Lucene search
RedHatRHSA-2013:1049HistoryJul 12, 2013 - 12:00 a.m.
(RHSA-2013:1049) Critical: php security update
2013-07-1200:00:00
access.redhat.com
19
0.614 Medium
EPSS
Percentile
97.8%
PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Server.
A buffer overflow flaw was found in the way PHP parsed deeply nested XML
documents. If a PHP application used the xml_parse_into_struct() function
to parse untrusted XML content, an attacker able to supply
specially-crafted XML could use this flaw to crash the application or,
possibly, execute arbitrary code with the privileges of the user running
the PHP interpreter. (CVE-2013-4113)
All php users should upgrade to these updated packages, which contain a
backported patch to resolve this issue. After installing the updated
packages, the httpd daemon must be restarted for the update to take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | ia64 | php-ncurses | < 5.1.6-40.el5_9 | php-ncurses-5.1.6-40.el5_9.ia64.rpm |
| RedHat | 6 | x86_64 | php-xmlrpc | < 5.3.3-23.el6_4 | php-xmlrpc-5.3.3-23.el6_4.x86_64.rpm |
| RedHat | 6 | ppc64 | php-recode | < 5.3.3-23.el6_4 | php-recode-5.3.3-23.el6_4.ppc64.rpm |
| RedHat | 6 | x86_64 | php-intl | < 5.3.3-23.el6_4 | php-intl-5.3.3-23.el6_4.x86_64.rpm |
| RedHat | 6 | ppc64 | php | < 5.3.3-23.el6_4 | php-5.3.3-23.el6_4.ppc64.rpm |
| RedHat | 6 | x86_64 | php-fpm | < 5.3.3-23.el6_4 | php-fpm-5.3.3-23.el6_4.x86_64.rpm |
| RedHat | 5 | s390x | php-common | < 5.1.6-40.el5_9 | php-common-5.1.6-40.el5_9.s390x.rpm |
| RedHat | 5 | s390x | php-ldap | < 5.1.6-40.el5_9 | php-ldap-5.1.6-40.el5_9.s390x.rpm |
| RedHat | 6 | x86_64 | php-devel | < 5.3.3-23.el6_4 | php-devel-5.3.3-23.el6_4.x86_64.rpm |
| RedHat | 5 | ia64 | php-ldap | < 5.1.6-40.el5_9 | php-ldap-5.1.6-40.el5_9.ia64.rpm |
Related
cve
cve
CVE-2013-4113
2013-07-13 13:10:01
oraclelinux
oraclelinux
php security update
2013-07-22 00:00:00
php53 security update
2013-07-12 00:00:00
php security update
2013-07-12 00:00:00
redhat
redhat
(RHSA-2013:1062) Critical: php53 security update
2013-07-15 00:00:00
(RHSA-2013:1050) Critical: php53 security update
2013-07-12 00:00:00
(RHSA-2013:1061) Critical: php security update
2013-07-15 00:00:00
nessus
nessus
CentOS 5 : php53 (CESA-2013:1050)
2013-07-14 00:00:00
Amazon Linux AMI : php (ALAS-2013-211)
2013-09-04 00:00:00
Debian DSA-2723-1 : php5 - heap corruption
2013-07-18 00:00:00
openvas
openvas
CentOS Update for php CESA-2013:1049 centos5
2013-07-16 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-211)
2015-09-08 00:00:00
RedHat Update for php53 RHSA-2013:1050-01
2013-09-06 00:00:00
mageia
mageia
Updated php packages fix CVE-2013-4113
2013-07-18 11:11:26
Updated php packages fix CVE-2013-4113
2013-07-26 15:48:08
securityvulns
securityvulns
[ MDVSA-2013:195 ] php
2013-07-15 00:00:00
Re: [ MDVSA-2013:195 ] php
2013-07-16 00:00:00
PHP memory corruption
2013-07-16 00:00:00
f5
f5
SOL15169 - PHP vulnerability CVE-2013-4113
2014-04-14 00:00:00
K15169 : PHP vulnerability CVE-2013-4113
2015-05-14 00:00:00
amazon
amazon
Critical: php
2013-07-12 15:56:00
Critical: php54
2013-07-12 15:56:00
checkpoint_advisories
checkpoint_advisories
PHP xml_parse_into_struct Heap Memory Corruption (CVE-2013-4113)
2013-08-20 00:00:00
slackware
slackware
[slackware-security] php
2013-07-16 23:02:38
freebsd
freebsd
PHP5 -- Heap corruption in XML parser
2013-07-10 00:00:00
centos
centos
php security update
2013-07-12 21:32:43
php53 security update
2013-07-12 21:36:11
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:56:08
prion
prion
Memory corruption
2013-07-13 13:10:00
nvd
nvd
CVE-2013-4113
2013-07-13 13:10:01
ubuntucve
ubuntucve
CVE-2013-4113
2013-07-12 00:00:00
cvelist
cvelist
CVE-2013-4113
2013-07-13 10:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: php-5.5.0-2.fc19
2013-07-18 06:14:39
[SECURITY] Fedora 19 Update: php-5.5.3-1.fc19
2013-08-24 00:05:41
[SECURITY] Fedora 18 Update: php-5.4.17-2.fc18
2013-07-23 01:15:46
debian
debian
[SECURITY] [DSA 2723-1] php5 security update
2013-07-17 20:20:01
suse
suse
Security update for PHP5 (important)
2013-08-09 23:04:13
Security update for PHP5 (important)
2013-08-09 23:04:16
Security update for PHP5 (important)
2013-08-01 00:04:12
ubuntu
ubuntu
PHP vulnerabilities
2013-07-16 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00