66 matches found
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-441)
This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-168)
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660 have been fixed in the php5 update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-modphp5-168. The text description of this plugin is C...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-441)
This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-593)
php 5.1.9 fixes among other things some security issues : - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory CVE-2008-5498. - the mbstring.funcoverload in .htaccess was applied to other virtual hosts on th...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-310)
This update fixes a buffer overflow in phpimap.c that uses an old IMAP API. This bug can be exploited to execute arbitrary code remotely via long IMAP requests. CVE-2008-2829 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-61)
This update of php5 fixes : - possible stack-based buffer overflow CVE-2008-2050 - incomplete escapeshellcmd CVE-2008-2051 - printf integer overflow CVE-2008-1384 - insecure GENERATESEED macro CVE-2008-2107 - timezone update for DST in Pakistan %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
SUSE: Security Summary (SUSE-SR:2009:008)
The remote host is missing updates announced in advisory SUSE-SR:2009:008. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-6068)
php 5.1.9 fixes among other things some security issues : - Missing bounds checks of an error in the imageRotate function of the gd extension potentially allowed attackers to read portions of memory CVE-2008-5498. - the mbstring.funcoverload in .htaccess was applied to other virtual hosts on th...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5934)
This update of php5 fixes a directory traversal bug in ZipArchive CVE-2008-5658 and a buffer overflow in the mstring extension CVE-2008-5557. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5787)
This update fixes a buffer overflow in phpimap.c that uses an old IMAP API. This bug can be exploited to execute arbitrary code remotely via long IMAP requests. CVE-2008-2829 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5546)
CVE-2008-3658, CVE-2008-3659 and CVE-2008-3660 have been fixed in the php5 update. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update apache2-modphp5-5546. The text description of this plugin is ...
FreeBSD Ports: php5
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
php -- multiple vulnerabilities
The remote host is missing an update to the system as announced in the referenced advisory. VID 7fcf1727-be71-11db-b2ec-000c6ec775d9 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
php -- multiple vulnerabilities
The remote host is missing an update to the system as announced in the referenced advisory. VID f5e52bf5-fc77-11db-8163-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
php -- php_variables memory disclosure
The remote host is missing an update to the system as announced in the referenced advisory. VID ad74a1bd-16d2-11d9-bc4a-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: php4, php4-cgi
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5379)
This update of php5 fixes : - possible stack-based buffer overflow CVE-2008-2050 - incomplete escapeshellcmd CVE-2008-2051 - printf integer overflow CVE-2008-1384 - insecure GENERATESEED macro CVE-2008-2107 - timezone update for DST in Pakistan %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
多个BSD平台'strfmon()'函数整数溢出漏洞
BUGTRAQ ID: 28479 CVE ID:CVE-2008-1391 CNCVE ID:CNCVE-20081391 多个BSD平台'strfmon'函数处理存在整数溢出,可能以受影响应用程序上下文执行任意代码。失败的尝试可导致拒绝服务。 问题代码类似如下: include monetary.h ssizet strfmonchar restrict s, sizet maxsize, const char restrict format, ...; - --- 1. /usr/src/lib/libc/stdlib/strfmon.c -整数溢出...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4810)
This update fixes multiple bugs in php : - use system pcre library to fix several pcre vulnerabilities CVE-2007-1659, CVE-2006-7230, CVE-2007-1660, CVE-2006-7227 CVE-2005-4872, CVE-2006-7228 - Flaws in processing multi byte sequences in htmlentities/htmlspecialchars CVE-2007-5898 - overly long...
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3978)
This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...