Oval Definition:oval:org.mitre.oval:def:26721
Revision Date:2014-12-15Version:10
Title:ELSA-2014-1013 -- php security update (moderate)
Description:[5.4.16-23] - fileinfo: cdf_unpack_summary_info() excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdf_check_stream_offset insufficient boundary check. CVE-2014-3479 - fileinfo: cdf_count_chain insufficient boundary check CVE-2014-3480 - fileinfo: cdf_read_short_sector insufficient boundary check. CVE-2014-0207 - fileinfo: cdf_read_property_info insufficient boundary check. CVE-2014-3487 - fileinfo: fix extensive backtracking CVE-2013-7345 - core: type confusion issue in phpinfo(). CVE-2014-4721 - core: fix heap-based buffer overflow in DNS TXT record parsing. CVE-2014-4049 - core: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw. CVE-2014-3515
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2013-7345
CVE-2014-0207
CVE-2014-0237
CVE-2014-0238
CVE-2014-3479
CVE-2014-3480
CVE-2014-3487
CVE-2014-3515
CVE-2014-4049
CVE-2014-4721
ELSA-2014-1013
Platform(s):Oracle Linux 7
Product(s):php
Definition Synopsis
  • Oracle Linux 7.x
  • AND Packages match section
  • php is earlier than 0:5.4.16-23.el7_0
  • OR php-bcmath is earlier than 0:5.4.16-23.el7_0
  • OR php-cli is earlier than 0:5.4.16-23.el7_0
  • OR php-common is earlier than 0:5.4.16-23.el7_0
  • OR php-dba is earlier than 0:5.4.16-23.el7_0
  • OR php-devel is earlier than 0:5.4.16-23.el7_0
  • OR php-embedded is earlier than 0:5.4.16-23.el7_0
  • OR php-enchant is earlier than 0:5.4.16-23.el7_0
  • OR php-fpm is earlier than 0:5.4.16-23.el7_0
  • OR php-gd is earlier than 0:5.4.16-23.el7_0
  • OR php-intl is earlier than 0:5.4.16-23.el7_0
  • OR php-ldap is earlier than 0:5.4.16-23.el7_0
  • OR php-mbstring is earlier than 0:5.4.16-23.el7_0
  • OR php-mysql is earlier than 0:5.4.16-23.el7_0
  • OR php-mysqlnd is earlier than 0:5.4.16-23.el7_0
  • OR php-odbc is earlier than 0:5.4.16-23.el7_0
  • OR php-pdo is earlier than 0:5.4.16-23.el7_0
  • OR php-pgsql is earlier than 0:5.4.16-23.el7_0
  • OR php-process is earlier than 0:5.4.16-23.el7_0
  • OR php-pspell is earlier than 0:5.4.16-23.el7_0
  • OR php-recode is earlier than 0:5.4.16-23.el7_0
  • OR php-snmp is earlier than 0:5.4.16-23.el7_0
  • OR php-soap is earlier than 0:5.4.16-23.el7_0
  • OR php-xml is earlier than 0:5.4.16-23.el7_0
  • OR php-xmlrpc is earlier than 0:5.4.16-23.el7_0
    • BACK