7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.163 Low
EPSS
Percentile
95.2%
Several vulnerabilities have been discovered in PHP, the web scripting
language. The Common Vulnerabilities and Exposures project identifies
the following issues:
This update also addresses PHP bugs, which are not treated as security issues
in Debian (see README.Debian.security), but which were fixed nonetheless:
CVE-2010-4697, CVE-2011-1092, CVE-2011-1148, CVE-2011-1464, CVE-2011-1467
CVE-2011-1468, CVE-2011-1469, CVE-2011-1470, CVE-2011-1657, CVE-2011-3182
CVE-2011-3267
For the stable distribution (squeeze), this problem has been fixed in
version 5.3.3-7+squeeze8.
For the unstable distribution (sid), this problem has been fixed in
version 5.3.10-1.
We recommend that you upgrade your php5 packages.
CPE | Name | Operator | Version |
---|---|---|---|
php5 | eq | 5.3.3-7 | |
php5 | eq | 5.3.3-7+squeeze1 | |
php5 | eq | 5.3.3-7+squeeze2 | |
php5 | eq | 5.3.3-7+squeeze3 | |
php5 | eq | 5.3.3-7+squeeze5 | |
php5 | eq | 5.3.3-7+squeeze6 | |
php5 | eq | 5.3.3-7+squeeze7 |