ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2021.0330
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2021-0330)
Resumen:	The remote host is missing an update for the 'php' package(s) announced via the MGASA-2021-0330 advisory.
Descripción:	Summary: The remote host is missing an update for the 'php' package(s) announced via the MGASA-2021-0330 advisory. Vulnerability Insight: Updated php packages provides upstream 8.0.8 and fixes the following security vulnerabilities: - PDO_Firebird: * Fix Stack buffer overflow in firebird_info_cb (CVE-2021-21704). * Fix SIGSEGV in firebird_handle_doer (CVE-2021-21704). * Fix SIGSEGV in firebird_stmt_execute (CVE-2021-21704). * Fix Crash while parsing blob data in firebird_fetch_blob (CVE-2021-21704) - Fix SSRF bypass in FILTER_VALIDATE_URL (CVE-2021-21705). For other fixes in this update, see the referenced Changelog. Affected Software/OS: 'php' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-21704 https://security.gentoo.org/glsa/202209-20 https://bugs.php.net/bug.php?id=76448 https://bugs.php.net/bug.php?id=76449 https://bugs.php.net/bug.php?id=76450 https://bugs.php.net/bug.php?id=76452 Common Vulnerability Exposure (CVE) ID: CVE-2021-21705 https://security.netapp.com/advisory/ntap-20211029-0006/ https://bugs.php.net/bug.php?id=81122 https://www.oracle.com/security-alerts/cpujan2022.html
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.