Lucene search

K
suseSuseSUSE-SU-2014:0869-1
HistoryJul 04, 2014 - 1:04 a.m.

Security update for php53 (important)

2014-07-0401:04:18
lists.opensuse.org
37

0.951 High

EPSS

Percentile

99.1%

php53 was updated to fix the following security vulnerabilities:

   * Heap-based buffer overflow in DNS TXT record parsing. (CVE-2014-4049)
   * Denial of service in Fileinfo component. (CVE-2014-0238)
   * Performance degradation by too many file_printf calls.
     (CVE-2014-0237)
   * NULL pointer dereference in GD XPM decoder. (CVE-2014-2497)

Security Issues references:

   * CVE-2014-4049
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4049">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4049</a>&gt;
   * CVE-2014-0238
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0238">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0238</a>&gt;
   * CVE-2014-0237
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0237">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0237</a>&gt;
   * CVE-2014-2497
     &lt;<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2497">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2497</a>&gt;

0.951 High

EPSS

Percentile

99.1%

Related for SUSE-SU-2014:0869-1