6 matches found
RHEL 2.1 : php (RHSA-2006:0567)
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...
php security update
CentOS Errata and Security Advisory CESA-2006:0567-01 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
SUSE-SA:2006:024: php4,php5
The remote host is missing the patch for the advisory SUSE-SA:2006:024 php4,php5. This update fixes the following security issues in the scripting languages PHP4 and PHP5: - copy and tempnam functions could bypass openbasedir restrictions CVE-2006-1494 - Cross-Site-Scripting XSS bug in phpinfo...
Mandrake Linux Security Advisory : php (MDKSA-2006:074)
A cross-site scripting XSS vulnerability in phpinfo info.c in PHP = 5.1.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed. CVE-2006-0996 Directory...
CVE-2006-1494
CVE-2006-1494 is described in the initial entry as a directory traversal vulnerability in PHP 4.4.2 and 5.1.2, allowing local users to bypass open_basedir and create files in arbitrary directories via the tempnam function. Connected documents reference this CVE ID in scan data (e.g., Ubuntu USN-3...