Slackware Local Security Checks : Slackware: Security Advisory (SSA:2008-045-03)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60386
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2008-045-03)
Resumen:	The remote host is missing an update for the 'php' package(s) announced via the SSA:2008-045-03 advisory.
Descripción:	Summary: The remote host is missing an update for the 'php' package(s) announced via the SSA:2008-045-03 advisory. Vulnerability Insight: New php-4.4.8 packages are available for Slackware 10.2 and 11.0 to fix security issues. More details about the issues may be found here: [link moved to references] Here are the details from the Slackware 11.0 ChangeLog: +--------------------------+ patches/packages/php-4.4.8-i486-1_slack11.0.tgz: Upgraded to php-4.4.8. This is a security and bugfix release. More information may be found here: [link moved to references] This is the last regular release of PHP-4.4.x. The EOL is scheduled for 2008-08-08. (* Security fix *) +--------------------------+ Affected Software/OS: 'php' package(s) on Slackware 10.2, Slackware 11.0. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1285 BugTraq ID: 22764 http://www.securityfocus.com/bid/22764 Bugtraq: 20070418 rPSA-2007-0073-1 php php-mysql php-pgsql (Google Search) http://www.securityfocus.com/archive/1/466166/100/0/threaded http://security.gentoo.org/glsa/glsa-200705-19.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:087 http://www.mandriva.com/security/advisories?name=MDKSA-2007:088 http://www.mandriva.com/security/advisories?name=MDKSA-2007:089 http://www.mandriva.com/security/advisories?name=MDKSA-2007:090 http://www.php-security.org/MOPB/MOPB-03-2007.html http://www.osvdb.org/32769 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11017 http://www.redhat.com/support/errata/RHSA-2007-0082.html RedHat Security Advisories: RHSA-2007:0154 http://rhn.redhat.com/errata/RHSA-2007-0154.html RedHat Security Advisories: RHSA-2007:0155 http://rhn.redhat.com/errata/RHSA-2007-0155.html http://www.redhat.com/support/errata/RHSA-2007-0162.html RedHat Security Advisories: RHSA-2007:0163 http://rhn.redhat.com/errata/RHSA-2007-0163.html http://www.securitytracker.com/id?1017771 http://secunia.com/advisories/24909 http://secunia.com/advisories/24910 http://secunia.com/advisories/24924 http://secunia.com/advisories/24941 http://secunia.com/advisories/24945 http://secunia.com/advisories/25445 http://secunia.com/advisories/26048 http://secunia.com/advisories/26642 http://secunia.com/advisories/27864 http://secunia.com/advisories/28936 http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.335136 SuSE Security Announcement: SUSE-SA:2007:044 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html https://usn.ubuntu.com/549-1/ http://www.ubuntu.com/usn/usn-549-2 Common Vulnerability Exposure (CVE) ID: CVE-2007-2872 1018186 http://www.securitytracker.com/id?1018186 2007-0023 http://www.trustix.org/errata/2007/0023/ 20070601 SEC Consult SA-20070601-0 :: PHP chunk_split() integer overflow http://www.securityfocus.com/archive/1/470244/100/0/threaded 24261 http://www.securityfocus.com/bid/24261 25456 http://secunia.com/advisories/25456 25535 http://secunia.com/advisories/25535 26048 26231 http://secunia.com/advisories/26231 26838 http://secunia.com/advisories/26838 26871 http://secunia.com/advisories/26871 26895 http://secunia.com/advisories/26895 26930 http://secunia.com/advisories/26930 26967 http://secunia.com/advisories/26967 27037 http://secunia.com/advisories/27037 27102 http://secunia.com/advisories/27102 27110 http://secunia.com/advisories/27110 27351 http://secunia.com/advisories/27351 27377 http://secunia.com/advisories/27377 27545 http://secunia.com/advisories/27545 27864 28318 http://secunia.com/advisories/28318 28658 http://secunia.com/advisories/28658 28750 http://secunia.com/advisories/28750 28936 30040 http://secunia.com/advisories/30040 36083 http://osvdb.org/36083 ADV-2007-2061 http://www.vupen.com/english/advisories/2007/2061 ADV-2007-3386 http://www.vupen.com/english/advisories/2007/3386 ADV-2008-0059 http://www.vupen.com/english/advisories/2008/0059 ADV-2008-0398 http://www.vupen.com/english/advisories/2008/0398 FEDORA-2007-2215 https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.html FEDORA-2007-709 https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html GLSA-200710-02 http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml HPSBUX02262 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795 HPSBUX02308 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01345501 HPSBUX02332 http://www.securityfocus.com/archive/1/491693/100/0/threaded MDKSA-2007:187 http://www.mandriva.com/security/advisories?name=MDKSA-2007:187 OpenPKG-SA-2007.020 http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.020.html RHSA-2007:0888 http://www.redhat.com/support/errata/RHSA-2007-0888.html RHSA-2007:0889 http://rhn.redhat.com/errata/RHSA-2007-0889.html RHSA-2007:0890 http://www.redhat.com/support/errata/RHSA-2007-0890.html RHSA-2007:0891 http://www.redhat.com/support/errata/RHSA-2007-0891.html SSA:2007-152-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863 SSA:2008-045-03 SSRT071447 SSRT080010 SSRT080056 SUSE-SA:2007:044 SUSE-SA:2008:004 http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html USN-549-1 USN-549-2 http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm http://www.php.net/ChangeLog-4.php http://www.php.net/releases/4_4_8.php http://www.php.net/releases/5_2_3.php http://www.sec-consult.com/291.html https://issues.rpath.com/browse/RPL-1693 https://issues.rpath.com/browse/RPL-1702 https://launchpad.net/bugs/173043 oval:org.mitre.oval:def:9424 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9424 php-chunksplit-security-bypass(39398) https://exchange.xforce.ibmcloud.com/vulnerabilities/39398 Common Vulnerability Exposure (CVE) ID: CVE-2007-3378 http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html BugTraq ID: 24661 http://www.securityfocus.com/bid/24661 BugTraq ID: 25498 http://www.securityfocus.com/bid/25498 Bugtraq: 20070627 PHP 4/5 htaccess safemode and open_basedir Bypass (Google Search) http://www.securityfocus.com/archive/1/472343/100/0/threaded http://seclists.org/fulldisclosure/2020/Sep/34 HPdes Security Advisory: HPSBUX02308 HPdes Security Advisory: HPSBUX02332 HPdes Security Advisory: SSRT080010 HPdes Security Advisory: SSRT080056 http://securityreason.com/achievement_exploitalert/9 http://www.openwall.com/lists/oss-security/2020/09/17/3 http://www.osvdb.org/38682 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6056 http://secunia.com/advisories/26822 http://secunia.com/advisories/27648 http://secunia.com/advisories/29420 http://securityreason.com/securityalert/2831 http://securityreason.com/securityalert/3389 http://securityreason.com/achievement_securityalert/45 http://www.trustix.org/errata/2007/0026/ http://www.vupen.com/english/advisories/2007/3023 http://www.vupen.com/english/advisories/2008/0924/references XForce ISS Database: php-htaccess-security-bypass(35102) https://exchange.xforce.ibmcloud.com/vulnerabilities/35102 XForce ISS Database: php-sessionsavepath-errorlog-security-bypass(39403) https://exchange.xforce.ibmcloud.com/vulnerabilities/39403 Common Vulnerability Exposure (CVE) ID: CVE-2007-4657 Debian Security Information: DSA-1444 (Google Search) http://www.debian.org/security/2008/dsa-1444 Debian Security Information: DSA-1578 (Google Search) http://www.debian.org/security/2008/dsa-1578 http://secweb.se/en/advisories/php-strcspn-information-leak-vulnerability/ http://secunia.com/advisories/28249 http://secunia.com/advisories/30288 XForce ISS Database: php-strcspn-overflow(36388) https://exchange.xforce.ibmcloud.com/vulnerabilities/36388 XForce ISS Database: php-strcspn-strspn-unspecified(39399) https://exchange.xforce.ibmcloud.com/vulnerabilities/39399 Common Vulnerability Exposure (CVE) ID: CVE-2007-4658 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10363 RedHat Security Advisories: RHSA-2007:0889 SuSE Security Announcement: SUSE-SA:2008:004 (Google Search) XForce ISS Database: php-moneyformat-unspecified(36377) https://exchange.xforce.ibmcloud.com/vulnerabilities/36377 Common Vulnerability Exposure (CVE) ID: CVE-2008-0145 XForce ISS Database: php-glob-openbasedir-security-bypass(39401) https://exchange.xforce.ibmcloud.com/vulnerabilities/39401
Copyright	Copyright (C) 2012 Greenbone AG