[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Multiple vulnerabilities within PHP 4/5

From: Aviram Carmi <avi otn com>
To: "Discussion of Red Hat Enterprise Linux 3 (Taroon)" <taroon-list redhat com>
Subject: Multiple vulnerabilities within PHP 4/5
Date: Fri, 17 Dec 2004 13:07:29 -0800

Any idea when Red Hat will make the fixed version available?

RHEL ES v3 is at version 4.3.2 (29-May-2003), which is way older than the affected 4.3.9 (and obviously way older than the fixed 4.3.10).

I am not sure how to upgrade manually (i.e. without up2date) any pointers to manual updating?


                        Hardened-PHP Project
                        www.hardened-php.net

-= Security Advisory =-

     Advisory: Multiple vulnerabilities within PHP 4/5
 Release Date: 2004/12/15
Last Modified: 2004/12/15
       Author: Stefan Esser [sesser php net]

  Application: PHP4 <= 4.3.9
               PHP5 <= 5.0.2
     Severity: Several vulnerabilities within PHP allow
               local and remote execution of arbitrary code
         Risk: Critical
Vendor Status: Vendor has released bugfixed versions.
   References: http://www.hardened-php.net/advisories/012004.txt

--

Aviram Carmi
Owner
Executive Vice President, Technology

Over TheNet (R)
601 Daily Drive Suite #226
Camarillo, CA 93010-5840

http://www.otn.com/   Building Profitable Web Sites Today
(805) 384-1144 Voice  (805) 384-9111 FAX

Follow-Ups:
- Re: Multiple vulnerabilities within PHP 4/5
  - From: William Hooper

References:
- top showing too much memory?
  - From: Garrick Staples
- Re: top showing too much memory?
  - From: Larry Woodman

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]