Test Kennung:	1.3.6.1.4.1.25623.1.0.123562
Kategorie:	Oracle Linux Local Security Checks
Titel:	Oracle: Security Advisory (ELSA-2013-1307)
Zusammenfassung:	The remote host is missing an update for the 'php53' package(s) announced via the ELSA-2013-1307 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'php53' package(s) announced via the ELSA-2013-1307 advisory. Vulnerability Insight: [5.3.3-21] - add security fix for CVE-2013-4248 [5.3.3-20] - add security fix for CVE-2013-4113 [5.3.3-19] - add upstream reproducer for error_handler (#951075) [5.3.3-18] - add security fixes for CVE-2006-7243 [5.3.3-17] - reorder security patches - add security fixes for CVE-2012-2688, CVE-2012-0831, CVE-2011-1398, CVE-2013-1643 [5.3.3-15] - fix segfault in error_handler with allow_call_time_pass_reference = Off (#951075) - fix double free when destroy_zend_class fails (#951076) [5.3.3-14] - fix possible buffer overflow in pdo_odbc (#869694) - rename php-5.3.3-extrglob.patch and reorder - php script hangs when it exceeds max_execution_time when inside an ODBC call (#864954) - fix zend garbage collector (#892695) - fix transposed memset arguments in libzip (#953818) - fix possible segfault in pdo_mysql (#869693) - fix imap_open DISABLE_AUTHENTICATOR param ignores array (#859369) - fix stream support in fileinfo (#869697) - fix setDate when DateTime created from timestamp (#869691) - fix permission on source files (#869688) - add php(language) and missing provides (#837044) - fix copy doesn't report failure on partial copy (#951413) Affected Software/OS: 'php53' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-7243 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html BugTraq ID: 44951 http://www.securityfocus.com/bid/44951 http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158616.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/159031.html http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158915.html HPdes Security Advisory: HPSBOV02763 http://marc.info/?l=bugtraq&m=133469208622507&w=2 HPdes Security Advisory: HPSBUX02741 http://marc.info/?l=bugtraq&m=132871655717248&w=2 HPdes Security Advisory: SSRT100728 HPdes Security Advisory: SSRT100826 http://www.mandriva.com/security/advisories?name=MDVSA-2010:254 http://www.madirish.net/?article=436 http://openwall.com/lists/oss-security/2010/11/18/4 http://openwall.com/lists/oss-security/2010/11/18/5 http://openwall.com/lists/oss-security/2010/12/09/10 http://openwall.com/lists/oss-security/2010/12/09/11 http://openwall.com/lists/oss-security/2010/12/09/9 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12569 RedHat Security Advisories: RHSA-2013:1307 http://rhn.redhat.com/errata/RHSA-2013-1307.html RedHat Security Advisories: RHSA-2013:1615 http://rhn.redhat.com/errata/RHSA-2013-1615.html RedHat Security Advisories: RHSA-2014:0311 http://rhn.redhat.com/errata/RHSA-2014-0311.html http://secunia.com/advisories/55078 Common Vulnerability Exposure (CVE) ID: CVE-2011-1398 https://bugs.php.net/bug.php?id=60227 http://article.gmane.org/gmane.comp.php.devel/70584 http://openwall.com/lists/oss-security/2012/08/29/5 http://openwall.com/lists/oss-security/2012/09/05/15 http://www.securitytracker.com/id?1027463 SuSE Security Announcement: SUSE-SU-2013:1315 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00006.html http://www.ubuntu.com/usn/USN-1569-1 Common Vulnerability Exposure (CVE) ID: CVE-2012-0831 48668 http://secunia.com/advisories/48668 51954 http://www.securityfocus.com/bid/51954 55078 APPLE-SA-2012-09-19-2 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html FEDORA-2012-6907 http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080041.html FEDORA-2012-6911 http://lists.fedoraproject.org/pipermail/package-announce/2012-May/080037.html RHSA-2013:1307 SUSE-SU-2012:0411 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html SUSE-SU-2012:0472 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00001.html USN-1358-1 http://www.ubuntu.com/usn/USN-1358-1 http://support.apple.com/kb/HT5501 http://svn.php.net/viewvc?view=revision&revision=323016 https://launchpadlibrarian.net/92454212/php5_5.3.2-1ubuntu4.13.diff.gz openSUSE-SU-2012:0426 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html php-magicquotesgpc-sec-bypass(73125) https://exchange.xforce.ibmcloud.com/vulnerabilities/73125 Common Vulnerability Exposure (CVE) ID: CVE-2012-2688 BugTraq ID: 54638 http://www.securityfocus.com/bid/54638 Debian Security Information: DSA-2527 (Google Search) http://www.debian.org/security/2012/dsa-2527 http://www.mandriva.com/security/advisories?name=MDVSA-2012:108 http://www.securitytracker.com/id?1027287 SuSE Security Announcement: SUSE-SU-2012:1033 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00021.html SuSE Security Announcement: SUSE-SU-2012:1034 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00022.html SuSE Security Announcement: openSUSE-SU-2012:0976 (Google Search) https://hermes.opensuse.org/messages/15376003 XForce ISS Database: php-phpstreamscandir-unspecified(77155) https://exchange.xforce.ibmcloud.com/vulnerabilities/77155 Common Vulnerability Exposure (CVE) ID: CVE-2013-1643 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html Debian Security Information: DSA-2639 (Google Search) http://www.debian.org/security/2013/dsa-2639 http://www.mandriva.com/security/advisories?name=MDVSA-2013:114 SuSE Security Announcement: SUSE-SU-2013:1285 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00034.html http://www.ubuntu.com/usn/USN-1761-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-4248 BugTraq ID: 61776 http://www.securityfocus.com/bid/61776 Debian Security Information: DSA-2742 (Google Search) http://www.debian.org/security/2013/dsa-2742 HPdes Security Advisory: HPSBUX03150 http://marc.info/?l=bugtraq&m=141390017113542&w=2 http://www.securitytracker.com/id/1028924 http://secunia.com/advisories/54478 http://secunia.com/advisories/54657 http://secunia.com/advisories/59652 SuSE Security Announcement: openSUSE-SU-2013:1963 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00125.html SuSE Security Announcement: openSUSE-SU-2013:1964 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00126.html http://www.ubuntu.com/usn/USN-1937-1
Copyright	Copyright (C) 2015 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.