Oval Definition:oval:org.mitre.oval:def:23207
Revision Date:2014-05-26Version:40
Title:ELSA-2012:0033: php security update (Moderate)
Description:PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2011-0708
CVE-2011-1148
CVE-2011-1466
CVE-2011-1469
CVE-2011-2202
CVE-2011-4566
CVE-2011-4885
ELSA-2012:0033-01
Platform(s):Oracle Linux 5
Product(s):php
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • php-soap is earlier than 0:5.1.6-27.el5_7.4
  • OR php-xmlrpc is earlier than 0:5.1.6-27.el5_7.4
  • OR php-common is earlier than 0:5.1.6-27.el5_7.4
  • OR php-odbc is earlier than 0:5.1.6-27.el5_7.4
  • OR php is earlier than 0:5.1.6-27.el5_7.4
  • OR php-cli is earlier than 0:5.1.6-27.el5_7.4
  • OR php-mysql is earlier than 0:5.1.6-27.el5_7.4
  • OR php-mbstring is earlier than 0:5.1.6-27.el5_7.4
  • OR php-pgsql is earlier than 0:5.1.6-27.el5_7.4
  • OR php-ncurses is earlier than 0:5.1.6-27.el5_7.4
  • OR php-xml is earlier than 0:5.1.6-27.el5_7.4
  • OR php-dba is earlier than 0:5.1.6-27.el5_7.4
  • OR php-snmp is earlier than 0:5.1.6-27.el5_7.4
  • OR php-bcmath is earlier than 0:5.1.6-27.el5_7.4
  • OR php-gd is earlier than 0:5.1.6-27.el5_7.4
  • OR php-devel is earlier than 0:5.1.6-27.el5_7.4
  • OR php-ldap is earlier than 0:5.1.6-27.el5_7.4
  • OR php-imap is earlier than 0:5.1.6-27.el5_7.4
  • OR php-pdo is earlier than 0:5.1.6-27.el5_7.4
  • BACK