Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2014 Greenbone AGOPENVAS:1361412562310868637
HistoryDec 30, 2014 - 12:00 a.m.

Fedora Update for php FEDORA-2014-17229

2014-12-3000:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
23

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.95 High

EPSS

Percentile

99.3%

JSON

Check the version of php

# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.868637");
  script_version("2023-06-23T05:05:08+0000");
  script_tag(name:"last_modification", value:"2023-06-23 05:05:08 +0000 (Fri, 23 Jun 2023)");
  script_tag(name:"creation_date", value:"2014-12-30 05:56:17 +0100 (Tue, 30 Dec 2014)");
  script_cve_id("CVE-2014-8142", "CVE-2014-0185", "CVE-2013-6420");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Fedora Update for php FEDORA-2014-17229");
  script_tag(name:"summary", value:"Check the version of php");
  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
  script_tag(name:"affected", value:"php on Fedora 20");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_xref(name:"FEDORA", value:"2014-17229");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2014-December/147163.html");
  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2014 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC20");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC20")
{

  if ((res = isrpmvuln(pkg:"php", rpm:"php~5.5.20~2.fc20", rls:"FC20")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

fedora 21
openvas 58
archlinux 2
mageia 3
nessus 48
exploitdb 2
debian 3
exploitpack 2
checkpoint_advisories 4
packetstorm 2
redhat 5
seebug 2
veracode 2
cve 4
zdt 2
amazon 7
f5 6
ubuntucve 4
securityvulns 8
prion 4
freebsd 1
oraclelinux 1
slackware 3
hackerone 1
centos 1
threatpost 1
osv 1
ubuntu 1
fedora
fedora
[SECURITY] Fedora 20 Update: php-5.5.20-2.fc20
2014-12-29 10:03:10
[SECURITY] Fedora 20 Update: php-5.5.12-1.fc20
2014-05-06 03:27:27
[SECURITY] Fedora 19 Update: php-5.5.20-2.fc19
2014-12-29 09:58:37
openvas
openvas
Fedora Update for php FEDORA-2014-5960
2014-05-12 00:00:00
Fedora Update for php FEDORA-2014-5960
2014-05-12 00:00:00
Fedora Update for php FEDORA-2015-1101
2015-02-06 00:00:00
archlinux
archlinux
php: use after free
2014-12-19 00:00:00
php: remote code execution
2015-01-23 00:00:00
mageia
mageia
Updated php packages fix CVE-2014-8142
2014-12-21 23:47:32
Updated php packages fix CVE-2014-0185
2014-05-15 02:02:58
Updated php packages fix multiple security vulnerabilities
2013-12-20 01:08:56
nessus
nessus
PHP 5.5.x < 5.5.20 'process_nested_data' RCE
2015-01-02 00:00:00
Fedora 19 : php-5.5.20-2.fc19 (2014-17276)
2014-12-30 00:00:00
Debian DSA-3117-1 : php5 - security update
2015-01-02 00:00:00
exploitdb
exploitdb
eFront 3.6.15 - PHP Object Injection
2015-05-11 00:00:00
PHP - &#039;openssl_x509_parse()&#039; Memory Corruption
2013-12-17 00:00:00
debian
debian
[SECURITY] [DSA 3117-1] php5 security update
2014-12-31 14:47:01
[SECURITY] [DSA 3117-1] php5 security update
2014-12-31 14:47:01
[SECURITY] [DSA 2816-1] php5 security update
2013-12-12 21:18:13
exploitpack
exploitpack
eFront 3.6.15 - PHP Object Injection
2015-05-11 00:00:00
PHP - openssl_x509_parse() Memory Corruption
2013-12-17 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP Core unserialize process nested data Use After Free - Ver2 (CVE-2014-8142)
2015-05-18 00:00:00
PHP Core unserialize process nested data Use After Free (CVE-2014-8142)
2015-02-09 00:00:00
PHP OpenSSL Extension X.509 Certificate Memory Corruption (CVE-2013-6420)
2013-12-26 00:00:00
packetstorm
packetstorm
eFront 3.6.15 PHP Object Injection
2015-05-09 00:00:00
PHP openssl_x509_parse() Memory Corruption
2013-12-15 00:00:00
redhat
redhat
(RHSA-2013:1826) Critical: php security update
2013-12-12 00:00:00
(RHSA-2013:1815) Critical: php security update
2013-12-11 00:00:00
(RHSA-2013:1825) Critical: php53 security update
2013-12-11 00:00:00
seebug
seebug
PHP openssl_x509_parse() - Memory Corruption Vulnerability
2014-07-01 00:00:00
PHP OpenSSL Extension 'openssl_x509_parse()'内存破坏漏洞
2013-12-18 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:53:15
Arbitrary Code Execution
2019-01-15 09:06:10
cve
cve
CVE-2013-6420
2013-12-17 04:46:00
CVE-2014-0185
2014-05-06 10:44:00
CVE-2014-8142
2014-12-20 11:59:00
zdt
zdt
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-17 00:00:00
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-16 00:00:00
amazon
amazon
Critical: php54
2013-12-17 21:29:00
Critical: php
2013-12-17 21:29:00
Critical: php55
2013-12-17 21:29:00
f5
f5
K15322 : PHP vulnerability CVE-2014-0185
2014-06-05 00:00:00
K15110 : PHP Vulnerability CVE-2013-6420
2014-05-23 00:00:00
SOL15110 - PHP Vulnerability CVE-2013-6420
2014-03-27 00:00:00
ubuntucve
ubuntucve
CVE-2014-0185
2014-05-06 00:00:00
CVE-2013-6420
2013-12-11 00:00:00
CVE-2015-0231
2015-01-27 00:00:00
securityvulns
securityvulns
PHP memory corruption
2013-12-30 00:00:00
Advisory 01/2013: PHP openssl_x509_parse&#40;&#41; Memory Corruption Vulnerability
2013-12-30 00:00:00
[ MDVSA-2013:298 ] php
2013-12-24 00:00:00
prion
prion
Memory corruption
2013-12-17 04:46:00
Code injection
2014-05-06 10:44:00
Design/Logic Flaw
2014-12-20 11:59:00
freebsd
freebsd
PHP5 -- memory corruption in openssl_x509_parse()
2013-12-13 00:00:00
oraclelinux
oraclelinux
php53 and php security update
2013-12-10 00:00:00
slackware
slackware
php
2014-01-13 22:30:32
[slackware-security] php
2014-12-23 05:38:55
[slackware-security] php
2014-06-09 21:04:52
hackerone
hackerone
Internet Bug Bounty: PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-11-30 23:00:00
centos
centos
php, php53 security update
2013-12-11 09:25:38
threatpost
threatpost
PHP Updated to Fix Heartbleed, Other Bugs
2014-05-02 10:48:20
osv
osv
php5 - several
2013-12-12 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2013-12-12 00:00:00

8.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.95 High

EPSS

Percentile

99.3%

JSON
Related for OPENVAS:1361412562310868637
fedora21openvas58archlinux2mageia3nessus48exploitdb2debian3exploitpack2checkpoint_advisories4packetstorm2redhat5seebug2veracode2cve4zdt2amazon7f56ubuntucve4securityvulns8prion4freebsd1oraclelinux1slackware3hackerone1centos1threatpost1osv1ubuntu1