PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Server.
It was discovered that the fix for CVE-2011-4885 (released via
RHSA-2012:0071, RHSA-2012:0033, and RHSA-2012:0019 for php packages in Red
Hat Enterprise Linux 4, 5, and 6 respectively) introduced an uninitialized
memory use flaw. A remote attacker could send a specially-crafted HTTP
request to cause the PHP interpreter to crash or, possibly, execute
arbitrary code. (CVE-2012-0830)
All php users should upgrade to these updated packages, which contain a
backported patch to resolve this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | any | i386 | php-domxml | < 4.3.9-3.36 | php-domxml-4.3.9-3.36.i386.rpm |
RedHat | 5 | i386 | php | < 5.1.6-27.el5_7.5 | php-5.1.6-27.el5_7.5.i386.rpm |
RedHat | 5 | ppc | php-mysql | < 5.1.6-27.el5_7.5 | php-mysql-5.1.6-27.el5_7.5.ppc.rpm |
RedHat | 5 | s390x | php-odbc | < 5.1.6-27.el5_7.5 | php-odbc-5.1.6-27.el5_7.5.s390x.rpm |
RedHat | 6 | i686 | php-mysql | < 5.3.3-3.el6_2.6 | php-mysql-5.3.3-3.el6_2.6.i686.rpm |
RedHat | 6 | ppc64 | php | < 5.3.3-3.el6_2.6 | php-5.3.3-3.el6_2.6.ppc64.rpm |
RedHat | any | s390 | php | < 4.3.9-3.36 | php-4.3.9-3.36.s390.rpm |
RedHat | 6 | x86_64 | php-xml | < 5.3.3-3.el6_2.6 | php-xml-5.3.3-3.el6_2.6.x86_64.rpm |
RedHat | 5 | x86_64 | php-imap | < 5.1.6-27.el5_7.5 | php-imap-5.1.6-27.el5_7.5.x86_64.rpm |
RedHat | 5 | ia64 | php-bcmath | < 5.1.6-27.el5_7.5 | php-bcmath-5.1.6-27.el5_7.5.ia64.rpm |