SUSE SLED12 / SLES12 Security Update : php5 (SUSE-SU-2016:1633-1)

This update for php5 fixes the following issues : - CVE-2013-7456: imagescale out-of-bounds read bnc982009. - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside of valid range bnc982011. - CVE-2016-5095: Don't create strings...

SUSE-SU-2016:2080-1 Security update for php5

php5 was updated to fix the following security issues: - CVE-2016-6297: Stack-based buffer overflow vulnerability in phpstreamzipopener bsc991426. - CVE-2016-6291: Out-of-bounds access in exifprocessIFDinMAKERNOTE bsc991427. - CVE-2016-6289: Integer overflow leads to buffer overflow in...

openSUSE Security Update : php5 (openSUSE-2016-985)

This update for php5 fixes the following issues : - security update : - CVE-2016-6128: Invalid color index not properly handled bsc987580 - CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif bsc988032 - CVE-2016-6292: NULL pointer dereference in...

QuickerBB 0.7.0 - Register Cross Site Scripting Vulnerability

Document Title: =============== QuickerBB 0.7.0 - Register Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1895 Release Date: ============= 2016-08-11 Vulnerability Laboratory ID VL-ID:...

QuickerBB 0.7.0 - Register Cross Site Scripting Vulnerability

Document Title: =============== QuickerBB 0.7.0 - Register Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1895 Release Date: ============= 2016-08-10 Vulnerability Laboratory ID VL-ID:...

Ubuntu: Security Advisory (USN-3045-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : php5 (openSUSE-2016-921) (httpoxy)

This update for php5 fixes the following issues : - It is possible to launch a web server with 'php -S localhost:8080' It used to be possible to set an arbitrary $HTTPPROXY environment variable for request handlers -- like CGI scripts -- by including a specially crafted HTTP header in the request...

Debian Security Advisory DSA 3631-1 (php5 - security update)

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.24, which includes additional bug fixes. Please refer to the upstream changelog for mor...

Debian: Security Advisory (DSA-3631-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-3631-1 : php5 - security update (httpoxy)

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.24, which includes additional bug fixes. Please refer to the upstream changelog for mor...

Debian DSA-3618-1 : php5 - security update

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.23, which includes additional bug fixes. Please refer to the upstream changelog for mor...

openSUSE: Security Advisory for php5 (openSUSE-SU-2016:1761-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-533-1 : php5 security update

CVE-2016-5093.patch Absence of null character causes unexpected zendstring length and leaks heap memory. The test script uses localegetprimarylanguage to reach geticuvalueinternal but there are some other functions that also trigger this issue: localecanonicalize, localefiltermatches,...

[SECURITY] [DLA 533-1] php5 security update

Package : php5 Version : 5.4.45-0+deb7u4 CVE ID : CVE-2016-5093 CVE-2016-5094 CVE-2016-5095 CVE-2016-5096 PHP bugs : 70661 70728 70741 70480 CVE-2016-5093.patch Absence of null character causes unexpected zendstring length and leaks heap memory. The test script uses localegetprimarylanguage to...

openSUSE Security Update : php5 (openSUSE-2016-776)

This update for php5 fixes the following issues : - CVE-2013-7456: imagescale out-of-bounds read bnc982009. - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside of valid range bnc982011. - CVE-2016-5095: Don't create strings...

SUSE-SU-2016:1633-1 Security update for php5

This update for php5 fixes the following issues: - CVE-2013-7456: imagescale out-of-bounds read bnc982009. - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside of valid range bnc982011. - CVE-2016-5095: Don't create strings...

Debian DSA-3602-1 : php5 - security update

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.22, which includes additional bug fixes. Please refer to the upstream changelog for mor...

[SECURITY] [DSA 3602-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3602-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 14, 2016 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3602-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3602-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 14, 2016 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3602-1 (php5 - security update)

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. The vulnerabilities are addressed by upgrading PHP to the new upstream version 5.6.22, which includes additional bug fixes. Please refer to the upstream changelog for mor...