Lucene search
RedHatRHSA-2006:0708HistoryOct 05, 2006 - 12:00 a.m.
(RHSA-2006:0708) php security update
2006-10-0500:00:00
access.redhat.com
17
0.58 Medium
EPSS
Percentile
97.7%
PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Web server.
An integer overflow was discovered in the PHP memory handling routines. If
a script can cause memory allocation based on untrusted user data, a remote
attacker sending a carefully crafted request could execute arbitrary code
as the ‘apache’ user. (CVE-2006-4812)
This issue did not affect the PHP packages distributed with Red Hat
Enterprise Linux 3 or 4.
Users of PHP should upgrade to these updated packages which contain a
backported patch that corrects this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ia64 | php-devel | < 4.1.2-2.12 | php-devel-4.1.2-2.12.ia64.rpm |
| RedHat | any | ia64 | php-manual | < 4.1.2-2.12 | php-manual-4.1.2-2.12.ia64.rpm |
| RedHat | any | i386 | php-imap | < 4.1.2-2.12 | php-imap-4.1.2-2.12.i386.rpm |
| RedHat | any | i386 | php-ldap | < 4.1.2-2.12 | php-ldap-4.1.2-2.12.i386.rpm |
| RedHat | any | ia64 | php-imap | < 4.1.2-2.12 | php-imap-4.1.2-2.12.ia64.rpm |
| RedHat | any | ia64 | php-odbc | < 4.1.2-2.12 | php-odbc-4.1.2-2.12.ia64.rpm |
| RedHat | any | i386 | php-odbc | < 4.1.2-2.12 | php-odbc-4.1.2-2.12.i386.rpm |
| RedHat | any | i386 | php | < 4.1.2-2.12 | php-4.1.2-2.12.i386.rpm |
| RedHat | any | i386 | php-manual | < 4.1.2-2.12 | php-manual-4.1.2-2.12.i386.rpm |
| RedHat | any | ia64 | php-mysql | < 4.1.2-2.12 | php-mysql-4.1.2-2.12.ia64.rpm |
Related
freebsd
freebsd
php -- _ecalloc Integer Overflow Vulnerability
2006-09-30 00:00:00
cve
cve
CVE-2006-4812
2006-10-10 04:06:00
CVE-2006-4170
2022-10-03 16:21:31
nessus
nessus
PHP 4.x < 4.3.0 ZendEngine Integer Overflow
2012-01-11 00:00:00
RHEL 2.1 : php (RHSA-2006:0708)
2006-10-10 00:00:00
gentoo
gentoo
PHP: Integer overflow
2006-10-30 00:00:00
openvas
openvas
FreeBSD Ports: php5
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200610-14 (php)
2008-09-24 00:00:00
FreeBSD Ports: php5
2008-09-04 00:00:00
cvelist
cvelist
CVE-2006-4812
2006-10-09 18:00:00
nvd
nvd
CVE-2006-4812
2006-10-10 04:06:00
CVE-2006-4170
2006-10-10 12:07:00
ubuntucve
ubuntucve
CVE-2006-4812
2006-10-10 00:00:00
securityvulns
securityvulns
[Full-disclosure] [ MDKSA-2006:180 ] - Updated php packages fix integer overflow vulnerability
2006-10-06 00:00:00
PHP integer overflow
2006-10-09 00:00:00
Advisory 09/2006: PHP unserialize() Array Creation Integer Overflow
2006-10-09 00:00:00
centos
centos
php security update
2006-10-09 01:04:12
suse
suse
remote code execution in php4,php5
2006-10-09 16:00:37
ubuntu
ubuntu
PHP vulnerabilities
2006-10-11 00:00:00
redhat
redhat
(RHSA-2006:0688) php security update
2006-10-05 00:00:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: php-5.1.6-1.4
2007-02-26 22:09:19
[SECURITY] Fedora Core 5 Update: php-5.1.6-1.5
2007-04-18 22:42:03
[SECURITY] Fedora Core 5 Update: php-5.1.6-1.6
2007-05-24 05:24:12