Описание
ELSA-2013-1814: php security update (CRITICAL)
[5.1.6-43]
- drop unneeded patch
[5.1.6-42]
- add security fixes for CVE-2012-2688, CVE-2011-1398, CVE-2013-1643, CVE-2013-6420
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
php
5.1.6-43.el5_10
php-bcmath
5.1.6-43.el5_10
php-cli
5.1.6-43.el5_10
php-common
5.1.6-43.el5_10
php-dba
5.1.6-43.el5_10
php-devel
5.1.6-43.el5_10
php-gd
5.1.6-43.el5_10
php-imap
5.1.6-43.el5_10
php-ldap
5.1.6-43.el5_10
php-mbstring
5.1.6-43.el5_10
php-mysql
5.1.6-43.el5_10
php-ncurses
5.1.6-43.el5_10
php-odbc
5.1.6-43.el5_10
php-pdo
5.1.6-43.el5_10
php-pgsql
5.1.6-43.el5_10
php-snmp
5.1.6-43.el5_10
php-soap
5.1.6-43.el5_10
php-xml
5.1.6-43.el5_10
php-xmlrpc
5.1.6-43.el5_10
Oracle Linux x86_64
php
5.1.6-43.el5_10
php-bcmath
5.1.6-43.el5_10
php-cli
5.1.6-43.el5_10
php-common
5.1.6-43.el5_10
php-dba
5.1.6-43.el5_10
php-devel
5.1.6-43.el5_10
php-gd
5.1.6-43.el5_10
php-imap
5.1.6-43.el5_10
php-ldap
5.1.6-43.el5_10
php-mbstring
5.1.6-43.el5_10
php-mysql
5.1.6-43.el5_10
php-ncurses
5.1.6-43.el5_10
php-odbc
5.1.6-43.el5_10
php-pdo
5.1.6-43.el5_10
php-pgsql
5.1.6-43.el5_10
php-snmp
5.1.6-43.el5_10
php-soap
5.1.6-43.el5_10
php-xml
5.1.6-43.el5_10
php-xmlrpc
5.1.6-43.el5_10
Oracle Linux i386
php
5.1.6-43.el5_10
php-bcmath
5.1.6-43.el5_10
php-cli
5.1.6-43.el5_10
php-common
5.1.6-43.el5_10
php-dba
5.1.6-43.el5_10
php-devel
5.1.6-43.el5_10
php-gd
5.1.6-43.el5_10
php-imap
5.1.6-43.el5_10
php-ldap
5.1.6-43.el5_10
php-mbstring
5.1.6-43.el5_10
php-mysql
5.1.6-43.el5_10
php-ncurses
5.1.6-43.el5_10
php-odbc
5.1.6-43.el5_10
php-pdo
5.1.6-43.el5_10
php-pgsql
5.1.6-43.el5_10
php-snmp
5.1.6-43.el5_10
php-soap
5.1.6-43.el5_10
php-xml
5.1.6-43.el5_10
php-xmlrpc
5.1.6-43.el5_10
Связанные CVE
Связанные уязвимости
ELSA-2013-1307: php53 security, bug fix and enhancement update (MODERATE)
The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue in the soap_xmlParseFile and soap_xmlParseMemory functions. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-1824.
The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue in the soap_xmlParseFile and soap_xmlParseMemory functions. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-1824.
The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue in the soap_xmlParseFile and soap_xmlParseMemory functions. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-1824.
The SOAP parser in PHP before 5.3.23 and 5.4.x before 5.4.13 allows re ...