Oval Definition:oval:org.mitre.oval:def:23134
Revision Date:2014-05-26Version:44
Title:ELSA-2012:1047: php53 security update (Moderate)
Description:Integer overflow in the phar_parse_tarfile function in tar.c in the phar extension in PHP before 5.3.14 and 5.4.x before 5.4.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted tar file that triggers a heap-based buffer overflow.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-2950
CVE-2011-4153
CVE-2012-0057
CVE-2012-0789
CVE-2012-1172
CVE-2012-2143
CVE-2012-2336
CVE-2012-2386
ELSA-2012:1047-00
Platform(s):Oracle Linux 5
Product(s):php53
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • php53-xmlrpc is earlier than 0:5.3.3-13.el5_8
  • OR php53-odbc is earlier than 0:5.3.3-13.el5_8
  • OR php53-bcmath is earlier than 0:5.3.3-13.el5_8
  • OR php53-imap is earlier than 0:5.3.3-13.el5_8
  • OR php53-pdo is earlier than 0:5.3.3-13.el5_8
  • OR php53 is earlier than 0:5.3.3-13.el5_8
  • OR php53-mbstring is earlier than 0:5.3.3-13.el5_8
  • OR php53-intl is earlier than 0:5.3.3-13.el5_8
  • OR php53-common is earlier than 0:5.3.3-13.el5_8
  • OR php53-devel is earlier than 0:5.3.3-13.el5_8
  • OR php53-cli is earlier than 0:5.3.3-13.el5_8
  • OR php53-soap is earlier than 0:5.3.3-13.el5_8
  • OR php53-pspell is earlier than 0:5.3.3-13.el5_8
  • OR php53-dba is earlier than 0:5.3.3-13.el5_8
  • OR php53-ldap is earlier than 0:5.3.3-13.el5_8
  • OR php53-pgsql is earlier than 0:5.3.3-13.el5_8
  • OR php53-gd is earlier than 0:5.3.3-13.el5_8
  • OR php53-mysql is earlier than 0:5.3.3-13.el5_8
  • OR php53-xml is earlier than 0:5.3.3-13.el5_8
  • OR php53-snmp is earlier than 0:5.3.3-13.el5_8
  • OR php53-process is earlier than 0:5.3.3-13.el5_8
    • BACK