Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory for PHP5 (SUSE-SU-2014:0873-2)
Summary:The remote host is missing an update for the 'PHP5'; package(s) announced via the referenced advisory.
The remote host is missing an update for the 'PHP5'
package(s) announced via the referenced advisory.

Vulnerability Insight:
PHP5 has been updated to fix four security vulnerabilities:

* Heap-based buffer overflow in DNS TXT record parsing (CVE-2014-4049)

* Heap based buffer overflow in time handling in openssl_x509_parse

* Man in the Middle attack in the openssl_x509_parse due to lack
of \0 handling (CVE-2013-4248)

* NULL pointer dereference in GD XPM decoder (CVE-2014-2497)

Affected Software/OS:
PHP5 on SUSE Linux Enterprise Server 11 SP1 LTSS

Please install the updated package(s).

CVSS Score:

CVSS Vector:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-4248
BugTraq ID: 61776
Debian Security Information: DSA-2742 (Google Search)
HPdes Security Advisory: HPSBUX03150
RedHat Security Advisories: RHSA-2013:1307
RedHat Security Advisories: RHSA-2013:1615
SuSE Security Announcement: openSUSE-SU-2013:1963 (Google Search)
SuSE Security Announcement: openSUSE-SU-2013:1964 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2013-6420
BugTraq ID: 64225
Debian Security Information: DSA-2816 (Google Search)
HPdes Security Advisory: HPSBMU03112
HPdes Security Advisory: SSRT101447
RedHat Security Advisories: RHSA-2013:1813
RedHat Security Advisories: RHSA-2013:1815
RedHat Security Advisories: RHSA-2013:1824
RedHat Security Advisories: RHSA-2013:1825
RedHat Security Advisories: RHSA-2013:1826
Common Vulnerability Exposure (CVE) ID: CVE-2014-2497
BugTraq ID: 66233
Debian Security Information: DSA-3215 (Google Search)
RedHat Security Advisories: RHSA-2014:1326
RedHat Security Advisories: RHSA-2014:1327
RedHat Security Advisories: RHSA-2014:1765
RedHat Security Advisories: RHSA-2014:1766
SuSE Security Announcement: SUSE-SU-2014:0868 (Google Search)
SuSE Security Announcement: SUSE-SU-2014:0869 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2014-4049
BugTraq ID: 68007
Debian Security Information: DSA-2961 (Google Search)
HPdes Security Advisory: HPSBUX03102
HPdes Security Advisory: SSRT101681
SuSE Security Announcement: openSUSE-SU-2014:0841 (Google Search)
SuSE Security Announcement: openSUSE-SU-2014:0942 (Google Search)
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.