Oval Definition:oval:org.mitre.oval:def:21035
Revision Date:2014-02-17Version:11
Title:RHSA-2013:1050: php53 security update (Critical)
Description:ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2013:1050
CVE-2013-4113
RHSA-2013:1050-00
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s):php53
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • php53-ldap is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-xmlrpc is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-common is earlier than 0:5.3.3-13.el5_9.1
  • OR php53 is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-snmp is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-process is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-bcmath is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-dba is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-imap is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-odbc is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-soap is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-pgsql is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-pspell is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-mysql is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-cli is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-intl is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-xml is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-pdo is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-gd is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-mbstring is earlier than 0:5.3.3-13.el5_9.1
  • OR php53-devel is earlier than 0:5.3.3-13.el5_9.1
    • BACK