11 matches found
Gentoo Security Advisory GLSA 201408-11
Gentoo Linux Local Security Checks GLSA 201408-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
PHP 5.6.0 Multiple Vulnerabilities
According to its banner, the version of PHP installed on the remote host is a development version of 5.6.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not attempted to exploit this issue but has instead relied only on application's self-reported version number...
Amazon Linux AMI : php55 (ALAS-2014-314)
A denial of service flaw was found in the way the File Information fileinfo extension handled indirect rules. A remote attacker could use this flaw to cause a PHP application using fileinfo to crash or consume an excessive amount of CPU. The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before...
Ubuntu: Security Advisory (USN-2126-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu Update for php5 USN-2126-1
Check for the Version of php5 OpenVAS Vulnerability Test $Id: gbubuntuUSN21261.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for php5 USN-2126-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : php5 vulnerabilities (USN-2126-1)
Bernd Melchers discovered that PHP's embedded libmagic library incorrectly handled indirect offset values. An attacker could use this issue to cause PHP to consume resources or crash, resulting in a denial of service. CVE-2014-1943 It was discovered that PHP incorrectly handled certain values whe...
USN-2126-1: PHP vulnerabilities
Bernd Melchers discovered that PHP's embedded libmagic library incorrectly handled indirect offset values. An attacker could use this issue to cause PHP to consume resources or crash, resulting in a denial of service. CVE-2014-1943 It was discovered that PHP incorrectly handled certain values whe...
Null pointer dereference
The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via invalid imagecrop arguments that lead to use of a NULL pointer as a return...
CVE-2013-7226
PHP 5.5.x before 5.5.9 is affected by CVE-2013-7226 due to an integer overflow in gdImageCrop in ext/gd/gd.c when processing an imagecrop with a large x value, causing a heap-based buffer overflow and possible denial of service. Upgrade to PHP 5.5.9 or later to fix; no exploitation details are pr...
PHP 5.5.x < 5.5.9 GD Extension Multiple Vulnerabilities
Binary data 8125.prm...
Mandriva Linux Security Advisory : php (MDVSA-2014:027)
A vulnerability has been discovered and corrected in php : - Fixed bug 66356 Heap Overflow Vulnerability in imagecrop CVE-2013-7226. The updated php packages have been upgraded to the 5.5.9 version which is not vulnerable to this issue. Additionally, the PECL packages which requires so has been...