Lucene search

Critical: Red Hat Security Advisory: php security update

🗓️ 06 Nov 2014 16:23:47Reported by RedHatType

Update php to fix critical stack-based buffer overflow flaw in xmlrpc extension parsing ISO 8601 date

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 21
Prion	Stack overflow	23 Nov 201402:59	–	prion
CVE	CVE-2014-8626	23 Nov 201402:59	–	cve
Tenable Nessus	RHEL 4 : php (RHSA-2014:1825)	4 Nov 202400:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : php on SL5.x i386/x86_64 (20141106)	10 Nov 201400:00	–	nessus
Tenable Nessus	RHEL 5 : php (RHSA-2014:1824)	7 Nov 201400:00	–	nessus
Tenable Nessus	CentOS 5 : php (CESA-2014:1824)	7 Nov 201400:00	–	nessus
Tenable Nessus	Oracle Linux 5 : php (ELSA-2014-1824)	7 Nov 201400:00	–	nessus
Tenable Nessus	PHP 5 < 5.2.7 Multiple Vulnerabilities	5 Dec 200800:00	–	nessus
Cvelist	CVE-2014-8626	23 Nov 201402:00	–	cvelist
OSV	RHSA-2014:1825 Red Hat Security Advisory: php security update	15 Sep 202422:08	–	osv

OS	OS Version	Architecture	Package	Package Version	Filename
RedHat	4	i386	php	4.3.9-3.38.el4	php-4.3.9-3.38.el4.i386.rpm
RedHat	4	ia64	php	4.3.9-3.38.el4	php-4.3.9-3.38.el4.ia64.rpm
RedHat	4	x86_64	php	4.3.9-3.38.el4	php-4.3.9-3.38.el4.x86_64.rpm
RedHat	4	i386	php-debuginfo	4.3.9-3.38.el4	php-debuginfo-4.3.9-3.38.el4.i386.rpm
RedHat	4	ia64	php-debuginfo	4.3.9-3.38.el4	php-debuginfo-4.3.9-3.38.el4.ia64.rpm
RedHat	4	x86_64	php-debuginfo	4.3.9-3.38.el4	php-debuginfo-4.3.9-3.38.el4.x86_64.rpm
RedHat	4	i386	php-devel	4.3.9-3.38.el4	php-devel-4.3.9-3.38.el4.i386.rpm
RedHat	4	ia64	php-devel	4.3.9-3.38.el4	php-devel-4.3.9-3.38.el4.ia64.rpm
RedHat	4	x86_64	php-devel	4.3.9-3.38.el4	php-devel-4.3.9-3.38.el4.x86_64.rpm
RedHat	4	i386	php-domxml	4.3.9-3.38.el4	php-domxml-4.3.9-3.38.el4.i386.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2014-8626
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2014-8626
cve	www.cve.org/CVERecord

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Nov 2014 16:47Current

7High risk

Vulners AI Score7

CVSS27.5

EPSS0.03062

CWE-121