SUSE SLES12 Security Update : php5 (SUSE-SU-2018:3017-1)

This update for php5 fixes the following issue : CVE-2018-17082: The Apache2 component in PHP allowed XSS via the body of a 'Transfer-Encoding: chunked' request, because the bucket brigade was mishandled in the phphandler function bsc1108753 Note that Tenable Network Security has extracted the...

SUSE SLES12 Security Update : php5 (SUSE-SU-2017:1662-1)

This update for php5 fixes the following security issues : - CVE-2016-6294: The localeacceptfromhttp function in ext/intl/locale/localemethods.c did not properly restrict calls to the ICU ulocacceptLanguageFromHTTP function, which allowed remote attackers to cause a denial of service out-of-bound...

[SECURITY] [DLA 1608-1] php5 security update

Package : php5 Version : 5.6.39+dfsg-0+deb8u1 CVE ID : CVE-2018-19518 CVE-2018-19935 Vulnerabilities have been discovered in php5, a server-side, HTML-embedded scripting language. Note that this update includes a change to the default behavior for IMAP connections. See below for details...

Debian DLA-1608-1 : php5 security update

Vulnerabilities have been discovered in php5, a server-side, HTML-embedded scripting language. Note that this update includes a change to the default behavior for IMAP connections. See below for details. CVE-2018-19518 An argument injection vulnerability in imapopen may allow a remote attacker to...

Debian: Security Advisory (DLA-1608-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-1608-1 php5 - security update

Bulletin has no description...

openSUSE Security Update : php5 (openSUSE-2018-1506)

This update for php5 fixes the following issues : Security issue fixed : - CVE-2018-19518: Fixed imapopen script injection flaw bsc1117107. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE: Security Advisory for Recommended (openSUSE-SU-2018:4038-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Recommended update for php5 (moderate)

This update for php5 fixes the following issues: Security issue fixed: - CVE-2018-19518: Fixed imapopen script injection flaw bsc1117107. This update was imported from the SUSE:SLE-12:Update update project...

SUSE-SU-2018:3995-1 Recommended update for php5

This update for php5 fixes the following issues: Security issue fixed: - CVE-2018-19518: Fixed imapopen script injection flaw bsc1117107...

openSUSE Security Update : php5 (openSUSE-2018-1130)

This update for php5 fixes the following issue : - CVE-2018-17082: The Apache2 component in PHP allowed XSS via the body of a 'Transfer-Encoding: chunked' request, because the bucket brigade was mishandled in the phphandler function bsc1108753 This update was imported from the SUSE:SLE-12:Update...

openSUSE: Security Advisory for php5 (openSUSE-SU-2018:3056-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for php5 (moderate)

This update for php5 fixes the following issue: - CVE-2018-17082: The Apache2 component in PHP allowed XSS via the body of a "Transfer-Encoding: chunked" request, because the bucket brigade was mishandled in the phphandler function bsc1108753 This update was imported from the SUSE:SLE-12:Update...

SUSE-SU-2018:3017-1 Security update for php5

This update for php5 fixes the following issue: - CVE-2018-17082: The Apache2 component in PHP allowed XSS via the body of a 'Transfer-Encoding: chunked' request, because the bucket brigade was mishandled in the phphandler function bsc1108753...

openSUSE Security Update : php5-smarty3 (openSUSE-2018-1052)

This update for php5-smarty3 fixes the following issues : - CVE-2018-16381: Prevent traversal vulnerability due to insufficient template code sanitization that allowed attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files...

openSUSE: Security Advisory for php5-smarty3 (openSUSE-SU-2018:2859-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Security update for php5-smarty3 (moderate)

This update for php5-smarty3 fixes the following issues: - CVE-2018-16381: Prevent traversal vulnerability due to insufficient template code sanitization that allowed attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files...

[SECURITY] [DLA 1509-1] php5 security update

Package : php5 Version : 5.6.38+dfsg-0+deb8u1 CVE ID : CVE-2018-17082 A vulnerability has been discovered in php5, a server-side, HTML-embedded scripting language. The Apache2 component allows XSS via the body of a "Transfer-Encoding: chunked" request because of a defect in request handling. For...

Debian DLA-1509-1 : php5 security update

A vulnerability has been discovered in php5, a server-side, HTML-embedded scripting language. The Apache2 component allows XSS via the body of a 'Transfer-Encoding: chunked' request because of a defect in request handling. For Debian 8 'Jessie', this problem has been fixed in version...

Debian: Security Advisory (DLA-1509-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...