Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.58262
Category:Slackware Local Security Checks
Title:Slackware Advisory SSA:2007-127-01 php
Summary:The remote host is missing an update as announced;via advisory SSA:2007-127-01.
Description:Summary:
The remote host is missing an update as announced
via advisory SSA:2007-127-01.

Vulnerability Insight:
New php packages are available for Slackware 10.2, 11.0, and -current
to improve the stability and security of PHP. All sites that use PHP are encouraged to upgrade. Please note that
we haven't tested all PHP applications for backwards compatibility
with this new upgrade, so you should have the old package on hand
just in case.

Both PHP 4.4.7 and PHP 5.2.2 updates have been provided.

Solution:
Upgrade to the new package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2007-1001
http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html
BugTraq ID: 23357
http://www.securityfocus.com/bid/23357
BugTraq ID: 25159
http://www.securityfocus.com/bid/25159
Bugtraq: 20070407 PHP <= 5.2.1 wbmp file handling integer overflow (Google Search)
http://www.securityfocus.com/archive/1/464957/100/0/threaded
Bugtraq: 20070418 rPSA-2007-0073-1 php php-mysql php-pgsql (Google Search)
http://www.securityfocus.com/archive/1/466166/100/0/threaded
http://security.gentoo.org/glsa/glsa-200705-19.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:087
http://www.mandriva.com/security/advisories?name=MDKSA-2007:088
http://www.mandriva.com/security/advisories?name=MDKSA-2007:089
http://www.mandriva.com/security/advisories?name=MDKSA-2007:090
http://cvs.php.net/viewvc.cgi/php-src/ext/gd/libgd/wbmp.c?r1=1.2.4.1&r2=1.2.4.1.8.1
http://ifsec.blogspot.com/2007/04/php-521-wbmp-file-handling-integer.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10179
http://www.redhat.com/support/errata/RHSA-2007-0153.html
RedHat Security Advisories: RHSA-2007:0155
http://rhn.redhat.com/errata/RHSA-2007-0155.html
http://www.redhat.com/support/errata/RHSA-2007-0162.html
http://secunia.com/advisories/24814
http://secunia.com/advisories/24909
http://secunia.com/advisories/24924
http://secunia.com/advisories/24945
http://secunia.com/advisories/24965
http://secunia.com/advisories/25056
http://secunia.com/advisories/25151
http://secunia.com/advisories/25445
http://secunia.com/advisories/26235
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.470053
SuSE Security Announcement: SUSE-SA:2007:032 (Google Search)
http://www.novell.com/linux/security/advisories/2007_32_php.html
http://www.vupen.com/english/advisories/2007/1269
http://www.vupen.com/english/advisories/2007/2732
XForce ISS Database: php-gd-overflow(33453)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33453
CopyrightCopyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2022 E-Soft Inc. All rights reserved.