17 matches found
SUSE CVE-2007-4782
PHP before 5.2.3 allows context-dependent attackers to cause a denial of service application crash via 1 a long string in the pattern parameter to the glob function; or 2 a long string in the string parameter to the fnmatch function, accompanied by a pattern parameter value with undefined...
Oracle: Security Advisory (ELSA-2008-0544)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
F5 Networks BIG-IP : GNU C Library vulnerability (SOL15885)
The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a 'stack extension attack,' a related issue to...
Oracle Linux 5 : php (ELSA-2008-0544)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0544 advisory. 5.1.6-20.el52.1 - add security fixes for CVE-2007-5898, CVE-2007-4782, CVE-2007-5899, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108 445923 Tenable has...
Design/Logic Flaw
The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to...
Mandrake Security Advisory MDVSA-2009:022 (php)
The remote host is missing an update to php announced via advisory MDVSA-2009:022. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...
Mandrake Security Advisory MDVSA-2009:022 (php)
The remote host is missing an update to php announced via advisory MDVSA-2009:022. OpenVAS Vulnerability Test $Id: mdksa2009022.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:022 php Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
SuSE Update for php4, php5 SUSE-SA:2008:004
Check for the Version of php4, php5 OpenVAS Vulnerability Test $Id: gbsuse2008004.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for php4, php5 SUSE-SA:2008:004 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
Gentoo Security Advisory GLSA 200710-02 (php)
The remote host is missing updates announced in advisory GLSA 200710-02. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
CentOS 3 / 5 : php (CESA-2008:0544)
Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
RHEL 4 : php (RHSA-2008:0545)
Updated php packages that fix several security issues and a bug are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
php security update
5.1.6-20.el52.1 - add security fixes for CVE-2007-5898, CVE-2007-4782, CVE-2007-5899, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108 445923...
php security and bug fix update
4.3.9-3.22.12 - set higher memorylimit in /usr/bin/pear 263501 4.3.9-3.22.11 - update to PEAR 1.4.9, matching RHEL-5 263501 bundle XMLRPC-1.5.0, ConsoleGetopt-1.2, ArchiveTar-1.3.1 fix paths in default pear.conf, installed PEAR registry replace /usr/bin/pear et al with simpler wrapper scripts...
Moderate: Red Hat Security Advisory: Red Hat Application Stack v2.1 security and enhancement update
Red Hat Application Stack v2.1 is now available. This update fixes various security issues and adds several enhancements. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The Red Hat Application Stack is an integrated open source application...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4909)
This update fixes multiple bugs in php by upgrading it to version 5.2.5. - Flaws in processing multi byte sequences in htmlentities/htmlspecialchars CVE-2007-5898 - overly long arguments to the dl function could crash php CVE-2007-4825 - overy long arguments to the glob function could crash php...
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 4808)
This update fixes multiple bugs in php : - use system pcre library to fix several pcre vulnerabilities. CVE-2007-1659 / CVE-2006-7230 / CVE-2007-1660 / CVE-2006-7227 / CVE-2005-4872 / CVE-2006-7228 - Flaws in processing multi byte sequences in htmlentities/htmlspecialchars. CVE-2007-5898 - overly...
CVE-2007-4782
CVE-2007-4782 affects PHP prior to 5.2.3. The issue arises when long strings are passed to glob (pattern parameter) or to fnmatch (string parameter) with a pattern value of undefined characteristics, potentially causing an application crash (DoS). The description notes this vulnerability might no...