Test ID:	1.3.6.1.4.1.25623.1.0.72088
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2011:197 (php)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to php announced via advisory MDVSA-2011:197. Multiple vulnerabilities has been discovered and corrected in php: Integer overflow in the exif_process_IFD_TAG function in exif.c in the exif extension in PHP 5.4.0beta2 on 32-bit platforms allows remote attackers to read the contents of arbitrary memory locations or cause a denial of service via a crafted offset_val value in an EXIF header in a JPEG file, a different vulnerability than CVE-2011-0708 (CVE-2011-4566). PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters (CVE-2011-4885). The updated packages have been patched to correct this issue. Affected: 2010.1, 2011. Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2011:197 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0708 16261 http://www.exploit-db.com/exploits/16261/ 46365 http://www.securityfocus.com/bid/46365 8114 http://securityreason.com/securityalert/8114 ADV-2011-0744 http://www.vupen.com/english/advisories/2011/0744 ADV-2011-0764 http://www.vupen.com/english/advisories/2011/0764 ADV-2011-0890 http://www.vupen.com/english/advisories/2011/0890 APPLE-SA-2011-10-12-3 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html DSA-2266 http://www.debian.org/security/2011/dsa-2266 FEDORA-2011-3614 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056642.html FEDORA-2011-3636 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057709.html FEDORA-2011-3666 http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057710.html HPSBOV02763 http://marc.info/?l=bugtraq&m=133469208622507&w=2 MDVSA-2011:052 http://www.mandriva.com/security/advisories?name=MDVSA-2011:052 MDVSA-2011:053 http://www.mandriva.com/security/advisories?name=MDVSA-2011:053 RHSA-2011:1423 http://www.redhat.com/support/errata/RHSA-2011-1423.html RHSA-2012:0071 http://rhn.redhat.com/errata/RHSA-2012-0071.html SSRT100826 [oss-security] 20110214 PHP Exif 64bit Casting Vulnerability, CVE request http://openwall.com/lists/oss-security/2011/02/14/1 [oss-security] 20110216 Re: Re: PHP Exif 64bit Casting Vulnerability, CVE request http://openwall.com/lists/oss-security/2011/02/16/7 http://bugs.php.net/bug.php?id=54002 http://support.apple.com/kb/HT5002 http://svn.php.net/viewvc?view=revision&revision=308316 http://www.php.net/ChangeLog-5.php http://www.php.net/archive/2011.php http://www.php.net/releases/5_3_6.php https://bugzilla.redhat.com/show_bug.cgi?id=680972 Common Vulnerability Exposure (CVE) ID: CVE-2011-4566 http://lists.apple.com/archives/security-announce/2012/May/msg00001.html BugTraq ID: 50907 http://www.securityfocus.com/bid/50907 Debian Security Information: DSA-2399 (Google Search) http://www.debian.org/security/2012/dsa-2399 http://www.mandriva.com/security/advisories?name=MDVSA-2011:197 http://www.redhat.com/support/errata/RHSA-2012-0019.html RedHat Security Advisories: RHSA-2012:0071 http://secunia.com/advisories/47253 http://secunia.com/advisories/48668 SuSE Security Announcement: openSUSE-SU-2012:0426 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html https://www.ubuntu.com/usn/USN-1307-1/ XForce ISS Database: php-exifprocessifdtag-dos(71612) https://exchange.xforce.ibmcloud.com/vulnerabilities/71612 Common Vulnerability Exposure (CVE) ID: CVE-2011-4885 BugTraq ID: 51193 http://www.securityfocus.com/bid/51193 Bugtraq: 20111228 n.runs-SA-2011.004 - web programming languages and platforms - DoS through hash table (Google Search) http://archives.neohapsis.com/archives/bugtraq/2011-12/0181.html CERT/CC vulnerability note: VU#903934 http://www.kb.cert.org/vuls/id/903934 http://www.exploit-db.com/exploits/18296 http://www.exploit-db.com/exploits/18305 HPdes Security Advisory: HPSBMU02786 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041 HPdes Security Advisory: HPSBOV02763 HPdes Security Advisory: HPSBUX02741 http://marc.info/?l=bugtraq&m=132871655717248&w=2 HPdes Security Advisory: SSRT100728 HPdes Security Advisory: SSRT100826 HPdes Security Advisory: SSRT100877 http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 http://www.nruns.com/_downloads/advisory28122011.pdf http://www.ocert.org/advisories/ocert-2011-003.html https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py http://www.securitytracker.com/id?1026473 http://secunia.com/advisories/47404 SuSE Security Announcement: SUSE-SU-2012:0411 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html XForce ISS Database: php-hash-dos(72021) https://exchange.xforce.ibmcloud.com/vulnerabilities/72021
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.