45 matches found
SUSE: Security Advisory (SUSE-SU-2014:0873-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:1141-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:0868-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2014:0869-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Manager (FSM): (CVE-2013-4248 CVE-2013-6420 CVE-2014-2497 CVE-2014-4049)
Summary A security vulnerability has been discovered in openssh that is included in IBM FSM. Vulnerability Details Abstract Security vulnerabilities have been discovered in php5 that is included in IBM FSM. Content Vulnerability Details: CVE-ID: CVE-2013-4248 DESCRIPTION: PHP could allow a remote...
PHP 5.3.x < 5.3.29, 5.4.x < 5.4.30, 5.5.x < 5.5.14, 5.6.0alpha1 < 5.6.0 Heap Based Buffer Overflow Vulnerability - Windows
PHP is prone to a heap-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if...
Oracle: Security Advisory (ELSA-2014-1012)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle: Security Advisory (ELSA-2014-1013)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201408-11
Gentoo Linux Local Security Checks GLSA 201408-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
SUSE SLES11 Security Update : PHP5 (SUSE-SU-2014:0868-1)
PHP5 has been updated to fix two security vulnerabilities : - Heap-based buffer overflow in DNS TXT record parsing CVE-2014-4049 - NULL pointer dereference in GD XPM decoder CVE-2014-2497 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...
Important: Red Hat Security Advisory: php54-php security update
Updated php54-php packages that fix multiple security issues are now available for Red Hat Software Collections 1. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
PHP 5.6.0 Multiple Vulnerabilities
According to its banner, the version of PHP installed on the remote host is a development version of 5.6.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not attempted to exploit this issue but has instead relied only on application's self-reported version number...
php security update
5.4.16-23.1 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression incomplete fix for CVE-2013-7345. CVE-2014-3538 - fileinfo: fix mconvert incorrect handling ...
DLA-67-1 php5 - security update
Bulletin has no description...
SuSE 11.3 Security Update : php53 (SAT Patch Number 9718)
This php53 update fixes the following security issues : - Insecure temporary file used for cache data was fixed by switching to a different root only directory /var/cache/php-pear. CVE-2014-5459 - An incomplete fix for CVE-2014-4049. CVE-2014-3597 %NASLMINLEVEL 70300 C Tenable Network Security,...
openSUSE Security Update : php5 (openSUSE-SU-2014:1133-1)
php5 was updated to fix three security issues : - Insecure temporary file use for cache data was fixed by switching to a different root only directory /var/cache/php-pear CVE-2014-5459 - An incomplete fix for CVE-2014-4049 CVE-2014-3597 - gd extension: NUL byte injection in filenames passed to...
CentOS Update for php CESA-2014:1013 centos7
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Buffer overflow
Multiple buffer overflows in the phpparserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service application crash or possibly execute arbitrary code via a crafted DNS record, related to the dnsgetrecord function and the...
CVE-2014-3597
CVE-2014-3597 involves multiple buffer overflows in the php_parserr function in ext/standard/dns.c of PHP. The issue affects PHP 5.4.x before 5.4.32 and 5.5.x before 5.5.16, enabling remote DNS servers to cause a denial of service (application crash) or potentially execute arbitrary code via a cr...
DSA-3008-1 php5 - security update
Bulletin has no description...