Puslapiai
(Perkelti į...)
Pradinis puslapis
Nuorodos
▼
[ MDVSA-2015:209 ] php
Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/ ______________________________ ______________________________
___________ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 ______________________________ ______________________________ ___________ Problem Description: Updated php packages fix security vulnerabilities: Buffer Over-read in unserialize when parsing Phar (CVE-2015-2783). Buffer Overflow when parsing tar/zip/phar in phar_set_inode (CVE-2015-3329). Potential remote code execution with apache 2.4 apache2handler (CVE-2015-3330). PHP has been updated to version 5.5.24, which fixes these issues and other bugs. Additionally the timezonedb packages has been upgraded to the latest version and the PECL packages which requires so has been rebuilt for php-5.5.24. ______________________________ ______________________________ ___________ References: http://cve.mitre.org/cgi-bin/ http://cve.mitre.org/cgi-bin/ http://cve.mitre.org/cgi-bin/ http://advisories.mageia.org/
______________________________ ______________________________ ___________ Updated Packages: Mandriva Business Server 1/X86_64: fb5b4628263a821fb3e4075a5fb4e5 b4 mbs1/x86_64/apache-mod_php-5. 5.24-1.mbs1.x86_64.rpm 3c7f76ada5ccad65c212ee350fdffe 87 mbs1/x86_64/lib64php5_common5- 5.5.24-1.mbs1.x86_64.rpm 5400e21c3eaecc346e1eb8c712e947 8f mbs1/x86_64/php-apc-3.1.15-1. 18.mbs1.x86_64.rpm 90ae23234441a8de169207ff7f0456 84 mbs1/x86_64/php-apc-admin-3.1. 15-1.18.mbs1.x86_64.rpm a39b53bcacc941035d830ce1052540 b3 mbs1/x86_64/php-bcmath-5.5.24- 1.mbs1.x86_64.rpm ada97c19882cf313e4d7ebba0909f6 d8 mbs1/x86_64/php-bz2-5.5.24-1. mbs1.x86_64.rpm c6e5c880827c6bc76dfb1c15460637 b4 mbs1/x86_64/php-calendar-5.5. 24-1.mbs1.x86_64.rpm 6535a7223184cec5ac17edb9e1d313 88 mbs1/x86_64/php-cgi-5.5.24-1. mbs1.x86_64.rpm 16aa52d7dd47cc27cb5d7aec420944 eb mbs1/x86_64/php-cli-5.5.24-1. mbs1.x86_64.rpm 7983f9d1bf3039b5efdb0ed70329cc cd mbs1/x86_64/php-ctype-5.5.24- 1.mbs1.x86_64.rpm 3cbc805a1610b54d191e2e3ca99c3a e4 mbs1/x86_64/php-curl-5.5.24-1. mbs1.x86_64.rpm f53dd6f08013c00ae1c95df1467162 4e mbs1/x86_64/php-dba-5.5.24-1. mbs1.x86_64.rpm e2a5d632a8581e27a366191c9fd864 24 mbs1/x86_64/php-devel-5.5.24- 1.mbs1.x86_64.rpm 37bb13541a04b935c93600dc63e980 47 mbs1/x86_64/php-doc-5.5.24-1. mbs1.noarch.rpm fad46645f9afb86eedf094cbe82eae be mbs1/x86_64/php-dom-5.5.24-1. mbs1.x86_64.rpm 22141396e7bccb2aac8a2e7c0d0f02 aa mbs1/x86_64/php-enchant-5.5. 24-1.mbs1.x86_64.rpm e3f7bc72aad9e3fb7b9f25f64d9ca9 5c mbs1/x86_64/php-exif-5.5.24-1. mbs1.x86_64.rpm 53a76b203f90a9008eb35cdf93aac2 46 mbs1/x86_64/php-fileinfo-5.5. 24-1.mbs1.x86_64.rpm 7cb8c9592f48413f3783f49947563a 8f mbs1/x86_64/php-filter-5.5.24- 1.mbs1.x86_64.rpm 3d34478d09bbf6848c8c2eaea0156f eb mbs1/x86_64/php-fpm-5.5.24-1. mbs1.x86_64.rpm fc47e9e9b740e94e5210854b7872af 8f mbs1/x86_64/php-ftp-5.5.24-1. mbs1.x86_64.rpm e22e5cf59f7d0c361b41e220fd0ebb de mbs1/x86_64/php-gd-5.5.24-1. mbs1.x86_64.rpm cd5fef5777b58e0562ddeb3ca4b4e1 dd mbs1/x86_64/php-gettext-5.5. 24-1.mbs1.x86_64.rpm aba136588f2c77f2cca4bcc300e7f0 b5 mbs1/x86_64/php-gmp-5.5.24-1. mbs1.x86_64.rpm 8752b1e4f863b2cdadf08cfdcaf462 f7 mbs1/x86_64/php-hash-5.5.24-1. mbs1.x86_64.rpm 36bef8c7e03cdffd66a4553266e1a1 3d mbs1/x86_64/php-iconv-5.5.24- 1.mbs1.x86_64.rpm 0b405f5f49d174745a4135e033fbe2 34 mbs1/x86_64/php-imap-5.5.24-1. mbs1.x86_64.rpm fc25a10fb623016b5e95595aa11427 4a mbs1/x86_64/php-ini-5.5.24-1. mbs1.x86_64.rpm c4435a44b199cd4fadca0cac247aca 06 mbs1/x86_64/php-intl-5.5.24-1. mbs1.x86_64.rpm ec611fd14d6b502990fe0a3ab24321 1a mbs1/x86_64/php-json-5.5.24-1. mbs1.x86_64.rpm 519c8ae2df9aeca23d15953470c3a4 85 mbs1/x86_64/php-ldap-5.5.24-1. mbs1.x86_64.rpm f52168266f3d1df5a333f2acb83c77 39 mbs1/x86_64/php-mbstring-5.5. 24-1.mbs1.x86_64.rpm 8fed199f0b2be5b2d1780bed11c5c5 d6 mbs1/x86_64/php-mcrypt-5.5.24- 1.mbs1.x86_64.rpm e5d5276bcfaa7d951b4b543e76949a 2f mbs1/x86_64/php-mssql-5.5.24- 1.mbs1.x86_64.rpm 0a34a8334cd8a3e4d7867a962df62f 15 mbs1/x86_64/php-mysql-5.5.24- 1.mbs1.x86_64.rpm 3fd0dcc4cb8c4ef136c68e243788aa 85 mbs1/x86_64/php-mysqli-5.5.24- 1.mbs1.x86_64.rpm d9db3dd5963888f69b11cdaa1d1c97 e4 mbs1/x86_64/php-mysqlnd-5.5. 24-1.mbs1.x86_64.rpm f27cbd0c9f968bfa7d6f10d8040a1f 4f mbs1/x86_64/php-odbc-5.5.24-1. mbs1.x86_64.rpm db18ba83bd3e8f82f189c4e93799de 9a mbs1/x86_64/php-opcache-5.5. 24-1.mbs1.x86_64.rpm 7e02eaad2751f993fcd7af5a649b47 07 mbs1/x86_64/php-openssl-5.5. 24-1.mbs1.x86_64.rpm be43bdb8b4c0ea65901bb7ab4a12e1 be mbs1/x86_64/php-pcntl-5.5.24- 1.mbs1.x86_64.rpm 57ba222e0921de0efcad052a1ed359 cc mbs1/x86_64/php-pdo-5.5.24-1. mbs1.x86_64.rpm 3ba50d22dead03f756136363e1e2ce 27 mbs1/x86_64/php-pdo_dblib-5.5. 24-1.mbs1.x86_64.rpm fe6858486fc7a42f7099f103fec8e0 c9 mbs1/x86_64/php-pdo_mysql-5.5. 24-1.mbs1.x86_64.rpm 407570e83b281be3515970aa6e24a7 73 mbs1/x86_64/php-pdo_odbc-5.5. 24-1.mbs1.x86_64.rpm e5c66883133694a146b0f4840749a7 d7 mbs1/x86_64/php-pdo_pgsql-5.5. 24-1.mbs1.x86_64.rpm d41508abccb63d3b0c0d44a82596f1 d6 mbs1/x86_64/php-pdo_sqlite-5. 5.24-1.mbs1.x86_64.rpm 3f7dd514cca5b5259854043194099c 4c mbs1/x86_64/php-pgsql-5.5.24- 1.mbs1.x86_64.rpm 1b6b8a0d2e033b35697757a49329d5 1e mbs1/x86_64/php-phar-5.5.24-1. mbs1.x86_64.rpm 30e86f3079cd49241d680f46542b16 b8 mbs1/x86_64/php-posix-5.5.24- 1.mbs1.x86_64.rpm b065951f2e32008908857708ae2f15 39 mbs1/x86_64/php-readline-5.5. 24-1.mbs1.x86_64.rpm 13886e31952529313c505acbc7ebbb c6 mbs1/x86_64/php-recode-5.5.24- 1.mbs1.x86_64.rpm 95ca2a29237d6f3e6f852431626be0 72 mbs1/x86_64/php-session-5.5. 24-1.mbs1.x86_64.rpm f5f33541bc2a3b3f0b456989e20aa4 5c mbs1/x86_64/php-shmop-5.5.24- 1.mbs1.x86_64.rpm c5414a148aa0e25b03b9faf79c5069 3a mbs1/x86_64/php-snmp-5.5.24-1. mbs1.x86_64.rpm d02afd660db7544b09328445c2f99e c6 mbs1/x86_64/php-soap-5.5.24-1. mbs1.x86_64.rpm 239a1c675cf3a4f853cc94cfc188e6 0e mbs1/x86_64/php-sockets-5.5. 24-1.mbs1.x86_64.rpm 04e689ed1f9163a149f3448cfe4bd2 18 mbs1/x86_64/php-sqlite3-5.5. 24-1.mbs1.x86_64.rpm a39905d2eae282b1d06db94afbf512 55 mbs1/x86_64/php-sybase_ct-5.5. 24-1.mbs1.x86_64.rpm a7fd332d4fea37c9f3335a0d8921f2 28 mbs1/x86_64/php-sysvmsg-5.5. 24-1.mbs1.x86_64.rpm b9fdd882caee7f469d3c285082e8f7 17 mbs1/x86_64/php-sysvsem-5.5. 24-1.mbs1.x86_64.rpm 79ede61a89fae9e6fab33f1a99b3de d7 mbs1/x86_64/php-sysvshm-5.5. 24-1.mbs1.x86_64.rpm 5f0b1072e400ccc886979e7647c160 f2 mbs1/x86_64/php-tidy-5.5.24-1. mbs1.x86_64.rpm 1df6d933d3f5c14bb334b8e49df509 01 mbs1/x86_64/php-timezonedb- 2015.4-1.mbs1.x86_64.rpm e03d364e8d94dc5e509f89ad06b1ce ec mbs1/x86_64/php-tokenizer-5.5. 24-1.mbs1.x86_64.rpm 4eb33980b578bc3f7c8436993e401a 6b mbs1/x86_64/php-wddx-5.5.24-1. mbs1.x86_64.rpm cfb0b798a98736cebe6d2854610e5c 88 mbs1/x86_64/php-xml-5.5.24-1. mbs1.x86_64.rpm 2d05b6ecae1866827a732b19bdea26 82 mbs1/x86_64/php-xmlreader-5.5. 24-1.mbs1.x86_64.rpm bab20d281d211f8202d881723f0091 f1 mbs1/x86_64/php-xmlrpc-5.5.24- 1.mbs1.x86_64.rpm d213f4b86b0532049556a37958d125 70 mbs1/x86_64/php-xmlwriter-5.5. 24-1.mbs1.x86_64.rpm a43e88b8cb0cf9a46d63f318d63853 c7 mbs1/x86_64/php-xsl-5.5.24-1. mbs1.x86_64.rpm 3150b97e91d4363c5b79b6e67cf4fe be mbs1/x86_64/php-zip-5.5.24-1. mbs1.x86_64.rpm 962d3621008091b8186481e521296d 29 mbs1/x86_64/php-zlib-5.5.24-1. mbs1.x86_64.rpm 52139e1dbd986bf5b685ee0f92e67d a2 mbs1/SRPMS/php-5.5.24-1.mbs1. src.rpm 854f5600d70006910d80643b638289 d4 mbs1/SRPMS/php-apc-3.1.15-1. 18.mbs1.src.rpm 77e0fad280231397615e51f099b33f 1c mbs1/SRPMS/php-timezonedb- 2015.4-1.mbs1.src.rpm Mandriva Business Server 2/X86_64: 2a2dcd3f73583e81c1d4ca142814ed 6a mbs2/x86_64/apache-mod_php-5. 5.24-1.mbs2.x86_64.rpm a7964f16c85b0772835366fa821f7d d1 mbs2/x86_64/lib64php5_common5- 5.5.24-1.mbs2.x86_64.rpm 624d6512573e4ccc202f9ea0843372 7e mbs2/x86_64/php-bcmath-5.5.24- 1.mbs2.x86_64.rpm dd817015c54820a9fc967da7db4b14 61 mbs2/x86_64/php-bz2-5.5.24-1. mbs2.x86_64.rpm 1c022b50d3f12d3e8e358fca3afe6f 0f mbs2/x86_64/php-calendar-5.5. 24-1.mbs2.x86_64.rpm 52159b3e747e424b1fe40944f404b4 5d mbs2/x86_64/php-cgi-5.5.24-1. mbs2.x86_64.rpm 5ac82cf4acc95e8d8a80537173a1dc 98 mbs2/x86_64/php-cli-5.5.24-1. mbs2.x86_64.rpm e7271551aa14e6931b0ba22ee33d37 12 mbs2/x86_64/php-ctype-5.5.24- 1.mbs2.x86_64.rpm 7293fa4917183914c356cc2376a5e1 ab mbs2/x86_64/php-curl-5.5.24-1. mbs2.x86_64.rpm 258058f8e1cda5be8a9444964a5536 91 mbs2/x86_64/php-dba-5.5.24-1. mbs2.x86_64.rpm c0a6fa757e9ffda700f65a93442564 d4 mbs2/x86_64/php-devel-5.5.24- 1.mbs2.x86_64.rpm c06bc210915a004b2b9fcd084f853e 20 mbs2/x86_64/php-doc-5.5.24-1. mbs2.noarch.rpm 049a5952ec9f5af423d4ecc78ff80f 60 mbs2/x86_64/php-dom-5.5.24-1. mbs2.x86_64.rpm c09f88b638281bb87aea12ef38455f 36 mbs2/x86_64/php-enchant-5.5. 24-1.mbs2.x86_64.rpm 54d1dc9b189dfb87de442ba2c765de ef mbs2/x86_64/php-exif-5.5.24-1. mbs2.x86_64.rpm ee6d0aa018912da413a14365a41cc1 a2 mbs2/x86_64/php-fileinfo-5.5. 24-1.mbs2.x86_64.rpm 0f216dc10bb650bdf29c01d9905ca4 f2 mbs2/x86_64/php-filter-5.5.24- 1.mbs2.x86_64.rpm 4bf7b3c69724d769e10f8341c95d60 04 mbs2/x86_64/php-fpm-5.5.24-1. mbs2.x86_64.rpm aeb60443860bbb7e88a0288fb3e2f6 cd mbs2/x86_64/php-ftp-5.5.24-1. mbs2.x86_64.rpm 226a551699749179b94570dfa3c509 86 mbs2/x86_64/php-gd-5.5.24-1. mbs2.x86_64.rpm 5e29df38df1b862e4ba3b5486cdbcc 47 mbs2/x86_64/php-gettext-5.5. 24-1.mbs2.x86_64.rpm ead9effbca236c6c2902955935c282 25 mbs2/x86_64/php-gmp-5.5.24-1. mbs2.x86_64.rpm c8f01d16bb8cbbd1d891c68c54d2dd 16 mbs2/x86_64/php-hash-5.5.24-1. mbs2.x86_64.rpm c1c7332cf8dc2c0d21cb57bf4d7f81 dd mbs2/x86_64/php-iconv-5.5.24- 1.mbs2.x86_64.rpm 7f86a963f8cf5e6351acd1fdf995b7 a1 mbs2/x86_64/php-imap-5.5.24-1. mbs2.x86_64.rpm 215c060793b574a36c28131dca9bf9 c7 mbs2/x86_64/php-ini-5.5.24-1. mbs2.x86_64.rpm 7f07f161b4e1885aa807d3753d948e 10 mbs2/x86_64/php-interbase-5.5. 24-1.mbs2.x86_64.rpm 8171c9830749db254898f80f8ecbdd 04 mbs2/x86_64/php-intl-5.5.24-1. mbs2.x86_64.rpm 1fa26b49fa8e0b776d484b4fcc0d4b f3 mbs2/x86_64/php-json-5.5.24-1. mbs2.x86_64.rpm 29051ac44b6e2068a71c026e9d4585 36 mbs2/x86_64/php-ldap-5.5.24-1. mbs2.x86_64.rpm 3d97347fe4b9589ae80b7fd16c281d cd mbs2/x86_64/php-mbstring-5.5. 24-1.mbs2.x86_64.rpm 1a5a41400380b4bcde25d2b693e1da b0 mbs2/x86_64/php-mcrypt-5.5.24- 1.mbs2.x86_64.rpm a79635ca99cd7ae80d1661373161da 1f mbs2/x86_64/php-mssql-5.5.24- 1.mbs2.x86_64.rpm cdc3bde549c9ae73915db8a0e0919c e5 mbs2/x86_64/php-mysql-5.5.24- 1.mbs2.x86_64.rpm 7a72c1ab11020a2c52aa3a74636d53 42 mbs2/x86_64/php-mysqli-5.5.24- 1.mbs2.x86_64.rpm 93fb357f9dbf32887a98a5409b3b8a 16 mbs2/x86_64/php-mysqlnd-5.5. 24-1.mbs2.x86_64.rpm caf79717e1ca56ec3e53fdaa25e734 aa mbs2/x86_64/php-odbc-5.5.24-1. mbs2.x86_64.rpm eb293f64d2bd635c70d36274275e60 bb mbs2/x86_64/php-opcache-5.5. 24-1.mbs2.x86_64.rpm 91847d268cb8a62eb0e89fc95a9c51 e6 mbs2/x86_64/php-openssl-5.5. 24-1.mbs2.x86_64.rpm 35e065d8684684e3e304bafbb309c8 95 mbs2/x86_64/php-pcntl-5.5.24- 1.mbs2.x86_64.rpm d65e05e7edf7480ed362783dc75609 be mbs2/x86_64/php-pdo-5.5.24-1. mbs2.x86_64.rpm 8657b2e1171497ff9ae5864ecccfeb 23 mbs2/x86_64/php-pdo_dblib-5.5. 24-1.mbs2.x86_64.rpm 19c9414ced1e0806b77347f9427d66 53 mbs2/x86_64/php-pdo_firebird- 5.5.24-1.mbs2.x86_64.rpm 28b09335667ac3993f1aca5da234df 8a mbs2/x86_64/php-pdo_mysql-5.5. 24-1.mbs2.x86_64.rpm b928f58777cfbd848985606bd680bf 8f mbs2/x86_64/php-pdo_odbc-5.5. 24-1.mbs2.x86_64.rpm ba6bf3afe9d497b9f1d99cb467b13c a5 mbs2/x86_64/php-pdo_pgsql-5.5. 24-1.mbs2.x86_64.rpm 21823497094c28ce7bf74f052122fe 99 mbs2/x86_64/php-pdo_sqlite-5. 5.24-1.mbs2.x86_64.rpm 4a6a259c16ca5bad2b466f29acad49 85 mbs2/x86_64/php-pgsql-5.5.24- 1.mbs2.x86_64.rpm 7c9c9f9555a74f3257c6e8f16222d2 1f mbs2/x86_64/php-phar-5.5.24-1. mbs2.x86_64.rpm db4254db501a4fca54fa367b20f068 f4 mbs2/x86_64/php-posix-5.5.24- 1.mbs2.x86_64.rpm 10fb26df5f5a5d3b1988c40678b56f b6 mbs2/x86_64/php-readline-5.5. 24-1.mbs2.x86_64.rpm c20ddec24b84440146734feb639b0f 00 mbs2/x86_64/php-recode-5.5.24- 1.mbs2.x86_64.rpm 68a49598e99391f37342a3d23a1414 e7 mbs2/x86_64/php-session-5.5. 24-1.mbs2.x86_64.rpm a26563d738120cba5f81ddda143ca5 5f mbs2/x86_64/php-shmop-5.5.24- 1.mbs2.x86_64.rpm d69120a1ed4aeb3fe229cc83120d8c 78 mbs2/x86_64/php-snmp-5.5.24-1. mbs2.x86_64.rpm 4596e3f325f70a29bf12d76793984b 20 mbs2/x86_64/php-soap-5.5.24-1. mbs2.x86_64.rpm 7deda5cc9443b117fad82352943353 ff mbs2/x86_64/php-sockets-5.5. 24-1.mbs2.x86_64.rpm bc3f0ad45bb5bf488c73a5933a70d2 c0 mbs2/x86_64/php-sqlite3-5.5. 24-1.mbs2.x86_64.rpm 295fa388d26e62dcb0faf23c6e690f fa mbs2/x86_64/php-sybase_ct-5.5. 24-1.mbs2.x86_64.rpm 88367608d60aac24ca0b0d0d92187b 0e mbs2/x86_64/php-sysvmsg-5.5. 24-1.mbs2.x86_64.rpm 36eac7d0e9a1f148e8954912db56dc 13 mbs2/x86_64/php-sysvsem-5.5. 24-1.mbs2.x86_64.rpm 74e6909f0c7a516bd99625c649bed3 3c mbs2/x86_64/php-sysvshm-5.5. 24-1.mbs2.x86_64.rpm 9142ae8fb4665580503bc0520d3aaf 89 mbs2/x86_64/php-tidy-5.5.24-1. mbs2.x86_64.rpm 4ee29061197f48af9c987d31abdec8 23 mbs2/x86_64/php-timezonedb- 2015.4-1.mbs2.x86_64.rpm eafea4beda5144dd3adac0afce3f22 58 mbs2/x86_64/php-tokenizer-5.5. 24-1.mbs2.x86_64.rpm 505c78284f22f95d8a574c13ea043b c4 mbs2/x86_64/php-wddx-5.5.24-1. mbs2.x86_64.rpm e7e4fe996d11553ebd80ad4392caae 2e mbs2/x86_64/php-xml-5.5.24-1. mbs2.x86_64.rpm 7a1c383a450c6a80f95255434e5390 fd mbs2/x86_64/php-xmlreader-5.5. 24-1.mbs2.x86_64.rpm 2af0b36e46ba236da59a98631c664b d9 mbs2/x86_64/php-xmlrpc-5.5.24- 1.mbs2.x86_64.rpm a3f77553286094ecd60e174cfdb0e6 dc mbs2/x86_64/php-xmlwriter-5.5. 24-1.mbs2.x86_64.rpm b3bb2d250c73f7c355394353b4c059 9d mbs2/x86_64/php-xsl-5.5.24-1. mbs2.x86_64.rpm a8f9476cba7a6aaab6eee8da66fd8f ea mbs2/x86_64/php-zip-5.5.24-1. mbs2.x86_64.rpm 43d4282dddd18c07b87774cf704ce5 be mbs2/x86_64/php-zlib-5.5.24-1. mbs2.x86_64.rpm 8cdfdd3582b44c38d735c58aea9e45 f7 mbs2/SRPMS/php-5.5.24-1.mbs2. src.rpm 09afb4a05a8a1add563f2cb348fb2b 0d mbs2/SRPMS/php-timezonedb- 2015.4-1.mbs2.src.rpm ______________________________ ______________________________ ___________ To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing: gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98 You can view other update advisories for Mandriva Linux at: http://www.mandriva.com/en/ If you want to report vulnerabilities, please contact security_(at)_ mandriva.com
Komentarų nėra:
Rašyti komentarą