Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2984-1.NASL
HistoryMay 25, 2016 - 12:00 a.m.

Ubuntu 14.04 LTS / 16.04 LTS : PHP vulnerabilities (USN-2984-1)

2016-05-2500:00:00
Ubuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
24
JSON

It was discovered that the PHP Fileinfo component incorrectly handled certain magic files. An attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. (CVE-2015-8865)

Hans Jerry Illikainen discovered that the PHP Zip extension incorrectly handled certain malformed Zip archives. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-3078)

It was discovered that PHP incorrectly handled invalid indexes in the SplDoublyLinkedList class. An attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-3132)

It was discovered that the PHP rawurlencode() function incorrectly handled large strings. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2016-4070)

It was discovered that the PHP php_snmp_error() function incorrectly handled string formatting. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4071)

It was discovered that the PHP phar extension incorrectly handled certain filenames in archives. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4072)

It was discovered that the PHP mb_strcut() function incorrectly handled string formatting. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4073)

It was discovered that the PHP phar extension incorrectly handled certain archive files. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 15.10. (CVE-2016-4342, CVE-2016-4343)

It was discovered that the PHP bcpowmod() function incorrectly handled memory. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-4537, CVE-2016-4538)

It was discovered that the PHP XML parser incorrectly handled certain malformed XML data. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-4539)

It was discovered that certain PHP grapheme functions incorrectly handled negative offsets. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service.
(CVE-2016-4540, CVE-2016-4541)

It was discovered that PHP incorrectly handled certain malformed EXIF tags. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2984-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include('compat.inc');

if (description)
{
  script_id(91320);
  script_version("2.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");

  script_cve_id(
    "CVE-2015-8865",
    "CVE-2016-3078",
    "CVE-2016-3132",
    "CVE-2016-4070",
    "CVE-2016-4071",
    "CVE-2016-4072",
    "CVE-2016-4073",
    "CVE-2016-4342",
    "CVE-2016-4343",
    "CVE-2016-4537",
    "CVE-2016-4538",
    "CVE-2016-4539",
    "CVE-2016-4540",
    "CVE-2016-4541",
    "CVE-2016-4542",
    "CVE-2016-4543",
    "CVE-2016-4544"
  );
  script_xref(name:"USN", value:"2984-1");

  script_name(english:"Ubuntu 14.04 LTS / 16.04 LTS : PHP vulnerabilities (USN-2984-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"It was discovered that the PHP Fileinfo component incorrectly handled
certain magic files. An attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. This issue only affected Ubuntu 16.04 LTS. (CVE-2015-8865)

Hans Jerry Illikainen discovered that the PHP Zip extension
incorrectly handled certain malformed Zip archives. A remote attacker
could use this issue to cause PHP to crash, resulting in a denial of
service, or possibly execute arbitrary code. This issue only affected
Ubuntu 16.04 LTS. (CVE-2016-3078)

It was discovered that PHP incorrectly handled invalid indexes in the
SplDoublyLinkedList class. An attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-3132)

It was discovered that the PHP rawurlencode() function incorrectly
handled large strings. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service. This issue only
affected Ubuntu 16.04 LTS. (CVE-2016-4070)

It was discovered that the PHP php_snmp_error() function incorrectly
handled string formatting. A remote attacker could use this issue to
cause PHP to crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4071)

It was discovered that the PHP phar extension incorrectly handled
certain filenames in archives. A remote attacker could use this issue
to cause PHP to crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4072)

It was discovered that the PHP mb_strcut() function incorrectly
handled string formatting. A remote attacker could use this issue to
cause PHP to crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only affected Ubuntu 16.04 LTS.
(CVE-2016-4073)

It was discovered that the PHP phar extension incorrectly handled
certain archive files. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only affected Ubuntu 12.04 LTS, Ubuntu
14.04 LTS and Ubuntu 15.10. (CVE-2016-4342, CVE-2016-4343)

It was discovered that the PHP bcpowmod() function incorrectly handled
memory. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-4537, CVE-2016-4538)

It was discovered that the PHP XML parser incorrectly handled certain
malformed XML data. A remote attacker could possibly use this issue to
cause PHP to crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2016-4539)

It was discovered that certain PHP grapheme functions incorrectly
handled negative offsets. A remote attacker could possibly use this
issue to cause PHP to crash, resulting in a denial of service.
(CVE-2016-4540, CVE-2016-4541)

It was discovered that PHP incorrectly handled certain malformed EXIF
tags. A remote attacker could possibly use this issue to cause PHP to
crash, resulting in a denial of service. (CVE-2016-4542,
CVE-2016-4543, CVE-2016-4544).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2984-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-4342");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2016-4544");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/05/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/05/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/05/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php5filter");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libapache2-mod-php7.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libphp5-embed");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libphp7.0-embed");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php-pear");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-cgi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-cli");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-enchant");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-fpm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-gmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-intl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-mysqlnd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-pspell");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-readline");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-recode");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-sqlite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-sybase");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-tidy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php5-xsl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-bcmath");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-bz2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-cgi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-cli");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-enchant");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-fpm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-gmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-imap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-interbase");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-intl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-json");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-mbstring");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-mcrypt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-opcache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-phpdbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-pspell");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-readline");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-recode");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-sqlite3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-sybase");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-tidy");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-xml");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-xsl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:php7.0-zip");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release || '16.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04 / 16.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '14.04', 'pkgname': 'libapache2-mod-php5', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'libapache2-mod-php5filter', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'libphp5-embed', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php-pear', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-cgi', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-cli', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-common', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-curl', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-dev', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-enchant', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-fpm', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-gd', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-gmp', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-intl', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-ldap', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-mysql', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-mysqlnd', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-odbc', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-pgsql', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-pspell', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-readline', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-recode', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-snmp', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-sqlite', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-sybase', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-tidy', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-xmlrpc', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '14.04', 'pkgname': 'php5-xsl', 'pkgver': '5.5.9+dfsg-1ubuntu4.17'},
    {'osver': '16.04', 'pkgname': 'libapache2-mod-php7.0', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'libphp7.0-embed', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-bcmath', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-bz2', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-cgi', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-cli', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-common', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-curl', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-dev', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-enchant', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-fpm', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-gd', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-gmp', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-imap', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-interbase', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-intl', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-json', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-ldap', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-mbstring', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-mcrypt', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-mysql', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-odbc', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-opcache', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-pgsql', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-phpdbg', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-pspell', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-readline', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-recode', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-snmp', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-soap', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-sqlite3', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-sybase', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-tidy', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-xml', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-xmlrpc', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-xsl', 'pkgver': '7.0.4-7ubuntu2.1'},
    {'osver': '16.04', 'pkgname': 'php7.0-zip', 'pkgver': '7.0.4-7ubuntu2.1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libapache2-mod-php5 / libapache2-mod-php5filter / etc');
}
VendorProductVersionCPE
canonicalubuntu_linuxphp5-snmpp-cpe:/a:canonical:ubuntu_linux:php5-snmp
canonicalubuntu_linuxphp5-sqlitep-cpe:/a:canonical:ubuntu_linux:php5-sqlite
canonicalubuntu_linuxphp5-sybasep-cpe:/a:canonical:ubuntu_linux:php5-sybase
canonicalubuntu_linuxphp5-tidyp-cpe:/a:canonical:ubuntu_linux:php5-tidy
canonicalubuntu_linuxphp5-xmlrpcp-cpe:/a:canonical:ubuntu_linux:php5-xmlrpc
canonicalubuntu_linuxphp5-xslp-cpe:/a:canonical:ubuntu_linux:php5-xsl
canonicalubuntu_linuxphp7.0p-cpe:/a:canonical:ubuntu_linux:php7.0
canonicalubuntu_linuxphp7.0-bcmathp-cpe:/a:canonical:ubuntu_linux:php7.0-bcmath
canonicalubuntu_linuxphp7.0-bz2p-cpe:/a:canonical:ubuntu_linux:php7.0-bz2
canonicalubuntu_linuxphp7.0-cgip-cpe:/a:canonical:ubuntu_linux:php7.0-cgi
Rows per page:
1-10 of 691

References

Related

ubuntu 2
openvas 32
fedora 4
nessus 36
osv 2
debian 6
amazon 1
f5 19
ubuntucve 17
suse 4
gentoo 1
hackerone 1
cve 17
debiancve 17
prion 17
veracode 12
zdt 1
myhack58 2
seebug 1
packetstorm 1
checkpoint_advisories 2
exploitpack 1
ibm 2
exploitdb 1
ubuntu
ubuntu
PHP vulnerabilities
2016-05-24 00:00:00
file vulnerabilities
2018-06-28 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-2984-1)
2016-05-25 00:00:00
Fedora Update for php FEDORA-2016-e205218629
2016-06-08 00:00:00
PHP < 5.5.35, 5.6.x < 5.6.21, 7.0.x < 7.0.6 Multiple Vulnerabilities (Jul 2016) - Linux
2016-07-14 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: php-5.6.21-1.fc22
2016-05-12 07:24:40
[SECURITY] Fedora 24 Update: php-5.6.21-1.fc24
2016-05-07 12:29:10
[SECURITY] Fedora 24 Update: php-pecl-zip-1.13.3-1.fc24
2016-07-02 15:45:20
nessus
nessus
openSUSE Security Update : libqt5-qtbase (openSUSE-2016-613)
2016-03-03 00:00:00
Fedora 24 : php-5.6.21-1.fc24 (2016-f4e73663f4)
2016-05-09 00:00:00
PHP 7.0.x < 7.0.6 Multiple Vulnerabilities
2016-05-05 00:00:00
osv
osv
php5 - security update
2016-05-31 00:00:00
file - security update
2016-05-07 00:00:00
debian
debian
[SECURITY] [DLA 499-1] php5 security update
2016-05-31 20:07:56
[SECURITY] [DSA 3560-1] php5 security update
2016-04-27 20:06:49
[SECURITY] [DSA 3560-1] php5 security update
2016-04-27 20:06:49
amazon
amazon
Important: php56, php55
2016-05-03 10:30:00
f5
f5
SOL24734336 - PHP vulnerabilities CVE-2016-4542, CVE-2016-4543, and CVE-2016-4544
2016-05-23 00:00:00
K24734336 : PHP vulnerabilities CVE-2016-4542, CVE-2016-4543, and CVE-2016-4544
2016-05-23 00:00:00
K81081046 : PHP vulnerabilities CVE-2016-4537 and CVE-2016-4538
2016-05-23 00:00:00
ubuntucve
ubuntucve
CVE-2016-4543
2016-05-06 00:00:00
CVE-2016-4541
2016-05-06 00:00:00
CVE-2016-4544
2016-05-06 00:00:00
suse
suse
Security update for php5 (important)
2016-05-20 15:09:02
Security update for php5 (important)
2016-05-11 18:07:54
Security update for php53 (important)
2016-06-14 20:07:58
gentoo
gentoo
PHP: Multiple vulnerabilities
2016-11-30 00:00:00
hackerone
hackerone
Internet Bug Bounty: Buffer over-write in finfo_open with malformed magic file.
2019-01-07 20:34:26
cve
cve
CVE-2015-8865
2016-05-20 10:59:00
CVE-2016-3132
2016-08-07 10:59:00
CVE-2016-4071
2016-05-20 11:00:00
debiancve
debiancve
CVE-2016-3132
2016-08-07 10:59:00
CVE-2015-8865
2016-05-20 10:59:00
CVE-2016-4541
2016-05-22 01:59:00
prion
prion
Double free
2016-08-07 10:59:00
Buffer overflow
2016-05-20 10:59:00
Out-of-bounds
2016-05-22 01:59:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 06:02:18
Denial Of Service (DoS)
2019-05-02 06:02:21
Denial Of Service (DoS)
2019-05-02 06:02:22
zdt
zdt
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
myhack58
myhack58
Safety warning: PHP zip component integer overflow remote command execution-vulnerability warning-the black bar safety net
2016-05-09 00:00:00
CVE-2016-3078 PHP ZipArchive Integer Overflow analysis-vulnerability warning-the black bar safety net
2017-03-15 00:00:00
seebug
seebug
PHP 'ext/phar/phar_object. c' heap overflow vulnerability, CVE-2016-4342)
2016-11-18 00:00:00
packetstorm
packetstorm
PHP 7.x Heap Overflow
2016-04-28 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP ZIP Archive Heap Overflow (CVE-2016-3078)
2016-05-03 00:00:00
PHP TAR File Parsing Uninitialized Reference (CVE-2016-4343)
2016-08-24 00:00:00
exploitpack
exploitpack
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in PHP and memcached libraries affect IBM Tealeaf Customer Experience
2018-06-16 20:03:30
Security Bulletin: IBM Flex System Manager (FSM) is affected by multiple php vulnerabilities
2018-06-18 01:33:37
exploitdb
exploitdb
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
JSON
Related for UBUNTU_USN-2984-1.NASL
ubuntu2openvas32fedora4nessus36osv2debian6amazon1f519ubuntucve17suse4gentoo1hackerone1cve17debiancve17prion17veracode12zdt1myhack582seebug1packetstorm1checkpoint_advisories2exploitpack1ibm2exploitdb1