openSUSE Security Update : php5 (openSUSE-2019-276)

This update for php5 fixes the following issues : Security vulnerability fixed : - CVE-2019-6977: Fixed a heap buffer overflow in gdImageColorMatch in gdcolormatch.c bsc1123354 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

openSUSE: Security Advisory for php5 (openSUSE-SU-2019:0276-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for php5 (moderate)

openSUSE Security Update: Security update for php5 Announcement ID: openSUSE-SU-2019:0276-1 Rating: moderate References: 1123354 Cross-References: CVE-2019-6977 Affected Products: openSUSE Leap 42.3 An update that fixes one vulnerability is now available. Description: This update for php5 fixes t...

SUSE SLES12 Security Update : php5 (SUSE-SU-2019:0449-1)

This update for php5 fixes the following issues : Security vulnerability fixed : CVE-2019-6977: Fixed a heap buffer overflow in gdImageColorMatch in gdcolormatch.c bsc1123354 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...

SUSE-SU-2019:0449-1 Security update for php5

This update for php5 fixes the following issues: Security vulnerability fixed: - CVE-2019-6977: Fixed a heap buffer overflow in gdImageColorMatch in gdcolormatch.c bsc1123354...

Debian DLA-1679-1 : php5 security update

Several security bugs have been identified and fixed in php5, a server-side, HTML-embedded scripting language. The affected components include GD graphics, multi-byte string handling, phar file format handling, and xmlrpc. CVEs have not yet been assigned. Once the CVE assignments are announced, t...

[SECURITY] [DLA 1679-1] php5 security update

Package : php5 Version : 5.6.40+dfsg-0+deb8u1 Several security bugs have been identified and fixed in php5, a server-side, HTML-embedded scripting language. The affected components include GD graphics, multi-byte string handling, phar file format handling, and xmlrpc. CVEs have not yet been...

Debian: Security Advisory (DLA-1679-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-1679-1 php5 - security update

Bulletin has no description...

[SECURITY] [DLA 1674-1] php5 security update

Package : php5 Version : 5.6.39+dfsg-0+deb8u2 CVE ID : CVE-2018-1000888 php-pear in php5 contains CWE-502 Deserialization of Untrusted Data and CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerabilities in its ArchiveTar class. When extract is called...

DLA-1674-1 php5 - security update

Bulletin has no description...

Debian DLA-1674-1 : php5 security update

php-pear in php5 contains CWE-502 Deserialization of Untrusted Data and CWE-915 Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerabilities in its ArchiveTar class. When extract is called without a specific prefix path, can trigger unserialization by crafting a...

Debian: Security Advisory (DLA-1674-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Chassis Management Module (CMM)

Summary IBM Chassis Management Module CMM has addressed the following vulnerabilities in php5. Vulnerability Details Summary IBM Chassis Management Module CMM has addressed the following vulnerabilities in php5. Vulnerability Details: CVEID: CVE-2016-6911 Description: libgd2 - GD Graphics Library...

Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Manager (FSM): (CVE-2013-4248 CVE-2013-6420 CVE-2014-2497 CVE-2014-4049)

Summary A security vulnerability has been discovered in openssh that is included in IBM FSM. Vulnerability Details Abstract Security vulnerabilities have been discovered in php5 that is included in IBM FSM. Content Vulnerability Details: CVE-ID: CVE-2013-4248 DESCRIPTION: PHP could allow a remote...

SUSE SLES12 Security Update : php5 (SUSE-SU-2015:0365-1)

php5 was updated to fix four security issues. These security issues were fixed : - CVE-2015-0231: Use-after-free vulnerability in the processnesteddata function in ext/standard/varunserializer.re in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allowed remote attackers to execute...

SUSE SLES12 Security Update : php5 (SUSE-SU-2015:1425-1)

PHP was updated to fix two security issues. The following vulnerabilities were fixed : - CVE-2015-5589: PHP could be crashed when processing an invalid file with the 'phar' extension with a segfault in Phar::convertToData, leading to Denial of Service DOS bsc938721 - CVE-2015-5590: PHP could be...

SUSE SLES12 Security Update : php5 (SUSE-SU-2018:0717-1)

This update for php5 fixes the following issues: Security issues fixed : - CVE-2018-7584: Fixed stack-based buffer under-read while parsing an HTTPresponse in the phpstreamurlwraphttpex bsc1083639. Note that Tenable Network Security has extracted the preceding description block directly from the...

SUSE SLES12 Security Update : php5 (SUSE-SU-2018:1291-1)

This update for php5 fixes the following issues: Security issues fixed : - CVE-2018-10545: Fix access controls in FPM child processes bsc1091367. - CVE-2018-10547: Fix Reflected XSS on the PHAR 403 and 404 error pages bsc1091362. - CVE-2018-10546: Fix an infinite loop exists in ext/iconv/iconv.c...

SUSE SLES12 Security Update : php5 (SUSE-SU-2018:0530-1)

This update for php5 fixes the following issues : - CVE-2016-10712: In PHP all of the return values of streamgetmetadata could be controlled if the input can be controlled e.g., during file uploads. bsc1080234 Note that Tenable Network Security has extracted the preceding description block direct...