42 matches found
Debian: Security Advisory (DLA-94-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1544)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PHP 5.6.x < 5.6.2 Multiple Vulnerabilities
According to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.2. It is, therefore, affected by the following vulnerabilities : - A buffer overflow error exists in the function 'mkgmtime' that can allow application crashes or arbitrary code execution. CVE-2014-3668...
SUSE SLES12 Security Update : php5 (SUSE-SU-2014:1497-1)
php5 was updated to fix three security issues. The following security issues were fixed : - xmlrpc ISO8601 date format parsing out-of-bounds read in mkgmtime CVE-2014-3668. - integer overflow in unserialize CVE-2014-3669. - heap corruption issue in exifthumbnail CVE-2014-3670. Note that Tenable...
Oracle: Security Advisory (ELSA-2014-1768)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201411-04
Gentoo Linux Local Security Checks GLSA 201411-04 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Amazon Linux: Security Advisory (ALAS-2014-434)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SOL15866 - Multiple PHP vulnerabilities CVE-2014-3668, CVE-2014-3669, and CVE-2014-3670
Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...
[SECURITY] [DLA 94-1] php5 security update
Package : php5 Version : 5.3.3-7+squeeze23 CVE ID : CVE-2014-3668 CVE-2014-3669 CVE-2014-3670 CVE-2014-3710 CVE-2014-3668 Fix bug 68027 - fix date parsing in XMLRPC lib CVE-2014-3669 Fix bug 68044: Integer overflow in unserialize 32-bits only CVE-2014-3670 Fix bug 68113 Heap corruption in...
SuSE 11.3 Security Update : php53 (SAT Patch Number 9916)
This update fixes the following vulnerabilities in php : - Heap corruption issue in exifthumbnail. CVE-2014-3670 - Integer overflow in unserialize. CVE-2014-3669 - Xmlrpc ISO8601 date format parsing out-of-bounds read in mkgmtime. CVE-2014-3668 %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
openSUSE Security Update : php5 (openSUSE-SU-2014:1391-1)
security update : - CVE-2014-3670 bnc902357 - CVE-2014-3669 bnc902360 - CVE-2014-3668 bnc902368 - added patches : - php-CVE-2014-3670.patch - php-CVE-2014-3669.patch - php-CVE-2014-3668.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
openSUSE Security Update : php5 (openSUSE-SU-2014:1377-1)
security update : - CVE-2014-3670 bnc902357 - CVE-2014-3669 bnc902360 - CVE-2014-3668 bnc902368 - added patches : - php-CVE-2014-3670.patch - php-CVE-2014-3669.patch - php-CVE-2014-3668.patch %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
GLSA-201411-04 : PHP: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201411-04 PHP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details. Impact : A context-dependent attacker can possibly execute arbitrary cod...
Debian DSA-3064-1 : php5 - security update
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. It has been decided to follow the stable 5.4.x releases for the Wheezy PHP packages. Consequently the vulnerabilities are addressed by upgrading PHP to a new upstream...
[SECURITY] [DSA 3064-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3064-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 04, 2014 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3064-1] php5 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3064-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso November 04, 2014 http://www.debian.org/security/faq -...
[slackware-security] php
New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.4.34-i486-1slack14.1.txz: Upgraded. This update fixes bugs and security issues. 68044 Integer overflow in unserialize 32-bit...
Scientific Linux Security Update : php on SL6.x, SL7.x i386/x86_64 (20141030)
A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application. CVE-2014-3670 An integer overflo...
[USN-2391-1] php5 vulnerabilities
========================================================================== Ubuntu Security Notice USN-2391-1 October 30, 2014 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...
CentOS 6 / 7 : php (CESA-2014:1767)
Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...