Oval Definition:oval:org.mitre.oval:def:21336
Revision Date:2014-02-24Version:36
Title:RHSA-2012:0019: php53 and php security update (Moderate)
Description:PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2012:0019
CVE-2011-4566
CVE-2011-4885
RHSA-2012:0019-01
Platform(s):CentOS Linux 5
CentOS Linux 6
Red Hat Enterprise Linux 5
Red Hat Enterprise Linux 6
Product(s):php
php53
Definition Synopsis
  • Operation system section
  • Redhat 6 or Centos 6 release
  • The operating system installed on the system is Red Hat Enterprise Linux 6
  • OR The operating system installed on the system is CentOS Linux 6.x
  • AND Packages section
  • php-pdo is earlier than 0:5.3.3-3.el6_2.5
  • OR php-common is earlier than 0:5.3.3-3.el6_2.5
  • OR php-pgsql is earlier than 0:5.3.3-3.el6_2.5
  • OR php-snmp is earlier than 0:5.3.3-3.el6_2.5
  • OR php-embedded is earlier than 0:5.3.3-3.el6_2.5
  • OR php-xmlrpc is earlier than 0:5.3.3-3.el6_2.5
  • OR php-enchant is earlier than 0:5.3.3-3.el6_2.5
  • OR php-devel is earlier than 0:5.3.3-3.el6_2.5
  • OR php-recode is earlier than 0:5.3.3-3.el6_2.5
  • OR php is earlier than 0:5.3.3-3.el6_2.5
  • OR php-gd is earlier than 0:5.3.3-3.el6_2.5
  • OR php-odbc is earlier than 0:5.3.3-3.el6_2.5
  • OR php-imap is earlier than 0:5.3.3-3.el6_2.5
  • OR php-tidy is earlier than 0:5.3.3-3.el6_2.5
  • OR php-soap is earlier than 0:5.3.3-3.el6_2.5
  • OR php-mysql is earlier than 0:5.3.3-3.el6_2.5
  • OR php-zts is earlier than 0:5.3.3-3.el6_2.5
  • OR php-process is earlier than 0:5.3.3-3.el6_2.5
  • OR php-bcmath is earlier than 0:5.3.3-3.el6_2.5
  • OR php-intl is earlier than 0:5.3.3-3.el6_2.5
  • OR php-mbstring is earlier than 0:5.3.3-3.el6_2.5
  • OR php-ldap is earlier than 0:5.3.3-3.el6_2.5
  • OR php-cli is earlier than 0:5.3.3-3.el6_2.5
  • OR php-dba is earlier than 0:5.3.3-3.el6_2.5
  • OR php-pspell is earlier than 0:5.3.3-3.el6_2.5
  • OR php-xml is earlier than 0:5.3.3-3.el6_2.5
  • Operation system section
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • php53-pspell is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-cli is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-pdo is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-devel is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-mbstring is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-imap is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-soap is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-xml is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-ldap is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-bcmath is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-process is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-snmp is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-dba is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-odbc is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-mysql is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-common is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-intl is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-gd is earlier than 0:5.3.3-1.el5_7.5
  • OR php53 is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-pgsql is earlier than 0:5.3.3-1.el5_7.5
  • OR php53-xmlrpc is earlier than 0:5.3.3-1.el5_7.5
    • BACK