Описание
ELSA-2010-0919: php security update (MODERATE)
[5.1.6-27.3]
- add security fix for CVE-2010-3870 (#626735)
[5.1.6-27.2]
- fix var_export test cases (#626735)
[5.1.6-27.1]
- add security fixes for CVE-2010-1917, CVE-2010-3065, CVE-2010-2531, CVE-2010-1128, CVE-2010-0397 (#626735)
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
php
5.1.6-27.el5_5.3
php-bcmath
5.1.6-27.el5_5.3
php-cli
5.1.6-27.el5_5.3
php-common
5.1.6-27.el5_5.3
php-dba
5.1.6-27.el5_5.3
php-devel
5.1.6-27.el5_5.3
php-gd
5.1.6-27.el5_5.3
php-imap
5.1.6-27.el5_5.3
php-ldap
5.1.6-27.el5_5.3
php-mbstring
5.1.6-27.el5_5.3
php-mysql
5.1.6-27.el5_5.3
php-ncurses
5.1.6-27.el5_5.3
php-odbc
5.1.6-27.el5_5.3
php-pdo
5.1.6-27.el5_5.3
php-pgsql
5.1.6-27.el5_5.3
php-snmp
5.1.6-27.el5_5.3
php-soap
5.1.6-27.el5_5.3
php-xml
5.1.6-27.el5_5.3
php-xmlrpc
5.1.6-27.el5_5.3
Oracle Linux x86_64
php
5.1.6-27.el5_5.3
php-bcmath
5.1.6-27.el5_5.3
php-cli
5.1.6-27.el5_5.3
php-common
5.1.6-27.el5_5.3
php-dba
5.1.6-27.el5_5.3
php-devel
5.1.6-27.el5_5.3
php-gd
5.1.6-27.el5_5.3
php-imap
5.1.6-27.el5_5.3
php-ldap
5.1.6-27.el5_5.3
php-mbstring
5.1.6-27.el5_5.3
php-mysql
5.1.6-27.el5_5.3
php-ncurses
5.1.6-27.el5_5.3
php-odbc
5.1.6-27.el5_5.3
php-pdo
5.1.6-27.el5_5.3
php-pgsql
5.1.6-27.el5_5.3
php-snmp
5.1.6-27.el5_5.3
php-soap
5.1.6-27.el5_5.3
php-xml
5.1.6-27.el5_5.3
php-xmlrpc
5.1.6-27.el5_5.3
Oracle Linux i386
php
5.1.6-27.el5_5.3
php-bcmath
5.1.6-27.el5_5.3
php-cli
5.1.6-27.el5_5.3
php-common
5.1.6-27.el5_5.3
php-dba
5.1.6-27.el5_5.3
php-devel
5.1.6-27.el5_5.3
php-gd
5.1.6-27.el5_5.3
php-imap
5.1.6-27.el5_5.3
php-ldap
5.1.6-27.el5_5.3
php-mbstring
5.1.6-27.el5_5.3
php-mysql
5.1.6-27.el5_5.3
php-ncurses
5.1.6-27.el5_5.3
php-odbc
5.1.6-27.el5_5.3
php-pdo
5.1.6-27.el5_5.3
php-pgsql
5.1.6-27.el5_5.3
php-snmp
5.1.6-27.el5_5.3
php-soap
5.1.6-27.el5_5.3
php-xml
5.1.6-27.el5_5.3
php-xmlrpc
5.1.6-27.el5_5.3
Ссылки на источники
Связанные уязвимости
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not ...
The Linear Congruential Generator (LCG) in PHP before 5.2.13 does not provide the expected entropy, which makes it easier for context-dependent attackers to guess values that were intended to be unpredictable, as demonstrated by session cookies generated by using the uniqid function.