Fedora 14 : maniadrive-1.2-23.fc14 / php-5.3.4-1.fc14.1 / php-eaccelerator-0.9.6.1-3.fc14 (2010-18976)

Security Enhancements and Fixes in PHP 5.3.4 : - Fixed crash in zip extract method possible CWE-170. - Paths with NULL in them foo\0bar.txt are now considered as invalid CVE-2006-7243. - Fixed a possible double free in imap extension Identified by Mateusz Kocielski. CVE-2010-4150. - Fixed NULL...

PHP 5.2.x < 5.2.15 Multiple Vulnerabilities

Binary data 5733.prm...

PHP 5.2.x < 5.2.15 Multiple Vulnerabilities

Binary data 801097.prm...

PHP 5.2 < 5.2.15 Multiple Vulnerabilities

According to its banner, the version of PHP 5.2 installed on the remote host is older than 5.2.15. Such versions may be affected by several security issues : - A crash in the zip extract method. - A possible double free exists in the imap extension. CVE-2010-4150 - An unspecified flaw exists in...

PHP 5.3 < 5.3.4 Multiple Vulnerabilities

Binary data 801074.prm...

PHP 5.3.x < 5.3.4 Multiple Vulnerabilities

Binary data 5732.prm...

php -- open_basedir bypass

MITRE reports: fopenwrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass openbasedir restrictions via vectors related to the length of a filename...

Mandriva Update for php MDVSA-2010:218 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2010:218 php Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Mandriva Update for php MDVSA-2010:218 (php)

Check for the Version of php OpenVAS Vulnerability Test Mandriva Update for php MDVSA-2010:218 php Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

CVE-2010-3436

fopenwrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass openbasedir restrictions via vectors related to the length of a filename...

Design/Logic Flaw

fopenwrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass openbasedir restrictions via vectors related to the length of a filename...

CVE-2010-3436

Technical details for CVE-2010-3436 are not publicly available in the provided documents. Monitor for updates.

CVE-2010-3436

fopenwrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass openbasedir restrictions via vectors related to the length of a filename...

CVE-2010-3436

fopenwrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass openbasedir restrictions via vectors related to the length of a filename...

Mandriva Linux Security Advisory : php (MDVSA-2010:218)

Multiple vulnerabilities were discovered and corrected in php : Stack consumption vulnerability in the filtervar function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3, when FILTERVALIDATEEMAIL mode is used, allows remote attackers to cause a denial of service memory consumption and...

CVE-2010-2484

The strrchr function in PHP 5.2 before 5.2.14 allows context-dependent attackers to obtain sensitive information memory contents or trigger memory corruption by causing a userspace interruption of an internal function or handler...

MDVA-2010:166-1 : php-eaccelerator

It was discovered php-eaccelerator-0.9.6 did not work properly with openbasedir for php-5.3.2. This advisory upgrades php-eaccelerator to 0.9.6.1 which solves this problem. Update: It was discovered php-eaccelerator-0.9.6 did not work properly with openbasedir for php-5.2.13. This advisory upgrad...

MDVA-2010:166 : php-eaccelerator

It was discovered php-eaccelerator-0.9.6 did not work properly with openbasedir for php-5.3.2. This advisory upgrades php-eaccelerator to 0.9.6.1 which solves this problem. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix...

Mandriva Linux Security Advisory : php (MDVSA-2009:303)

Some vulnerabilities were discovered and corrected in php-5.2.11 : The tempnam function in ext/standard/file.c in PHP 5.2.11 and earlier, and 5.3.x before 5.3.1, allows context-dependent attackers to bypass safemode restrictions, and create files in group-writable or world-writable directories, v...

Mandriva Linux Security Advisory : php (MDVSA-2009:302)

Some vulnerabilities were discovered and corrected in php-5.3.1 : - Added maxfileuploads INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion. Ilia - Added missing sanity checks around exif...