Lucene search
GoogleOSV:DSA-2527-1HistoryAug 13, 2012 - 12:00 a.m.
php5 - several
2012-08-1300:00:00
Google
osv.dev
6
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
Several vulnerabilities have been discovered in PHP, the web scripting
language. The Common Vulnerabilities and Exposures project identifies
the following issues:
- CVE-2012-2688
A buffer overflow in the scandir() function could lead to denial of
service or the execution of arbitrary code. - CVE-2012-3450
It was discovered that inconsistent parsing of PDO prepared
statements could lead to denial of service.
For the stable distribution (squeeze), this problem has been fixed in
version 5.3.3-7+squeeze14.
For the unstable distribution (sid), this problem has been fixed in
version 5.4.4-4.
We recommend that you upgrade your php5 packages.
References
Related
openvas
openvas
Debian Security Advisory DSA 2527-1 (php5)
2012-08-30 00:00:00
Debian: Security Advisory (DSA-2527-1)
2012-08-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1033-1)
2021-06-09 00:00:00
debian
debian
[SECURITY] [DSA 2527-1] php5 security update
2012-08-13 18:16:56
nessus
nessus
Debian DSA-2527-1 : php5 - several vulnerabilities
2012-08-14 00:00:00
SuSE 11.2 Security Update : PHP5 (SAT Patch Number 6634)
2013-01-25 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2012:108)
2012-09-06 00:00:00
securityvulns
securityvulns
PHP security vulnerabilities
2012-07-30 00:00:00
[ MDVSA-2012:108 ] php
2012-07-30 00:00:00
suse
suse
Security update for PHP5 (important)
2012-08-24 09:08:27
Security update for php5 (important)
2012-08-24 14:08:28
Security update for PHP5 (important)
2013-08-16 21:04:11
ubuntu
ubuntu
PHP vulnerabilities
2012-09-17 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-05-02 04:52:37
fedora
fedora
[SECURITY] Fedora 17 Update: maniadrive-1.2-43.fc17
2012-08-05 21:27:45
[SECURITY] Fedora 16 Update: maniadrive-1.2-32.fc16.7
2012-08-05 21:22:14
[SECURITY] Fedora 16 Update: php-eaccelerator-0.9.6.1-9.fc16.7
2012-08-05 21:22:14
freebsd
freebsd
php -- potential overflow in _php_stream_scandir
2012-07-19 00:00:00
slackware
slackware
[slackware-security] php
2012-07-22 23:48:31
seebug
seebug
PHP '_php_stream_scandir()'ηΌε²εΊζΊ’εΊζΌζ΄
2012-07-25 00:00:00
cve
cve
CVE-2012-2688
2012-07-20 10:40:00
CVE-2012-3450
2012-08-06 16:55:00
amazon
amazon
Low: php
2012-08-05 14:14:00
f5
f5
K15480 : PHP vulnerability CVE-2012-2688
2014-08-07 00:00:00
SOL15480 - PHP vulnerability CVE-2012-2688
2014-08-06 00:00:00
prion
prion
Buffer overflow
2012-07-20 10:40:00
Out-of-bounds
2012-08-06 16:55:00
ubuntucve
ubuntucve
CVE-2012-2688
2012-07-20 00:00:00
CVE-2012-3450
2012-08-06 00:00:00
redhat
redhat
(RHSA-2013:0514) Moderate: php security, bug fix and enhancement update
2013-02-21 00:00:00
(RHSA-2013:1814) Critical: php security update
2013-12-11 00:00:00
(RHSA-2013:1307) Moderate: php53 security, bug fix and enhancement update
2013-09-30 16:52:28
centos
centos
php security update
2013-02-27 19:37:21
php security update
2013-12-11 09:34:01
php53 security update
2013-10-07 12:42:03
oraclelinux
oraclelinux
php security update
2013-12-10 00:00:00
php security, bug fix and enhancement update
2013-02-27 00:00:00
php53 security, bug fix and enhancement update
2013-10-02 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2012-09-24 00:00:00
hackerone
hackerone
Yahoo!: Out of date version
2014-03-30 08:47:50
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related for OSV:DSA-2527-1