Lucene search
K

16 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.29 views

Mageia: Security Advisory (MGASA-2014-0367)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.9AI score0.20237EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.67 views

Gentoo Security Advisory GLSA 201408-11

Gentoo Linux Local Security Checks GLSA 201408-11 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

7.5CVSS6.9AI score0.35635EPSS
Exploits16References1
RedHat Linux
RedHat Linux
added 2014/10/30 7:45 p.m.80 views

Important: Red Hat Security Advisory: php54-php security update

Updated php54-php packages that fix multiple security issues are now available for Red Hat Software Collections 1. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS7.3AI score0.30128EPSS
Exploits16References26
Tenable Nessus
Tenable Nessus
added 2014/10/17 12:0 a.m.130 views

PHP 5.6.0 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is a development version of 5.6.0. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not attempted to exploit this issue but has instead relied only on application's self-reported version number...

7.5CVSS7.1AI score0.30128EPSS
Exploits16References29
OpenVAS
OpenVAS
added 2014/10/01 12:0 a.m.63 views

CentOS Update for php CESA-2014:1327 centos7

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7AI score0.22319EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2014/10/01 12:0 a.m.243 views

Oracle Linux 7 : php (ELSA-2014-1327)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1327 advisory. - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix...

6.8CVSS7.3AI score0.22319EPSS
Exploits8References9
Cent OS
Cent OS
added 2014/09/30 10:59 a.m.93 views

php security update

CentOS Errata and Security Advisory CESA-2014:1327 Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...

6.8CVSS7.3AI score0.22319EPSS
Exploits6References7
RedHat Linux
RedHat Linux
added 2014/09/30 9:9 a.m.77 views

Moderate: Red Hat Security Advisory: php security update

Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...

6.8CVSS7.3AI score0.22319EPSS
Exploits6References9
Oracle linux
Oracle linux
added 2014/09/30 12:0 a.m.68 views

php security update

5.4.16-23.1 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression incomplete fix for CVE-2013-7345. CVE-2014-3538 - fileinfo: fix mconvert incorrect handling ...

6.8CVSS0.8AI score0.22319EPSS
Exploits8
Slackware Linux
Slackware Linux
added 2014/09/04 10:0 p.m.65 views

[slackware-security] php

New php packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.4.32-i486-1slack14.1.txz: Upgraded. This update fixes bugs and security issues. For more information, see...

6.8CVSS8.9AI score0.22319EPSS
Exploits5
OpenVAS
OpenVAS
added 2014/09/03 12:0 a.m.40 views

Fedora Update for php FEDORA-2014-9679

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.4AI score0.35635EPSS
Exploits15References2
Tenable Nessus
Tenable Nessus
added 2014/09/03 12:0 a.m.57 views

Fedora 19 : php-5.5.16-1.fc19 (2014-9679)

21 Aug 2014, PHP 5.5.16 Core : - Fixed bug 67693 incorrect push to the empty array Tjerk - Fixed bug 67717 segfault in dnsgetrecord. CVE-2014-3597 Remi COM : - Fixed missing type checks in comeventsink Yussuf Khalil, Stas. Fileinfo : - Fixed bug 67705 extensive backtracking in rule regular...

6.8CVSS7.2AI score0.22319EPSS
Exploits6References8
Tenable Nessus
Tenable Nessus
added 2014/09/03 12:0 a.m.44 views

Fedora 20 : php-5.5.16-1.fc20 (2014-9684)

21 Aug 2014, PHP 5.5.16 Core : - Fixed bug 67693 incorrect push to the empty array Tjerk - Fixed bug 67717 segfault in dnsgetrecord. CVE-2014-3597 Remi COM : - Fixed missing type checks in comeventsink Yussuf Khalil, Stas. Fileinfo : - Fixed bug 67705 extensive backtracking in rule regular...

6.8CVSS7.2AI score0.22319EPSS
Exploits6References6
OpenVAS
OpenVAS
added 2014/08/25 12:0 a.m.37 views

PHP 5.4.x < 5.4.32, 5.5.x < 5.5.15 Multiple Vulnerabilities (Aug 2014)

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescription...

6.8CVSS9.4AI score0.20237EPSS
Exploits1References6
CVE
CVE
added 2014/08/23 1:0 a.m.210 views

CVE-2014-5120

CVE-2014-5120 affects the PHP GD extension. gd_ctx.c does not ensure that pathnames lack a NUL (%00) sequence, enabling remote attackers to overwrite arbitrary files via crafted input when calling the imagegd, imagegd2, imagegif, imagejpeg, imagepng, imagewbmp, or imagewebp functions. Affected ve...

6.4CVSS7.8AI score0.16934EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2014/08/23 1:0 a.m.31 views

CVE-2014-5120

gdctx.c in the GD component in PHP 5.4.x before 5.4.32 and 5.5.x before 5.5.16 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to overwrite arbitrary files via crafted input to an application that calls the 1 imagegd, 2 imagegd2, 3 imagegif, 4 imagejpeg, 5...

6.4CVSS7.8AI score0.16934EPSS
Exploits0
Rows per page
Query Builder