_object_types": ["robots.models.exploitdb.ExploitDbBulletin", "robots.models.base.Bulletin"], "references": [], "description": "PHP Exif Extension 'exif_read_data()' Function Remote DoS. CVE-2011-0708. Dos exploits for multiple platform", "reporter": "_ikki and paradoxengine", "published": "2011-02-28T00:00:00", "type": "exploitdb", "title": "PHP Exif Extension 'exif_read_data' Function Remote DoS", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "exploit", "cvelist": ["CVE-2011-0708"], "_object_type": "robots.models.exploitdb.ExploitDbBulletin", "modified": "2011-02-28T00:00:00", "id": "EDB-ID:16261", "href": "https://www.exploit-db.com/exploits/16261/", "sourceData": "Source: http://permalink.gmane.org/gmane.comp.security.oss.general/4198\r\n\r\n=====================================================================\r\nPHP Exif 64bit Casting Vulnerability\r\n=====================================================================\r\n\r\nAffected Software : PHP <= 5.3.5 (Exif extension for 64bit platforms)\r\nSeverity : Low\r\nLocal/Remote : Remote\r\nAuthor : @_ikki, @paradoxengine (blog.nibblesec.org)\r\n\r\n[Summary]\r\n\r\nPHP Exif extension allows developers to work with image metadata\r\nwithin their PHP code. For instance, using exif functions it is possible\r\nto read metadata from digital camera pictures.\r\nFor further details on this file format, please refer to:\r\nhttp://www.media.mit.edu/pia/Research/deepview/exif.html\r\n\r\nPHP Exif extension for 64bit platforms is affected by a casting\r\nvulnerability that occurs during the image header parsing.\r\nAccording to our preliminary analysis, exploitation of this flaw results\r\nin Denial of Service.\r\n\r\nThis vulnerability affects PHP 5.3.5 and likely all previous versions.\r\nDuring our analysis, we have successfully tested our PoC against PHP\r\n5.3.2, PHP 5.3.3 and the latest PHP release 5.3.5.\r\n\r\nUsing the following configuration, a system is most likely vulnerable:\r\n (a) PHP 64bit version\r\n (b) PHP compiled with --enable-exif\r\n (c) memory_limit = -1\r\n\r\n[Vulnerability Details]\r\n\r\nIn case of 64bit platforms, an improper conversion occurs within\r\n\"/php-5.3.5/ext/exif/exif.c\" at line 1100 (php_ifd_get32s) and 1118\r\n(php_ifd_get32u).\r\n\r\nIn detail, an image having properly crafted Image File Directory (IFD)\r\ncan be used to trigger a segmentation fault caused by a memory access\r\nviolation:\r\n\r\n$ gdb ./sapi/cli/php\r\nGNU gdb 6.8-debian\r\nCopyright (C) 2008 Free Software Foundation, Inc.\r\nLicense GPLv3+: GNU GPL version 3 or later\r\n<http://gnu.org/licenses/gpl.html>\r\nThis is free software: you are free to change and redistribute it.\r\nThere is NO WARRANTY, to the extent permitted by law. Type \"show\r\ncopying\"\r\nand \"show warranty\" for details.\r\nThis GDB was configured as \"x86_64-linux-gnu\"...\r\n(gdb) run -c /etc/php5/cli/php.ini ../exif.php ../ihaterepeating2.jpeg\r\nStarting\r\nprogram: /archive/stuff/vulnsResearch/php_exif/php-5.3.5/sapi/cli/php\r\n-c /etc/php5/cli/php.ini ../exif.php ../ihaterepeating2.jpeg\r\n[Thread debugging using libthread_db enabled]\r\n\r\n --- start ../ihaterepeating2.jpeg ---\r\n\r\n[New Thread 0x7ff7d45a26e0 (LWP 10941)]\r\n\r\nProgram received signal SIGSEGV, Segmentation fault.\r\n[Switching to Thread 0x7ff7d45a26e0 (LWP 10941)]\r\n0x000000000055e297 in php_ifd_get32s (value=0x2055000, motorola_intel=0)\r\nat /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:1108\r\n1108 return (((char *)value)[3] << 24)\r\n\r\n(gdb) backtrace\r\n#0 0x000000000055e297 in php_ifd_get32s (value=0x2055000,\r\nmotorola_intel=0)\r\nat /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:1108\r\n#1 0x000000000055e2f9 in php_ifd_get32u (value=0x2055000,\r\nmotorola_intel=0)\r\nat /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:1120\r\n#2 0x000000000055f37e in exif_iif_add_value\r\n(image_info=0x7fff68f4e0d0,\r\nsection_index=13, name=0x7fff68f4d920 \"UndefinedTag:0x0205\", tag=517,\r\nformat=5,\r\n length=536870913, value=0x2017124, motorola_intel=0) at\r\n /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:1760\r\n#3 0x000000000055f4d1 in exif_iif_add_tag (image_info=0x7fff68f4e0d0,\r\nsection_index=13, name=0x7fff68f4d920 \"UndefinedTag:0x0205\", tag=517,\r\nformat=5,\r\n length=536870913, value=0x2017124) at\r\n /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:1801\r\n#4 0x00000000005625a8 in exif_process_IFD_TAG\r\n(ImageInfo=0x7fff68f4e0d0,\r\ndir_entry=0x20170e8 \"\\005\\002\\005\", offset_base=0x2016da0 \"II*\",\r\nIFDlength=7157,\r\ndisplacement=12, section_index=13, ReadNextIFD=0, tag_table=0x949740)\r\nat /archive/stuff/vulnsResearch/php_exif/php-5.3.5/ext/exif/exif.c:3115\r\n[...]\r\n\r\nWithin the PoC image, bytes in position 358-35B can be used to craft\r\nthe value of the 'components' variable (int) which is later used within\r\nmemory read operations.\r\n\r\nTwo cases appear to be interesting:\r\n\r\n{Case A - Negative value}\r\n$hexdump -C ihaterepeating.jpeg | grep -i \"03 00 00 A0\"\r\nresults in \"components=-1610612733\"\r\n\r\n{Case B - Positive value}\r\n$hexdump -C ihaterepeating2.jpeg | grep -i \"01 00 00 20\"\r\nresults in \"components=536870913\"\r\nPlease note that 0x20 = 32dec\r\n\r\nAs mentioned, the value of the 'components' variable is later computed\r\nin memory operations within another variable named 'length'.\r\nSuch value is used in a for-loop instruction (line 1745) to read image\r\nmetadata starting from a memory address.\r\n\r\nAlthough it is possible to control the offset, the following\r\ninstructions (line 1671) limit such value to positive integers only.\r\n\r\n <-- cut here -->\r\nif (length < 0) {\r\n return;\r\n}\r\n <-- cut here -->\r\n\r\nConsequently it seems possible to oversize the expected value only,\r\nwhich results in a memory access violation.\r\n\r\n[Proof-Of-Concept]\r\n\r\nTwo images (case A and B) have been properly crafted:\r\nhttp://www.ikkisoft.com/stuff/ihaterepeating.jpeg\r\nhttp://www.ikkisoft.com/stuff/ihaterepeating2.jpeg (SegFault)\r\n\r\nYou may want to use this script to read exif data:\r\n\r\n <-- cut here -->\r\n <?php\r\necho\" --- start ---\\n\\n\";\r\nexif_read_data($argv[1]);\r\necho\" --- end ---\\n\\n\";\r\n ?>\r\n <-- cut here -->\r\n\r\n[Fix Information]\r\n\r\nn/a\r\n\r\n--\r\nLuca Carettoni\r\nPoC: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/16261.zip", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/16261/"}], "securityvulns": [{"lastseen": "2018-08-31T11:10:38", "references": [], "description": "-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n\r\n Mandriva Linux Security Advisory MDVSA-2010:239\r\n http://www.mandriva.com/security/\r\n _______________________________________________________________________\r\n\r\n Package : php\r\n Date : November 19, 2010\r\n Affected: 2009.0, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0\r\n _______________________________________________________________________\r\n\r\n Problem Description:\r\n\r\n A possible double free flaw was found in the imap extension for php\r\n (CVE-2010-4150).\r\n \r\n A GC corrupting flaw was found in Zend/zend_gc.c for php-5.3.x that\r\n under certain circumstances could case a segmention fault (crash).\r\n \r\n Packages for 2009.0 are provided as of the Extended Maintenance\r\n Program. Please visit this link to learn more:\r\n http://store.mandriva.com/product_info.php?cPath=149&products_id=490\r\n \r\n The updated packages have been patched to correct these issues.\r\n _______________________________________________________________________\r\n\r\n References:\r\n\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4150\r\n http://svn.php.net/viewvc?view=revision&revision=305032\r\n http://bugs.php.net/bug.php?id=50027\r\n http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/Zend/zend_gc.c?r1=297307&r2=303016\r\n _______________________________________________________________________\r\n\r\n Updated Packages:\r\n\r\n Mandriva Linux 2009.0:\r\n 9cec5783d385c42fc6dff8b216252520 2009.0/i586/libphp5_common5-5.2.14-0.4mdv2009.0.i586.rpm\r\n 454bb83d9f0ebbb7317b8c44c168350e 2009.0/i586/php-bcmath-5.2.14-0.4mdv2009.0.i586.rpm\r\n de9c8927a88290d118288aa2948ca14a 2009.0/i586/php-bz2-5.2.14-0.4mdv2009.0.i586.rpm\r\n df43026dab1f62432473bb7b039a10a4 2009.0/i586/php-calendar-5.2.14-0.4mdv2009.0.i586.rpm\r\n 870e47a2bc2db1d2e2bf8103dfd6e9c3 2009.0/i586/php-cgi-5.2.14-0.4mdv2009.0.i586.rpm\r\n 71a1cb3cd782fa0cd42474f217367f13 2009.0/i586/php-cli-5.2.14-0.4mdv2009.0.i586.rpm\r\n 29411d27f7f833154ace0d591a891d94 2009.0/i586/php-ctype-5.2.14-0.4mdv2009.0.i586.rpm\r\n bd16f1da2758e493dc063ebc1a30482f 2009.0/i586/php-curl-5.2.14-0.4mdv2009.0.i586.rpm\r\n bc7933d53cc3018536ea4119f6fa59be 2009.0/i586/php-dba-5.2.14-0.4mdv2009.0.i586.rpm\r\n 47cdb39610f87fb2690bfe47186c2a31 2009.0/i586/php-dbase-5.2.14-0.4mdv2009.0.i586.rpm\r\n 7b61bb4577c3e97071b2b9a3fd76447d 2009.0/i586/php-devel-5.2.14-0.4mdv2009.0.i586.rpm\r\n d879f5a115c1169c9b06752618d17e16 2009.0/i586/php-dom-5.2.14-0.4mdv2009.0.i586.rpm\r\n b509884cf77fb979554970971fe18d10 2009.0/i586/php-exif-5.2.14-0.4mdv2009.0.i586.rpm\r\n b5cb79717307c86578576c7d9278a4f9 2009.0/i586/php-fcgi-5.2.14-0.4mdv2009.0.i586.rpm\r\n a042755bef04abb1169ba67e5a97abeb 2009.0/i586/php-filter-5.2.14-0.4mdv2009.0.i586.rpm\r\n fde7404edf2d43a9d9a995fbbc310acc 2009.0/i586/php-ftp-5.2.14-0.4mdv2009.0.i586.rpm\r\n 2ba46b17cebea55ed256bb07ee6c52ec 2009.0/i586/php-gd-5.2.14-0.4mdv2009.0.i586.rpm\r\n f1bcbf439332683ed1db6dfa6498344b 2009.0/i586/php-gettext-5.2.14-0.4mdv2009.0.i586.rpm\r\n 127f13984374f2ef28c17e42519910c4 2009.0/i586/php-gmp-5.2.14-0.4mdv2009.0.i586.rpm\r\n dc74178782b5b8319e0b071b856d495c 2009.0/i586/php-hash-5.2.14-0.4mdv2009.0.i586.rpm\r\n cd14617393930d6fbc7bc102655ecc2d 2009.0/i586/php-iconv-5.2.14-0.4mdv2009.0.i586.rpm\r\n b987c582ecd0f823a2a057ccd4336acc 2009.0/i586/php-imap-5.2.14-0.4mdv2009.0.i586.rpm\r\n c15a89defb8af9916049d51005f43d8a 2009.0/i586/php-json-5.2.14-0.4mdv2009.0.i586.rpm\r\n 9bf7779f454ea27f77a502b41a10f2ca 2009.0/i586/php-ldap-5.2.14-0.4mdv2009.0.i586.rpm\r\n dac333eb0aeb2b1021af6be5a0f6696a 2009.0/i586/php-mbstring-5.2.14-0.4mdv2009.0.i586.rpm\r\n b1fcfc54c099da88e22b9a630f1cf962 2009.0/i586/php-mcrypt-5.2.14-0.4mdv2009.0.i586.rpm\r\n 2abd02327745e019e24a0f7b9cf8d575 2009.0/i586/php-mhash-5.2.14-0.4mdv2009.0.i586.rpm\r\n ae0ad2b37a16c44b7cd718dfa9d02334 2009.0/i586/php-mime_magic-5.2.14-0.4mdv2009.0.i586.rpm\r\n 0f9963cdb0b91bc33644677119967fa6 2009.0/i586/php-ming-5.2.14-0.4mdv2009.0.i586.rpm\r\n 22faac11942b417e176dfab50169690b 2009.0/i586/php-mssql-5.2.14-0.4mdv2009.0.i586.rpm\r\n be0536d8759187f368eb10c3c1d2e13b 2009.0/i586/php-mysql-5.2.14-0.4mdv2009.0.i586.rpm\r\n 5ecd0d2ee8a89524967bc0a75b3f734b 2009.0/i586/php-mysqli-5.2.14-0.4mdv2009.0.i586.rpm\r\n 063710576af38962182c9a2fb1f96a5b 2009.0/i586/php-ncurses-5.2.14-0.4mdv2009.0.i586.rpm\r\n a37403add54ddd0c67d820306fad05a3 2009.0/i586/php-odbc-5.2.14-0.4mdv2009.0.i586.rpm\r\n 6cbb62eb3c8f01f4dd25c470a67eb414 2009.0/i586/php-openssl-5.2.14-0.4mdv2009.0.i586.rpm\r\n 47cccd9180aa816c9016e5d135737658 2009.0/i586/php-pcntl-5.2.14-0.4mdv2009.0.i586.rpm\r\n 13348846ce3d7703ea5f3c59a700d2ca 2009.0/i586/php-pdo-5.2.14-0.4mdv2009.0.i586.rpm\r\n 6d4677a97107e1010e73718e8a508ffe 2009.0/i586/php-pdo_dblib-5.2.14-0.4mdv2009.0.i586.rpm\r\n 5ef95759ef8fcd9ea15c8d8ece4fb57e 2009.0/i586/php-pdo_mysql-5.2.14-0.4mdv2009.0.i586.rpm\r\n bb68adbde45aad1554f546baea76be5b 2009.0/i586/php-pdo_odbc-5.2.14-0.4mdv2009.0.i586.rpm\r\n 0bab66c6be8abcc2029ace3bc3c82265 2009.0/i586/php-pdo_pgsql-5.2.14-0.4mdv2009.0.i586.rpm\r\n 12d1f10253e44f869ad9bc9614f533e4 2009.0/i586/php-pdo_sqlite-5.2.14-0.4mdv2009.0.i586.rpm\r\n 5bb5f6de0ebee2f81459e7408b3e38d3 2009.0/i586/php-pgsql-5.2.14-0.4mdv2009.0.i586.rpm\r\n 20da2285febf2b3786293cc7ee228c08 2009.0/i586/php-posix-5.2.14-0.4mdv2009.0.i586.rpm\r\n d990d96a638e34e299666ea3e9372407 2009.0/i586/php-pspell-5.2.14-0.4mdv2009.0.i586.rpm\r\n 6b9f2968c3e106feb5243891c67f4e66 2009.0/i586/php-readline-5.2.14-0.4mdv2009.0.i586.rpm\r\n 57c3c3b08a50fe6b5d608f5b838fbf3f 2009.0/i586/php-recode-5.2.14-0.4mdv2009.0.i586.rpm\r\n ce17c70116a7b11ee0ddc8cdf54e1598 2009.0/i586/php-session-5.2.14-0.4mdv2009.0.i586.rpm\r\n e326bbd0e93734687a7ddc459f5a818e 2009.0/i586/php-shmop-5.2.14-0.4mdv2009.0.i586.rpm\r\n 440759a4d51a09578e24e134e35e02a9 2009.0/i586/php-snmp-5.2.14-0.4mdv2009.0.i586.rpm\r\n 5b48c690671492f58995959fbc64c3ed 2009.0/i586/php-soap-5.2.14-0.4mdv2009.0.i586.rpm\r\n d0f8c046967091e4485c9e05f3598173 2009.0/i586/php-sockets-5.2.14-0.4mdv2009.0.i586.rpm\r\n 51584718631fa68d19b93c6a4172b3c5 2009.0/i586/php-sqlite-5.2.14-0.4mdv2009.0.i586.rpm\r\n d91ea0fb374e5cc9177b659b6ef11557 2009.0/i586/php-sybase-5.2.14-0.4mdv2009.0.i586.rpm\r\n abb2fb6ea3dd2184801c3664a08760d2 2009.0/i586/php-sysvmsg-5.2.14-0.4mdv2009.0.i586.rpm\r\n 778d2897a136875ec3430a267bb5cdf2 2009.0/i586/php-sysvsem-5.2.14-0.4mdv2009.0.i586.rpm\r\n 2bc8db8d97319aa5fb8de1c030254759 2009.0/i586/php-sysvshm-5.2.14-0.4mdv2009.0.i586.rpm\r\n 7714d3e0c3e872f35f72233f696e4acf 2009.0/i586/php-tidy-5.2.14-0.4mdv2009.0.i586.rpm\r\n 2b36bf860588386b5ebbde3ebad6e7b6 2009.0/i586/php-tokenizer-5.2.14-0.4mdv2009.0.i586.rpm\r\n e97c4ff70969c38aed915fffa30fdbf9 2009.0/i586/php-wddx-5.2.14-0.4mdv2009.0.i586.rpm\r\n 77e179de9271e382dfa7d69794ccb5da 2009.0/i586/php-xml-5.2.14-0.4mdv2009.0.i586.rpm\r\n 084f08cded876742bf2d82add2ccf804 2009.0/i586/php-xmlreader-5.2.14-0.4mdv2009.0.i586.rpm\r\n 3c97772cf8aff488645bb4cffae3c146 2009.0/i586/php-xmlrpc-5.2.14-0.4mdv2009.0.i586.rpm\r\n 587dd3ded959cbe6552c29b4f1796bb6 2009.0/i586/php-xmlwriter-5.2.14-0.4mdv2009.0.i586.rpm\r\n acb381334e022688f6fc30b6837bcf97 2009.0/i586/php-xsl-5.2.14-0.4mdv2009.0.i586.rpm\r\n a02b289197b2b3c5ea992f51d8f66157 2009.0/i586/php-zip-5.2.14-0.4mdv2009.0.i586.rpm\r\n 133341149b523e97e54ab892aa8a8b4d 2009.0/i586/php-zlib-5.2.14-0.4mdv2009.0.i586.rpm \r\n 7194d891a7be39f31e8de33e14c819ff 2009.0/SRPMS/php-5.2.14-0.4mdv2009.0.src.rpm\r\n\r\n Mandriva Linux 2009.0/X86_64:\r\n 8aaa44117873fb19d23af24ba71d0576 2009.0/x86_64/lib64php5_common5-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n b743a103a0e733e0846acd4e012477c5 2009.0/x86_64/php-bcmath-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 3d510b4f6ab4ae7dbbf1acb0e5d5fa1b 2009.0/x86_64/php-bz2-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n fb3488979b8c860aabd0bb9940c755db 2009.0/x86_64/php-calendar-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 4c5e53cba56112f5551299a27dad468f 2009.0/x86_64/php-cgi-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 127ace6fe68f218435d90e20e82a325e 2009.0/x86_64/php-cli-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 01c7c858204a7dc6deb397392996b8ec 2009.0/x86_64/php-ctype-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 4abc1251b026e8fc3a60750ac1ea7057 2009.0/x86_64/php-curl-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 62fbb5449b1d2a01fc81c07a3a7e5960 2009.0/x86_64/php-dba-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n df70686d3b5e70aab3526ed469d7e5a7 2009.0/x86_64/php-dbase-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n e7a55b51ef3b34c4dde93a517edff4cd 2009.0/x86_64/php-devel-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 113693d52e0aec271aeda0e90d6fe6cb 2009.0/x86_64/php-dom-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 1a72228b7ff609b6be736f68b73e33c9 2009.0/x86_64/php-exif-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 8d127ca061a9c8a31fe56ff116baf9fa 2009.0/x86_64/php-fcgi-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 93bcf7ce9cb1d9e40924c3f7dc485967 2009.0/x86_64/php-filter-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 0430819009b159ea903e3993940d4a11 2009.0/x86_64/php-ftp-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 5573f1e0bac572da19a2524c74a51107 2009.0/x86_64/php-gd-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 2ca9044f8a85027bbb90d31f7a7f26cf 2009.0/x86_64/php-gettext-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 86d3b46a78ed4bbcdb8c3b4b09566656 2009.0/x86_64/php-gmp-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 5348b57765e3ab5a9f7d03a319845c92 2009.0/x86_64/php-hash-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 4d61fb7947fbdd045d2612c1345445e0 2009.0/x86_64/php-iconv-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 6f86c256a6cd600fddaffd7fbd535df3 2009.0/x86_64/php-imap-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 2cb1abbca876d9ffa00ebbede927ad5b 2009.0/x86_64/php-json-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 0c83295d1cc963539cbdddf668c68eeb 2009.0/x86_64/php-ldap-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n f534f3901451e3ede37b735efb4589db 2009.0/x86_64/php-mbstring-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n de2d2548e23aba7e76563a928e7e001f 2009.0/x86_64/php-mcrypt-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 2da217e2d5c0db71b4056d1214cec095 2009.0/x86_64/php-mhash-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 896e711cbe16c8628139d79841418f65 2009.0/x86_64/php-mime_magic-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n a08276c8e7ead5922eb19208924b316d 2009.0/x86_64/php-ming-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 912786f0652c1214ab677876162b686b 2009.0/x86_64/php-mssql-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n f59bb7d397469610c570916c1e6dacc7 2009.0/x86_64/php-mysql-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 067e591c0ee48cf063dbe46e5b6a686a 2009.0/x86_64/php-mysqli-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 55c6faed7b7fa189c6e164ace75a8113 2009.0/x86_64/php-ncurses-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n fe7685f0b9e4b4a29db5f9c73bb132fc 2009.0/x86_64/php-odbc-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 8c918cbea800340476843afa9ef07cb5 2009.0/x86_64/php-openssl-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 032b723793d5fc16a1caf32294191a89 2009.0/x86_64/php-pcntl-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n ed415af478aa1c8223e5d5027d029126 2009.0/x86_64/php-pdo-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 431355125503d416bd1600736f5fbc09 2009.0/x86_64/php-pdo_dblib-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n d24d7f1a37486780d268141c365e316b 2009.0/x86_64/php-pdo_mysql-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 0b418056afbfd165ea252ff97131528a 2009.0/x86_64/php-pdo_odbc-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n b1b5690e03528d26b8b56649f288e9ec 2009.0/x86_64/php-pdo_pgsql-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 07a2af3962f0cbada505ed25d7c0fee4 2009.0/x86_64/php-pdo_sqlite-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n f61e073ebc574af7e62db3fb8c499734 2009.0/x86_64/php-pgsql-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 890313e6d44146278421f01a6c6dd024 2009.0/x86_64/php-posix-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 2a05907ba44684f035d9cdbf833af3c5 2009.0/x86_64/php-pspell-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 8a27af444e918d2f03abde263f2c268a 2009.0/x86_64/php-readline-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 54260ab580880870c0b8ab7e729b83d7 2009.0/x86_64/php-recode-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 170b2d381a18d6bf30edec5bdc01b7ab 2009.0/x86_64/php-session-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 531edfc14cd114d9ea3fc9edd75df9f6 2009.0/x86_64/php-shmop-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 6494ed8ea9b8db01d51bbb7c9114fafc 2009.0/x86_64/php-snmp-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 0f896050fc47da9d0fd8f8cdf322f863 2009.0/x86_64/php-soap-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 2aa70c16799172182936f0b78bf3660f 2009.0/x86_64/php-sockets-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 29bc65ef45e8babbdbeba7c3a7158340 2009.0/x86_64/php-sqlite-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n a6916ca2d249158d7546be5a3ec952b1 2009.0/x86_64/php-sybase-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 0103711ccc4c1ae4370d71efc5371229 2009.0/x86_64/php-sysvmsg-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n c22a8ff1a73f163ab519f1c4da1827c9 2009.0/x86_64/php-sysvsem-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 33620335be512ce51474cb052fc3518f 2009.0/x86_64/php-sysvshm-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n a458826f2b379ceb1af8f8c671ed7b29 2009.0/x86_64/php-tidy-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n b17c00302414c7ce84ee4d365aed9d85 2009.0/x86_64/php-tokenizer-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 03ee5b59fc3c3859a3e9be5cd9522558 2009.0/x86_64/php-wddx-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 4ac32b41365f9ecbb4425ae1c98f7cb3 2009.0/x86_64/php-xml-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n dafb93cce44f467bc61237e4ca8ad389 2009.0/x86_64/php-xmlreader-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n c9c1b2a7dbef511b92880cbb715fbe74 2009.0/x86_64/php-xmlrpc-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n cd1d28bfe0639cce64b55916b3f2a51f 2009.0/x86_64/php-xmlwriter-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n d9b62a291b391579b3d1c225612088f7 2009.0/x86_64/php-xsl-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n 38566c2c3a0c71fbf21ee659a4845442 2009.0/x86_64/php-zip-5.2.14-0.4mdv2009.0.x86_64.rpm\r\n c42c1d899efab3c5e829baab540512c3 2009.0/x86_64/php-zlib-5.2.14-0.4mdv2009.0.x86_64.rpm \r\n 7194d891a7be39f31e8de33e14c819ff 2009.0/SRPMS/php-5.2.14-0.4mdv2009.0.src.rpm\r\n\r\n Mandriva Linux 2010.0:\r\n 1e92aaaf94dfc7cd07032a3d68ef35ca 2010.0/i586/libphp5_common5-5.3.3-0.4mdv2010.0.i586.rpm\r\n 7bf61bc91d9d6b8543ab8573348a954e 2010.0/i586/php-bcmath-5.3.3-0.4mdv2010.0.i586.rpm\r\n 19e117f52b50313c6917df9329045b5b 2010.0/i586/php-bz2-5.3.3-0.4mdv2010.0.i586.rpm\r\n 648f4793808405a3df7c6e3e273bd287 2010.0/i586/php-calendar-5.3.3-0.4mdv2010.0.i586.rpm\r\n c03398500ec89f5e0727930bc06a21ef 2010.0/i586/php-cgi-5.3.3-0.4mdv2010.0.i586.rpm\r\n 46768fcd37de820e0fe1988ef08d94df 2010.0/i586/php-cli-5.3.3-0.4mdv2010.0.i586.rpm\r\n 974aa6e8fdf65476c16e21ad42d0a854 2010.0/i586/php-ctype-5.3.3-0.4mdv2010.0.i586.rpm\r\n 041fb8f922efc5f30edbda47f92e95ec 2010.0/i586/php-curl-5.3.3-0.4mdv2010.0.i586.rpm\r\n 791d4978149c53ea5bd90ac734b12b4f 2010.0/i586/php-dba-5.3.3-0.4mdv2010.0.i586.rpm\r\n b1ad55d9712b268b72a9f2ab4d309c8d 2010.0/i586/php-devel-5.3.3-0.4mdv2010.0.i586.rpm\r\n fe64884a35efade901e6207592741002 2010.0/i586/php-doc-5.3.3-0.4mdv2010.0.i586.rpm\r\n 07d18f99943b937440922d7d350eba87 2010.0/i586/php-dom-5.3.3-0.4mdv2010.0.i586.rpm\r\n 3c478ac07be26bbebf983f442c480fcb 2010.0/i586/php-enchant-5.3.3-0.4mdv2010.0.i586.rpm\r\n 01878790019766cc513f88f9a59b2da2 2010.0/i586/php-exif-5.3.3-0.4mdv2010.0.i586.rpm\r\n 7a547fd786c48217b5d6bf3ea5954354 2010.0/i586/php-fileinfo-5.3.3-0.4mdv2010.0.i586.rpm\r\n 8416e121413dd93ca68f43eb293e312d 2010.0/i586/php-filter-5.3.3-0.4mdv2010.0.i586.rpm\r\n 3750ae6f229b758d1f7d8f09730a18d9 2010.0/i586/php-fpm-5.3.3-0.4mdv2010.0.i586.rpm\r\n 5f5ac9a564611a9d2fe294e11ea3fc49 2010.0/i586/php-ftp-5.3.3-0.4mdv2010.0.i586.rpm\r\n 6752c5e91af57a03abf8a0c8ab09bf36 2010.0/i586/php-gd-5.3.3-0.4mdv2010.0.i586.rpm\r\n d47ba6927d515f2c46b3f05976f22bef 2010.0/i586/php-gettext-5.3.3-0.4mdv2010.0.i586.rpm\r\n c7fcc4fae466a540d0b18983bfb88554 2010.0/i586/php-gmp-5.3.3-0.4mdv2010.0.i586.rpm\r\n 7f52b6032c6d5bd7648b4dbe8bfcfca1 2010.0/i586/php-hash-5.3.3-0.4mdv2010.0.i586.rpm\r\n d68f79b3deb355b4578a43f3499a2636 2010.0/i586/php-iconv-5.3.3-0.4mdv2010.0.i586.rpm\r\n e356d9c9ffde0c7857e0cb5dea2c5056 2010.0/i586/php-imap-5.3.3-0.4mdv2010.0.i586.rpm\r\n 52403d91c501f05c2a6f29430b50ebe6 2010.0/i586/php-intl-5.3.3-0.4mdv2010.0.i586.rpm\r\n 80dfb79d9980606f2ca7711e95f781ef 2010.0/i586/php-json-5.3.3-0.4mdv2010.0.i586.rpm\r\n 190a8a2a11f8e835274ceabb1b80c964 2010.0/i586/php-ldap-5.3.3-0.4mdv2010.0.i586.rpm\r\n 96d318e10e9106b0e216876a79936be3 2010.0/i586/php-mbstring-5.3.3-0.4mdv2010.0.i586.rpm\r\n 331d7726ffd0e0b23b78787dfd65594b 2010.0/i586/php-mcrypt-5.3.3-0.4mdv2010.0.i586.rpm\r\n 361071a0dcd64d3274fc8c0aeaaae0c8 2010.0/i586/php-mssql-5.3.3-0.4mdv2010.0.i586.rpm\r\n 11db28041925bf889714b8dfb63e4e7b 2010.0/i586/php-mysql-5.3.3-0.4mdv2010.0.i586.rpm\r\n cb66379443716bbec5889d9434b74f5b 2010.0/i586/php-mysqli-5.3.3-0.4mdv2010.0.i586.rpm\r\n 94220d41439c064b41dcfb040216f662 2010.0/i586/php-odbc-5.3.3-0.4mdv2010.0.i586.rpm\r\n f9bde87cb9bb6ef27fee8bd8b3b56ffa 2010.0/i586/php-openssl-5.3.3-0.4mdv2010.0.i586.rpm\r\n 7d6a2c075de4771dbc60fe057febc02f 2010.0/i586/php-pcntl-5.3.3-0.4mdv2010.0.i586.rpm\r\n 10e016005949837de1d55b00d484f6bc 2010.0/i586/php-pdo-5.3.3-0.4mdv2010.0.i586.rpm\r\n 6a767bbcce1eee6d7a64d49bffb0a24b 2010.0/i586/php-pdo_dblib-5.3.3-0.4mdv2010.0.i586.rpm\r\n 6ef15dcce14b925765a372df5afb782c 2010.0/i586/php-pdo_mysql-5.3.3-0.4mdv2010.0.i586.rpm\r\n 25ca2f084798738f992d95ad956e535b 2010.0/i586/php-pdo_odbc-5.3.3-0.4mdv2010.0.i586.rpm\r\n f8e0b712ae308359f3d6ea523b2a75c1 2010.0/i586/php-pdo_pgsql-5.3.3-0.4mdv2010.0.i586.rpm\r\n f6a3a5c5e1b5c04ad276a069241065b6 2010.0/i586/php-pdo_sqlite-5.3.3-0.4mdv2010.0.i586.rpm\r\n b3146ab4030142574411fc21a5cd1d3c 2010.0/i586/php-pgsql-5.3.3-0.4mdv2010.0.i586.rpm\r\n 37f65cdea6e253cc59686a1e4d3fd5cc 2010.0/i586/php-posix-5.3.3-0.4mdv2010.0.i586.rpm\r\n 431e6da8b33cce6291dae129da60c763 2010.0/i586/php-pspell-5.3.3-0.4mdv2010.0.i586.rpm\r\n 3aba3cef56afca865e4245ff9fdd481e 2010.0/i586/php-readline-5.3.3-0.4mdv2010.0.i586.rpm\r\n 5901f2fb12f8028e924886cccc7ad0a5 2010.0/i586/php-recode-5.3.3-0.4mdv2010.0.i586.rpm\r\n 1a33965c7da963a973148f5a5418cac4 2010.0/i586/php-session-5.3.3-0.4mdv2010.0.i586.rpm\r\n ba983903c5cee8806534dff22752b5f8 2010.0/i586/php-shmop-5.3.3-0.4mdv2010.0.i586.rpm\r\n a7bd6eee86371adfde092768e7af008c 2010.0/i586/php-snmp-5.3.3-0.4mdv2010.0.i586.rpm\r\n 929e4523350064d5f9959fbab90048f2 2010.0/i586/php-soap-5.3.3-0.4mdv2010.0.i586.rpm\r\n bfedc6d980801c5ab53c93263950db9a 2010.0/i586/php-sockets-5.3.3-0.4mdv2010.0.i586.rpm\r\n 6c171b180dee2329a272ffaed6475372 2010.0/i586/php-sqlite3-5.3.3-0.4mdv2010.0.i586.rpm\r\n 0980b6bf9e6a3de5a9884b720f7866c3 2010.0/i586/php-sybase_ct-5.3.3-0.4mdv2010.0.i586.rpm\r\n 43f3c1cd871f72a0d75c88b12df7f5fc 2010.0/i586/php-sysvmsg-5.3.3-0.4mdv2010.0.i586.rpm\r\n 81309e12166221ef9c0d72b2b8a2fd7b 2010.0/i586/php-sysvsem-5.3.3-0.4mdv2010.0.i586.rpm\r\n 4907ec8881f2fe37fe050bf41445c718 2010.0/i586/php-sysvshm-5.3.3-0.4mdv2010.0.i586.rpm\r\n 0b9acc274e228e798e0276129889b7ae 2010.0/i586/php-tidy-5.3.3-0.4mdv2010.0.i586.rpm\r\n 6c0628b5ba09d6bc33a6b5946b512353 2010.0/i586/php-tokenizer-5.3.3-0.4mdv2010.0.i586.rpm\r\n 60379e1cac99885e0e46a00da111ae87 2010.0/i586/php-wddx-5.3.3-0.4mdv2010.0.i586.rpm\r\n 90f0c545ac8c1663798a54dcdd7b7958 2010.0/i586/php-xml-5.3.3-0.4mdv2010.0.i586.rpm\r\n 9f348dca1cec42e58cb37e11248f2cd4 2010.0/i586/php-xmlreader-5.3.3-0.4mdv2010.0.i586.rpm\r\n a08970ab5612c76b3aa342b1c2671768 2010.0/i586/php-xmlrpc-5.3.3-0.4mdv2010.0.i586.rpm\r\n 4adf8a448c9852a1e8c8be11927f34f3 2010.0/i586/php-xmlwriter-5.3.3-0.4mdv2010.0.i586.rpm\r\n 61294373524ba50d52f38959d10283e3 2010.0/i586/php-xsl-5.3.3-0.4mdv2010.0.i586.rpm\r\n 86b5e430c1aa8172b5331c8cc06e5905 2010.0/i586/php-zip-5.3.3-0.4mdv2010.0.i586.rpm\r\n f57de33ae42d255d1ee085946ff34b04 2010.0/i586/php-zlib-5.3.3-0.4mdv2010.0.i586.rpm \r\n cc9083ca36a8fc615ac4def8a328b5e6 2010.0/SRPMS/php-5.3.3-0.4mdv2010.0.src.rpm\r\n\r\n Mandriva Linux 2010.0/X86_64:\r\n d426bc53480df7ef3ff3063bdb715191 2010.0/x86_64/lib64php5_common5-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n c48d8e8ee6ccb93874ec25736d9a7763 2010.0/x86_64/php-bcmath-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 64c5b55556b57288fbf3a98bd83dc7c0 2010.0/x86_64/php-bz2-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n d60e4d65f8f287ad181ba957672354e2 2010.0/x86_64/php-calendar-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 4bb0aed391d200b00f9ffb18f6f1e38a 2010.0/x86_64/php-cgi-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 200acb9530bc5f7dcdeca173c664b834 2010.0/x86_64/php-cli-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 5ba65ccb69999de5a42d052459ce7788 2010.0/x86_64/php-ctype-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 866b96556172cfcc2edaccf064fdab49 2010.0/x86_64/php-curl-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 22810428a389e6de95ba1b4bd7774342 2010.0/x86_64/php-dba-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n f114b45767ee7ba8116c994fafe007c3 2010.0/x86_64/php-devel-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n c62707489fe069058ebeb5f832347df0 2010.0/x86_64/php-doc-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 6dd81288595b77de0f5b5361ce8b9d54 2010.0/x86_64/php-dom-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 5e55d3910e33374fe2918eae7384de05 2010.0/x86_64/php-enchant-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 827c2ed161b96406e703b38e92c00cef 2010.0/x86_64/php-exif-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n ad6cf05e5f45a012134bcab1154436d3 2010.0/x86_64/php-fileinfo-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n e75e6821499ecddcd5e8414967713235 2010.0/x86_64/php-filter-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 4faf67647ebeed870fe4143c306adc0f 2010.0/x86_64/php-fpm-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 11e5c99206c61ce90c74bc30a2689f67 2010.0/x86_64/php-ftp-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n f417e915cd0234500096341526cbc020 2010.0/x86_64/php-gd-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n fe94836e9d9cd1cc95614d94bc078fc2 2010.0/x86_64/php-gettext-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 4434b7853e3a13778eb9bfd008983936 2010.0/x86_64/php-gmp-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n a03f7e418616e5da49407819081e3a2a 2010.0/x86_64/php-hash-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 7c8b548e81260f89927772c2525c5564 2010.0/x86_64/php-iconv-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n b777b332d9d25c0012e2340c489e067b 2010.0/x86_64/php-imap-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n b147ca98d54282cf0f5b11453d5bdc6b 2010.0/x86_64/php-intl-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 204fcce00d41e890d1497d0d8b771a4d 2010.0/x86_64/php-json-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 3d72f897cbc474e21509a2c474f93c11 2010.0/x86_64/php-ldap-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n db52c807f1a349ba9e68b99805be95d1 2010.0/x86_64/php-mbstring-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 70ccca9f469edbac39d279110f66a4b2 2010.0/x86_64/php-mcrypt-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 79cf87d3bb4bc63f29e8eed4ae4cdff4 2010.0/x86_64/php-mssql-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 873865645f729515166b2d790517d336 2010.0/x86_64/php-mysql-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 1e75e61415bf7a2537f953dc81f47e22 2010.0/x86_64/php-mysqli-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n a9421055d2a1cbf45e325ce791332437 2010.0/x86_64/php-odbc-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 15dd1ed3c5578e2a9d0aaa0c2f5e871e 2010.0/x86_64/php-openssl-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n ff9f9f0752104e89d885dcf2d855dbdf 2010.0/x86_64/php-pcntl-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 6bc84d2bd4323145b527dc08cf028c91 2010.0/x86_64/php-pdo-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 0cf32b21264a4052643948f16152f0bd 2010.0/x86_64/php-pdo_dblib-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 1b7b0514799f34b5e1b5c60727558419 2010.0/x86_64/php-pdo_mysql-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 1cea64d89161228889a0634aee8a1808 2010.0/x86_64/php-pdo_odbc-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 78bd310c85a5998116a4473fcccc18b2 2010.0/x86_64/php-pdo_pgsql-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 237b4e7aa663fcdb4c48bff5102d1ffb 2010.0/x86_64/php-pdo_sqlite-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 09a56b80b8e0d1b6551acdb090b6a66c 2010.0/x86_64/php-pgsql-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n bef4552e221bff4ad0d61c8633e00b55 2010.0/x86_64/php-posix-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 52d096444e143ae51ffda61826f2cf0d 2010.0/x86_64/php-pspell-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 17592e3034413f6deb2cdf2b5718bb82 2010.0/x86_64/php-readline-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 7f69ebccca6ead564ebcb2fa79fce723 2010.0/x86_64/php-recode-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n b9ca50c9226224933f43fe942517d47d 2010.0/x86_64/php-session-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n a94dcf69474a56f676b10ff7d84a0a52 2010.0/x86_64/php-shmop-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 2a9791d049d731881f8de6b6189611ef 2010.0/x86_64/php-snmp-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 6fe6a03a32a7d9adf5f331b66b1047d8 2010.0/x86_64/php-soap-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n cee922434bad68f4d529a01ec9e71a71 2010.0/x86_64/php-sockets-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 76c3d508812531fe512a74d253e4823b 2010.0/x86_64/php-sqlite3-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n f0d985d862570aca608cd381429edef5 2010.0/x86_64/php-sybase_ct-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n cc4675102f432071d005f215c189673b 2010.0/x86_64/php-sysvmsg-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 961b54f8a1d9c5341972e713e58068a0 2010.0/x86_64/php-sysvsem-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n ba183de62e962c9fd49265edd0d3ee67 2010.0/x86_64/php-sysvshm-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n e2f8e40f01d5c039c48711efca54dfc2 2010.0/x86_64/php-tidy-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 58704def670c727e1067553e52b70060 2010.0/x86_64/php-tokenizer-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 0455fcf4c0f75b81970c19ee8f380b5f 2010.0/x86_64/php-wddx-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 038181007535dac73766858ad6d4fa5d 2010.0/x86_64/php-xml-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 0f233abb24b9e82d310fa834c3c659ce 2010.0/x86_64/php-xmlreader-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 2455385791299c83ac1f2a388ccb45f7 2010.0/x86_64/php-xmlrpc-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n b4976bce597490edb0e25e42105a9c51 2010.0/x86_64/php-xmlwriter-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 98a4e3af72e61ae1abd246f1fb8c1d30 2010.0/x86_64/php-xsl-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 75c02555e9c1c8e4187ae0e71ad2fec0 2010.0/x86_64/php-zip-5.3.3-0.4mdv2010.0.x86_64.rpm\r\n 0fe07c392e3e22e2c9332c688908e350 2010.0/x86_64/php-zlib-5.3.3-0.4mdv2010.0.x86_64.rpm \r\n cc9083ca36a8fc615ac4def8a328b5e6 2010.0/SRPMS/php-5.3.3-0.4mdv2010.0.src.rpm\r\n\r\n Mandriva Linux 2010.1:\r\n 0f8f3d19f17f60a3d4ba55348ccae065 2010.1/i586/libphp5_common5-5.3.3-0.4mdv2010.1.i586.rpm\r\n 04d1423909a068561b0c50c0e1e5d936 2010.1/i586/php-bcmath-5.3.3-0.4mdv2010.1.i586.rpm\r\n 06c6fb3eade95e466bc10d76ab46295e 2010.1/i586/php-bz2-5.3.3-0.4mdv2010.1.i586.rpm\r\n ecaab389c68a92b82bd442bd5368994a 2010.1/i586/php-calendar-5.3.3-0.4mdv2010.1.i586.rpm\r\n a874d0f9ca310e65195a0260a7ac0d26 2010.1/i586/php-cgi-5.3.3-0.4mdv2010.1.i586.rpm\r\n bbc98c44152d9d77e86ac55c5cb3c424 2010.1/i586/php-cli-5.3.3-0.4mdv2010.1.i586.rpm\r\n 8a91588ec4d20272703687719de29f33 2010.1/i586/php-ctype-5.3.3-0.4mdv2010.1.i586.rpm\r\n 1fba6a5ae37962b6f120de347919db64 2010.1/i586/php-curl-5.3.3-0.4mdv2010.1.i586.rpm\r\n 51baedfefe6fcc9f7f9ad739b200ef12 2010.1/i586/php-dba-5.3.3-0.4mdv2010.1.i586.rpm\r\n 5334494fe802e1ae25f928429b6f72da 2010.1/i586/php-devel-5.3.3-0.4mdv2010.1.i586.rpm\r\n 2a9cdb8c027c1e87640d1a6e16227364 2010.1/i586/php-doc-5.3.3-0.4mdv2010.1.i586.rpm\r\n 36fa4b883ae12df769e4e39c8ae3d2a4 2010.1/i586/php-dom-5.3.3-0.4mdv2010.1.i586.rpm\r\n 9b941c38c76b172904489f0c04816ab4 2010.1/i586/php-enchant-5.3.3-0.4mdv2010.1.i586.rpm\r\n 8201ec05c5673f84ed0882677f1d0ff7 2010.1/i586/php-exif-5.3.3-0.4mdv2010.1.i586.rpm\r\n 2c475f0e2ccd0506cab4da549bc498c3 2010.1/i586/php-fileinfo-5.3.3-0.4mdv2010.1.i586.rpm\r\n 995556fa82a036a8a21ad12228ccbfb1 2010.1/i586/php-filter-5.3.3-0.4mdv2010.1.i586.rpm\r\n c62978dc9d370eaf3a72af884b8fe442 2010.1/i586/php-fpm-5.3.3-0.4mdv2010.1.i586.rpm\r\n 44238ee30ceda0c77670dc23ddd50696 2010.1/i586/php-ftp-5.3.3-0.4mdv2010.1.i586.rpm\r\n 4d33c2c4b12036453df5553ca5a789fd 2010.1/i586/php-gd-5.3.3-0.4mdv2010.1.i586.rpm\r\n 6af37dd7ff948f4ffa499205658efded 2010.1/i586/php-gettext-5.3.3-0.4mdv2010.1.i586.rpm\r\n b5096e78204c56bdd560dbff038e66ee 2010.1/i586/php-gmp-5.3.3-0.4mdv2010.1.i586.rpm\r\n fcf936d3d1d5e397dffdf30e4328b549 2010.1/i586/php-hash-5.3.3-0.4mdv2010.1.i586.rpm\r\n b7160f60e0052903e19043af6fc0dc16 2010.1/i586/php-iconv-5.3.3-0.4mdv2010.1.i586.rpm\r\n f7fc355f71050f90ae1046f915dccd4c 2010.1/i586/php-imap-5.3.3-0.4mdv2010.1.i586.rpm\r\n 1a78b027129c9aeb137324f96eab7c0b 2010.1/i586/php-intl-5.3.3-0.4mdv2010.1.i586.rpm\r\n 331664bf9de6da6bf41fc5011b5017c5 2010.1/i586/php-json-5.3.3-0.4mdv2010.1.i586.rpm\r\n 003303a6fd1de164ca9de7f5983e91bc 2010.1/i586/php-ldap-5.3.3-0.4mdv2010.1.i586.rpm\r\n fef7d6169384d3791e32c842e84dfb54 2010.1/i586/php-mbstring-5.3.3-0.4mdv2010.1.i586.rpm\r\n e072d243a12567e64e335fc09c087be7 2010.1/i586/php-mcrypt-5.3.3-0.4mdv2010.1.i586.rpm\r\n 6c40adfdb5710831004e9c63bc97f1f0 2010.1/i586/php-mssql-5.3.3-0.4mdv2010.1.i586.rpm\r\n 10e13bf8e211a91762f5c47456cd38b5 2010.1/i586/php-mysql-5.3.3-0.4mdv2010.1.i586.rpm\r\n 19fc9f250a297e48c47b839c3afe79f7 2010.1/i586/php-mysqli-5.3.3-0.4mdv2010.1.i586.rpm\r\n 7b24815bcca4fa45baf400f2be51ef1a 2010.1/i586/php-odbc-5.3.3-0.4mdv2010.1.i586.rpm\r\n 6b445cf041b0f16ae4d785e8d26d4abb 2010.1/i586/php-openssl-5.3.3-0.4mdv2010.1.i586.rpm\r\n 0757e1ab4006c26190edb197374a88cd 2010.1/i586/php-pcntl-5.3.3-0.4mdv2010.1.i586.rpm\r\n dbe2df053bcdc238820c4fa567b60c5d 2010.1/i586/php-pdo-5.3.3-0.4mdv2010.1.i586.rpm\r\n 0bf2175236221147f7a2a7ead25f4907 2010.1/i586/php-pdo_dblib-5.3.3-0.4mdv2010.1.i586.rpm\r\n 9e013345e026d30014dd2c413c2da6e8 2010.1/i586/php-pdo_mysql-5.3.3-0.4mdv2010.1.i586.rpm\r\n f2952f8b9498b6992a69c56cf4352b66 2010.1/i586/php-pdo_odbc-5.3.3-0.4mdv2010.1.i586.rpm\r\n 6f5f8f85bd72e9d9fced74949d82371a 2010.1/i586/php-pdo_pgsql-5.3.3-0.4mdv2010.1.i586.rpm\r\n 78364d922fb67673ad48e90e9c527e98 2010.1/i586/php-pdo_sqlite-5.3.3-0.4mdv2010.1.i586.rpm\r\n bbd2967ad15490a493944350cb176843 2010.1/i586/php-pgsql-5.3.3-0.4mdv2010.1.i586.rpm\r\n 35ad918786c66299f47d7f3fc58e69c4 2010.1/i586/php-posix-5.3.3-0.4mdv2010.1.i586.rpm\r\n 489d4ad88dee3100ea7922d9272b00fa 2010.1/i586/php-pspell-5.3.3-0.4mdv2010.1.i586.rpm\r\n 8712fec195d619f5dd0ea748e91a009e 2010.1/i586/php-readline-5.3.3-0.4mdv2010.1.i586.rpm\r\n ffcd805ba46ad095f26e194de2bfad64 2010.1/i586/php-recode-5.3.3-0.4mdv2010.1.i586.rpm\r\n a1d6d1d36449e42a9e93f2de8492e074 2010.1/i586/php-session-5.3.3-0.4mdv2010.1.i586.rpm\r\n 931de9857497c7b0addcf2a234756c8a 2010.1/i586/php-shmop-5.3.3-0.4mdv2010.1.i586.rpm\r\n d4d19fe44f8e01e1bad6ae5db2e033cb 2010.1/i586/php-snmp-5.3.3-0.4mdv2010.1.i586.rpm\r\n e50f04c45d83b29c3bf624a0184bd072 2010.1/i586/php-soap-5.3.3-0.4mdv2010.1.i586.rpm\r\n fa786e7d1d3e25ff1223cfc652e81b43 2010.1/i586/php-sockets-5.3.3-0.4mdv2010.1.i586.rpm\r\n 793100442895666b0c7cd52b1d0edfe5 2010.1/i586/php-sqlite3-5.3.3-0.4mdv2010.1.i586.rpm\r\n 4a5ede7f38f073428af6d89c1b4d8e96 2010.1/i586/php-sybase_ct-5.3.3-0.4mdv2010.1.i586.rpm\r\n 7a0a884b177874e5656e7229964d4c1c 2010.1/i586/php-sysvmsg-5.3.3-0.4mdv2010.1.i586.rpm\r\n 3eb35cda82a534d1da00c32c2c807d9a 2010.1/i586/php-sysvsem-5.3.3-0.4mdv2010.1.i586.rpm\r\n 553b02290eeb9090e92b8e8a89f1a828 2010.1/i586/php-sysvshm-5.3.3-0.4mdv2010.1.i586.rpm\r\n 99e6aba0c2fdb9f8efa75088aea17ed3 2010.1/i586/php-tidy-5.3.3-0.4mdv2010.1.i586.rpm\r\n 19fb74c0e391f9b4fa068dceb40827b0 2010.1/i586/php-tokenizer-5.3.3-0.4mdv2010.1.i586.rpm\r\n 6e36d7cdafbabf13cde2ce0a75bfa72a 2010.1/i586/php-wddx-5.3.3-0.4mdv2010.1.i586.rpm\r\n 9b0fdb16c26bf85dd38cf5709fc3eb19 2010.1/i586/php-xml-5.3.3-0.4mdv2010.1.i586.rpm\r\n c6ac1dd21b240fa9befafc37cb054bc7 2010.1/i586/php-xmlreader-5.3.3-0.4mdv2010.1.i586.rpm\r\n bc8420b13d024c28c606f249490dd98a 2010.1/i586/php-xmlrpc-5.3.3-0.4mdv2010.1.i586.rpm\r\n ba6a2e059e86c15be7717861b34a045c 2010.1/i586/php-xmlwriter-5.3.3-0.4mdv2010.1.i586.rpm\r\n 0c39173ca4374a4c38ee0bb7e954ce9c 2010.1/i586/php-xsl-5.3.3-0.4mdv2010.1.i586.rpm\r\n 70814d2e883dbab005ca25b742e6b390 2010.1/i586/php-zip-5.3.3-0.4mdv2010.1.i586.rpm\r\n 53785f586129f5353ce9be40186abcb5 2010.1/i586/php-zlib-5.3.3-0.4mdv2010.1.i586.rpm \r\n a92ae0853c57332f5c3fb2a5f9d1c738 2010.1/SRPMS/php-5.3.3-0.4mdv2010.1.src.rpm\r\n\r\n Mandriva Linux 2010.1/X86_64:\r\n 1f64689555d02c0826a7099cc5207ee4 2010.1/x86_64/lib64php5_common5-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 84ed03921ce63bec097d49778ffc6b20 2010.1/x86_64/php-bcmath-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 573f1a235500667635fda40338e4c3bf 2010.1/x86_64/php-bz2-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 7828f4fb4fb0db7fd51886c927791266 2010.1/x86_64/php-calendar-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n c812b526f83a8bdbc1ba03ec059cf9ec 2010.1/x86_64/php-cgi-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 8c39e307129fef802a3eb4961768f038 2010.1/x86_64/php-cli-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n da58d1e5f0f22507f77894b4ddcf224e 2010.1/x86_64/php-ctype-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n aaac17cc78f69afcb14ce65c5b434811 2010.1/x86_64/php-curl-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 8d29f57b2ee07bc9dbbed0bfbeb6168d 2010.1/x86_64/php-dba-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 228c69c11f6b361ce8e379a460b48f79 2010.1/x86_64/php-devel-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 2ad0b4a5991105b11de1aa8ff20797ef 2010.1/x86_64/php-doc-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 098d2c75d6e3df99e167b18bc5481258 2010.1/x86_64/php-dom-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 12238588c82bdbacfba74e28f0f33f6a 2010.1/x86_64/php-enchant-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 4cecf501ce5cdeb6d11320420e4dc94e 2010.1/x86_64/php-exif-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 5aad60c249e80411648739bc6a620890 2010.1/x86_64/php-fileinfo-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n b6edb25d612a0202a3d84c4c8f85bb64 2010.1/x86_64/php-filter-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 89dc3df3cd914664d426323453c8eae3 2010.1/x86_64/php-fpm-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n b1fa4393aef613e0cff339d9b8bca539 2010.1/x86_64/php-ftp-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 9390750dd6ee40bff31f740ba43c6afc 2010.1/x86_64/php-gd-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n a6cd63ca063abe1ffce1a44dfefdbc4e 2010.1/x86_64/php-gettext-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d4364b21fab620ce2cd0a8eb8ab3a3bb 2010.1/x86_64/php-gmp-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d7be8ca1fb4c945c1dfe3a0f04af8dea 2010.1/x86_64/php-hash-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 64b1c5dec2e310e671ac861b8c80dfb9 2010.1/x86_64/php-iconv-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n e3b986e730da86205b4e649a7fe45cd5 2010.1/x86_64/php-imap-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 6ec41b6d00babf149b8c204096cc054c 2010.1/x86_64/php-intl-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 029f23534bb5b740e5aa8304eaf0329c 2010.1/x86_64/php-json-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 61a69955125294cb6048347e889db406 2010.1/x86_64/php-ldap-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d92c63f8eba60ceeeb8dfb0c2410bc1b 2010.1/x86_64/php-mbstring-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n c57b8b086fb3e010dcb4af4e33ea1fcd 2010.1/x86_64/php-mcrypt-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n b8268f9514d1b29f09e1646de9b3ea49 2010.1/x86_64/php-mssql-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n ff5ad0afdac2fe3c1ef7c66f3e23fb08 2010.1/x86_64/php-mysql-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n ad8673ee526fd0be98d1602adebf4488 2010.1/x86_64/php-mysqli-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 94e241eaec869f53b2f1d47d35dae813 2010.1/x86_64/php-odbc-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 9975751ce352cd9ad7f84797178de5ae 2010.1/x86_64/php-openssl-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d5962888dbfb6dd200294b3cb400830e 2010.1/x86_64/php-pcntl-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 18d777dea050b75ec03f0c81cf440885 2010.1/x86_64/php-pdo-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 7abd48df48f7eef1a4bbbe25ab1118f5 2010.1/x86_64/php-pdo_dblib-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 8042c1a0043ee58ba4d4b1d0877ea084 2010.1/x86_64/php-pdo_mysql-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 733181cfa4100c53f84f61add7b3d150 2010.1/x86_64/php-pdo_odbc-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d8ca3cd790d624699235f9161560c2bb 2010.1/x86_64/php-pdo_pgsql-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n dc2524948a844dbf4b9e58a23e15b175 2010.1/x86_64/php-pdo_sqlite-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n e2a7276b9c10dda9b358b780c812b5cb 2010.1/x86_64/php-pgsql-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 40f3c6ae9d373d071dcb1fe8de7e1396 2010.1/x86_64/php-posix-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 31fb0431f5bebb02c4744fb083b5e05d 2010.1/x86_64/php-pspell-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 7d2048c64c3ba938f0b4e498153f7ca1 2010.1/x86_64/php-readline-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 16e809673111dac4175ddb8a98a76610 2010.1/x86_64/php-recode-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n a0757b333dd01f717cd160e0606d0fc2 2010.1/x86_64/php-session-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 6ea6d323f542a6753f6bf81cb5cd6309 2010.1/x86_64/php-shmop-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d24ba13a20543514417ba0c1a93bcd37 2010.1/x86_64/php-snmp-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n c59b5069af6b5c087e3e83910fb986b1 2010.1/x86_64/php-soap-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 109f67785b7296c69a9c1070820cd213 2010.1/x86_64/php-sockets-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 429fecbb148ed779ca64c048a3046cca 2010.1/x86_64/php-sqlite3-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d7a4eaf45cb19003115c71bb02f2c155 2010.1/x86_64/php-sybase_ct-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n ff29f2f09f8dde36654fb4e4e88db1ab 2010.1/x86_64/php-sysvmsg-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n d44ff9d100ae0c204dbe86394f3c384c 2010.1/x86_64/php-sysvsem-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 71cdabe5c3d2218f5d58126e7002421f 2010.1/x86_64/php-sysvshm-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n da6ace8ad2df80a2582fa4e56ad95ce8 2010.1/x86_64/php-tidy-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n bad118c4e1f378049563ac8e5d698b43 2010.1/x86_64/php-tokenizer-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 7ce57e7e2bf43c0a6d75b44f6bd8002b 2010.1/x86_64/php-wddx-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 13101594214d99ffe6be4c3cf2c5935a 2010.1/x86_64/php-xml-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n c71dfe1d747f116463d15ce775054fd6 2010.1/x86_64/php-xmlreader-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 25c5da736d41fa26eb5d2c3d18616a25 2010.1/x86_64/php-xmlrpc-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 609cccfd22f312811f1d24520d932fcd 2010.1/x86_64/php-xmlwriter-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 2e5c72e43fcf22db71d7367b272359fd 2010.1/x86_64/php-xsl-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 259145b7095d70b323941ae634b8d222 2010.1/x86_64/php-zip-5.3.3-0.4mdv2010.1.x86_64.rpm\r\n 02071157075c2a2d94608001cd2c2080 2010.1/x86_64/php-zlib-5.3.3-0.4mdv2010.1.x86_64.rpm \r\n a92ae0853c57332f5c3fb2a5f9d1c738 2010.1/SRPMS/php-5.3.3-0.4mdv2010.1.src.rpm\r\n\r\n Corporate 4.0:\r\n 132c6fa8e14eafdf1d14af990e6221dd corporate/4.0/i586/libphp5_common5-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 037a6d3a2a6b787666e0fba13c899049 corporate/4.0/i586/php-bcmath-5.2.14-0.4.20060mlcs4.i586.rpm\r\n c84ac631b5ed0f3dd463545b0479980e corporate/4.0/i586/php-bz2-5.2.14-0.4.20060mlcs4.i586.rpm\r\n e7c25ee030281d0ee7e5aa4e504bed27 corporate/4.0/i586/php-calendar-5.2.14-0.4.20060mlcs4.i586.rpm\r\n c468541159b2d5484ad83a9fbe403ab0 corporate/4.0/i586/php-cgi-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 138417d888af425bddb6f435c27347ea corporate/4.0/i586/php-cli-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 88cf629a2934859237951e3bc3aa00d9 corporate/4.0/i586/php-ctype-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 60be113cdaa6c598d2f5766184d75ee2 corporate/4.0/i586/php-curl-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 3a264f647203beb5e67f32f0daafda13 corporate/4.0/i586/php-dba-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 2e56773f2709bcc3e24c7086da87e1ce corporate/4.0/i586/php-dbase-5.2.14-0.4.20060mlcs4.i586.rpm\r\n d66ebe228f54f1625292427b59b10155 corporate/4.0/i586/php-devel-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 746ca762f9e44cdd4e2a4aab0d990ac3 corporate/4.0/i586/php-dom-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 022e7d5fa123cd44db07a6785a94ffc5 corporate/4.0/i586/php-exif-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 5bff63a3dfd9e0f183f73ad5c5354201 corporate/4.0/i586/php-fcgi-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 35d8a55308235c406407fd9d8f317cb1 corporate/4.0/i586/php-filter-5.2.14-0.4.20060mlcs4.i586.rpm\r\n e3ba91df814924d74e262d049e53c611 corporate/4.0/i586/php-ftp-5.2.14-0.4.20060mlcs4.i586.rpm\r\n a48f79a4cbf796f4e0a06e67d20d7bfb corporate/4.0/i586/php-gd-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 924e89f55291d5e5429e911a0be9fa79 corporate/4.0/i586/php-gettext-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 1040225839ce513cbd041f2b2c8451d8 corporate/4.0/i586/php-gmp-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 401c403d1a08dad630b4f28098992b0c corporate/4.0/i586/php-hash-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 8ccfa59b8d8e22759b854d9586fd9805 corporate/4.0/i586/php-iconv-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 972cbcfa1d3beb9254d867355915b44b corporate/4.0/i586/php-imap-5.2.14-0.4.20060mlcs4.i586.rpm\r\n b257084875fc8469ded00aed9834f2da corporate/4.0/i586/php-json-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 48d38615650849196ed7897851aa182f corporate/4.0/i586/php-ldap-5.2.14-0.4.20060mlcs4.i586.rpm\r\n b74e586aaf14c5fe57701e4a72f23d61 corporate/4.0/i586/php-mbstring-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 680ba553718322f5d56eb0bdb05fa579 corporate/4.0/i586/php-mcrypt-5.2.14-0.4.20060mlcs4.i586.rpm\r\n bbb3d7efa71c2d4114a6df50bd042998 corporate/4.0/i586/php-mhash-5.2.14-0.4.20060mlcs4.i586.rpm\r\n f653d01d0804a2ae9e426db93ff3b7a6 corporate/4.0/i586/php-mime_magic-5.2.14-0.4.20060mlcs4.i586.rpm\r\n ee0534efed7c62d34d80df9fd5504814 corporate/4.0/i586/php-ming-5.2.14-0.4.20060mlcs4.i586.rpm\r\n ccee91af382e6053308b4bb731f3d3bd corporate/4.0/i586/php-mssql-5.2.14-0.4.20060mlcs4.i586.rpm\r\n b8a1a0e862fc76f0f3a178a26241525b corporate/4.0/i586/php-mysql-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 43e6c728cb69f954f5c071aed192c21c corporate/4.0/i586/php-mysqli-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 180d286d66f25d8588e83f752ad2e693 corporate/4.0/i586/php-ncurses-5.2.14-0.4.20060mlcs4.i586.rpm\r\n d7e80f43cb190cc55c5de193192ecc4d corporate/4.0/i586/php-odbc-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 72fb204c1471514b59a3142d411d46ab corporate/4.0/i586/php-openssl-5.2.14-0.4.20060mlcs4.i586.rpm\r\n fec0873bd2e18a8ec2e61d066a299a60 corporate/4.0/i586/php-pcntl-5.2.14-0.4.20060mlcs4.i586.rpm\r\n b947cb53175d7efad03c3a847f9527cf corporate/4.0/i586/php-pdo-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 7bfee3dc86e216e406a53d5f8cee9868 corporate/4.0/i586/php-pdo_dblib-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 2e926071b007b995531c2963cd83e376 corporate/4.0/i586/php-pdo_mysql-5.2.14-0.4.20060mlcs4.i586.rpm\r\n ac510c82045fed5654145d6e5e8e5a69 corporate/4.0/i586/php-pdo_odbc-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 78fd8ca84236127c7f02d307e334d61d corporate/4.0/i586/php-pdo_pgsql-5.2.14-0.4.20060mlcs4.i586.rpm\r\n d51d3df5c835223e0fd994e7f982880d corporate/4.0/i586/php-pdo_sqlite-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 66ef61973691383790e78405bc0fe6f6 corporate/4.0/i586/php-pgsql-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 18d567795389bd2adef3dfc6e4f25814 corporate/4.0/i586/php-posix-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 3cfd8120357dc6376bb3541d4d197524 corporate/4.0/i586/php-pspell-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 3a96bbe6680afe6ac8eb209515fdd6e3 corporate/4.0/i586/php-readline-5.2.14-0.4.20060mlcs4.i586.rpm\r\n e0dc1bcac9871e305c871b14c2e248d4 corporate/4.0/i586/php-recode-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 1cc2bf70652a1cb6e8f324cbd5dc0ea0 corporate/4.0/i586/php-session-5.2.14-0.4.20060mlcs4.i586.rpm\r\n f6f8bf9b4c8f00e2f61618a99cd1d39f corporate/4.0/i586/php-shmop-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 28414ca6ca7398c0df629b582a59810f corporate/4.0/i586/php-snmp-5.2.14-0.4.20060mlcs4.i586.rpm\r\n b5b4e8220ada113550cc4ef5bec207c8 corporate/4.0/i586/php-soap-5.2.14-0.4.20060mlcs4.i586.rpm\r\n e980f0968d6de83d4ccd256fc639e227 corporate/4.0/i586/php-sockets-5.2.14-0.4.20060mlcs4.i586.rpm\r\n c2257d143f43b60c7c777fd0ddcca656 corporate/4.0/i586/php-sqlite-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 0f412c0e5833be957ea56b90bdeea9c2 corporate/4.0/i586/php-sybase-5.2.14-0.4.20060mlcs4.i586.rpm\r\n f50f996778c38cb5a033094890a9356f corporate/4.0/i586/php-sysvmsg-5.2.14-0.4.20060mlcs4.i586.rpm\r\n fb2bdb67d771543afa468576d4c96bac corporate/4.0/i586/php-sysvsem-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 7640d13095ba957580f42576bde2c36e corporate/4.0/i586/php-sysvshm-5.2.14-0.4.20060mlcs4.i586.rpm\r\n ed236095bfba54541196f91561a803fa corporate/4.0/i586/php-tidy-5.2.14-0.4.20060mlcs4.i586.rpm\r\n aacfc67c5e166c6ef518dcd87c60a689 corporate/4.0/i586/php-tokenizer-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 65c91d2fdc26ada1d13fffae8d3a5642 corporate/4.0/i586/php-wddx-5.2.14-0.4.20060mlcs4.i586.rpm\r\n d202576539cde015e020735883dbd55b corporate/4.0/i586/php-xml-5.2.14-0.4.20060mlcs4.i586.rpm\r\n d940f9674b60f2fd241f5becf5125ac1 corporate/4.0/i586/php-xmlreader-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 2ce2532b5971f02f41e63a0840493dd0 corporate/4.0/i586/php-xmlrpc-5.2.14-0.4.20060mlcs4.i586.rpm\r\n fbbfa4be38267e4d9f673f06d195c65a corporate/4.0/i586/php-xmlwriter-5.2.14-0.4.20060mlcs4.i586.rpm\r\n fb812741b790ff908728304620eeaa3d corporate/4.0/i586/php-xsl-5.2.14-0.4.20060mlcs4.i586.rpm\r\n 510328a623a4310eadf7103678df021e corporate/4.0/i586/php-zip-5.2.14-0.4.20060mlcs4.i586.rpm\r\n ea89bc697998864bdc8a8dd1eeca6c33 corporate/4.0/i586/php-zlib-5.2.14-0.4.20060mlcs4.i586.rpm \r\n 7598f3d891e1a8f1631af957c522dcee corporate/4.0/SRPMS/php-5.2.14-0.4.20060mlcs4.src.rpm\r\n\r\n Corporate 4.0/X86_64:\r\n 2d771ca71ec94d3e49b44d6d6e3c9ee6 corporate/4.0/x86_64/lib64php5_common5-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 249c4e102abe052c7523e2992f770d8e corporate/4.0/x86_64/php-bcmath-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n a6fbc3a94713f22264477c45b586f9e7 corporate/4.0/x86_64/php-bz2-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f24c81dc801c9bbd733684e689d72075 corporate/4.0/x86_64/php-calendar-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 3e6875a6d78e6db92c0187011715ee96 corporate/4.0/x86_64/php-cgi-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 3b537f80ab49c8b72de16ee7979c0069 corporate/4.0/x86_64/php-cli-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 54d629e285eff7a487e47d40abc487f0 corporate/4.0/x86_64/php-ctype-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 32a2f4073533aaf3a7f8ec703e7a8db2 corporate/4.0/x86_64/php-curl-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 283387624bd18cd4a9d5a21cb0fa5819 corporate/4.0/x86_64/php-dba-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 6d17714b77ebc6d9de4bbee5f642731f corporate/4.0/x86_64/php-dbase-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 92029bb45b42d7c2f7efc375e6cf790e corporate/4.0/x86_64/php-devel-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n efee4adf0bacfe5f873b41d97d30d577 corporate/4.0/x86_64/php-dom-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n ee3733e4798d60b1178fd5e545291637 corporate/4.0/x86_64/php-exif-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 54781907deae3e5880cf915596729d0a corporate/4.0/x86_64/php-fcgi-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 6cb17ff7100340b34725fe5687eadfd9 corporate/4.0/x86_64/php-filter-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 088e78200592f99e41179354a095fc02 corporate/4.0/x86_64/php-ftp-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n d9282cbebc6b708a89c4eff3574b4469 corporate/4.0/x86_64/php-gd-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f8c2ab6ebe41460e4cc2a8769edf6b94 corporate/4.0/x86_64/php-gettext-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 005c4c7d18279e7c0b9a2a7652113090 corporate/4.0/x86_64/php-gmp-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f32c9f2e931b72006157084dd8d2c06f corporate/4.0/x86_64/php-hash-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 47bff3916eedc404c55eacf310699cf1 corporate/4.0/x86_64/php-iconv-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n cd4ebd2baf60c47357845e738b1d79ec corporate/4.0/x86_64/php-imap-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 65cc624c5002d45e087ae4192962451e corporate/4.0/x86_64/php-json-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 93445662e81fefb68481facae6b69688 corporate/4.0/x86_64/php-ldap-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 9f2a43b652a8245c5c55cf7fb93d6368 corporate/4.0/x86_64/php-mbstring-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 58955625cff0d34658d841a6e129dfcd corporate/4.0/x86_64/php-mcrypt-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n fe003984312cb229254d1fe5250b134c corporate/4.0/x86_64/php-mhash-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f04b3cc870d7ce342435dce1c2005e32 corporate/4.0/x86_64/php-mime_magic-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 216574cffe76dd5e23c4b43bd2cf5194 corporate/4.0/x86_64/php-ming-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 89a5cf11f616e6c0ee98c1391abee55e corporate/4.0/x86_64/php-mssql-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 63c3b601386f00e37ec24c5221c398dc corporate/4.0/x86_64/php-mysql-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 66aef355b89665f8d285eff843009641 corporate/4.0/x86_64/php-mysqli-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n c2a54be485e4f8635311e95ea6585469 corporate/4.0/x86_64/php-ncurses-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 05360f06cc613f9089b134581f875e94 corporate/4.0/x86_64/php-odbc-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 2e6087a92e63518f4cc3e0bee038a64b corporate/4.0/x86_64/php-openssl-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 0e670b0eb09b3e59a1e4b7636aa6ffa4 corporate/4.0/x86_64/php-pcntl-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f6718aed1317478b9a0f8816e65fabd4 corporate/4.0/x86_64/php-pdo-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 472200ff9ecee7e96d39ba1d641c310f corporate/4.0/x86_64/php-pdo_dblib-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n e5f9ea47063868eeaf09929ae1f98dcb corporate/4.0/x86_64/php-pdo_mysql-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n e4ed839da7e0338e80dcaff7256ead34 corporate/4.0/x86_64/php-pdo_odbc-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n bf491892dc3261ad86b71515d1466299 corporate/4.0/x86_64/php-pdo_pgsql-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n bb6255201cb2ba8c23fa272f5ad05b80 corporate/4.0/x86_64/php-pdo_sqlite-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 2a143260bcf0e815e919211a7f567395 corporate/4.0/x86_64/php-pgsql-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 7219f5271c27fed00f4fb34277eb0ef0 corporate/4.0/x86_64/php-posix-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 1d98360f4b714ca4e80f464c6d6039b4 corporate/4.0/x86_64/php-pspell-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 00430da0b771ec1d6fd79cd13f8808c7 corporate/4.0/x86_64/php-readline-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 1210466511b2f65709ecce836222e755 corporate/4.0/x86_64/php-recode-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 101cfd5fa12e41d3367ca971c90e819f corporate/4.0/x86_64/php-session-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n e7e8a5ced996595e04df4c37c1d15243 corporate/4.0/x86_64/php-shmop-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n a326681f1e1e82c4d7870e9b348f60f0 corporate/4.0/x86_64/php-snmp-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 0478e7381b13f46acbc36233fdb42a04 corporate/4.0/x86_64/php-soap-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 04a8b2f36c2c3afa3a31058fdd8cdd2d corporate/4.0/x86_64/php-sockets-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 51f1c0e8a78baee3040aa11f68c2c761 corporate/4.0/x86_64/php-sqlite-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n bd091d3e4257eae3f10bf1d9113685b8 corporate/4.0/x86_64/php-sybase-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n c66d790aea66ca48a1064bfb35d43402 corporate/4.0/x86_64/php-sysvmsg-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 9a3bda27c3424aef859890ad261ce6e7 corporate/4.0/x86_64/php-sysvsem-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n dad851a7dec9b7a4c7d7965f65425267 corporate/4.0/x86_64/php-sysvshm-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n c98f7bd0d72e2ac17cade80fb287cd84 corporate/4.0/x86_64/php-tidy-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 55b1ceaf8af10b40d49b0eb36f251dff corporate/4.0/x86_64/php-tokenizer-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 95e4c711a9a761cbd93f022da5a3ba51 corporate/4.0/x86_64/php-wddx-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 1a1ec0bc1026ba5c7a4b8574f648a18e corporate/4.0/x86_64/php-xml-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f72a0391c11d6a1b5141eafe61ccd019 corporate/4.0/x86_64/php-xmlreader-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n f04e3a1c2c8d34e6d173f83213b50ff9 corporate/4.0/x86_64/php-xmlrpc-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 7b068fa43e6011a714ef964ad76a6f53 corporate/4.0/x86_64/php-xmlwriter-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 4a80750b0703b983ea0ce3edc908ebe7 corporate/4.0/x86_64/php-xsl-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n e9732140a3985192e759f3406c350d61 corporate/4.0/x86_64/php-zip-5.2.14-0.4.20060mlcs4.x86_64.rpm\r\n 44d704467089b5779a3502321e11bbfc corporate/4.0/x86_64/php-zlib-5.2.14-0.4.20060mlcs4.x86_64.rpm \r\n 7598f3d891e1a8f1631af957c522dcee corporate/4.0/SRPMS/php-5.2.14-0.4.20060mlcs4.src.rpm\r\n\r\n Mandriva Enterprise Server 5:\r\n 68d0f1f7070be160d84da36dc41de097 mes5/i586/libphp5_common5-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c01abb7bdc204656bb6ddd7903205358 mes5/i586/php-bcmath-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 7a32b46fe271b5e1572d7bb895ea8c30 mes5/i586/php-bz2-5.2.14-0.4mdvmes5.1.i586.rpm\r\n d90d1e40f8a700f007e2ee19f70aca9f mes5/i586/php-calendar-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 9a4199d1d78418cfb9d1392e1e8999c0 mes5/i586/php-cgi-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 54b6bcb1895b2c1bc73c9f26c919feac mes5/i586/php-cli-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 53bd3e4d5173535377b3f540a80163e2 mes5/i586/php-ctype-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 6a6f6f64e8a117751f34f0330c393b53 mes5/i586/php-curl-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 677ea733753ef907220930c5ee4acb0b mes5/i586/php-dba-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 0473fc95e98d5372e6f407fa2d6cca14 mes5/i586/php-dbase-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 10d9bcb959997ca57d72a5925185af8d mes5/i586/php-devel-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 226c42964405726127eb2eb5be27045e mes5/i586/php-dom-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c4f28323548fb502a122bdcc6b374eb3 mes5/i586/php-exif-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c0820eced63f56bc3dad16fbf74f752c mes5/i586/php-fcgi-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 46dbed2811b202a60aa6ee3925fffff3 mes5/i586/php-filter-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 325aafbcea14e6b20274ad2ed70e2681 mes5/i586/php-ftp-5.2.14-0.4mdvmes5.1.i586.rpm\r\n fd3061049e37d2eff01c8878c43ac213 mes5/i586/php-gd-5.2.14-0.4mdvmes5.1.i586.rpm\r\n fa601baaeea2ef4a63768f195dc3487f mes5/i586/php-gettext-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 26131032ddbade3db99dd5e7ed4b857a mes5/i586/php-gmp-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 30dceabee711d6894f43e3db93d931f7 mes5/i586/php-hash-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 017d57aa8295828a770a25080b214e4d mes5/i586/php-iconv-5.2.14-0.4mdvmes5.1.i586.rpm\r\n cb341bfb666085795477c47c1e2b1ac0 mes5/i586/php-imap-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 4d88320d92bad04d1d7541bcf7142839 mes5/i586/php-json-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 0452200ca8185478f477b47563d2497c mes5/i586/php-ldap-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c543e402740c2aa9cdb62495843b487f mes5/i586/php-mbstring-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c6e6d0f7087391cca12d7620a41bd47c mes5/i586/php-mcrypt-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 564134123cbb1a1b9742dee4b060f854 mes5/i586/php-mhash-5.2.14-0.4mdvmes5.1.i586.rpm\r\n cae4c5007052371850121464d108e084 mes5/i586/php-mime_magic-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 11c253aa2c351ea001be917afed6ddcb mes5/i586/php-ming-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 6f0b5e57b627a67e8dd80b695e4a0e33 mes5/i586/php-mssql-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 227fa8941e12955de3876eb0dfbd8d36 mes5/i586/php-mysql-5.2.14-0.4mdvmes5.1.i586.rpm\r\n fc02ea9726188f0b127d5472d9f881b8 mes5/i586/php-mysqli-5.2.14-0.4mdvmes5.1.i586.rpm\r\n a54e3a613bc393c36039b00d51969244 mes5/i586/php-ncurses-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 08dc688adf1148d4b12c1c5683efc3f4 mes5/i586/php-odbc-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 26887dfbe8b695f4356178c86d5c493d mes5/i586/php-openssl-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 121b7d3523e101769d1622b4c1de0c5f mes5/i586/php-pcntl-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 90dafcc795e02fe0931f191d21842953 mes5/i586/php-pdo-5.2.14-0.4mdvmes5.1.i586.rpm\r\n f08fe36be8ef220dcfc7260ecb84da36 mes5/i586/php-pdo_dblib-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 39a8c5450954459dc32d15e7335ab359 mes5/i586/php-pdo_mysql-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 9288739a6eb6388f7f47a244d135a1e5 mes5/i586/php-pdo_odbc-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 56590c965836d0f51ff8cca8178d81f8 mes5/i586/php-pdo_pgsql-5.2.14-0.4mdvmes5.1.i586.rpm\r\n d6e5494d9127b72b334899fa3ab5f367 mes5/i586/php-pdo_sqlite-5.2.14-0.4mdvmes5.1.i586.rpm\r\n eb5010addb50350847e4547841579d45 mes5/i586/php-pgsql-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 4187c7b67f2823117ade5635b1ba29d7 mes5/i586/php-posix-5.2.14-0.4mdvmes5.1.i586.rpm\r\n abd50686fcf28f56ea9b45cbc2da57fe mes5/i586/php-pspell-5.2.14-0.4mdvmes5.1.i586.rpm\r\n ce9e3dc584e05a590d6dfda53cff167e mes5/i586/php-readline-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 4e311dd0768a46267e12f0778f243ec8 mes5/i586/php-recode-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 0823e29cc3d25cd6f43bf2065134e5e0 mes5/i586/php-session-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 46a4007d635f193c3c829b191eb4d06d mes5/i586/php-shmop-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 66501f021602d2d865c1b8cc31817af4 mes5/i586/php-snmp-5.2.14-0.4mdvmes5.1.i586.rpm\r\n f916f4047092c0c42991ad6ac8251b9d mes5/i586/php-soap-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 438fe4ba66ccad44406466113de86ce9 mes5/i586/php-sockets-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 64f0e3b0e4c7dae97d2d1a6fb895a9b1 mes5/i586/php-sqlite-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 6e50f4f72d61e139517776f09bb76c27 mes5/i586/php-sybase-5.2.14-0.4mdvmes5.1.i586.rpm\r\n e27068a59a06e5582f9ee596e3ab386d mes5/i586/php-sysvmsg-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 888e463d04e48d41e8a9e5e0446eb4e2 mes5/i586/php-sysvsem-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c07b664cc8e3d20c36b3c745090f0ae9 mes5/i586/php-sysvshm-5.2.14-0.4mdvmes5.1.i586.rpm\r\n df469f6188dece23722d006bf5ac9feb mes5/i586/php-tidy-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 609ff622081a104b98b2edee2f1df833 mes5/i586/php-tokenizer-5.2.14-0.4mdvmes5.1.i586.rpm\r\n efcc23f700563af65ee5c4605e63e4c4 mes5/i586/php-wddx-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 2eb0790185758d1a31b7db0aa56c2243 mes5/i586/php-xml-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 52ab4412d7f04b9facd83f9298a904df mes5/i586/php-xmlreader-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 3dd77827f03003fc8b1567cac36bc873 mes5/i586/php-xmlrpc-5.2.14-0.4mdvmes5.1.i586.rpm\r\n b4d545393805fa9c5ceab87402c5545c mes5/i586/php-xmlwriter-5.2.14-0.4mdvmes5.1.i586.rpm\r\n 145fe57e1ea968d3be528d2829339990 mes5/i586/php-xsl-5.2.14-0.4mdvmes5.1.i586.rpm\r\n dcafcfa59840e6b14723371eed9238c5 mes5/i586/php-zip-5.2.14-0.4mdvmes5.1.i586.rpm\r\n c32fe4ba61978f4855adf259eaf5ecda mes5/i586/php-zlib-5.2.14-0.4mdvmes5.1.i586.rpm \r\n 510da47fb6514d19ac748992579ce548 mes5/SRPMS/php-5.2.14-0.4mdvmes5.1.src.rpm\r\n\r\n Mandriva Enterprise Server 5/X86_64:\r\n deafca422e8b82cf01012c34548a47a6 mes5/x86_64/lib64php5_common5-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n eb56482af0a0dbd140a32f878e373596 mes5/x86_64/php-bcmath-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 915ef71fadfa25d4e6328af163af9133 mes5/x86_64/php-bz2-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 864ede8b2f717b77e5e1f29cbd34f858 mes5/x86_64/php-calendar-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n a9bce61a8ebe81c7fbc2666d03f338b0 mes5/x86_64/php-cgi-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 76bdc007f1341603b11ec362a70b90f6 mes5/x86_64/php-cli-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8e46aa61e15ed941160d3d95b4ea65f0 mes5/x86_64/php-ctype-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 2e03148e3d80bdd30ef3c40d130b04fe mes5/x86_64/php-curl-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8c366f6030abc2659ea8815f67b5292e mes5/x86_64/php-dba-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 7508c2eb326066c5dc51867f0a91be55 mes5/x86_64/php-dbase-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 34c36c40d35e0166d916a51d6d0a1a5d mes5/x86_64/php-devel-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 67c79241989c560585ec30fdaa0da81b mes5/x86_64/php-dom-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 81416af927fcfeac837d9586ba28fed8 mes5/x86_64/php-exif-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n e63df0955981343740de704a3fb5d26a mes5/x86_64/php-fcgi-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 1788725ce211f60c1a0d0b93efe6dbd8 mes5/x86_64/php-filter-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n dca77f064ad7ecc67c6451ef6c528f8a mes5/x86_64/php-ftp-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 717a8d12ddca2762126db5f8196b27a7 mes5/x86_64/php-gd-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n d2969a2d4b539dcf097f82cc1db900fe mes5/x86_64/php-gettext-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n cabaefa7250dc9a7f6980cd36bf27399 mes5/x86_64/php-gmp-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8a471c2b9842598c265895f840a218a9 mes5/x86_64/php-hash-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n a7370787523967c76f80f8973e19571b mes5/x86_64/php-iconv-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 2126c6e1ca0190ea91e2a23d574d53ab mes5/x86_64/php-imap-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 6be2cd850b5710ace69dbf57fe5fbb32 mes5/x86_64/php-json-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 9d88b0042bd0e2afcd095e0e506815bc mes5/x86_64/php-ldap-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 2c151cd83212464ade8cbd98af0d7c11 mes5/x86_64/php-mbstring-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n a9193098967f040cbd451a7cfc971bc6 mes5/x86_64/php-mcrypt-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 7ec613e1e37adc82cebf9416a727b6d2 mes5/x86_64/php-mhash-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n a96aa44d14697c150e611f8e27415428 mes5/x86_64/php-mime_magic-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n eb495f701ee898e3aecd775216f431df mes5/x86_64/php-ming-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 88c4866b05c14ea711c9745838a6e96f mes5/x86_64/php-mssql-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n e3e3c427bb288aa006562064be89ca8c mes5/x86_64/php-mysql-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n b2f650433673482df054193a39563fe2 mes5/x86_64/php-mysqli-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 6da05feac330a63ac61ddaab274463ce mes5/x86_64/php-ncurses-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8c122e04c9de0f6c9e57adfc2b17f074 mes5/x86_64/php-odbc-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 338c9bdaf8a77eeca73dd5209199013e mes5/x86_64/php-openssl-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 7cfeb7c3e7883a87d12251053c2a8b93 mes5/x86_64/php-pcntl-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 5a83cc270dbba4a83929c3b41957b684 mes5/x86_64/php-pdo-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n c74eb6126519ffb408a9ad11bd9bf1d9 mes5/x86_64/php-pdo_dblib-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n b583416dc062afd11857d51ac89709ea mes5/x86_64/php-pdo_mysql-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 40e3fc41f0be4b0941bc92dfaa2e420c mes5/x86_64/php-pdo_odbc-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 4e3cf18ce37f55c531a3bf61fed97a93 mes5/x86_64/php-pdo_pgsql-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 7c541e0205bfa791b647590923dcc467 mes5/x86_64/php-pdo_sqlite-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 40cb17fb5ef4e433f424613aaca2a460 mes5/x86_64/php-pgsql-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n e567b8ea2c2c977a8af77c752ed67bd9 mes5/x86_64/php-posix-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n b341a20ef23df19341792ebd09124a73 mes5/x86_64/php-pspell-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 5914db0fa3c05ed597a035450f33a470 mes5/x86_64/php-readline-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n c4e49176476d74b35e404837401cb825 mes5/x86_64/php-recode-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n a2d0430d93e7506a75462696971db735 mes5/x86_64/php-session-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 712c3162dd4679245d715704a00d302b mes5/x86_64/php-shmop-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 6836f0f3828742a39642e7ee78b39e1d mes5/x86_64/php-snmp-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8cd442393bb94ca2688506be3934c3fb mes5/x86_64/php-soap-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 920c4cb11a4f7091bceb95557b0a7b91 mes5/x86_64/php-sockets-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 4333457fe9b2aa143b0a780f8e7e13e5 mes5/x86_64/php-sqlite-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n e2b4ca3d22913e99e4182fda84e3f971 mes5/x86_64/php-sybase-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 6f822006fbde3aebd1cd04c995b9411c mes5/x86_64/php-sysvmsg-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 605e0d6a872b528d5d645e2ae5794f31 mes5/x86_64/php-sysvsem-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 7c9746d3b4fd3636362b1815f87d1c92 mes5/x86_64/php-sysvshm-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 95ae688b8954297bad29ff04e9d788d8 mes5/x86_64/php-tidy-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 13a31e17351b1ab43035c749f04d3450 mes5/x86_64/php-tokenizer-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 9f541e33a53b095f1b24bdad88dc55fd mes5/x86_64/php-wddx-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 2f096ad514e960af2e9f5adec9a9bc1b mes5/x86_64/php-xml-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8c74db1cd7666bbf5d03260b10390f62 mes5/x86_64/php-xmlreader-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 2ef3c4f5dcf4067e39c2c1e0cc0cda26 mes5/x86_64/php-xmlrpc-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 8bf16117099a983a7bfdd7183d981d14 mes5/x86_64/php-xmlwriter-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n d70b890fb3271e0adbdb5c144dfc392e mes5/x86_64/php-xsl-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 5b8517db21c092a2f9068650b867f5b6 mes5/x86_64/php-zip-5.2.14-0.4mdvmes5.1.x86_64.rpm\r\n 382b5ef1732c1462a84d30613b9e3457 mes5/x86_64/php-zlib-5.2.14-0.4mdvmes5.1.x86_64.rpm \r\n 510da47fb6514d19ac748992579ce548 mes5/SRPMS/php-5.2.14-0.4mdvmes5.1.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/security/advisories\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.9 (GNU/Linux)\r\n\r\niD8DBQFM5mAUmqjQ0CJFipgRAnKNAJoCVE6xp356KGzqktT/9RCeOBnz4ACeKZjL\r\nF8zhdgmyT3WGY3sJGU/PXLc=\r\n=yNN/\r\n-----END PGP SIGNATURE-----", "edition": 1, "reporter": "Securityvulns", "published": "2010-11-24T00:00:00", "title": "[ MDVSA-2010:239 ] php", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:38", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2010-4150"], "modified": "2010-11-24T00:00:00", "id": "SECURITYVULNS:DOC:25176", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:25176", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:42", "references": ["https://vulners.com/securityvulns/securityvulns:doc:26262"], "description": "Privilege escalation, memory corruptions, buffer overflows, DoS conditions, integer overflows, format string vulnerabilities, information leaks.", "edition": 1, "reporter": "BUGTRAQ", "published": "2011-05-01T00:00:00", "title": "PHP multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:42", "vector": "NONE", "value": 7.2}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "PHP", "version": "5.3", "operator": "eq"}], "cvelist": ["CVE-2011-0421", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-0441", "CVE-2011-1471", "CVE-2011-1148", "CVE-2011-1466", "CVE-2010-4697", "CVE-2011-1092", "CVE-2011-1144", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0708", "CVE-2011-1468", "CVE-2011-0420", "CVE-2011-1470", "CVE-2011-1469", "CVE-2011-1464", "CVE-2011-1072"], "modified": "2011-05-01T00:00:00", "id": "SECURITYVULNS:VULN:11634", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11634", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:40", "references": [], "description": "==========================================================================\r\nUbuntu Security Notice USN-1126-1\r\nApril 29, 2011\r\n\r\nphp5 vulnerabilities\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 11.04\r\n- Ubuntu 10.10\r\n- Ubuntu 10.04 LTS\r\n- Ubuntu 9.10\r\n- Ubuntu 8.04 LTS\r\n- Ubuntu 6.06 LTS\r\n\r\nSummary:\r\n\r\nMultiple vulnerabilities in PHP.\r\n\r\nSoftware Description:\r\n- php5: HTML-embedded scripting language interpreter\r\n\r\nDetails:\r\n\r\nStephane Chazelas discovered that the /etc/cron.d/php5 cron job for\r\nPHP 5.3.5 allows local users to delete arbitrary files via a symlink\r\nattack on a directory under /var/lib/php5/. (CVE-2011-0441)\r\n\r\nRaphael Geisert and Dan Rosenberg discovered that the PEAR installer\r\nallows local users to overwrite arbitrary files via a symlink attack on\r\nthe package.xml file, related to the (1) download_dir, (2) cache_dir,\r\n(3) tmp_dir, and (4) pear-build-download directories. (CVE-2011-1072,\r\nCVE-2011-1144)\r\n\r\nBen Schmidt discovered that a use-after-free vulnerability in the PHP\r\nZend engine could allow an attacker to cause a denial of service (heap\r\nmemory corruption) or possibly execute arbitrary code. (CVE-2010-4697)\r\n\r\nMartin Barbella discovered a buffer overflow in the PHP GD extension\r\nthat allows an attacker to cause a denial of service (application crash)\r\nvia a large number of anti- aliasing steps in an argument to the\r\nimagepstext function. (CVE-2010-4698)\r\n\r\nIt was discovered that PHP accepts the \0 character in a pathname,\r\nwhich might allow an attacker to bypass intended access restrictions\r\nby placing a safe file extension after this character. This issue\r\nis addressed in Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04.\r\n(CVE-2006-7243)\r\n\r\nMaksymilian Arciemowicz discovered that the grapheme_extract function\r\nin the PHP Internationalization extension (Intl) for ICU allow\r\nan attacker to cause a denial of service (crash) via an invalid\r\nsize argument, which triggers a NULL pointer dereference. This\r\nissue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu\r\n11.04. (CVE-2011-0420)\r\n\r\nMaksymilian Arciemowicz discovered that the _zip_name_locate\r\nfunction in the PHP Zip extension does not properly handle a\r\nZIPARCHIVE::FL_UNCHANGED argument, which might allow an attacker to\r\ncause a denial of service (NULL pointer dereference) via an empty\r\nZIP archive. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu\r\n10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-0421)\r\n\r\nLuca Carettoni discovered that the PHP Exif extension performs an\r\nincorrect cast on 64bit platforms, which allows a remote attacker\r\nto cause a denial of service (application crash) via an image with\r\na crafted Image File Directory (IFD). (CVE-2011-0708)\r\n\r\nJose Carlos Norte discovered that an integer overflow in the PHP\r\nshmop extension could allow an attacker to cause a denial of service\r\n(crash) and possibly read sensitive memory function. (CVE-2011-1092)\r\n\r\nFelipe Pena discovered that a use-after-free vulnerability in the\r\nsubstr_replace function allows an attacker to cause a denial of\r\nservice (memory corruption) or possibly execute arbitrary code.\r\n(CVE-2011-1148)\r\n\r\nFelipe Pena discovered multiple format string vulnerabilities in the\r\nPHP phar extension. These could allow an attacker to obtain sensitive\r\ninformation from process memory, cause a denial of service (memory\r\ncorruption), or possibly execute arbitrary code. This issue affected\r\nUbuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04.(CVE-2011-1153)\r\n\r\nIt was discovered that a buffer overflow occurs in the strval function\r\nwhen the precision configuration option has a large value. The default\r\ncompiler options for Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS,\r\nUbuntu 10.10, and Ubuntu 11.04 should reduce the vulnerability to a\r\ndenial of service. (CVE-2011-1464)\r\n\r\nIt was discovered that an integer overflow in the SdnToJulian function\r\nin the PHP Calendar extension could allow an attacker to cause a\r\ndenial of service (application crash). (CVE-2011-1466)\r\n\r\nTomas Hoger discovered that an integer overflow in the\r\nNumberFormatter::setSymbol function in the PHP Intl extension\r\ncould allow an attacker to cause a denial of service (application\r\ncrash). This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu\r\n11.04. (CVE-2011-1467)\r\n\r\nIt was discovered that multiple memory leaks in the PHP OpenSSL\r\nextension might allow a remote attacker to cause a denial of service\r\n(memory consumption). This issue affected Ubuntu 10.04 LTS, Ubuntu\r\n10.10, and Ubuntu 11.04. (CVE-2011-1468)\r\n\r\nDaniel Buschke discovered that the PHP Streams component in PHP\r\nhandled types improperly, possibly allowing an attacker to cause a\r\ndenial of service (application crash). (CVE-2011-1469)\r\n\r\nIt was discovered that the PHP Zip extension could allow an attacker to\r\ncause a denial of service (application crash) via a ziparchive stream\r\nthat is not properly handled by the stream_get_contents function. This\r\nissue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu\r\n10.10, and Ubuntu 11.04. (CVE-2011-1470)\r\n\r\nIt was discovered that an integer signedness error in the PHP Zip\r\nextension could allow an attacker to cause a denial of service (CPU\r\nconsumption) via a malformed archive file. This issue affected\r\nUbuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and\r\nUbuntu 11.04. (CVE-2011-1470) (CVE-2011-1471)\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 11.04:\r\n libapache2-mod-php5 5.3.5-1ubuntu7.1\r\n php-pear 5.3.5-1ubuntu7.1\r\n php5 5.3.5-1ubuntu7.1\r\n php5-cgi 5.3.5-1ubuntu7.1\r\n php5-cli 5.3.5-1ubuntu7.1\r\n php5-common 5.3.5-1ubuntu7.1\r\n php5-curl 5.3.5-1ubuntu7.1\r\n php5-dev 5.3.5-1ubuntu7.1\r\n php5-gd 5.3.5-1ubuntu7.1\r\n php5-intl 5.3.5-1ubuntu7.1\r\n\r\nUbuntu 10.10:\r\n libapache2-mod-php5 5.3.3-1ubuntu9.4\r\n php-pear 5.3.3-1ubuntu9.4\r\n php5 5.3.3-1ubuntu9.4\r\n php5-cgi 5.3.3-1ubuntu9.4\r\n php5-cli 5.3.3-1ubuntu9.4\r\n php5-common 5.3.3-1ubuntu9.4\r\n php5-curl 5.3.3-1ubuntu9.4\r\n php5-dev 5.3.3-1ubuntu9.4\r\n php5-gd 5.3.3-1ubuntu9.4\r\n php5-intl 5.3.3-1ubuntu9.4\r\n\r\nUbuntu 10.04 LTS:\r\n libapache2-mod-php5 5.3.2-1ubuntu4.8\r\n php-pear 5.3.2-1ubuntu4.8\r\n php5 5.3.2-1ubuntu4.8\r\n php5-cgi 5.3.2-1ubuntu4.8\r\n php5-cli 5.3.2-1ubuntu4.8\r\n php5-common 5.3.2-1ubuntu4.8\r\n php5-curl 5.3.2-1ubuntu4.8\r\n php5-dev 5.3.2-1ubuntu4.8\r\n php5-gd 5.3.2-1ubuntu4.8\r\n php5-intl 5.3.2-1ubuntu4.8\r\n\r\nUbuntu 9.10:\r\n libapache2-mod-php5 5.2.10.dfsg.1-2ubuntu6.9\r\n php-pear 5.2.10.dfsg.1-2ubuntu6.9\r\n php5 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-cgi 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-cli 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-common 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-curl 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-dev 5.2.10.dfsg.1-2ubuntu6.9\r\n php5-gd 5.2.10.dfsg.1-2ubuntu6.9\r\n\r\nUbuntu 8.04 LTS:\r\n libapache2-mod-php5 5.2.4-2ubuntu5.15\r\n php-pear 5.2.4-2ubuntu5.15\r\n php5 5.2.4-2ubuntu5.15\r\n php5-cgi 5.2.4-2ubuntu5.15\r\n php5-cli 5.2.4-2ubuntu5.15\r\n php5-common 5.2.4-2ubuntu5.15\r\n php5-curl 5.2.4-2ubuntu5.15\r\n php5-dev 5.2.4-2ubuntu5.15\r\n php5-gd 5.2.4-2ubuntu5.15\r\n\r\nUbuntu 6.06 LTS:\r\n libapache2-mod-php5 5.1.2-1ubuntu3.22\r\n php-pear 5.1.2-1ubuntu3.22\r\n php5 5.1.2-1ubuntu3.22\r\n php5-cgi 5.1.2-1ubuntu3.22\r\n php5-cli 5.1.2-1ubuntu3.22\r\n php5-common 5.1.2-1ubuntu3.22\r\n php5-curl 5.1.2-1ubuntu3.22\r\n php5-dev 5.1.2-1ubuntu3.22\r\n php5-gd 5.1.2-1ubuntu3.22\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nReferences:\r\n CVE-2006-7243, CVE-2010-4697, CVE-2010-4698, CVE-2011-0420,\r\n CVE-2011-0421, CVE-2011-0441, CVE-2011-0708, CVE-2011-1072,\r\n CVE-2011-1092, CVE-2011-1144, CVE-2011-1148, CVE-2011-1153,\r\n CVE-2011-1464, CVE-2011-1466, CVE-2011-1467, CVE-2011-1468,\r\n CVE-2011-1469, CVE-2011-1470, CVE-2011-1471\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/php5/5.3.5-1ubuntu7.1\r\n https://launchpad.net/ubuntu/+source/php5/5.3.3-1ubuntu9.4\r\n https://launchpad.net/ubuntu/+source/php5/5.3.2-1ubuntu4.8\r\n https://launchpad.net/ubuntu/+source/php5/5.2.10.dfsg.1-2ubuntu6.9\r\n https://launchpad.net/ubuntu/+source/php5/5.2.4-2ubuntu5.15\r\n https://launchpad.net/ubuntu/+source/php5/5.1.2-1ubuntu3.22\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-05-01T00:00:00", "title": "[USN-1126-1] PHP vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:40", "vector": "NONE", "value": 6.8}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-0421", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-0441", "CVE-2011-1471", "CVE-2011-1148", "CVE-2011-1466", "CVE-2010-4697", "CVE-2011-1092", "CVE-2011-1144", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0708", "CVE-2011-1468", "CVE-2011-0420", "CVE-2011-1470", "CVE-2011-1469", "CVE-2011-1464", "CVE-2011-1072"], "modified": "2011-05-01T00:00:00", "id": "SECURITYVULNS:DOC:26262", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:26262", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:09:39", "references": ["https://vulners.com/securityvulns/securityvulns:doc:25176", "https://vulners.com/securityvulns/securityvulns:doc:25044", "https://vulners.com/securityvulns/securityvulns:doc:25117"], "description": "DoS, base_dir protection bypass, crossite scripting.", "edition": 1, "reporter": "BUGTRAQ", "published": "2010-11-24T00:00:00", "title": "PHP multiple security vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:09:39", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "PHP", "version": "5.2", "operator": "eq"}, {"name": "PHP", "version": "5.3", "operator": "eq"}], "cvelist": ["CVE-2010-3436", "CVE-2010-3870", "CVE-2010-3709", "CVE-2010-3710", "CVE-2010-4150"], "modified": "2010-11-24T00:00:00", "id": "SECURITYVULNS:VULN:11225", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:11225", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:42", "references": [], "description": "- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\nGentoo Linux Security Advisory GLSA 201110-06\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n http://security.gentoo.org/\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n\r\n Severity: High\r\n Title: PHP: Multiple vulnerabilities\r\n Date: October 10, 2011\r\n Bugs: #306939, #332039, #340807, #350908, #355399, #358791,\r\n #358975, #369071, #372745, #373965, #380261\r\n ID: 201110-06\r\n\r\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\r\n\r\nSynopsis\r\n========\r\n\r\nMultiple vulnerabilities were found in PHP, the worst of which leading\r\nto remote execution of arbitrary code.\r\n\r\nBackground\r\n==========\r\n\r\nPHP is a widely-used general-purpose scripting language that is\r\nespecially suited for Web development and can be embedded into HTML.\r\n\r\nAffected packages\r\n=================\r\n\r\n -------------------------------------------------------------------\r\n Package / Vulnerable / Unaffected\r\n -------------------------------------------------------------------\r\n 1 dev-lang/php < 5.3.8 >= 5.3.8\r\n\r\nDescription\r\n===========\r\n\r\nMultiple vulnerabilities have been discovered in PHP. Please review the\r\nCVE identifiers referenced below for details.\r\n\r\nImpact\r\n======\r\n\r\nA context-dependent attacker could execute arbitrary code, obtain\r\nsensitive information from process memory, bypass intended access\r\nrestrictions, or cause a Denial of Service in various ways.\r\n\r\nA remote attacker could cause a Denial of Service in various ways,\r\nbypass spam detections, or bypass open_basedir restrictions.\r\n\r\nWorkaround\r\n==========\r\n\r\nThere is no known workaround at this time.\r\n\r\nResolution\r\n==========\r\n\r\nAll PHP users should upgrade to the latest version:\r\n\r\n # emerge --sync\r\n # emerge --ask --oneshot --verbose ">=dev-lang/php-5.3.8"\r\n\r\nReferences\r\n==========\r\n\r\n[ 1 ] CVE-2006-7243\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-7243\r\n[ 2 ] CVE-2009-5016\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-5016\r\n[ 3 ] CVE-2010-1128\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1128\r\n[ 4 ] CVE-2010-1129\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1129\r\n[ 5 ] CVE-2010-1130\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1130\r\n[ 6 ] CVE-2010-1860\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1860\r\n[ 7 ] CVE-2010-1861\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1861\r\n[ 8 ] CVE-2010-1862\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1862\r\n[ 9 ] CVE-2010-1864\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1864\r\n[ 10 ] CVE-2010-1866\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1866\r\n[ 11 ] CVE-2010-1868\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1868\r\n[ 12 ] CVE-2010-1914\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1914\r\n[ 13 ] CVE-2010-1915\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1915\r\n[ 14 ] CVE-2010-1917\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1917\r\n[ 15 ] CVE-2010-2093\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2093\r\n[ 16 ] CVE-2010-2094\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2094\r\n[ 17 ] CVE-2010-2097\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2097\r\n[ 18 ] CVE-2010-2100\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2100\r\n[ 19 ] CVE-2010-2101\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2101\r\n[ 20 ] CVE-2010-2190\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2190\r\n[ 21 ] CVE-2010-2191\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2191\r\n[ 22 ] CVE-2010-2225\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2225\r\n[ 23 ] CVE-2010-2484\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2484\r\n[ 24 ] CVE-2010-2531\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2531\r\n[ 25 ] CVE-2010-2950\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2950\r\n[ 26 ] CVE-2010-3062\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3062\r\n[ 27 ] CVE-2010-3063\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3063\r\n[ 28 ] CVE-2010-3064\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3064\r\n[ 29 ] CVE-2010-3065\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3065\r\n[ 30 ] CVE-2010-3436\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3436\r\n[ 31 ] CVE-2010-3709\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3709\r\n[ 32 ] CVE-2010-3709\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3709\r\n[ 33 ] CVE-2010-3710\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3710\r\n[ 34 ] CVE-2010-3710\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3710\r\n[ 35 ] CVE-2010-3870\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3870\r\n[ 36 ] CVE-2010-4150\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4150\r\n[ 37 ] CVE-2010-4409\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4409\r\n[ 38 ] CVE-2010-4645\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4645\r\n[ 39 ] CVE-2010-4697\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4697\r\n[ 40 ] CVE-2010-4698\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4698\r\n[ 41 ] CVE-2010-4699\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4699\r\n[ 42 ] CVE-2010-4700\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4700\r\n[ 43 ] CVE-2011-0420\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0420\r\n[ 44 ] CVE-2011-0421\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0421\r\n[ 45 ] CVE-2011-0708\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0708\r\n[ 46 ] CVE-2011-0752\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0752\r\n[ 47 ] CVE-2011-0753\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0753\r\n[ 48 ] CVE-2011-0755\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0755\r\n[ 49 ] CVE-2011-1092\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1092\r\n[ 50 ] CVE-2011-1148\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1148\r\n[ 51 ] CVE-2011-1153\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1153\r\n[ 52 ] CVE-2011-1464\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1464\r\n[ 53 ] CVE-2011-1466\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1466\r\n[ 54 ] CVE-2011-1467\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1467\r\n[ 55 ] CVE-2011-1468\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1468\r\n[ 56 ] CVE-2011-1469\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1469\r\n[ 57 ] CVE-2011-1470\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1470\r\n[ 58 ] CVE-2011-1471\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1471\r\n[ 59 ] CVE-2011-1657\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1657\r\n[ 60 ] CVE-2011-1938\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1938\r\n[ 61 ] CVE-2011-2202\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2202\r\n[ 62 ] CVE-2011-2483\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2483\r\n[ 63 ] CVE-2011-3182\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3182\r\n[ 64 ] CVE-2011-3189\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3189\r\n[ 65 ] CVE-2011-3267\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3267\r\n[ 66 ] CVE-2011-3268\r\n http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3268\r\n\r\nAvailability\r\n============\r\n\r\nThis GLSA and any updates to it are available for viewing at\r\nthe Gentoo Security Website:\r\n\r\n http://security.gentoo.org/glsa/glsa-201110-06.xml\r\n\r\nConcerns?\r\n=========\r\n\r\nSecurity is a primary focus of Gentoo Linux and ensuring the\r\nconfidentiality and security of our users' machines is of utmost\r\nimportance to us. Any security concerns should be addressed to\r\nsecurity@gentoo.org or alternatively, you may file a bug at\r\nhttps://bugs.gentoo.org.\r\n\r\nLicense\r\n=======\r\n\r\nCopyright 2011 Gentoo Foundation, Inc; referenced text\r\nbelongs to its owner(s).\r\n\r\nThe contents of this document are licensed under the\r\nCreative Commons - Attribution / Share Alike license.\r\n\r\nhttp://creativecommons.org/licenses/by-sa/2.5\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-10-12T00:00:00", "title": "[ GLSA 201110-06 ] PHP: Multiple vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:42", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2011-0421", "CVE-2011-0752", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-1471", "CVE-2010-1129", "CVE-2010-2225", "CVE-2010-1868", "CVE-2011-1148", "CVE-2010-2484", "CVE-2010-2097", "CVE-2011-1466", "CVE-2010-2531", "CVE-2011-3189", "CVE-2010-3065", "CVE-2010-2191", "CVE-2011-1938", "CVE-2010-4697", "CVE-2010-1866", "CVE-2010-1915", "CVE-2011-1092", "CVE-2010-4698", "CVE-2011-2483", "CVE-2006-7243", "CVE-2011-0753", "CVE-2010-4645", "CVE-2010-3436", "CVE-2010-2093", "CVE-2011-1657", "CVE-2011-0708", "CVE-2010-3870", "CVE-2011-3268", "CVE-2010-1861", "CVE-2010-2190", "CVE-2010-3063", "CVE-2011-3182", "CVE-2010-2101", "CVE-2011-1468", "CVE-2011-0420", "CVE-2010-3062", "CVE-2010-1914", "CVE-2011-1470", "CVE-2010-1860", "CVE-2010-2094", "CVE-2010-3709", "CVE-2010-3064", "CVE-2011-1469", "CVE-2009-5016", "CVE-2011-3267", "CVE-2010-3710", "CVE-2010-4150", "CVE-2011-1464", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-1130", "CVE-2010-2100", "CVE-2011-2202", "CVE-2010-2950", "CVE-2010-4700", "CVE-2010-1917", "CVE-2010-1128", "CVE-2010-1864", "CVE-2010-4409", "CVE-2010-1862"], "modified": "2011-10-12T00:00:00", "id": "SECURITYVULNS:DOC:27147", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:27147", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:38", "references": [], "description": "===========================================================\r\nUbuntu Security Notice USN-1042-1 January 11, 2011\r\nphp5 vulnerabilities\r\nCVE-2009-5016, CVE-2010-3436, CVE-2010-3709, CVE-2010-3710,\r\nCVE-2010-3870, CVE-2010-4156, CVE-2010-4409, CVE-2010-4645\r\n===========================================================\r\n\r\nA security issue affects the following Ubuntu releases:\r\n\r\nUbuntu 6.06 LTS\r\nUbuntu 8.04 LTS\r\nUbuntu 9.10\r\nUbuntu 10.04 LTS\r\nUbuntu 10.10\r\n\r\nThis advisory also applies to the corresponding versions of\r\nKubuntu, Edubuntu, and Xubuntu.\r\n\r\nThe problem can be corrected by upgrading your system to the\r\nfollowing package versions:\r\n\r\nUbuntu 6.06 LTS:\r\n libapache2-mod-php5 5.1.2-1ubuntu3.20\r\n php5-cgi 5.1.2-1ubuntu3.20\r\n php5-cli 5.1.2-1ubuntu3.20\r\n\r\nUbuntu 8.04 LTS:\r\n libapache2-mod-php5 5.2.4-2ubuntu5.13\r\n php5-cgi 5.2.4-2ubuntu5.13\r\n php5-cli 5.2.4-2ubuntu5.13\r\n\r\nUbuntu 9.10:\r\n libapache2-mod-php5 5.2.10.dfsg.1-2ubuntu6.6\r\n php5-cgi 5.2.10.dfsg.1-2ubuntu6.6\r\n php5-cli 5.2.10.dfsg.1-2ubuntu6.6\r\n\r\nUbuntu 10.04 LTS:\r\n libapache2-mod-php5 5.3.2-1ubuntu4.6\r\n php5-cgi 5.3.2-1ubuntu4.6\r\n php5-cli 5.3.2-1ubuntu4.6\r\n\r\nUbuntu 10.10:\r\n libapache2-mod-php5 5.3.3-1ubuntu9.2\r\n php5-cgi 5.3.3-1ubuntu9.2\r\n php5-cli 5.3.3-1ubuntu9.2\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nDetails follow:\r\n\r\nIt was discovered that an integer overflow in the XML UTF-8 decoding\r\ncode could allow an attacker to bypass cross-site scripting (XSS)\r\nprotections. This issue only affected Ubuntu 6.06 LTS, Ubuntu 8.04 LTS,\r\nand Ubuntu 9.10. (CVE-2009-5016)\r\n\r\nIt was discovered that the XML UTF-8 decoding code did not properly\r\nhandle non-shortest form UTF-8 encoding and ill-formed subsequences\r\nin UTF-8 data, which could allow an attacker to bypass cross-site\r\nscripting (XSS) protections. (CVE-2010-3870)\r\n\r\nIt was discovered that attackers might be able to bypass open_basedir()\r\nrestrictions by passing a specially crafted filename. (CVE-2010-3436)\r\n\r\nMaksymilian Arciemowicz discovered that a NULL pointer derefence in the\r\nZIP archive handling code could allow an attacker to cause a denial\r\nof service through a specially crafted ZIP archive. This issue only\r\naffected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and Ubuntu\r\n10.10. (CVE-2010-3709)\r\n\r\nIt was discovered that a stack consumption vulnerability in the\r\nfilter_var() PHP function when in FILTER_VALIDATE_EMAIL mode, could\r\nallow a remote attacker to cause a denial of service. This issue\r\nonly affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and\r\nUbuntu 10.10. (CVE-2010-3710)\r\n\r\nIt was discovered that the mb_strcut function in the Libmbfl\r\nlibrary within PHP could allow an attacker to read arbitrary memory\r\nwithin the application process. This issue only affected Ubuntu\r\n10.10. (CVE-2010-4156)\r\n\r\nMaksymilian Arciemowicz discovered that an integer overflow in the\r\nNumberFormatter::getSymbol function could allow an attacker to cause\r\na denial of service. This issue only affected Ubuntu 10.04 LTS and\r\nUbuntu 10.10. (CVE-2010-4409)\r\n\r\nRick Regan discovered that when handing PHP textual representations\r\nof the largest subnormal double-precision floating-point number,\r\nthe zend_strtod function could go into an infinite loop on 32bit\r\nx86 processors, allowing an attacker to cause a denial of service.\r\n(CVE-2010-4645)\r\n\r\n\r\nUpdated packages for Ubuntu 6.06 LTS:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.20.diff.gz\r\n Size/MD5: 156750 6df1d4b9735ef95cff0607b842416b52\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.20.dsc\r\n Size/MD5: 2417 d21e7bcbc26a369b84afdfa9649953a2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2.orig.tar.gz\r\n Size/MD5: 8064193 b5b6564e8c6a0d5bc1d2b4787480d792\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.1.2-1ubuntu3.20_all.deb\r\n Size/MD5: 306838 8a061474b0d03b280bd4ad66e0951e4b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.1.2-1ubuntu3.20_all.deb\r\n Size/MD5: 1036 67a5ec2ab802e6a9c1fd35b66c762ac6\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 2438326 6205e0a4f786423e602c09eb23be56f1\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 4764272 367b69faa1d9d2b6cadc9511b953626b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 2395226 e11c91162fc2036bee7339836eb9a553\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 140418 433d226f3cccc27740d706099922a80e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 24600 bc8694d0a2678ef21d6ee6abea6680b5\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 316032 2d9e23883469510f6caac1795c9c66f3\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 36828 4472d4ece18fc3eabcdf1b40d3c9d215\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 22122 71d6b55889541f048fbdc5fa62e657e0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 8768 a5e9619a423332627296a017df2c978e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 25214 d14ebe6db092a95d8627aaeea0eeb857\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 43896 84033eb9680d41b141fe0210c39e7d2a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 30112 ea65f8215a9e38a8bfe865fdb46a6a62\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 44370 5d56c29b3b694d372c5059b348bc9eb9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 8330 0bc0f2961048bbe8a6f2922da4198370\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 15294 83f1e743ad9caf9dbfe34224f1468701\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 29164 5186beb6e81d1620772f3bf5aa49d13b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 22690 e3beb25b0775bbbe9161bf7c4421d673\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 42362 b5c7666f26cc79cbd937b57d6dbbea9d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.20_amd64.deb\r\n Size/MD5: 16374 9ff514d7bcd76baa2d3a503efdf05081\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 2267012 2ccb06cd58a2d06bb9d255782e03483d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 4481678 d0f646be5441b533437e507176e1966c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 2251090 0570932503f87be605c05f790b31ec2b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 137014 4a54054a6b0620c3b693027861ff34f2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 22836 fe34a1d69d6efdf07f3b358a27b41189\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 315402 06f284d124ac44700915f4119a29a2a2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 32858 7e0703ec220a5586c2a829163d97d1b8\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 19784 23a54b3eef95a2cee27626abc32ba4be\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 8364 34fdb1f5579d5c70d0659f0b195988cb\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 21984 4db62bb53d1921923073d9529182c6dd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 37344 5b5ee561731b9dd445e22ffb75137542\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 27030 036fe474948a99473ba9349009fed160\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 39760 207456519b08617331f807e91575e747\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 8042 8d16fe1e6df1fdd4b17b2d6d76eaf029\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 14156 2e8d99978fd0d854e87e6ac6b825465d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 25618 8ab7fd1cd3bae30c369ffc334f81ed26\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 20540 95e156995b3365adab701282aede4be9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 37852 c0b06ab1e0bcacd602c8d29c79a3b904\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.20_i386.deb\r\n Size/MD5: 15120 4b6e4f1e017e6e1bb9916ebc3be4dc8f\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 2401198 2d06c5ffa08caeb2d8c9718f50544976\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 4701998 dfc3daa250dea139dbb4dac4d80ee4e9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 2360384 9a4ac201dc8aa798b2166f3d65e4177a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 137966 eaded17d1477bc75406e07a62f40a4fd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 26614 9b38dd68ee68b8dfed86536fde3b151d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 312672 825c798d8d4108e089966eb1e2a6a16f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 36606 081215692548857abde055dad94c55e4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 22552 80140509accf361dc9238d484a46386e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 10130 2dba82dcecbb081c67c503c6421dd4ab\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 24822 69f3e6511a1f16439d9d0686aa2fe89f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 41786 1d40730ad2ed4da551cee84e01dc964a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 30092 5951418c3f9eb982e6c918890de03f06\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 43424 34a02daf5576fa22c15698a4d62d20f4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 9804 088a2fd5a7b604c4357afdfe7641a2b0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 15950 233247ebcfd513c2945a38967865ba5b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 29416 8bbcddb58173430ae73020454bf15836\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 23586 c15fc17c672d170a21e387a346f1d449\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 40954 26401a69a69927373e5f9daeea85b682\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.20_powerpc.deb\r\n Size/MD5: 17246 d4001af094f32f3c32001f62700bf770\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 2327780 90c88edd450d7925984ee50e652c96ec\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 4539816 47539ebeb163e569f98271070eaf80a0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 2280616 d43427d389008f8b0b976c2e3df4a6f6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 137976 78abc54cf0d4c7b7927e0ac808fcc247\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 24552 315c1ed349cdda96360409d109ffd0cf\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 312626 3c12d7adaa527cdd8e3e7106ffb018da\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 33362 f1fd0f99d964284ee14edb6c949ad5f4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 20080 f55a764602e59a7fc1eafdb1d7ad015f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 8370 81e6b9a3b7fea0c36ba8f78c588e64ff\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 22360 23050f4d29e964079eb0fc9fc08f0710\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysqli_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 38658 4b742d4b77da6e7aa6cc964d2fc9f802\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 26834 e959a6b1c9477e88c23f2c5b53825f15\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 40610 634e73b50f57281bb2fe8e780d0c9035\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 8102 8c0ce1bcecc40cb984b194332061d620\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 14054 c7f290c7e9f9de708058dfb0103a0e0d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 25970 9eaab0db3b90087976116fde5e7ee6be\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 20794 46add82a433b9b8f09e35d69bedabf77\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 38124 e37c5de7eda52f8ab997423ce98b8852\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.1.2-1ubuntu3.20_sparc.deb\r\n Size/MD5: 15086 3c16f4c7daba21a9b401ff42b21e37b7\r\n\r\nUpdated packages for Ubuntu 8.04 LTS:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.13.diff.gz\r\n Size/MD5: 171074 a44e8c0fa732ae9fe40ef2f1e6307941\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.13.dsc\r\n Size/MD5: 2612 9efc7b0526b8067a1364304629818cbd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4.orig.tar.gz\r\n Size/MD5: 9705468 0826e231c3148b29fd039d7a8c893ad3\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.4-2ubuntu5.13_all.deb\r\n Size/MD5: 355276 6160ef91a87f96ab428bc7fdc2d1eb92\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.4-2ubuntu5.13_all.deb\r\n Size/MD5: 1076 8006ffb358c740e25f71eceb680c5fe8\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 2616100 7beec735eb5ac08c5dbe818ca9c8fba1\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 5094540 66dac028b7aa32f8e68a9c34a47e97f2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 2572396 006e777ed02775f25afc06c71018c6d2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 321866 1326ad95614faefe093000d9557e22fc\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 25036 46c208f78ec2cbc0fb912ab8c7aa848b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 364482 611ff75b91254ef374c3555fdc2f8ce6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 37340 5a952976d5c22929ba0ac612954cae7e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 17622 258d6460217d62fce16f086050d8329e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 20266 2452a414801248d829bea1f3bc13b537\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 5544 cebc96b844fe51589b615269fa221c65\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 74404 be190b3bf4e5dc3a924b1e16f955246e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 37708 26572dd45f6095629944d23820aa1e4f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 56164 c0dcba6243459b08efbafe092f307657\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 9544 e33f7cf6e3e73e0991106899a7ff1e5f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 5034 ad2d560443a15df3bbe3e9d3f3f45cf6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 12416 604db098f7cfac7df6ff1fc638870f4c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 39644 aad3d6f567fb8936b8064df1b74dd01c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 28668 df959ee0757efa78bb291753e26a1b25\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 17890 e00eca078a62b63123e439be84e31825\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 38614 fec69650848d20fccc3345fe3d50a35c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.13_amd64.deb\r\n Size/MD5: 13544 9b1d125654d7552bf3de1c4c67f0092f\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 2474744 cd6fcf94a90f7256be37c64896c69f9b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 4917798 f3e2dfc0a615c2db115ba41a386a3385\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 2481476 e5cbf699729ce00b5fa40a27bc9af4cb\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 317982 af1f67fb46fe323f6aaa2354f4488403\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 23638 03fe02f2cda8ba24c3886fd1c002df3e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 364508 1fbce7a79857dadbf4f4106f8a72d6e8\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 32896 6946ec293d522855a6388de9720c9f84\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 14756 c627a7399bf79b236f6385408ca517ed\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 18104 044ab2018b85a394993a3dd551ee76d6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 5206 ec5e9d32c3fa85bd8e6cf5d71614c9ee\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 65230 9138f8688689590cd2b15dbd87815735\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 34262 7e4364d542a044a35426824c93ee089b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 51294 f60bcad4c5c9ccce7f313c0f2c77638a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 8612 92ce8ad07cfee588cadf80086b99ea8e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 4780 e30ff35edb09dc326713b52f72b0780e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 11720 523ec2a184d4b4fe2b02d7af721da871\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 34358 0bdd1e833d93796bc0d457cac37c5b7a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 26244 d9449bfbbcfa675b1544c4e356895922\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 16264 0a81440dc52136c2e39f91aa140c6ea6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 35660 fc8f9510a79eea6029bed3dfd0e05514\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.13_i386.deb\r\n Size/MD5: 12580 0f8427e6247809d909018f602c515d25\r\n\r\n lpia architecture (Low Power Intel Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 2453872 1ae8c91383ee6ce1e0a12b61347f1cd3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 4879916 ae2a5bcde341eb4fe862b094687ab98c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 2462284 b21bc257ae8150be9812d0d1c78012e2\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 317714 8015f6a0afd98e6b90c9645135ca73e7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 23288 ab2b5787ec116b7628efc9e04c7826e9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 364484 69dbb37941bc5d7044a57bd15669caa8\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 33076 94c05af0d9feb3ab44c86a9555fd7330\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 15026 5213479934cecf31e7bb6c382ec739ca\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 18106 2a7e858b86e3ffab3cf2ec1db723f696\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 5106 d967ee89b93ca865fa81e59af11aa1d8\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 64308 5ee184afe3b114b2372bb26862b4320f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 33938 b981f0cc796e73f746f8bc811b31ffbd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 50868 81868c02e0b0de38357c3efa49b6f314\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 8646 3679a882f8ba6999896745dc3e238dd6\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 4726 165788a7d2fe0050e4acabe01a5b678b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 11580 9cd9cd4cfb88641ae59e21a439e02ed0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 33748 92c398f5f7e20fc755fb7186d29c8029\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 26132 172927305ef4d6e98d08bf663ed135e4\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 16058 83c38911dc8947118941bf2feddd037d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 35468 2bb59d1df4295d6dc7c9354860a50fef\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.13_lpia.deb\r\n Size/MD5: 12440 65771d601dc4f508681f8d2f89bf544c\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 2627098 2ea0c7201de4faa9cd6e533b94ed1ef8\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 5117984 fd1d61e174192f89888cc6ae1248ec91\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 2581196 7b41e05ef8600719eb4aa56e0343c897\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 324770 469867b7acbe05282ede997b37d0c129\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 28232 0265ff21a3ebc9db35eeb802d9794a41\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 364536 de7261f01bfc1474e03a0090ad4b9f80\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 38778 ff6b2fbc45f74aa03fdef8fe2cd656a9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 17628 efc321cdde34856bebf7209d8ccb8f26\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 21732 50a20e6bb888fbdb0271460e06ab35c2\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 7666 fda0551a869970e819f45928d886e411\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 78012 4a4c683d806c57e35c95fd71262e9558\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 41296 a8f0a4a5f13960b45cac90d2cf547111\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 59732 db5dcb81d0eb6d0ecf16ec011579649a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 11156 12f72fcd36613f4df042d75f4e578cdf\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 7182 8062ae277b5dfaa0e311d7592a3f79cd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 14240 2707fa0cc46d8d597e4a99f4506c9d33\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 42400 b848cb3f8841b3eb4bb9f53ac212d64b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 31368 fdeaf2703cb004749b885cc7e2b3f49e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 20070 4f0728b7421ce2139422b3df642707df\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 40500 86fcd4ae3eab0a4eca21a070dd5624be\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.13_powerpc.deb\r\n Size/MD5: 15700 5290122aa597571547b0b375a2a439c5\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 2495580 0b428f07d47d07890df1e13941f5bda5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 4886918 5de4f5d898efdfb86207b8993d5ca289\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 2464692 9731b34362f6954875112d3152a07917\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 317978 417444c6772985ae77423fcf039bf2cd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 24278 d2cf0b6dc45a55e1932f6f6b402922f0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 364506 f7d99c4e7386a533a1b6a5661fce2b53\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 33592 32c1709573c19a08e6016521757a4867\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 14148 7224bf620ad663d0cfee733119c73706\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 17700 0b5b9edd0e251422129b9d6752bb829a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 5062 f769b758006b3cb80f73ed305dd25233\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 63412 875895c9881f5dec590b84984bbf855f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 32424 e55f27d7e5cd8728448d8229ac77ec53\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 49702 afb8c3d1b49e3b175455542908e1ae2e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 8482 4d76c31583e95d259ad6e23e8082c275\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 4746 b335c34c9edeb6a031c9309f82b375ef\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 11552 1ed20d609b199474d4eb4b843d45498b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 32808 a1a3ce68a90fb694c7bae9c190ea2a3d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 24966 a3dcb64e83e46342dad573eb8d2ee6bb\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 16344 2b01b04265c64ca9b7cfa82ff04f7eb9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 34840 fc9d2e899480688ff1bcf04d7d7c9419\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.4-2ubuntu5.13_sparc.deb\r\n Size/MD5: 12012 858e5a81894880219cb9f6303563b043\r\n\r\nUpdated packages for Ubuntu 9.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.10.dfsg.1-2ubuntu6.6.diff.gz\r\n Size/MD5: 977757 a7e34cb5e5bc4d4ee749f057ba475aca\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.10.dfsg.1-2ubuntu6.6.dsc\r\n Size/MD5: 3170 034498da31761183638dbef943a49bf6\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.10.dfsg.1.orig.tar.gz\r\n Size/MD5: 11418363 4708aa3cbd1c50411634482e26525344\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.2.10.dfsg.1-2ubuntu6.6_all.deb\r\n Size/MD5: 329230 c8c7bb4ede697317236eb47ac4e60aa7\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.2.10.dfsg.1-2ubuntu6.6_all.deb\r\n Size/MD5: 1120 c530a928a17f918cc74854b4f22e6e14\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 2643724 e851d35af52d9452c2df527219965853\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 5150004 05747c3905d4e14d5be64716c06cb539\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 2597488 a565e8688dd57343cce6d26af96ad415\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 428258 9580e8fc70aa8f40353b0d745754f3f1\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 25498 2571658a1409d47b1dd636dc5fef90b9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 8311558 6e34cb16c5514aad7d2146ded841d1dd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 366974 6fe061c0dde3b01792c44229f7fb546e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 37546 43cd10e9f19c88e194f62a5c9b01be74\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 16382 9a52d461f0eb9b5e0717b64cd2483c03\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 20650 0eb8f9021a5ad687be29d12a61715528\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 5690 35779e15e53c50bfdd75d4cf6647b8e2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 75058 13315c1c64c955135d00a64f2e5c1788\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 39230 99ef988b0b06c2b032ffc52f3f27d5a9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 58558 20f0b2c059bc6b426da2be45b1fcb3da\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 10088 00051cd04c6f37202386f17859db980e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 5192 d163c60f50efda1b54f94b112ccc0558\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 13150 4eb9c35b9ba814f311cbe90977e268cb\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 39934 44f24ce56db89bde71da12fef9b69c6c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 29214 2c6e35b3c53013657a5cdcdaf79d1bfa\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 18218 f02d8119fb6ae819598e7a61123414c1\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 39358 02f6aff34eb4278fcfb6a3e9cb093a28\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 14062 ea4e2f1dabdafee475f0a073000815bd\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_amd64.deb\r\n Size/MD5: 2642728 bb19e2bd6bbe9af49ef5094594547ac9\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 2504522 f5041c9810724f3135a94901c811f835\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 4980470 9301a22f583801870abade7f01362184\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 2511890 f244e4e37185fd3895a54dbc4d2c30c9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 425202 3784f1886ab61a52613f71d3617bd641\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 24022 4b9c173290df3a720f8c27e87c206c85\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 8509326 0627f56020a14208ae7786c495433108\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 366990 3f48c131e3cea35319d2474b9bd06637\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 33136 478e6cee816f3c88e98ad620ba59a661\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 14218 7b69dfcb5601779d77976b8a94ebadca\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 18772 103aa5bbbd1ea27e4882dc3b542ecd32\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 5372 78410de977f81df1c9cc04e55fb1f3c0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 66158 571934aa97f62ade292674d09ae13641\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 35810 2ca397b47914c7aabd1077faed6633f8\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 53864 f3334269e3e68e417104a90d329de0e4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 9190 8a61093fdacbf51237a4ccfd7b2251bd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 4960 ee006a16dd4922cd95df5cb64cdf0f5e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 12076 c4f82372c2f1c4cde79577bda01e2f40\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 35126 defb792372d07be5b537ce6095dbdaef\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 26666 495668794d9741f4f17dda8de54b1e0f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 16596 bf46e42e3cf895192f4c4047229851d8\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 36524 0cca90d1eff0d5c52a13235a94675cd2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 12934 54de705a4bb1467659391a4ef756cc9a\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_i386.deb\r\n Size/MD5: 2503054 e2ec6e88b31194bc8deed93d1fc6f66e\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 2458642 4ad093ca046cfebd04ee71aee5629a6f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 4875994 2e02456840d3cce5a5bca5f1ad4312c3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 2455278 9f18ad6bb540ac4a3bbb92b5a470e15a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 426178 76d66c71f2fee6da4af7dabe7accc125\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 23990 14e41b12fc707c38e7cb92b8257f913d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 8945786 fd8d3ea4113db7cfeade83df3f406856\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 370178 81ba454cec8065e13a77a75d13993a73\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 32510 948d7904055044e02b93c7847aa09aaf\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 13590 94cf30a2fa062d97af9bbc0f63208ef1\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 18390 83236ce7af1fbcfc43bf9be3bbb84221\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 5134 158e42a6c53bb59fc6dfa6bc67cf2b22\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 63046 d632bdfad77b68e3f18f4be29dac8acb\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 35236 56ec1c4525487ab36b04968761a8252a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 51444 74f5d851ca43162a525fc3da3b9c61f4\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 8730 33fa0ad4fdecfb24762ece22503e4635\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 4786 e1415303b34ef9bd7a26059f73a24524\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 11866 10430888728ad3e0639608e2be9cb336\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 33956 5c1a98b4f0ea784fe011671ba34f09d6\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 25784 4062fa7d0c14944a4c6ca0569d3c063d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 16160 4949628a35d40ca0281c1fe9771d7597\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 33730 4ded7223e0c6f9c9f8a3fb6996f953f0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 12480 023bc689e443dbfe8c71dcd03f1cdbd0\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_armel.deb\r\n Size/MD5: 2457220 25d94d47f95325656edb5ea79d88bd89\r\n\r\n lpia architecture (Low Power Intel Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 2492844 145b6f4ae03c30283985e3b6bbe68c9b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 4956852 cae53b7e6f2608ed578c4e9001c6d2fe\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 2498630 5e6d346fbddbe5f4498626e42c7c0a84\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 424916 c245248b6d043e0720c6ff30f9f48bd5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 23642 528ffdce10725de1060ca312db300e44\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 8609146 e06648a4584aa69f842f9312e736f44f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 366970 c2cf8f9590ae0a209bab40b24c49b5a9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 32662 301cbdd769e9fa297e8b54faa4758cf7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 14156 ef129242a061b0801bc06ddcc007a4e3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 18598 a4375fb8c8afa7c5bcbe80cea4f1d036\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 5258 9612979c96ea1e9fed2029e58e47914e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 64886 36772193878ed771de4f2c9ab62b394c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 35470 dda75dfe7f747743b5ca3dc955375ac0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 53534 2b2840f1e7c4a79e18bd15ef4a7b8db9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 9096 21c8ef299ee1778836f2b6a8908cf066\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 4902 6b68e289a8f10c8b84b1cb91bda3f687\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 11946 3049ac447786cc4f275905a7d95a14ab\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 34618 c7b99cd4a6a87f5551cb44527573cfe3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 26606 174ba894c26e5c188bc36ee17a590a75\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 16704 74e1633a03ad4a260296fd256dfe8172\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 36258 5a9c14884982edcbf146a56c08341bad\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 12916 7f46d47561ff30e2304be384deee0a39\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_lpia.deb\r\n Size/MD5: 2491786 3ce78eea7b236712e30a6490fa791ebb\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 2636516 f809f9733c6cae803a6be94e9343323f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 5119646 42b7689715097ecd38188f87dd813be1\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 2585306 8d33554ba9deeaa390cf4e6936b0a6d0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 430776 b9cf209be5009beb0c015c6621033b0c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 26354 295306c0c0474b71bdcc9d89364ebdf5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 8977402 a0ca24ddfdd79603393c45dfc2b03430\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 367008 2e5ca489e3e70d66683f0923e12df0bd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 36678 852f00d8d5a19a7839fa3359c7a3d560\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 14726 00d1ac077fc6bb24a2b9de1682efeabc\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 20010 e3deaf4f69d6012b7f912080e9c0f3db\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 5632 6c949ef684e91cbe66a249c85ac5489f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 70040 c58f47c72a16fef0d647f6864b0a5c2f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 36870 cfb20ad89f6dfaac26645fe261065ac7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 56878 3332b3c3644598c6c30e4a19693efc10\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 9340 d730f4f951d0f595de73f8f886edb5ab\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 5210 7bc38fd7c5726f97f457f9a065bc4fd1\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 12398 9fdbb86d77efe2ad64794f4f7e3e711d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 37664 cb2d88a8e61374bc9ee18e0c03e17470\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 27490 12117df59410408cac3c110b71b34b76\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 17970 ea62310cb1a7c549ecdb03e7ab181585\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 38496 9142c4d9239e08d12a29b820bcb2ddfe\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 13864 75fdf718df77c23f322d32bd286f895e\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_powerpc.deb\r\n Size/MD5: 2635518 7030bfbeed54c0aa5d9502cfeea9b6e0\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 2494342 98da755c137fd928ac5bfccc881fbd53\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 4886006 a164cadfecd7925de19df4a67e2e933d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 2461698 c91460419cf0825c5a65840e712fbc24\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 427198 b5fdc1065bf16fb9c65516be0c32b8bd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 24564 5b0dcbd770bc5160a69cc702a143e723\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 8366774 9323a54b04716c0a7cdb9a695d460b5a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 366966 ff174c27b64578ea5615653293da87f8\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 33100 e022d1b425b49cbbfe30290a90d0a24b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 13326 bd5b51aea46c0eeb7937deb5db40499e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 17918 b93167cb7cc2e4675d21a90b8afa3f03\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mhash_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 5182 f5ee707e184c00b23655815256d4069e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 62934 5ed425cb600f15ac7f1e69a124f38885\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 33388 a440de4cbd1f6a3bce411519b751405a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 50244 92ef8ba36e61e59953479cfcd91b590a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 8622 ba8d34a7cdb3a8823be27e51205a4462\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 4838 d3df13b871e6c5cc990c30109763a122\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 11974 27be55358735c941ee2fc9e530227df7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 32612 b9881eb126999890d51f31e8e5858457\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 24980 55e2a2fcb9f3c185380c6864cea3ecc9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 16582 8d891b209e65305866a1911ac54f3019\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 34986 45bacfaaf8875e6af1690d27004888ae\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 12380 48b34a7a356eb9cf4b641bf23e0159d8\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.6_sparc.deb\r\n Size/MD5: 2492788 f1cf6f2f4af3a87c9fcf7db39895c102\r\n\r\nUpdated packages for Ubuntu 10.04 LTS:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.2-1ubuntu4.6.diff.gz\r\n Size/MD5: 193556 0980b5fba5c89ce04a027fc41ef08071\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.2-1ubuntu4.6.dsc\r\n Size/MD5: 3171 4f79fffb63072daafda61e5a3c8666cc\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.2.orig.tar.gz\r\n Size/MD5: 13734462 4480d7c6d6b4a86de7b8ec8f0c2d1871\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.3.2-1ubuntu4.6_all.deb\r\n Size/MD5: 354408 e3be4caa035ed64558dc5f81b9cf8802\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.2-1ubuntu4.6_all.deb\r\n Size/MD5: 1114 643199d6abb0abb4a7bd236143e780e3\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 2988030 edd9a638195270b9ce6e753e972ae027\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 5803912 d499e1dcbf7a1486be4039ae12d699c7\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 2906236 9c654a26963c233bb65887f87f480382\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 549472 2c78e946248c5261d9e245705395dcac\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 27054 7c129e7d4d0b5c91baa79b43f7058745\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 10386004 b63d957dba91abcc7ae99a69b789182f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 408414 69c2ff2cb5eced51fe08ca1b8511874b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 39002 ff971096112998faf411af1b0f4f98bd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 16478 4df1113b39b44ec95b6be5b26239d549\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 19890 41883562b8dea2b43e83c5336120da09\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 73124 7ba7c7b84668818918cd24993059025d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 35848 d4b0cdc0881f921c78f7639b75746f61\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 56922 f7b428e43d8834a9df619092f91433bf\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 8168 234d7c73789d1f9006b19204f299a74e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 4380 0f5815361f4a409ca519be15967c0c03\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 11364 5f5699afc11bc01ce793f358bf85cfe4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 55750 2c1e08a57d572478c707f002c3500ffa\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 26400 ffca523f6b94415704eb0f39a7158469\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 18272 9b9e0dfc3235e631789e449ca78a173c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 34806 efa24f6eabbfbcddd7eb5155d945cd9c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 13360 861c1f2408faeb690df81105e112c02d\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 2987282 38641f078afb8137225e163d51ce7284\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-enchant_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 8950 09d370a6c544e70f94e0ad80c70a623c\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-intl_5.3.2-1ubuntu4.6_amd64.deb\r\n Size/MD5: 59404 f4940af37e9c06a00f64ace73c409809\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 2833396 0feb5625c5061550cc8ec087cc38c061\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 5623544 e29929fa1525df844875785aaca1400c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 2815356 a8a9413488c7be3840cb02df862a4c57\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 542896 08243ede73f09da89dfc1f0f983e30d7\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 25608 36a579c9b88435ed0ecf1e133134fcf7\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 10560588 a72f3bc4b60d30449893c0cc88665c3c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 404922 6cad660c827bfe56261d9305c9644e0b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 34748 0ace6326b104c929a03583f13bff8f8e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 14238 f5431f44b55a54070216655045a0311b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 17558 8419a34d7cfa96501a74ede571f45ae0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 64220 a8ad7576ad049d7e9ece698e8e4bfe32\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 32094 c37faa808fdc85bd3fd48a60902ed096\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 52000 d2015d3db51e4eb3d39a53d896b9546b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 7274 61a001b20ce393e1ac77679d9b444370\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 4154 7eacf907df0d9f2685d33b1534174d5b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 10280 65d70043bf3f665661790a8b1d696e5b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 46664 6042c3b080c7569ec50bd30b392ccc2f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 23642 b218bd07dce3df858ab2219b1c3b24a2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 16378 e60510a3e061fcb62161c13f232411f0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 31940 2e4ecd3debaf681fe7185b5ab6717241\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 12340 3d031dd46d48485061b76ec8bdff1e03\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 2832424 cb0cb847468a984cfdfc158a968acc86\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-enchant_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 7768 ffae04ac038a1ee5687c841448a733f8\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-intl_5.3.2-1ubuntu4.6_i386.deb\r\n Size/MD5: 53800 f26ec8df82897459f51318e51ecd288e\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 2716990 dd6fc055cd6c4661f8c1f555ff199876\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 5406408 f5a9a2700959739ec66ae54a5c6a7192\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 2707416 804e5718e9b35a16e19f8eb000013d35\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 549374 16205c6fb91a2695ffb31ce5b48756a0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 24478 b701fe4fefa853c9a4c68c3a57e4361a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 11211118 a0c00ae54e00624d482a1997f28b9a89\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 408300 1b99bdf666f6b97d0e17758fc80a32be\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 33034 2c9133f9759b964458ed1d8bb976b7d7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 13572 03921c24cface080678714a3870e8063\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 16804 7dc386412f50e402d0d00b381bb4f9a0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 59506 8bf3f4543b5b001538d06b141d4ae09d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 29840 0467a6f1ce2a6bf45484526e348e3f94\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 47808 ffdd30e3537d023d79e1d3f8ccb83e5b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 7052 51d6895e749da26f6f86e891ebab5adb\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 4038 f2f4930765c985c1d4ff310c5ec96931\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 10048 0eb93303de0fba01973dbac11d14ff20\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 43194 bcffaf2d54a0f0892651d5a4c36c2c67\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 21550 47ca0ca752d9eaf470a425557ed7cca9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 15658 0071409645abb27fac956fe0230014b9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 28880 a270f097cfeeb733fbb65fb54a7854dd\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 11512 344e47e3088734025bec645beb923c86\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 2715834 ecf56e2c12b8e2a44e384c72439c4ed5\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-enchant_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 7504 7659f855b478897a9ae514c355439287\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-intl_5.3.2-1ubuntu4.6_armel.deb\r\n Size/MD5: 50900 2d1909d622ec9bc2350ad62569249874\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 2982390 831e5eca51f2419f5818d434db284546\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 5771702 56fe6e6df92e09380d876642af5380f2\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 2890492 140915153f47f11856901c84820be068\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 551598 07f46408ad1ecd97379ed85399414665\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 28370 2fccc6fca3f44df0474a9b33e230a347\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 11211024 2929424c681f42af04863ea0575eecd7\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 404914 d087838bea6c5846c0eb11312f05e136\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 39864 f868077f95f9dfc418fc500cd8494e80\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 14332 15b24326fc979b89a464363ef63bbfe0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 19160 646142beb100e0e2f9a14f235cb6dcdc\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 68996 b640a1031d42d7cbe2e7aff12829f2c5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 33944 1b0e6a66ca7398f8475c459c99ee3c44\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 55472 76b72f26e08aa45f511f2af59c890c04\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 7482 f577ab49d3dd8525d03b269db67f157c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 4384 03354e6742660a09bf84242f79b8aa1e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 10730 cecc9fed9b82ebf55de4ae540b3484ca\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 51978 cac8f3273beadfb63674c6856690473c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 24766 777af0607ded40852827902b3cfb4066\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 17830 90e7aa5abc55826ed167c75243850bc3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 34084 734bc0abdf803b4b6f8853a38e3e8b57\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 13294 c6b9eb2de9e6705bcbeff056cdab595d\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 2982024 186b9f16187871e65315958c25d510b3\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-enchant_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 8296 2eb32e661e8e623873f6042cb5233043\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-intl_5.3.2-1ubuntu4.6_powerpc.deb\r\n Size/MD5: 60530 4ced8317938fb126970fff4a420854f9\r\n\r\n sparc architecture (Sun SPARC/UltraSPARC):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 2894338 705436aef4d2949e90a77a95bd292bad\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 5645508 b0b22997491f803dd770e76f7a4d2e2f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 2825972 ab9106c0d0173dfca220af6dc8396e70\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 547346 d0f9411ba79daf250504060c0e6cf3b0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 27074 3d430898426064b4c3435f8afcbb9d65\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 10621222 98f8d882e3a80e5d141968d7d8bcb819\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 404906 39b5ebb15706bea58be4db1392987aa8\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 36724 dfe7ded0b5ddd6064806190a637646d5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 13434 71f93169324a20accfe7da16197860a6\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 17410 0f64440681b5847f0266b50c6c4e040d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 62088 32fa95fa4d34b298aa48248c2d3f0d15\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 30936 303b6ab55dbc17094c25051ea0a1bdc0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 50514 0812e6bcbb0df06269e3458768870d93\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 7144 d588848979de91b502df2c1b5fdcc129\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 4140 eb91d5d349a3a2a4285cdcb7914b7b14\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 10800 d8a53293bab378791a529ce68422ff7e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 46572 e42143c783a7111ebe4bb41daed0b4a1\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sybase_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 22928 25dfcf83304e7bdea419260077820a87\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 16886 eaeb116eb49625b91b25c507e71e631c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 32172 c9acb8ffca3acba3d6bb148b2132da5d\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 12108 0125aa3d93a3d7d7db9225270d5abda5\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 2893690 fe786ee9ba78325ea46f192af98f4032\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-enchant_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 7490 6b951fe70259633af0388019bed230d5\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-intl_5.3.2-1ubuntu4.6_sparc.deb\r\n Size/MD5: 54036 796ca4df04bfa667cd16a0dd6df2a5a1\r\n\r\nUpdated packages for Ubuntu 10.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.3-1ubuntu9.2.diff.gz\r\n Size/MD5: 196816 ede7dff78a1e215a0c478267c57dd1a8\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.3-1ubuntu9.2.dsc\r\n Size/MD5: 3246 8629ecc0b18d05ce19ddd8a6fd5c2be9\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.3.orig.tar.gz\r\n Size/MD5: 13921529 5adf1a537895c2ec933fddd48e78d8a2\r\n\r\n Architecture independent packages:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.3.3-1ubuntu9.2_all.deb\r\n Size/MD5: 362866 d63047ea2c45970adee41c85604d6964\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.3.3-1ubuntu9.2_all.deb\r\n Size/MD5: 1122 f82fcb497f9831db617344e959fde575\r\n\r\n amd64 architecture (Athlon64, Opteron, EM64T Xeon):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 3106010 973e07bb984b8446ef3ef2a2d5cfa00f\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 6028052 4742fca65397445228556709c11a8f2e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 3017590 26176b87d42a1a885a0a73953fe16a97\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 564200 66c937ec1b51a82affba110775a5d7e4\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 26874 79f6429a811276a34005ac5b5a26b1e2\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 12405206 e01720b9f146509a2ed7bbf2ac70b13a\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 418324 5e1f55067b100fbdb0e8480450a6e917\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 38490 da775d309a31452c687fdce9402400bd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 16210 8dee00c5c4c8b72ca548165d0aadd447\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 19560 f417e4b2d2909845c4d08b609ddda459\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 75428 bdb08e4faee81589828ec316a3e6a52b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 35320 12ccfcdcb41110413ee8f10e99742529\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 59076 35210edb7d5afc9e31c2bc59912898cb\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 8048 de86320c471cdf767edab14b178daefd\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 4294 617566b3834b56b042967071460a272c\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 11170 0a4959dc691f4ff2d9ec63da62a33c72\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 54912 804acc24f4b7f6f07f03b6e5fdd9876e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 17952 0bd747dd720bd13f12ffbc07f583c9fb\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 34626 9a8e1665929e1f3de53ccc948d91e99e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 13044 a022258a7261c170bc357ba68fe477ec\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 3104626 04c9ab77e009f27eb3712b8a0cffd5d3\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-enchant_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 8810 10a01a8e1a887be8f8c93fd8173b2637\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-fpm_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 3042170 7740a71d177414ff403e3c5b53c5e971\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-intl_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 58768 68e5e73df9bd861d6d1e53dfc3c18c66\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-sybase_5.3.3-1ubuntu9.2_amd64.deb\r\n Size/MD5: 26040 3c1dfa40fba7450e2a3f2090a9a4a4e6\r\n\r\n i386 architecture (x86 compatible Intel/AMD):\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 2944260 619f260f6c8c8d01abebfb898de87117\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 5835312 9ccb840393ef5c52ef0bce1575351218\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 2922192 140a51e9a83fc7688adfd1c5595e5559\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 555754 fa2fb0a9e101cac612f3ca769fa95d85\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 25296 de9d5ed65071a30717fa966a7560b5be\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dbg_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 12617506 c9451c5504e6171b8eb9c502c4249968\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 416994 3305cef2fe12c6f36d7b115bdd542077\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 33970 2d2b533f8dd03dcb37123fe02261b8f0\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gmp_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 13966 f06c7e37882ff66e28c9f0c3466a6e5b\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 17154 5ca6d14918a60d9b8dcf14ace08959a5\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 65966 97682a4e4926622ff574fd8270cbd946\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 30826 9da385d8063f43060649efa9a7484d41\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 53722 fda31c7958a6747dc40fa0278e8a2e5d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pspell_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 7148 f8719b35bc86a7e177c367d3dcd78714\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 4098 62dc4cc3b37074275da051ee912ff52d\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 10014 5361d7a815cdda47babd766ae36c7f7e\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 46950 4182f187abc09b075649432f5da56542\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-tidy_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 16070 db4f45c6d85ea94ffaf697d4022dc002\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 31656 9196ef437de957ca3d7596ba42e9eab3\r\n http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 12030 56742dde4c1b020a4f9dda5f434d8671\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/libapache2-mod-php5filter_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 2943178 d44b4b3954ad2727a92b8acf5db30c47\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-enchant_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 7634 5d139c268d1e5fc648327fc3bbbf114c\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-fpm_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 2944984 8442b12c63ed8301b5c671e5a2f6c8e0\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-intl_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 53300 650b608670e209ee475c8a568d477c13\r\n http://security.ubuntu.com/ubuntu/pool/universe/p/php5/php5-sybase_5.3.3-1ubuntu9.2_i386.deb\r\n Size/MD5: 23158 5d6b41b8f92447380d93e6640a22b18b\r\n\r\n armel architecture (ARM Architecture):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 2999022 daa8e8b7fdfa1a65cd661d853c0143b1\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 5965966 ba709c7dbcec4e38e88a9daa24887d42\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 2986806 02a3968a3deac621ce433e9f8147a43b\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 563518 3fd934f0a502ef4e37606867bbbd2ea6\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 25206 5d18abe9252cdc5229b7e91b68d778bb\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 13759836 a141409295cd7b8e31ab83afae643d95\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 418820 f56a2c2cbfd56bf8a78c1530a049e6f5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 37292 96b920810bbbdf8e430e7d6bacd77411\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 13568 1ecc1622475107f35d019bdabf098f01\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 17466 b1e77bb8269754bd0c72ed1ac5c45841\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 63208 5deb4c388eb305128f6e620cb74347cf\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 30618 7cc27fbb2e7cf59351267081ce916cd0\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 52906 fa8dc748d6914d9b75adce594ba3d4be\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 6984 afb04370d5ffd75298abfc74f95f7889\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 3906 51d1a684e7c674fd181a74dc5a69c7bf\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 9834 fca5b32f63f46f9f360f73da1528a26c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 44546 6f7d8d3b215a37f8f8ba7e0baee9cf63\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 15714 c1361163ce77383881da78fd454a19b9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 30168 73b69174f080b4f989f620506000b901\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 11460 e326bbcc1a5990751e84e18d23c4a61d\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 2998222 eb97aaadbbc526badb470f2ab588a2c5\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-enchant_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 7568 1f46699a9422cc125c2be6cfc6564660\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-fpm_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 3009278 0bd50c06173a9b871393bbfca607fc5a\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-intl_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 53476 712b3516cb52a3a2a251ec6c139aea4f\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-sybase_5.3.3-1ubuntu9.2_armel.deb\r\n Size/MD5: 21894 11b9b427bf4f3af130d7505b309bd019\r\n\r\n powerpc architecture (Apple Macintosh G3/G4/G5):\r\n\r\n http://ports.ubuntu.com/pool/main/p/php5/libapache2-mod-php5_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 3091760 cec535868df930364de273a8d9813a59\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cgi_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 5985056 b7ee8229012587e24d13bc02db88f67f\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-cli_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 2995916 3098a23a9264dae8e41437bcf38e2f59\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-common_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 564322 4b319d44925b0b8bdea42d38f16983f9\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-curl_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 28146 aea39e463fcfd7607c25a958478c5845\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dbg_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 13393736 1d680f8e9ccc4e46b6cc75ccc0f1ffeb\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-dev_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 415382 96279bcdf5259326622013f78761b112\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gd_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 39282 54b73faba10e5f0fb1b89fb841e4f51e\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-gmp_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 14098 1d635c8a683e4652fb0c445dac4eb920\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-ldap_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 18866 a9df988c0ce9ad79aa97ade72c414615\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-mysql_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 71472 60fdf09b45f88dd51d0c71fd2a639731\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-odbc_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 33306 16e77b3081a9457b4db1a3288712de8c\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pgsql_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 57710 3f077e55f4e8717f073897eec80d472a\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-pspell_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 7358 ae45fd458e011e64de815f508aaced39\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-recode_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 4304 52632bfc349c5883be00ec66e17d91c3\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-snmp_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 10536 ced4d0df904e53b38d3bddcfd8d37f78\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-sqlite_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 51082 24d3991267a44a6000c97158867522db\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-tidy_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 17504 bf1a3717987213dd64c51d3f303594c5\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xmlrpc_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 33772 f6a1f330aa73cd54d0097ab39462d521\r\n http://ports.ubuntu.com/pool/main/p/php5/php5-xsl_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 13018 c9c704c34d475d926778b24ce8f56fdf\r\n http://ports.ubuntu.com/pool/universe/p/php5/libapache2-mod-php5filter_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 3090844 e7c0485f0f0e3ef3e908a79c2ff700c6\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-enchant_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 8090 2358caf8d8d658d240184bac30663c4e\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-fpm_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 3021744 50656fd1da08c5fee4a3a074a86f0a0d\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-intl_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 59640 ee69e7ae68194393189e3c78b93db10a\r\n http://ports.ubuntu.com/pool/universe/p/php5/php5-sybase_5.3.3-1ubuntu9.2_powerpc.deb\r\n Size/MD5: 24378 337e728142f95116ae790202beda4801\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2011-01-13T00:00:00", "title": "[USN-1042-1] PHP vulnerabilities", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:38", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2010-4645", "CVE-2010-3436", "CVE-2010-3870", "CVE-2010-3709", "CVE-2009-5016", "CVE-2010-4156", "CVE-2010-3710", "CVE-2010-4409"], "modified": "2011-01-13T00:00:00", "id": "SECURITYVULNS:DOC:25489", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:25489", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-12-11T17:45:35", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ppc", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_6.1.ppc.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nA flaw was found in the way PHP converted certain floating point values\nfrom string representation to a number. If a PHP script evaluated an\nattacker's input in a numeric context, the PHP interpreter could cause high\nCPU usage until the script execution time limit is reached. This issue only\naffected i386 systems. (CVE-2010-4645)\n\nA stack memory exhaustion flaw was found in the way the PHP filter_var()\nfunction validated email addresses. An attacker could use this flaw to\ncrash the PHP interpreter by providing excessively long input to be\nvalidated as an email address. (CVE-2010-3710)\n\nA memory disclosure flaw was found in the PHP multi-byte string extension.\nIf the mb_strcut() function was called with a length argument exceeding the\ninput string size, the function could disclose a portion of the PHP\ninterpreter's memory. (CVE-2010-4156)\n\nAll php53 users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2011-02-03T05:00:00", "type": "redhat", "title": "(RHSA-2011:0196) Moderate: php53 security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-3710", "CVE-2010-4156", "CVE-2010-4645"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:06:09", "id": "RHSA-2011:0196", "href": "https://access.redhat.com/errata/RHSA-2011:0196", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-12-11T19:40:54", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageName": "php-debuginfo", "packageFilename": "php-debuginfo-5.3.2-6.el6_0.1.i686.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nA flaw was found in the way PHP converted certain floating point values\nfrom string representation to a number. If a PHP script evaluated an\nattacker's input in a numeric context, the PHP interpreter could cause high\nCPU usage until the script execution time limit is reached. This issue only\naffected i386 systems. (CVE-2010-4645)\n\nA numeric truncation error and an input validation flaw were found in the\nway the PHP utf8_decode() function decoded partial multi-byte sequences\nfor some multi-byte encodings, sending them to output without them being\nescaped. An attacker could use these flaws to perform a cross-site\nscripting attack. (CVE-2009-5016, CVE-2010-3870)\n\nA NULL pointer dereference flaw was found in the PHP\nZipArchive::getArchiveComment function. If a script used this function to\ninspect a specially-crafted ZIP archive file, it could cause the PHP\ninterpreter to crash. (CVE-2010-3709)\n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2011-02-03T05:00:00", "type": "redhat", "title": "(RHSA-2011:0195) Moderate: php security update", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2009-5016", "CVE-2010-3709", "CVE-2010-3870", "CVE-2010-4645"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:36", "id": "RHSA-2011:0195", "href": "https://access.redhat.com/errata/RHSA-2011:0195", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:42:57", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageName": "php-devel", "packageFilename": "php-devel-4.3.9-3.35.x86_64.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nIt was found that the hashing routine used by PHP arrays was susceptible\nto predictable hash collisions. If an HTTP POST request to a PHP\napplication contained many parameters whose names map to the same hash\nvalue, a large amount of CPU time would be consumed. This flaw has been\nmitigated by adding a new configuration directive, max_input_vars, that\nlimits the maximum number of parameters processed per request. By\ndefault, max_input_vars is set to 1000. (CVE-2011-4885)\n\nAn integer overflow flaw was found in the PHP exif extension. On 32-bit\nsystems, a specially-crafted image file could cause the PHP interpreter to\ncrash or disclose portions of its memory when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-4566)\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nRed Hat would like to thank oCERT for reporting CVE-2011-4885. oCERT\nacknowledges Julian W\u00e4lde and Alexander Klink as the original reporters of\nCVE-2011-4885.\n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2012-01-30T05:00:00", "type": "redhat", "title": "(RHSA-2012:0071) Moderate: php security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0708", "CVE-2011-1466", "CVE-2011-2202", "CVE-2011-4566", "CVE-2011-4885"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:47:43", "id": "RHSA-2012:0071", "href": "https://access.redhat.com/errata/RHSA-2012:0071", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T19:41:55", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "ppc", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_7.3.ppc.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nA signedness issue was found in the way the PHP crypt() function handled\n8-bit characters in passwords when using Blowfish hashing. Up to three\ncharacters immediately preceding a non-ASCII character (one with the high\nbit set) had no effect on the hash result, thus shortening the effective\npassword length. This made brute-force guessing more efficient as several\ndifferent passwords were hashed to the same value. (CVE-2011-2483)\n\nNote: Due to the CVE-2011-2483 fix, after installing this update some users\nmay not be able to log in to PHP applications that hash passwords with\nBlowfish using the PHP crypt() function. Refer to the upstream\n\"CRYPT_BLOWFISH security fix details\" document, linked to in the\nReferences, for details.\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nMultiple memory leak flaws were found in the PHP OpenSSL extension. A\nremote attacker able to make a PHP script use openssl_encrypt() or\nopenssl_decrypt() repeatedly could cause the PHP interpreter to use an\nexcessive amount of memory. (CVE-2011-1468)\n\nA use-after-free flaw was found in the PHP substr_replace() function. If a\nPHP script used the same variable as multiple function arguments, a remote\nattacker could possibly use this to crash the PHP interpreter or, possibly,\nexecute arbitrary code. (CVE-2011-1148)\n\nA bug in the PHP Streams component caused the PHP interpreter to crash if\nan FTP wrapper connection was made through an HTTP proxy. A remote attacker\ncould possibly trigger this issue if a PHP script accepted an untrusted URL\nto connect to. (CVE-2011-1469)\n\nAn integer signedness issue was found in the PHP zip extension. An attacker\ncould use a specially-crafted ZIP archive to cause the PHP interpreter to\nuse an excessive amount of CPU time until the script execution time limit\nis reached. (CVE-2011-1471)\n\nA stack-based buffer overflow flaw was found in the way the PHP socket\nextension handled long AF_UNIX socket addresses. An attacker able to make a\nPHP script connect to a long AF_UNIX socket address could use this flaw to\ncrash the PHP interpreter. (CVE-2011-1938)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nAll php53 and php users should upgrade to these updated packages, which\ncontain backported patches to resolve these issues. After installing the\nupdated packages, the httpd daemon must be restarted for the update to take\neffect.\n", "reporter": "RedHat", "published": "2011-11-02T04:00:00", "type": "redhat", "title": "(RHSA-2011:1423) Moderate: php53 and php security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0708", "CVE-2011-1148", "CVE-2011-1466", "CVE-2011-1468", "CVE-2011-1469", "CVE-2011-1471", "CVE-2011-1938", "CVE-2011-2202", "CVE-2011-2483"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-06-06T20:24:27", "id": "RHSA-2011:1423", "href": "https://access.redhat.com/errata/RHSA-2011:1423", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-12-11T17:45:04", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ppc", "packageName": "php-bcmath", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.ppc.rpm", "operator": "lt"}], "description": "PHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nIt was found that the hashing routine used by PHP arrays was susceptible\nto predictable hash collisions. If an HTTP POST request to a PHP\napplication contained many parameters whose names map to the same hash\nvalue, a large amount of CPU time would be consumed. This flaw has been\nmitigated by adding a new configuration directive, max_input_vars, that\nlimits the maximum number of parameters processed per request. By\ndefault, max_input_vars is set to 1000. (CVE-2011-4885)\n\nA use-after-free flaw was found in the PHP substr_replace() function. If a\nPHP script used the same variable as multiple function arguments, a remote\nattacker could possibly use this to crash the PHP interpreter or, possibly,\nexecute arbitrary code. (CVE-2011-1148)\n\nAn integer overflow flaw was found in the PHP exif extension. On 32-bit\nsystems, a specially-crafted image file could cause the PHP interpreter to\ncrash or disclose portions of its memory when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-4566)\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nA bug in the PHP Streams component caused the PHP interpreter to crash if\nan FTP wrapper connection was made through an HTTP proxy. A remote attacker\ncould possibly trigger this issue if a PHP script accepted an untrusted URL\nto connect to. (CVE-2011-1469)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nRed Hat would like to thank oCERT for reporting CVE-2011-4885. oCERT\nacknowledges Julian Walde and Alexander Klink as the original reporters of\nCVE-2011-4885.\n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n", "reporter": "RedHat", "published": "2012-01-18T05:00:00", "type": "redhat", "title": "(RHSA-2012:0033) Moderate: php security update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0708", "CVE-2011-1148", "CVE-2011-1466", "CVE-2011-1469", "CVE-2011-2202", "CVE-2011-4566", "CVE-2011-4885"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T12:10:09", "id": "RHSA-2012:0033", "href": "https://access.redhat.com/errata/RHSA-2012:0033", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "centos": [{"lastseen": "2017-10-03T18:25:07", "references": ["https://rhn.redhat.com/errata/RHSA-2011-0196.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-process", "packageFilename": "php53-process-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-common", "packageFilename": "php53-common-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-intl", "packageFilename": "php53-intl-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-gd", "packageFilename": "php53-gd-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-process", "packageFilename": "php53-process-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-intl", "packageFilename": "php53-intl-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-bcmath", "packageFilename": "php53-bcmath-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-devel", "packageFilename": "php53-devel-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-gd", "packageFilename": "php53-gd-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-soap", "packageFilename": "php53-soap-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-mbstring", "packageFilename": "php53-mbstring-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-pgsql", "packageFilename": "php53-pgsql-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-imap", "packageFilename": "php53-imap-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-imap", "packageFilename": "php53-imap-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-ldap", "packageFilename": "php53-ldap-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-bcmath", "packageFilename": "php53-bcmath-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-mysql", "packageFilename": "php53-mysql-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-pdo", "packageFilename": "php53-pdo-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-pdo", "packageFilename": "php53-pdo-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-xml", "packageFilename": "php53-xml-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-mysql", "packageFilename": "php53-mysql-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-pgsql", "packageFilename": "php53-pgsql-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-dba", "packageFilename": "php53-dba-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-xmlrpc", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-cli", "packageFilename": "php53-cli-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-snmp", "packageFilename": "php53-snmp-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-soap", "packageFilename": "php53-soap-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-common", "packageFilename": "php53-common-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-pspell", "packageFilename": "php53-pspell-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-dba", "packageFilename": "php53-dba-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-mbstring", "packageFilename": "php53-mbstring-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-odbc", "packageFilename": "php53-odbc-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-ldap", "packageFilename": "php53-ldap-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-xml", "packageFilename": "php53-xml-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-xmlrpc", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-pspell", "packageFilename": "php53-pspell-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-odbc", "packageFilename": "php53-odbc-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "any", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_6.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "any", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_6.1.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-cli", "packageFilename": "php53-cli-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageName": "php53-devel", "packageFilename": "php53-devel-5.3.3-1.el5_6.1.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageName": "php53-snmp", "packageFilename": "php53-snmp-5.3.3-1.el5_6.1.i386.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:0196\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nA flaw was found in the way PHP converted certain floating point values\nfrom string representation to a number. If a PHP script evaluated an\nattacker's input in a numeric context, the PHP interpreter could cause high\nCPU usage until the script execution time limit is reached. This issue only\naffected i386 systems. (CVE-2010-4645)\n\nA stack memory exhaustion flaw was found in the way the PHP filter_var()\nfunction validated email addresses. An attacker could use this flaw to\ncrash the PHP interpreter by providing excessively long input to be\nvalidated as an email address. (CVE-2010-3710)\n\nA memory disclosure flaw was found in the PHP multi-byte string extension.\nIf the mb_strcut() function was called with a length argument exceeding the\ninput string size, the function could disclose a portion of the PHP\ninterpreter's memory. (CVE-2010-4156)\n\nAll php53 users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-April/017379.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-April/017380.html\n\n**Affected packages:**\nphp53\nphp53-bcmath\nphp53-cli\nphp53-common\nphp53-dba\nphp53-devel\nphp53-gd\nphp53-imap\nphp53-intl\nphp53-ldap\nphp53-mbstring\nphp53-mysql\nphp53-odbc\nphp53-pdo\nphp53-pgsql\nphp53-process\nphp53-pspell\nphp53-snmp\nphp53-soap\nphp53-xml\nphp53-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-0196.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-04-14T19:48:18", "title": "php53 security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645", "CVE-2010-4156", "CVE-2010-3710"], "modified": "2011-04-14T19:48:18", "href": "http://lists.centos.org/pipermail/centos-announce/2011-April/017379.html", "id": "CESA-2011:0196", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-10-12T14:46:34", "references": ["https://rhn.redhat.com/errata/RHSA-2012-0071.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-mysql-4.3.9-3.35.x86_64.rpm", "packageName": "php-mysql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-imap-4.3.9-3.35.i386.rpm", "packageName": "php-imap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-imap-4.3.9-3.35.x86_64.rpm", "packageName": "php-imap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-odbc-4.3.9-3.35.i386.rpm", "packageName": "php-odbc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-mbstring-4.3.9-3.35.i386.rpm", "packageName": "php-mbstring", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-devel-4.3.9-3.35.x86_64.rpm", "packageName": "php-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-ncurses-4.3.9-3.35.x86_64.rpm", "packageName": "php-ncurses", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-pear-4.3.9-3.35.x86_64.rpm", "packageName": "php-pear", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-domxml-4.3.9-3.35.x86_64.rpm", "packageName": "php-domxml", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-snmp-4.3.9-3.35.i386.rpm", "packageName": "php-snmp", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-snmp-4.3.9-3.35.x86_64.rpm", "packageName": "php-snmp", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-pgsql-4.3.9-3.35.x86_64.rpm", "packageName": "php-pgsql", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-gd-4.3.9-3.35.x86_64.rpm", "packageName": "php-gd", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-ldap-4.3.9-3.35.i386.rpm", "packageName": "php-ldap", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-gd-4.3.9-3.35.i386.rpm", "packageName": "php-gd", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-pear-4.3.9-3.35.i386.rpm", "packageName": "php-pear", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-odbc-4.3.9-3.35.x86_64.rpm", "packageName": "php-odbc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-mysql-4.3.9-3.35.i386.rpm", "packageName": "php-mysql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-domxml-4.3.9-3.35.i386.rpm", "packageName": "php-domxml", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-xmlrpc-4.3.9-3.35.x86_64.rpm", "packageName": "php-xmlrpc", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-pgsql-4.3.9-3.35.i386.rpm", "packageName": "php-pgsql", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-mbstring-4.3.9-3.35.x86_64.rpm", "packageName": "php-mbstring", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-ldap-4.3.9-3.35.x86_64.rpm", "packageName": "php-ldap", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-devel-4.3.9-3.35.i386.rpm", "packageName": "php-devel", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-4.3.9-3.35.src.rpm", "packageName": "php", "arch": "any", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-xmlrpc-4.3.9-3.35.i386.rpm", "packageName": "php-xmlrpc", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-ncurses-4.3.9-3.35.i386.rpm", "packageName": "php-ncurses", "arch": "i386", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-4.3.9-3.35.x86_64.rpm", "packageName": "php", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "packageFilename": "php-4.3.9-3.35.i386.rpm", "packageName": "php", "arch": "i386", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:0071\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nIt was found that the hashing routine used by PHP arrays was susceptible\nto predictable hash collisions. If an HTTP POST request to a PHP\napplication contained many parameters whose names map to the same hash\nvalue, a large amount of CPU time would be consumed. This flaw has been\nmitigated by adding a new configuration directive, max_input_vars, that\nlimits the maximum number of parameters processed per request. By\ndefault, max_input_vars is set to 1000. (CVE-2011-4885)\n\nAn integer overflow flaw was found in the PHP exif extension. On 32-bit\nsystems, a specially-crafted image file could cause the PHP interpreter to\ncrash or disclose portions of its memory when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-4566)\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nRed Hat would like to thank oCERT for reporting CVE-2011-4885. oCERT\nacknowledges Julian W\u00e4lde and Alexander Klink as the original reporters of\nCVE-2011-4885.\n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-January/018402.html\n\n**Affected packages:**\nphp\nphp-devel\nphp-domxml\nphp-gd\nphp-imap\nphp-ldap\nphp-mbstring\nphp-mysql\nphp-ncurses\nphp-odbc\nphp-pear\nphp-pgsql\nphp-snmp\nphp-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-0071.html", "edition": 2, "reporter": "CentOS Project", "published": "2012-01-30T15:44:11", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "php security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2011-1466", "CVE-2011-4885", "CVE-2011-0708", "CVE-2011-4566", "CVE-2011-2202"], "modified": "2012-01-30T15:44:11", "href": "http://lists.centos.org/pipermail/centos-announce/2012-January/018402.html", "id": "CESA-2012:0071", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:25:09", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1423.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-mysql", "packageFilename": "php53-mysql-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-gd", "packageFilename": "php53-gd-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-xmlrpc", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-intl", "packageFilename": "php53-intl-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-xml", "packageFilename": "php53-xml-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-dba", "packageFilename": "php53-dba-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-soap", "packageFilename": "php53-soap-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-pdo", "packageFilename": "php53-pdo-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-cli", "packageFilename": "php53-cli-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-imap", "packageFilename": "php53-imap-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-common", "packageFilename": "php53-common-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-pdo", "packageFilename": "php53-pdo-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-process", "packageFilename": "php53-process-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-mbstring", "packageFilename": "php53-mbstring-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-ldap", "packageFilename": "php53-ldap-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-gd", "packageFilename": "php53-gd-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-pspell", "packageFilename": "php53-pspell-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-bcmath", "packageFilename": "php53-bcmath-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-mysql", "packageFilename": "php53-mysql-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-xmlrpc", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-pgsql", "packageFilename": "php53-pgsql-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-xml", "packageFilename": "php53-xml-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-pgsql", "packageFilename": "php53-pgsql-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-bcmath", "packageFilename": "php53-bcmath-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-intl", "packageFilename": "php53-intl-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-devel", "packageFilename": "php53-devel-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-ldap", "packageFilename": "php53-ldap-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-imap", "packageFilename": "php53-imap-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-odbc", "packageFilename": "php53-odbc-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-snmp", "packageFilename": "php53-snmp-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-cli", "packageFilename": "php53-cli-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-snmp", "packageFilename": "php53-snmp-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "any", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_7.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "any", "packageName": "php53", "packageFilename": "php53-5.3.3-1.el5_7.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-common", "packageFilename": "php53-common-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-soap", "packageFilename": "php53-soap-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-devel", "packageFilename": "php53-devel-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-dba", "packageFilename": "php53-dba-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-mbstring", "packageFilename": "php53-mbstring-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-pspell", "packageFilename": "php53-pspell-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "i386", "packageName": "php53-process", "packageFilename": "php53-process-5.3.3-1.el5_7.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_7.3", "arch": "x86_64", "packageName": "php53-odbc", "packageFilename": "php53-odbc-5.3.3-1.el5_7.3.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2011:1423\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nA signedness issue was found in the way the PHP crypt() function handled\n8-bit characters in passwords when using Blowfish hashing. Up to three\ncharacters immediately preceding a non-ASCII character (one with the high\nbit set) had no effect on the hash result, thus shortening the effective\npassword length. This made brute-force guessing more efficient as several\ndifferent passwords were hashed to the same value. (CVE-2011-2483)\n\nNote: Due to the CVE-2011-2483 fix, after installing this update some users\nmay not be able to log in to PHP applications that hash passwords with\nBlowfish using the PHP crypt() function. Refer to the upstream\n\"CRYPT_BLOWFISH security fix details\" document, linked to in the\nReferences, for details.\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nMultiple memory leak flaws were found in the PHP OpenSSL extension. A\nremote attacker able to make a PHP script use openssl_encrypt() or\nopenssl_decrypt() repeatedly could cause the PHP interpreter to use an\nexcessive amount of memory. (CVE-2011-1468)\n\nA use-after-free flaw was found in the PHP substr_replace() function. If a\nPHP script used the same variable as multiple function arguments, a remote\nattacker could possibly use this to crash the PHP interpreter or, possibly,\nexecute arbitrary code. (CVE-2011-1148)\n\nA bug in the PHP Streams component caused the PHP interpreter to crash if\nan FTP wrapper connection was made through an HTTP proxy. A remote attacker\ncould possibly trigger this issue if a PHP script accepted an untrusted URL\nto connect to. (CVE-2011-1469)\n\nAn integer signedness issue was found in the PHP zip extension. An attacker\ncould use a specially-crafted ZIP archive to cause the PHP interpreter to\nuse an excessive amount of CPU time until the script execution time limit\nis reached. (CVE-2011-1471)\n\nA stack-based buffer overflow flaw was found in the way the PHP socket\nextension handled long AF_UNIX socket addresses. An attacker able to make a\nPHP script connect to a long AF_UNIX socket address could use this flaw to\ncrash the PHP interpreter. (CVE-2011-1938)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nAll php53 and php users should upgrade to these updated packages, which\ncontain backported patches to resolve these issues. After installing the\nupdated packages, the httpd daemon must be restarted for the update to take\neffect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018145.html\nhttp://lists.centos.org/pipermail/centos-announce/2011-November/018146.html\n\n**Affected packages:**\nphp53\nphp53-bcmath\nphp53-cli\nphp53-common\nphp53-dba\nphp53-devel\nphp53-gd\nphp53-imap\nphp53-intl\nphp53-ldap\nphp53-mbstring\nphp53-mysql\nphp53-odbc\nphp53-pdo\nphp53-pgsql\nphp53-process\nphp53-pspell\nphp53-snmp\nphp53-soap\nphp53-xml\nphp53-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2011-1423.html", "edition": 1, "reporter": "CentOS Project", "published": "2011-11-02T23:59:22", "title": "php53 security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1471", "CVE-2011-1148", "CVE-2011-1466", "CVE-2011-1938", "CVE-2011-2483", "CVE-2011-0708", "CVE-2011-1468", "CVE-2011-1469", "CVE-2011-2202"], "modified": "2011-11-02T23:59:22", "href": "http://lists.centos.org/pipermail/centos-announce/2011-November/018145.html", "id": "CESA-2011:1423", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-10-03T18:26:42", "references": ["https://rhn.redhat.com/errata/RHSA-2012-0033.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-dba", "packageFilename": "php-dba-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-odbc", "packageFilename": "php-odbc-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-common", "packageFilename": "php-common-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-dba", "packageFilename": "php-dba-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-pgsql", "packageFilename": "php-pgsql-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-gd", "packageFilename": "php-gd-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-cli", "packageFilename": "php-cli-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-imap", "packageFilename": "php-imap-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-odbc", "packageFilename": "php-odbc-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-cli", "packageFilename": "php-cli-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-pgsql", "packageFilename": "php-pgsql-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-common", "packageFilename": "php-common-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-ncurses", "packageFilename": "php-ncurses-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-ncurses", "packageFilename": "php-ncurses-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-bcmath", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "any", "packageName": "php", "packageFilename": "php-5.1.6-27.el5_7.4.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-mbstring", "packageFilename": "php-mbstring-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-snmp", "packageFilename": "php-snmp-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-mysql", "packageFilename": "php-mysql-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php", "packageFilename": "php-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-soap", "packageFilename": "php-soap-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-pdo", "packageFilename": "php-pdo-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-gd", "packageFilename": "php-gd-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-ldap", "packageFilename": "php-ldap-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-ldap", "packageFilename": "php-ldap-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-mbstring", "packageFilename": "php-mbstring-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-snmp", "packageFilename": "php-snmp-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-xml", "packageFilename": "php-xml-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-devel", "packageFilename": "php-devel-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-xml", "packageFilename": "php-xml-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-mysql", "packageFilename": "php-mysql-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-bcmath", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-soap", "packageFilename": "php-soap-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-xmlrpc", "packageFilename": "php-xmlrpc-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-devel", "packageFilename": "php-devel-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php", "packageFilename": "php-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageName": "php-pdo", "packageFilename": "php-pdo-5.1.6-27.el5_7.4.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageName": "php-imap", "packageFilename": "php-imap-5.1.6-27.el5_7.4.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2012:0033\n\n\nPHP is an HTML-embedded scripting language commonly used with the Apache\nHTTP Server.\n\nIt was found that the hashing routine used by PHP arrays was susceptible\nto predictable hash collisions. If an HTTP POST request to a PHP\napplication contained many parameters whose names map to the same hash\nvalue, a large amount of CPU time would be consumed. This flaw has been\nmitigated by adding a new configuration directive, max_input_vars, that\nlimits the maximum number of parameters processed per request. By\ndefault, max_input_vars is set to 1000. (CVE-2011-4885)\n\nA use-after-free flaw was found in the PHP substr_replace() function. If a\nPHP script used the same variable as multiple function arguments, a remote\nattacker could possibly use this to crash the PHP interpreter or, possibly,\nexecute arbitrary code. (CVE-2011-1148)\n\nAn integer overflow flaw was found in the PHP exif extension. On 32-bit\nsystems, a specially-crafted image file could cause the PHP interpreter to\ncrash or disclose portions of its memory when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-4566)\n\nAn insufficient input validation flaw, leading to a buffer over-read, was\nfound in the PHP exif extension. A specially-crafted image file could cause\nthe PHP interpreter to crash when a PHP script tries to extract\nExchangeable image file format (Exif) metadata from the image file.\n(CVE-2011-0708)\n\nAn integer overflow flaw was found in the PHP calendar extension. A remote\nattacker able to make a PHP script call SdnToJulian() with a large value\ncould cause the PHP interpreter to crash. (CVE-2011-1466)\n\nA bug in the PHP Streams component caused the PHP interpreter to crash if\nan FTP wrapper connection was made through an HTTP proxy. A remote attacker\ncould possibly trigger this issue if a PHP script accepted an untrusted URL\nto connect to. (CVE-2011-1469)\n\nAn off-by-one flaw was found in PHP. If an attacker uploaded a file with a\nspecially-crafted file name it could cause a PHP script to attempt to write\na file to the root (/) directory. By default, PHP runs as the \"apache\"\nuser, preventing it from writing to the root directory. (CVE-2011-2202)\n\nRed Hat would like to thank oCERT for reporting CVE-2011-4885. oCERT\nacknowledges Julian Walde and Alexander Klink as the original reporters of\nCVE-2011-4885.\n\nAll php users should upgrade to these updated packages, which contain\nbackported patches to resolve these issues. After installing the updated\npackages, the httpd daemon must be restarted for the update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-January/018379.html\n\n**Affected packages:**\nphp\nphp-bcmath\nphp-cli\nphp-common\nphp-dba\nphp-devel\nphp-gd\nphp-imap\nphp-ldap\nphp-mbstring\nphp-mysql\nphp-ncurses\nphp-odbc\nphp-pdo\nphp-pgsql\nphp-snmp\nphp-soap\nphp-xml\nphp-xmlrpc\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-0033.html", "edition": 1, "reporter": "CentOS Project", "published": "2012-01-18T14:55:58", "title": "php security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1148", "CVE-2011-1466", "CVE-2011-4885", "CVE-2011-0708", "CVE-2011-1469", "CVE-2011-4566", "CVE-2011-2202"], "modified": "2012-01-18T14:55:58", "href": "http://lists.centos.org/pipermail/centos-announce/2012-January/018379.html", "id": "CESA-2012:0033", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:39:22", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-gd-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-gd-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-devel-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-bcmath-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-mysql-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-pdo-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-imap-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-intl-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-intl", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-mysql-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-intl-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-intl", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-pgsql-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-intl-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-intl", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-soap-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-snmp-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-cli-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "src", "packageFilename": "php53-5.3.3-1.el5_6.1.src.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "src", "packageFilename": "php53-5.3.3-1.el5_6.1.src.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "src", "packageFilename": "php53-5.3.3-1.el5_6.1.src.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-imap-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-odbc-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-ldap-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-ldap-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-pdo-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-mbstring-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-pdo-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-common-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-mysql-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-ldap-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-bcmath-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-dba-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-odbc-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-pgsql-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-dba-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-bcmath-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-pgsql-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-pspell-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-pspell", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-xml-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-process-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-process", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-odbc-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-common-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-soap-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-imap-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-common-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-mbstring-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-xml-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-pspell-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-pspell", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-devel-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-mbstring-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-process-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-process", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-xmlrpc-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-cli-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-snmp-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-devel-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-cli-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-dba-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-soap-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "i386", "packageFilename": "php53-pspell-5.3.3-1.el5_6.1.i386.rpm", "packageName": "php53-pspell", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-process-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-process", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-gd-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "x86_64", "packageFilename": "php53-xml-5.3.3-1.el5_6.1.x86_64.rpm", "packageName": "php53-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.3.3-1.el5_6.1", "arch": "ia64", "packageFilename": "php53-snmp-5.3.3-1.el5_6.1.ia64.rpm", "packageName": "php53-snmp", "operator": "lt"}], "description": "[5.3.3-1.1]\n- add security fixes for CVE-2010-3710, CVE-2010-4156,\n CVE-2010-4645 (#670463)", "edition": 3, "reporter": "Oracle", "published": "2011-02-03T00:00:00", "title": "php53 security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645", "CVE-2010-4156", "CVE-2010-3710"], "modified": "2011-02-03T00:00:00", "id": "ELSA-2011-0196", "href": "http://linux.oracle.com/errata/ELSA-2011-0196.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T01:42:02", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-bcmath-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-embedded-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-embedded", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "src", "packageFilename": "php-5.3.2-6.el6_0.1.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "src", "packageFilename": "php-5.3.2-6.el6_0.1.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-imap-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-snmp-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-cli-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-odbc-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-pspell-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-pspell", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-xmlrpc-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-pgsql-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-mysql-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-snmp-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-embedded-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-embedded", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-enchant-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-enchant", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-devel-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-recode-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-recode", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-xml-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-bcmath-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-recode-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-recode", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-process-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-process", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-odbc-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-zts-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-zts", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-gd-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-pgsql-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-mysql-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-soap-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-zts-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-zts", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-xml-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-pdo-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-mbstring-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-intl-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-intl", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-common-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-tidy-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-tidy", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-pdo-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-pspell-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-pspell", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-cli-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-process-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-process", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-enchant-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-enchant", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-mbstring-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-intl-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-intl", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-devel-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-gd-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-xmlrpc-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-tidy-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-tidy", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-soap-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-imap-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-dba-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "i686", "packageFilename": "php-ldap-5.3.2-6.el6_0.1.i686.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-dba-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-ldap-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "6", "packageVersion": "5.3.2-6.el6_0.1", "arch": "x86_64", "packageFilename": "php-common-5.3.2-6.el6_0.1.x86_64.rpm", "packageName": "php-common", "operator": "lt"}], "description": "[5.3.2-6.1]\n- add security fixes for CVE-2010-3709, CVE-2010-3870,\n CVE-2009-5016, CVE-2010-4645 (#670461)", "edition": 3, "reporter": "Oracle", "published": "2011-02-10T00:00:00", "title": "php security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645", "CVE-2010-3870", "CVE-2010-3709", "CVE-2009-5016"], "modified": "2011-02-10T00:00:00", "id": "ELSA-2011-0195", "href": "http://linux.oracle.com/errata/ELSA-2011-0195.html", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:39:02", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-ncurses-4.3.9-3.35.ia64.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-mysql-4.3.9-3.35.x86_64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-pgsql-4.3.9-3.35.x86_64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-odbc-4.3.9-3.35.i386.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-ldap-4.3.9-3.35.ia64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-mysql-4.3.9-3.35.ia64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-snmp-4.3.9-3.35.i386.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-gd-4.3.9-3.35.ia64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-ncurses-4.3.9-3.35.x86_64.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-pgsql-4.3.9-3.35.i386.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-devel-4.3.9-3.35.x86_64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-devel-4.3.9-3.35.i386.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-odbc-4.3.9-3.35.x86_64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-mbstring-4.3.9-3.35.x86_64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-mysql-4.3.9-3.35.i386.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-imap-4.3.9-3.35.x86_64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-ldap-4.3.9-3.35.x86_64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-odbc-4.3.9-3.35.ia64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-mbstring-4.3.9-3.35.i386.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-mbstring-4.3.9-3.35.ia64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-gd-4.3.9-3.35.i386.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-pear-4.3.9-3.35.ia64.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-pear-4.3.9-3.35.x86_64.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-4.3.9-3.35.ia64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-ldap-4.3.9-3.35.i386.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-imap-4.3.9-3.35.ia64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-xmlrpc-4.3.9-3.35.x86_64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-4.3.9-3.35.i386.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-pear-4.3.9-3.35.i386.rpm", "packageName": "php-pear", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-ncurses-4.3.9-3.35.i386.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-gd-4.3.9-3.35.x86_64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-domxml-4.3.9-3.35.ia64.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-4.3.9-3.35.x86_64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-snmp-4.3.9-3.35.x86_64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-xmlrpc-4.3.9-3.35.ia64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-pgsql-4.3.9-3.35.ia64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-xmlrpc-4.3.9-3.35.i386.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-imap-4.3.9-3.35.i386.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "src", "packageFilename": "php-4.3.9-3.35.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "src", "packageFilename": "php-4.3.9-3.35.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "src", "packageFilename": "php-4.3.9-3.35.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "x86_64", "packageFilename": "php-domxml-4.3.9-3.35.x86_64.rpm", "packageName": "php-domxml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-devel-4.3.9-3.35.ia64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "ia64", "packageFilename": "php-snmp-4.3.9-3.35.ia64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "4.3.9-3.35", "arch": "i386", "packageFilename": "php-domxml-4.3.9-3.35.i386.rpm", "packageName": "php-domxml", "operator": "lt"}], "description": "[4.3.9-3.35]\n- add glibc-headers to BuildRequires because of stdint.h needed by\n CVE-2011-0708.patch, adopt the patch's include header section (#769761)\n[4.3.9-3.33]\n- fix CVE-2011-4566 patch to be RHEL-4 php/exif compatible (#769761)\n[4.3.9-3.32]\n- add security fixes for CVE-2011-4885, CVE-2011-4566, CVE-2011-0708,\n CVE-2011-1466, CVE-2011-2202 (#769761)", "edition": 3, "reporter": "Oracle", "published": "2012-01-30T00:00:00", "title": "php security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1466", "CVE-2011-4885", "CVE-2011-0708", "CVE-2011-4566", "CVE-2011-2202"], "modified": "2012-01-30T00:00:00", "id": "ELSA-2012-0071", "href": "http://linux.oracle.com/errata/ELSA-2012-0071.html", "cvss": {"score": 6.4, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T01:40:08", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-common-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-pdo-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-ldap-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-odbc-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-dba-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-xml-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-xml-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-common-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-devel-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-xml-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-xml", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-gd-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-gd-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-dba-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-ldap-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-cli-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-mysql-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-snmp-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-soap-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-pgsql-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-common-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-common", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-mbstring-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-mbstring-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-imap-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-ncurses-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "src", "packageFilename": "php-5.1.6-27.el5_7.4.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "src", "packageFilename": "php-5.1.6-27.el5_7.4.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "src", "packageFilename": "php-5.1.6-27.el5_7.4.src.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-pgsql-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-ncurses-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-odbc-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-cli-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-cli-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-cli", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-odbc-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-odbc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-xmlrpc-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-mbstring-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-mbstring", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-soap-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-xmlrpc-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-mysql-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-mysql-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-mysql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-xmlrpc-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-xmlrpc", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-ncurses-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-ncurses", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-soap-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-soap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-dba-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-dba", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-pdo-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-imap-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-imap-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-imap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-pdo-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-pdo", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-bcmath-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-bcmath", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-devel-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-pgsql-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-pgsql", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-snmp-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-snmp-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-snmp", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-gd-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php-gd", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "i386", "packageFilename": "php-ldap-5.1.6-27.el5_7.4.i386.rpm", "packageName": "php-ldap", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "ia64", "packageFilename": "php-devel-5.1.6-27.el5_7.4.ia64.rpm", "packageName": "php-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "5", "packageVersion": "5.1.6-27.el5_7.4", "arch": "x86_64", "packageFilename": "php-5.1.6-27.el5_7.4.x86_64.rpm", "packageName": "php", "operator": "lt"}], "description": "[5.1.6-27.4]\n- add security fixes for CVE-2011-4885, CVE-2011-4566, CVE-2011-0708,\n CVE-2011-1148, CVE-2011-1466, CVE-2011-1469, CVE-2011-2202 (#769756)", "edition": 3, "reporter": "Oracle", "published": "2012-01-18T00:00:00", "title": "php security update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-1148", "CVE-2011-1466", "CVE-2011-4885", "CVE-2011-0708", "CVE-2011-1469", "CVE-2011-4566", "CVE-2011-2202"], "modified": "2012-01-18T00:00:00", "id": "ELSA-2012-0033", "href": "http://linux.oracle.com/errata/ELSA-2012-0033.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:08:50", "references": ["https://launchpad.net/bugs/776642", "https://launchpad.net/bugs/774452", "https://usn.ubuntu.com/usn/usn-1126-1"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.5", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.24", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.10", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.17", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}], "description": "USN 1126-1 fixed several vulnerabilities in PHP. The fix for CVE-2010-4697 introduced an incorrect reference counting regression in the Zend engine that caused the PHP interpreter to segfault. This regression affects Ubuntu 6.06 LTS and Ubuntu 8.04 LTS.\n\nThe fixes for CVE-2011-1072 and CVE-2011-1144 introduced a regression in the PEAR installer that prevented it from creating its cache directory and reporting errors correctly.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\nStephane Chazelas discovered that the /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/. (CVE-2011-0441)\n\nRaphael Geisert and Dan Rosenberg discovered that the PEAR installer allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4) pear-build-download directories. (CVE-2011-1072, CVE-2011-1144)\n\nBen Schmidt discovered that a use-after-free vulnerability in the PHP Zend engine could allow an attacker to cause a denial of service (heap memory corruption) or possibly execute arbitrary code. (CVE-2010-4697)\n\nMartin Barbella discovered a buffer overflow in the PHP GD extension that allows an attacker to cause a denial of service (application crash) via a large number of anti- aliasing steps in an argument to the imagepstext function. (CVE-2010-4698)\n\nIt was discovered that PHP accepts the \\0 character in a pathname, which might allow an attacker to bypass intended access restrictions by placing a safe file extension after this character. This issue is addressed in Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2006-7243)\n\nMaksymilian Arciemowicz discovered that the grapheme_extract function in the PHP Internationalization extension (Intl) for ICU allow an attacker to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference. This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-0420)\n\nMaksymilian Arciemowicz discovered that the _zip_name_locate function in the PHP Zip extension does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow an attacker to cause a denial of service (NULL pointer dereference) via an empty ZIP archive. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-0421)\n\nLuca Carettoni discovered that the PHP Exif extension performs an incorrect cast on 64bit platforms, which allows a remote attacker to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD). (CVE-2011-0708)\n\nJose Carlos Norte discovered that an integer overflow in the PHP shmop extension could allow an attacker to cause a denial of service (crash) and possibly read sensitive memory function. (CVE-2011-1092)\n\nFelipe Pena discovered that a use-after-free vulnerability in the substr_replace function allows an attacker to cause a denial of service (memory corruption) or possibly execute arbitrary code. (CVE-2011-1148)\n\nFelipe Pena discovered multiple format string vulnerabilities in the PHP phar extension. These could allow an attacker to obtain sensitive information from process memory, cause a denial of service (memory corruption), or possibly execute arbitrary code. This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04.(CVE-2011-1153)\n\nIt was discovered that a buffer overflow occurs in the strval function when the precision configuration option has a large value. The default compiler options for Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04 should reduce the vulnerability to a denial of service. (CVE-2011-1464)\n\nIt was discovered that an integer overflow in the SdnToJulian function in the PHP Calendar extension could allow an attacker to cause a denial of service (application crash). (CVE-2011-1466)\n\nTomas Hoger discovered that an integer overflow in the NumberFormatter::setSymbol function in the PHP Intl extension could allow an attacker to cause a denial of service (application crash). This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1467)\n\nIt was discovered that multiple memory leaks in the PHP OpenSSL extension might allow a remote attacker to cause a denial of service (memory consumption). This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1468)\n\nDaniel Buschke discovered that the PHP Streams component in PHP handled types improperly, possibly allowing an attacker to cause a denial of service (application crash). (CVE-2011-1469)\n\nIt was discovered that the PHP Zip extension could allow an attacker to cause a denial of service (application crash) via a ziparchive stream that is not properly handled by the stream_get_contents function. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1470)\n\nIt was discovered that an integer signedness error in the PHP Zip extension could allow an attacker to cause a denial of service (CPU consumption) via a malformed archive file. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1470) (CVE-2011-1471)", "edition": 3, "reporter": "Ubuntu", "published": "2011-05-05T00:00:00", "title": "PHP Regressions", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0421", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-0441", "CVE-2011-1471", "CVE-2011-1148", "CVE-2011-1466", "CVE-2010-4697", "CVE-2011-1092", "CVE-2011-1144", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0708", "CVE-2011-1468", "CVE-2011-0420", "CVE-2011-1470", "CVE-2011-1469", "CVE-2011-1464", "CVE-2011-1072"], "modified": "2011-05-05T00:00:00", "id": "USN-1126-2", "href": "https://usn.ubuntu.com/1126-2/", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:09:46", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-7243", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1471", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-4697", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1148", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1144", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1469", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1092", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-0421", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-0708", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-0420", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1464", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-0441", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1470", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1467", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1468", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-4698", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1072", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1466", "https://people.canonical.com/~ubuntu-security/cve/CVE-2011-1153"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-common", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "11.04", "packageVersion": "5.3.5-1ubuntu7.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.15", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.8", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php-pear", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.9", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.22", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-dev", "operator": "lt"}], "description": "Stephane Chazelas discovered that the /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/. (CVE-2011-0441)\n\nRaphael Geisert and Dan Rosenberg discovered that the PEAR installer allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4) pear-build-download directories. (CVE-2011-1072, CVE-2011-1144)\n\nBen Schmidt discovered that a use-after-free vulnerability in the PHP Zend engine could allow an attacker to cause a denial of service (heap memory corruption) or possibly execute arbitrary code. (CVE-2010-4697)\n\nMartin Barbella discovered a buffer overflow in the PHP GD extension that allows an attacker to cause a denial of service (application crash) via a large number of anti- aliasing steps in an argument to the imagepstext function. (CVE-2010-4698)\n\nIt was discovered that PHP accepts the \\0 character in a pathname, which might allow an attacker to bypass intended access restrictions by placing a safe file extension after this character. This issue is addressed in Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2006-7243)\n\nMaksymilian Arciemowicz discovered that the grapheme_extract function in the PHP Internationalization extension (Intl) for ICU allow an attacker to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference. This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-0420)\n\nMaksymilian Arciemowicz discovered that the _zip_name_locate function in the PHP Zip extension does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow an attacker to cause a denial of service (NULL pointer dereference) via an empty ZIP archive. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-0421)\n\nLuca Carettoni discovered that the PHP Exif extension performs an incorrect cast on 64bit platforms, which allows a remote attacker to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD). (CVE-2011-0708)\n\nJose Carlos Norte discovered that an integer overflow in the PHP shmop extension could allow an attacker to cause a denial of service (crash) and possibly read sensitive memory function. (CVE-2011-1092)\n\nFelipe Pena discovered that a use-after-free vulnerability in the substr_replace function allows an attacker to cause a denial of service (memory corruption) or possibly execute arbitrary code. (CVE-2011-1148)\n\nFelipe Pena discovered multiple format string vulnerabilities in the PHP phar extension. These could allow an attacker to obtain sensitive information from process memory, cause a denial of service (memory corruption), or possibly execute arbitrary code. This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04.(CVE-2011-1153)\n\nIt was discovered that a buffer overflow occurs in the strval function when the precision configuration option has a large value. The default compiler options for Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04 should reduce the vulnerability to a denial of service. (CVE-2011-1464)\n\nIt was discovered that an integer overflow in the SdnToJulian function in the PHP Calendar extension could allow an attacker to cause a denial of service (application crash). (CVE-2011-1466)\n\nTomas Hoger discovered that an integer overflow in the NumberFormatter::setSymbol function in the PHP Intl extension could allow an attacker to cause a denial of service (application crash). This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1467)\n\nIt was discovered that multiple memory leaks in the PHP OpenSSL extension might allow a remote attacker to cause a denial of service (memory consumption). This issue affected Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1468)\n\nDaniel Buschke discovered that the PHP Streams component in PHP handled types improperly, possibly allowing an attacker to cause a denial of service (application crash). (CVE-2011-1469)\n\nIt was discovered that the PHP Zip extension could allow an attacker to cause a denial of service (application crash) via a ziparchive stream that is not properly handled by the stream_get_contents function. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1470)\n\nIt was discovered that an integer signedness error in the PHP Zip extension could allow an attacker to cause a denial of service (CPU consumption) via a malformed archive file. This issue affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, Ubuntu 10.10, and Ubuntu 11.04. (CVE-2011-1470) (CVE-2011-1471)", "edition": 3, "reporter": "Ubuntu", "published": "2011-04-29T00:00:00", "title": "PHP vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0421", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-0441", "CVE-2011-1471", "CVE-2011-1148", "CVE-2011-1466", "CVE-2010-4697", "CVE-2011-1092", "CVE-2011-1144", "CVE-2010-4698", "CVE-2006-7243", "CVE-2011-0708", "CVE-2011-1468", "CVE-2011-0420", "CVE-2011-1470", "CVE-2011-1469", "CVE-2011-1464", "CVE-2011-1072"], "modified": "2011-04-29T00:00:00", "id": "USN-1126-1", "href": "https://usn.ubuntu.com/1126-1/", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-08-31T00:08:50", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2010-3710", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-4409", "https://people.canonical.com/~ubuntu-security/cve/CVE-2009-5016", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-3870", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-4156", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-4645", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-3436", "https://people.canonical.com/~ubuntu-security/cve/CVE-2010-3709"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.20", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.20", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "6.06", "packageVersion": "5.1.2-1ubuntu3.20", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.04", "packageVersion": "5.3.2-1ubuntu4.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "10.10", "packageVersion": "5.3.3-1ubuntu9.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "9.10", "packageVersion": "5.2.10.dfsg.1-2ubuntu6.6", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "8.04", "packageVersion": "5.2.4-2ubuntu5.13", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "php5-cli", "operator": "lt"}], "description": "It was discovered that an integer overflow in the XML UTF-8 decoding code could allow an attacker to bypass cross-site scripting (XSS) protections. This issue only affected Ubuntu 6.06 LTS, Ubuntu 8.04 LTS, and Ubuntu 9.10. (CVE-2009-5016)\n\nIt was discovered that the XML UTF-8 decoding code did not properly handle non-shortest form UTF-8 encoding and ill-formed subsequences in UTF-8 data, which could allow an attacker to bypass cross-site scripting (XSS) protections. (CVE-2010-3870)\n\nIt was discovered that attackers might be able to bypass open_basedir() restrictions by passing a specially crafted filename. (CVE-2010-3436)\n\nMaksymilian Arciemowicz discovered that a NULL pointer derefence in the ZIP archive handling code could allow an attacker to cause a denial of service through a specially crafted ZIP archive. This issue only affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and Ubuntu 10.10. (CVE-2010-3709)\n\nIt was discovered that a stack consumption vulnerability in the filter_var() PHP function when in FILTER_VALIDATE_EMAIL mode, could allow a remote attacker to cause a denial of service. This issue only affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and Ubuntu 10.10. (CVE-2010-3710)\n\nIt was discovered that the mb_strcut function in the Libmbfl library within PHP could allow an attacker to read arbitrary memory within the application process. This issue only affected Ubuntu 10.10. (CVE-2010-4156)\n\nMaksymilian Arciemowicz discovered that an integer overflow in the NumberFormatter::getSymbol function could allow an attacker to cause a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 10.10. (CVE-2010-4409)\n\nRick Regan discovered that when handing PHP textual representations of the largest subnormal double-precision floating-point number, the zend_strtod function could go into an infinite loop on 32bit x86 processors, allowing an attacker to cause a denial of service. (CVE-2010-4645)", "edition": 3, "reporter": "Ubuntu", "published": "2011-01-11T00:00:00", "title": "PHP vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 4.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2010-4645", "CVE-2010-3436", "CVE-2010-3870", "CVE-2010-3709", "CVE-2009-5016", "CVE-2010-4156", "CVE-2010-3710", "CVE-2010-4409"], "modified": "2011-01-11T00:00:00", "id": "USN-1042-1", "href": "https://usn.ubuntu.com/1042-1/", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "debian": [{"lastseen": "2018-10-16T22:13:15", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-recode_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-mhash_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-intl_5.3.3-7+squeeze1_all.deb", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-cli_5.3.3-7+squeeze1_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-xmlrpc_5.3.3-7+squeeze1_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-interbase_5.3.3-7+squeeze1_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-curl_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-ldap_5.3.3-7+squeeze1_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-common_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-mysql_5.3.3-7+squeeze1_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-odbc_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-cgi_5.3.3-7+squeeze1_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-gmp_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-xsl_5.3.3-7+squeeze1_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-sybase_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-sqlite_5.3.3-7+squeeze1_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php-pear_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-dbg_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-snmp_5.3.3-7+squeeze1_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-sqlite_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-pgsql_5.3.3-7+squeeze1_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-dbg_5.3.3-7+squeeze1_all.deb", "packageName": "php5-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-snmp_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-xsl_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-imap_5.3.3-7+squeeze1_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-pspell_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-dev_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php-pear_5.3.3-7+squeeze1_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-recode_5.3.3-7+squeeze1_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-interbase_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.3.3-7+squeeze1_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-odbc_5.3.3-7+squeeze1_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-mysql_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5_5.3.3-7+squeeze1_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-ldap_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-gd_5.3.3-7+squeeze1_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-tidy_5.3.3-7+squeeze1_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-gmp_5.3.3-7+squeeze1_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-dev_5.3.3-7+squeeze1_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-pgsql_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-curl_5.3.3-7+squeeze1_all.deb", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-cli_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-pspell_5.3.3-7+squeeze1_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-cgi_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "libapache2-mod-php5_5.3.3-7+squeeze1_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-gd_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-tidy_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-enchant_5.3.3-7+squeeze1_all.deb", "packageName": "php5-enchant", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-mcrypt_5.3.3-7+squeeze1_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-mcrypt_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-common_5.3.3-7+squeeze1_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny10", "arch": "all", "packageFilename": "php5-imap_5.2.6.dfsg.1-1+lenny10_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze1", "arch": "all", "packageFilename": "php5-sybase_5.3.3-7+squeeze1_all.deb", "packageName": "php5-sybase", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2195-1 security@debian.org\nhttp://www.debian.org/security/ Raphael Geissert\nMarch 19, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : php5\nVulnerability : several\nProblem type : local/remote\nDebian-specific: yes/no\nCVE ID : CVE-2011-0441 CVE-2010-3709 CVE-2010-3710 CVE-2010-3870 \n CVE-2010-4150\n\nStephane Chazelas discovered that the cronjob of the PHP 5 package in\nDebian suffers from a race condition which might be used to remove\narbitrary files from a system (CVE-2011-0441).\n\nWhen upgrading your php5-common package take special care to _accept_\nthe changes to the /etc/cron.d/php5 file. Ignoring them would leave the\nsystem vulnerable.\n\nFor the oldstable distribution (lenny), this problem has been fixed in\nversion 5.2.6.dfsg.1-1+lenny10.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 5.3.3-7+squeeze1.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 5.3.6-1.\n\nAdditionally, the following vulnerabilities have also been fixed in the\noldstable distribution (lenny):\n\nCVE-2010-3709\n\n Maksymilian Arciemowicz discovered that the ZipArchive class\n may dereference a NULL pointer when extracting comments from a zip\n archive, leading to application crash and possible denial of\n service.\n\nCVE-2010-3710\n\n Stefan Neufeind discovered that the FILTER_VALIDATE_EMAIL filter\n does not correctly handle long, to be validated, strings. Such\n crafted strings may lead to denial of service because of high memory\n consumption and application crash.\n\nCVE-2010-3870\n\n It was discovered that PHP does not correctly handle certain UTF-8\n sequences and may be used to bypass XSS protections.\n\nCVE-2010-4150\n\n Mateusz Kocielski discovered that the imap extension may try to\n free already freed memory when processing user credentials, leading\n to application crash and possibly arbitrary code execution.\n\nWe recommend that you upgrade your php5 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-03-20T00:09:08", "title": "[SECURITY] [DSA 2195-1] php5 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:13:15", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0441", "CVE-2010-3870", "CVE-2010-3709", "CVE-2010-3710", "CVE-2010-4150"], "modified": "2011-03-20T00:09:08", "id": "DEBIAN:DSA-2195-1:4E400", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00063.html", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:13:15", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-pgsql_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-dbg_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-snmp_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-cgi_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-interbase_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-curl_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-gd_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-pspell_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-cli_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-mysql_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-sybase_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-mcrypt_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-common_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-ldap_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-gmp_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-dev_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-xmlrpc_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-tidy_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-xsl_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-sqlite_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "libapache2-mod-php5_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php-pear_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-recode_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-odbc_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-mhash_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5-imap_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "php5_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny13", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny13_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2266-2 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nJuly 01, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : php5\nVulnerability : several\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2010-2531 CVE-2011-0420 CVE-2011-0421 CVE-2011-0708 \n CVE-2011-1153 CVE-2011-1466 CVE-2011-1471 CVE-2011-2202 \n\nThe update for CVE-2010-2531 for the old stabledistribution (lenny)\nintroduced a regression, which lead to additional output being written\nto stdout. \n\nFor the oldstable distribution (lenny), this problem has been fixed in\nversion 5.2.6.dfsg.1-1+lenny13.\n\nWe recommend that you upgrade your php5 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-07-01T20:15:08", "title": "[SECURITY] [DSA 2262-2] php5 update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:13:15", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0421", "CVE-2011-1153", "CVE-2011-1471", "CVE-2011-1466", "CVE-2010-2531", "CVE-2011-0708", "CVE-2011-0420", "CVE-2011-2202"], "modified": "2011-07-01T20:15:08", "id": "DEBIAN:DSA-2262-2:2E683", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00140.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-10-16T22:14:29", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-snmp_5.3.3-7+squeeze3_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-mcrypt_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-cgi_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-imap_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-sybase_5.3.3-7+squeeze3_all.deb", "packageName": "php5-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-odbc_5.3.3-7+squeeze3_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-gmp_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php-pear_5.3.3-7+squeeze3_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-mysql_5.3.3-7+squeeze3_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-sqlite_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-xmlrpc_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5_5.3.3-7+squeeze3_all.deb", "packageName": "php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-xsl_5.3.3-7+squeeze3_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-sqlite_5.3.3-7+squeeze3_all.deb", "packageName": "php5-sqlite", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-tidy_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-recode_5.3.3-7+squeeze3_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "libapache2-mod-php5_5.3.3-7+squeeze3_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-tidy_5.3.3-7+squeeze3_all.deb", "packageName": "php5-tidy", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-cli_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-common_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php-pear_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php-pear", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-mysql_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-mysql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-pspell_5.3.3-7+squeeze3_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-mcrypt_5.3.3-7+squeeze3_all.deb", "packageName": "php5-mcrypt", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-imap_5.3.3-7+squeeze3_all.deb", "packageName": "php5-imap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-mhash_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-mhash", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-cli_5.3.3-7+squeeze3_all.deb", "packageName": "php5-cli", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-enchant_5.3.3-7+squeeze3_all.deb", "packageName": "php5-enchant", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-cgi_5.3.3-7+squeeze3_all.deb", "packageName": "php5-cgi", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-gd_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-curl_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-pgsql_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-dev_5.3.3-7+squeeze3_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-interbase_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-intl_5.3.3-7+squeeze3_all.deb", "packageName": "php5-intl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-odbc_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-odbc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-sybase_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-sybase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-gd_5.3.3-7+squeeze3_all.deb", "packageName": "php5-gd", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-dev_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-xsl_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-xsl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-interbase_5.3.3-7+squeeze3_all.deb", "packageName": "php5-interbase", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-pgsql_5.3.3-7+squeeze3_all.deb", "packageName": "php5-pgsql", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "libapache2-mod-php5_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "libapache2-mod-php5", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-recode_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-recode", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-common_5.3.3-7+squeeze3_all.deb", "packageName": "php5-common", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-pspell_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-pspell", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-dbg_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-dbg", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-snmp_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-snmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}, {"OS": "Debian", "OSVersion": "5", "packageVersion": "5.2.6.dfsg.1-1+lenny12", "arch": "all", "packageFilename": "php5-ldap_5.2.6.dfsg.1-1+lenny12_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-curl_5.3.3-7+squeeze3_all.deb", "packageName": "php5-curl", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-xmlrpc_5.3.3-7+squeeze3_all.deb", "packageName": "php5-xmlrpc", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-ldap_5.3.3-7+squeeze3_all.deb", "packageName": "php5-ldap", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-gmp_5.3.3-7+squeeze3_all.deb", "packageName": "php5-gmp", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "libapache2-mod-php5filter_5.3.3-7+squeeze3_all.deb", "packageName": "libapache2-mod-php5filter", "operator": "lt"}, {"OS": "Debian", "OSVersion": "6", "packageVersion": "5.3.3-7+squeeze3", "arch": "all", "packageFilename": "php5-dbg_5.3.3-7+squeeze3_all.deb", "packageName": "php5-dbg", "operator": "lt"}], "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-2266-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nJune 29, 2011 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : php5\nVulnerability : several\nProblem type : remote\nDebian-specific: no\nCVE ID : CVE-2010-2531 CVE-2011-0420 CVE-2011-0421 CVE-2011-0708 \n CVE-2011-1153 CVE-2011-1466 CVE-2011-1471 CVE-2011-2202 \n\nSeveral vulnerabilities were discovered in PHP, which could lead to \ndenial of service or potentially the execution of arbitrary code.\n\nCVE-2010-2531\n\n An information leak was found in the var_export() function.\n\nCVE-2011-0421\n\n The Zip module could crash.\n\nCVE-2011-0708\n\n An integer overflow was discovered in the Exif module.\n\nCVE-2011-1466\n\n An integer overflow was discovered in the Calendar module.\n\nCVE-2011-1471\n\n The Zip module was prone to denial of service through malformed\n archives.\n\nCVE-2011-2202\n\n Path names in form based file uploads (RFC 1867) were incorrectly \n validated.\n\nThis update also fixes two bugs, which are not treated as security\nissues, but fixed nonetheless, see README.Debian.security for details\non the scope of security support for PHP (CVE-2011-0420, CVE-2011-1153).\n\nFor the oldstable distribution (lenny), this problem has been fixed in\nversion 5.2.6.dfsg.1-1+lenny12.\n\nFor the stable distribution (squeeze), this problem has been fixed in\nversion 5.3.3-7+squeeze3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 5.3.6-12.\n\nWe recommend that you upgrade your php5 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: http://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "edition": 1, "reporter": "Debian", "published": "2011-06-29T18:57:08", "title": "[SECURITY] [DSA 2266-1] php5 security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:14:29", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2011-0421", "CVE-2011-1153", "CVE-2011-1471", "CVE-2011-1466", "CVE-2010-2531", "CVE-2011-0708", "CVE-2011-0420", "CVE-2011-2202"], "modified": "2011-06-29T18:57:08", "id": "DEBIAN:DSA-2266-1:4FAC3", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2011/msg00137.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:42", "references": ["http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2097", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1128", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3063", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1469", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1938", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0755", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4700", "https://bugs.gentoo.org/show_bug.cgi?id=355399", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1471", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2101", "https://bugs.gentoo.org/show_bug.cgi?id=350908", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4697", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1153", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0752", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1861", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3436", "https://bugs.gentoo.org/show_bug.cgi?id=332039", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4150", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2190", "https://bugs.gentoo.org/show_bug.cgi?id=306939", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1915", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4645", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3870", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1868", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2094", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4698", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2484", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2950", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1130", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3182", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1914", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0708", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1860", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3268", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0753", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2483", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1467", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-7243", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1866", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2093", "https://bugs.gentoo.org/show_bug.cgi?id=358975", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3709", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3062", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3065", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1464", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2191", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1129", "https://bugs.gentoo.org/show_bug.cgi?id=372745", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4409", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3064", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-4699", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2100", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1466", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3710", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3267", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1148", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1092", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1862", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-5016", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2202", "https://bugs.gentoo.org/show_bug.cgi?id=373965", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0421", "https://bugs.gentoo.org/show_bug.cgi?id=369071", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1864", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3189", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1470", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2225", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1468", "https://bugs.gentoo.org/show_bug.cgi?id=380261", "https://bugs.gentoo.org/show_bug.cgi?id=358791", "https://bugs.gentoo.org/show_bug.cgi?id=340807", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2531", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1917", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-1657", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-0420"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "5.3.8", "arch": "all", "packageFilename": "UNKNOWN", "packageName": "dev-lang/php", "operator": "lt"}], "edition": 1, "description": "### Background\n\nPHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. \n\n### Description\n\nMultiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA context-dependent attacker could execute arbitrary code, obtain sensitive information from process memory, bypass intended access restrictions, or cause a Denial of Service in various ways. \n\nA remote attacker could cause a Denial of Service in various ways, bypass spam detections, or bypass open_basedir restrictions. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll PHP users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-lang/php-5.3.8\"", "reporter": "Gentoo Foundation", "published": "2011-10-10T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "PHP: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2011-0421", "CVE-2011-0752", "CVE-2011-1467", "CVE-2011-1153", "CVE-2011-1471", "CVE-2010-1129", "CVE-2010-2225", "CVE-2010-1868", "CVE-2011-1148", "CVE-2010-2484", "CVE-2010-2097", "CVE-2011-1466", "CVE-2010-2531", "CVE-2011-3189", "CVE-2010-3065", "CVE-2010-2191", "CVE-2011-1938", "CVE-2010-4697", "CVE-2010-1866", "CVE-2010-1915", "CVE-2011-1092", "CVE-2010-4698", "CVE-2011-2483", "CVE-2006-7243", "CVE-2011-0753", "CVE-2010-4645", "CVE-2010-3436", "CVE-2010-2093", "CVE-2011-1657", "CVE-2011-0708", "CVE-2010-3870", "CVE-2011-3268", "CVE-2010-1861", "CVE-2010-2190", "CVE-2010-3063", "CVE-2011-3182", "CVE-2010-2101", "CVE-2011-1468", "CVE-2011-0420", "CVE-2010-3062", "CVE-2010-1914", "CVE-2011-1470", "CVE-2010-1860", "CVE-2010-2094", "CVE-2010-3709", "CVE-2010-3064", "CVE-2011-1469", "CVE-2009-5016", "CVE-2011-3267", "CVE-2010-3710", "CVE-2010-4150", "CVE-2011-1464", "CVE-2011-0755", "CVE-2010-4699", "CVE-2010-1130", "CVE-2010-2100", "CVE-2011-2202", "CVE-2010-2950", "CVE-2010-4700", "CVE-2010-1917", "CVE-2010-1128", "CVE-2010-1864", "CVE-2010-4409", "CVE-2010-1862"], "modified": "2011-10-10T00:00:00", "id": "GLSA-201110-06", "href": "https://security.gentoo.org/glsa/201110-06", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}