Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-0514

Опубликовано: 27 фев. 2013
Источник: oracle-oval
Платформа: Oracle Linux 6

Описание

ELSA-2013-0514: php security, bug fix and enhancement update (MODERATE)

[5.3.3-22]

  • php-xml provides php-xmlreader and php-xmlwriter (#874987)
  • fix possible NULL derefence and buffer overflow (#879179)
  • fix zend garbage collector (#848186, #868375)

[5.3.3-21]

  • fix CVE reference in previous changelog entry

[5.3.3-20]

  • remove reproducer from security fix for CVE-2012-0781

[5.3.3-19]

  • add FastCGI Process Manager (php-fpm) SAPI (#806132, #824293)

[5.3.3-18]

  • php script hangs when it exceeds max_execution_time when inside an ODBC call (#864951)

[5.3.3-17]

  • add security fixes for CVE-2012-2688, CVE-2012-0831, CVE-2011-1398

[5.3.3-16]

  • fix stream support in fileinfo (#858653)
  • fix imap_open DISABLE_AUTHENTICATOR param ignores array (#859371)

[5.3.3-15]

  • fix permission on source files (#676364)
  • fix negative keys with var_export (#771738)
  • fix setDate when DateTime created from timestamp (#812819)
  • add php(language) and missing provides (#837042)
  • use arch-specific requires (#833545)
  • fix possible buffer overflow in pdo_odbc (#836264)
  • fix possible segfault in pdo_mysql (#824199)

Обновленные пакеты

Oracle Linux 6

Oracle Linux x86_64

php

5.3.3-22.el6

php-bcmath

5.3.3-22.el6

php-cli

5.3.3-22.el6

php-common

5.3.3-22.el6

php-dba

5.3.3-22.el6

php-devel

5.3.3-22.el6

php-embedded

5.3.3-22.el6

php-enchant

5.3.3-22.el6

php-fpm

5.3.3-22.el6

php-gd

5.3.3-22.el6

php-imap

5.3.3-22.el6

php-intl

5.3.3-22.el6

php-ldap

5.3.3-22.el6

php-mbstring

5.3.3-22.el6

php-mysql

5.3.3-22.el6

php-odbc

5.3.3-22.el6

php-pdo

5.3.3-22.el6

php-pgsql

5.3.3-22.el6

php-process

5.3.3-22.el6

php-pspell

5.3.3-22.el6

php-recode

5.3.3-22.el6

php-snmp

5.3.3-22.el6

php-soap

5.3.3-22.el6

php-tidy

5.3.3-22.el6

php-xml

5.3.3-22.el6

php-xmlrpc

5.3.3-22.el6

php-zts

5.3.3-22.el6

Oracle Linux i686

php

5.3.3-22.el6

php-bcmath

5.3.3-22.el6

php-cli

5.3.3-22.el6

php-common

5.3.3-22.el6

php-dba

5.3.3-22.el6

php-devel

5.3.3-22.el6

php-embedded

5.3.3-22.el6

php-enchant

5.3.3-22.el6

php-fpm

5.3.3-22.el6

php-gd

5.3.3-22.el6

php-imap

5.3.3-22.el6

php-intl

5.3.3-22.el6

php-ldap

5.3.3-22.el6

php-mbstring

5.3.3-22.el6

php-mysql

5.3.3-22.el6

php-odbc

5.3.3-22.el6

php-pdo

5.3.3-22.el6

php-pgsql

5.3.3-22.el6

php-process

5.3.3-22.el6

php-pspell

5.3.3-22.el6

php-recode

5.3.3-22.el6

php-snmp

5.3.3-22.el6

php-soap

5.3.3-22.el6

php-tidy

5.3.3-22.el6

php-xml

5.3.3-22.el6

php-xmlrpc

5.3.3-22.el6

php-zts

5.3.3-22.el6

Связанные CVE

CVE-2012-2688
CVE-2011-1398
CVE-2012-0831

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2013-1307

oracle-oval
больше 11 лет назад

ELSA-2013-1307: php53 security, bug fix and enhancement update (MODERATE)

oracle-oval логотип

ELSA-2013-1814

oracle-oval
больше 11 лет назад

ELSA-2013-1814: php security update (CRITICAL)

ubuntu логотип

CVE-2012-2688

ubuntu
почти 13 лет назад

Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow."

redhat логотип

CVE-2012-2688

redhat
почти 13 лет назад

Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow."

nvd логотип

CVE-2012-2688

nvd
почти 13 лет назад

Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow."