SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4663)

This PHP5 update fixes : - CVE-2011-0421: CVSS v2 Base Score: 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P: Input Validation CWE-20 - CVE-2011-1092: CVSS v2 Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P: Numeric Errors CWE-189 - CVE-2011-1148: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P: Resource Managemen...

Zend Framework 'PDO_MySql' SQL注入漏洞

Bugtraq ID: 47919 Zend Framework是一款开放源代码的PHP5开发框架实现。 开放人员使用非ASCCI兼容编码与MySQL PDO驱动一起使用，可能容易受SQL注入的攻击。攻击者可以利用此漏洞绕过过滤机制进行SQL注入，可获得敏感信息或操作数据库。 Zend Zend Framework 1.11.4 Zend Zend Framework 1.11.3 Zend Zend Framework 1.10.4 Zend Zend Framework 1.10.3 Zend Zend Framework 1.10.2 厂商解决方案 Zend Framework...

FreeBSD Ports: php5-zip

The remote host is missing an update to the system as announced in the referenced advisory. VID fe853666-56ce-11e0-9668-001fd0d616cf OpenVAS Vulnerability Test $ Description: Auto generated from VID fe853666-56ce-11e0-9668-001fd0d616cf Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

FreeBSD Ports: php5-zip

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD Ports: php5-exif

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Debian Security Advisory DSA 2195-1 (php5)

The remote host is missing an update to php5 announced via advisory DSA 2195-1. OpenVAS Vulnerability Test $Id: deb21951.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2195-1 php5 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

FreeBSD Ports: php5-exif

The remote host is missing an update to the system as announced in the referenced advisory. VID cc3bfec6-56cd-11e0-9668-001fd0d616cf OpenVAS Vulnerability Test $ Description: Auto generated from VID cc3bfec6-56cd-11e0-9668-001fd0d616cf Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

Ubuntu Update for php5 USN-1126-1

Ubuntu Update for Linux kernel vulnerabilities USN-1126-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11261.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1126-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu: Security Advisory (USN-1126-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-1126-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for php5 USN-1126-2

Ubuntu Update for Linux kernel vulnerabilities USN-1126-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN11262.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1126-2 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:1012-1)

Insufficient handling of certain character sequences in the utf8decode function could be leveraged to conduct cross-site-scripting XSS attacks CVE-2010-3870. php5 could also consume large amounts of memory and crash if a long mail address was passed to filtervar with parmeter FILTERVALIDATEEMAIL...

PHP "php5-common.php5.cron.d"竞争条件漏洞

BUGTRAQ ID: 46928 CVE ID: CVE-2011-0441 PHP，一个嵌套的缩写名称，是英文超级文本预处理语言（PHP:Hypertext Preprocessor）的缩写。 PHP "php5-common.php5.cron.d"在实现上存在竞争条件漏洞，本地攻击者可利用此漏洞删除任意文件，造成拒绝服务。 PHP PHP 5.x Ubuntu Linux 9.x Ubuntu Linux 8.x Ubuntu Linux 11.x Ubuntu Linux 10.x 厂商补丁： PHP --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

[USN-1126-1] PHP vulnerabilities

========================================================================== Ubuntu Security Notice USN-1126-1 April 29, 2011 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubun...

SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4133)

PHP5 was updated to fix several security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEVEL 3000 exit0;...

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7375)

php5 was updated to fix several security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. if NASLLEVEL 3000 exit0; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid53285; scriptversion"1.7";...

CVE-2011-0441

The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/...

CVE-2011-0441

The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/...

CVE-2011-0441

CVE-2011-0441 is a local vulnerability in PHP 5.x packages (notably the Debian/Ubuntu php5 package) where the /etc/cron.d/php5 cron job can be abused by a local user to delete arbitrary files via a symlink attack on a directory under /var/lib/php5. The Debian advisory DSA 2195-1 and Ubuntu USN-13...

[SECURITY] [DSA 2195-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2195-1 [email protected] http://www.debian.org/security/ Raphael Geissert March 19, 2011 http://www.debian.org/security/faq -...