Mandriva update for php - Secunia Advisories - Vulnerability Information

Vulnerability Information

Vulnerability Scanning

Community

Blog - new entry!

Corporate Information

Home > Vulnerability Information > Secunia Advisories > Mandriva update for php

Secunia Advisories

Advisories

Advisories by Product

Business Solutions Restricted

Partner Solutions Restricted

About

Mandriva update for php

Secunia Advisory:

SA22424

Advisory Toolbox:

Issue ticket

Save in to-do list

Mark as handled

Exploit information

Download as PDF

Review actions

Add comment

Release Date:

2006-10-18

Popularity:

5,464 views

Critical:

Less critical

Impact:

Security Bypass

Where:

Local system

Solution Status:

Vendor Workaround

OS:

Mandriva Linux 2006
Mandriva Linux 2007.0

Secunia CVSS-2 Score:

Available in Secunia business solutions

Subscribe:

Instant alerts on relevant vulnerabilities

Advisory Content (Page 2 of 3)

[ 1 ] [ 2 ] [ 3 ]

Secunia is hiring, read about the open positions here!

Solution:
Apply updated packages. Additionally the vendor recommends to disable the "symlink()" function when using the "open_basedir" feature.

Mandriva Linux 2006

7b9ad6634f3b5307025b87ad98561bd4 2006.0/i586/libphp5_common5-5.0.4-9.16.20060mdk.i586.rpm
0d8236ff100de2f5302823d5ba5b2352 2006.0/i586/php-cgi-5.0.4-9.16.20060mdk.i586.rpm
2a571c3bce931c414c23cf60a7adf794 2006.0/i586/php-cli-5.0.4-9.16.20060mdk.i586.rpm
1b5cc543c1274843eaa00e72d9ee0862 2006.0/i586/php-devel-5.0.4-9.16.20060mdk.i586.rpm
7c1c90f460b51eb7675f9fa297e49db6 2006.0/i586/php-fcgi-5.0.4-9.16.20060mdk.i586.rpm
017578a23304ae4f57d24de3d3f15cd8 2006.0/SRPMS/php-5.0.4-9.16.20060mdk.src.rpm

Mandriva Linux 2006/X86_64

2a059bc5330467dbeba77ea79b647874 2006.0/x86_64/lib64php5_common5-5.0.4-9.16.20060mdk.x86_64.rpm
3a59479574575a357e841abfbce8b143 2006.0/x86_64/php-cgi-5.0.4-9.16.20060mdk.x86_64.rpm
75e164fa3b7be5cd31d89c14e97abc7c 2006.0/x86_64/php-cli-5.0.4-9.16.20060mdk.x86_64.rpm
247d30753dfd7905dd551acddfe9ec38 2006.0/x86_64/php-devel-5.0.4-9.16.20060mdk.x86_64.rpm
30c793f9c493c8f75d554b9831adcc41 2006.0/x86_64/php-fcgi-5.0.4-9.16.20060mdk.x86_64.rpm
017578a23304ae4f57d24de3d3f15cd8 2006.0/SRPMS/php-5.0.4-9.16.20060mdk.src.rpm

Mandriva Linux 2007

6fe8562e783fc7ba1ffe6004747f6ea1 2007.0/i586/libphp5_common5-5.1.6-1.2mdv2007.0.i586.rpm
9535734bceebf3f5866d88df9ce13416 2007.0/i586/php-cgi-5.1.6-1.2mdv2007.0.i586.rpm
9c205cc11ea4bd566528cf484da6a799 2007.0/i586/php-cli-5.1.6-1.2mdv2007.0.i586.rpm
ea9d3720bab8912cedb03ba031448f02 2007.0/i586/php-devel-5.1.6-1.2mdv2007.0.i586.rpm
dbfdb03f5d8959305a74bee6d01f87bb 2007.0/i586/php-fcgi-5.1.6-1.2mdv2007.0.i586.rpm
7576b12cb3591dbc2ccda6a364ad78a0 2007.0/SRPMS/php-5.1.6-1.2mdv2007.0.src.rpm

Mandriva Linux 2007/X86_64

1d5b9358b862e3d5a329d9e8dfdca7d6 2007.0/x86_64/lib64php5_common5-5.1.6-1.2mdv2007.0.x86_64.rpm
e761594b551c9416d3c525acd3404ec9 2007.0/x86_64/php-cgi-5.1.6-1.2mdv2007.0.x86_64.rpm
e33c203f34d05200eae7e807eb55db06 2007.0/x86_64/php-cli-5.1.6-1.2mdv2007.0.x86_64.rpm
8ff2c627456c5be71a49fe9713d7a04b 2007.0/x86_64/php-devel-5.1.6-1.2mdv2007.0.x86_64.rpm
251c46935c1137cec958766aef5940ee 2007.0/x86_64/php-fcgi-5.1.6-1.2mdv2007.0.x86_64.rpm
7576b12cb3591dbc2ccda6a364ad78a0 2007.0/SRPMS/php-5.1.6-1.2mdv2007.0.src.rpm

Original Advisory:
http://www.mandriva.com/security/advisories?name=MDKSA-2006:185

Other References:
SA22235:
http://secunia.com/advisories/22235/

SA22282:
http://secunia.com/advisories/22282/

Change Page:
[ 1 ] [ 2 ] [ 3 ]

Track this Secunia Advisory

Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory

Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

New advisories:	6
New vulnerabilities:	6
Updated advisories:	8

Less // 32 views

Sun Solaris sshd Timeout Mechanism Denial of Service

Moderately // 65 views

OpenX Arbitrary File Upload Vulnerability

Highly // 59 views

Symantec Altiris ConsoleUtilities ActiveX Control "RunCmd()" Buffer Overflow

Moderately // 62 views

Debian update for libvorbis

Less // 83 views

ISC BIND DNSSEC Cache Poisoning Vulnerability

Moderately // 77 views

Firefox Yoono Extension Cross-Context Scripting Vulnerability

24th Nov, 2009

New advisories:	8
New vulnerabilities:	19
Updated advisories:	13

Less // 326 views

WordPress WP-Cumulus Plugin "tagcloud" Cross-Site Scripting Vulnerability

Highly // 324 views

SUSE Update for Multiple Packages

Highly // 474 views

Firefox Sage Extension Cross-Context Scripting Vulnerability

Highly // 335 views

PEAR Net_Ping Command Injection Vulnerability

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.