Oval Definition:oval:org.mitre.oval:def:22732
Revision Date:2014-05-26Version:36
Title:ELSA-2009:0338: php security update (Moderate)
Description:PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to other virtual hosts on the same server.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-3658
CVE-2008-3660
CVE-2008-5498
CVE-2008-5557
CVE-2008-5814
CVE-2009-0754
ELSA-2009:0338-01
Platform(s):Oracle Linux 5
Product(s):php
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • php-common is earlier than 0:5.1.6-23.2.el5_3
  • OR php-soap is earlier than 0:5.1.6-23.2.el5_3
  • OR php-gd is earlier than 0:5.1.6-23.2.el5_3
  • OR php-odbc is earlier than 0:5.1.6-23.2.el5_3
  • OR php-mysql is earlier than 0:5.1.6-23.2.el5_3
  • OR php is earlier than 0:5.1.6-23.2.el5_3
  • OR php-xmlrpc is earlier than 0:5.1.6-23.2.el5_3
  • OR php-cli is earlier than 0:5.1.6-23.2.el5_3
  • OR php-mbstring is earlier than 0:5.1.6-23.2.el5_3
  • OR php-xml is earlier than 0:5.1.6-23.2.el5_3
  • OR php-pgsql is earlier than 0:5.1.6-23.2.el5_3
  • OR php-dba is earlier than 0:5.1.6-23.2.el5_3
  • OR php-devel is earlier than 0:5.1.6-23.2.el5_3
  • OR php-imap is earlier than 0:5.1.6-23.2.el5_3
  • OR php-bcmath is earlier than 0:5.1.6-23.2.el5_3
  • OR php-ncurses is earlier than 0:5.1.6-23.2.el5_3
  • OR php-snmp is earlier than 0:5.1.6-23.2.el5_3
  • OR php-ldap is earlier than 0:5.1.6-23.2.el5_3
  • OR php-pdo is earlier than 0:5.1.6-23.2.el5_3
    • BACK