Mandriva Linux Security Advisory : php (MDVSA-2012:093)

NASLDB: Mandriva Linux Security Advisory : php (MDVSA-2012:093)

General

ID: 59519
Name: Mandriva Linux Security Advisory : php (MDVSA-2012:093)

Summary: Checks rpm output for the updated packages

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Temporal Vector: –

Port: 0
Family: Mandriva Local Security Checks
Type: Local

Description

Multiple vulnerabilities has been identified and fixed in php :

There is a programming error in the DES implementation used in crypt()
in ext/standard/crypt_freesec.c when handling input which contains
characters that can not be represented with 7-bit ASCII. When the
input contains characters with only the most significant bit set
(0×80), that character and all characters after it will be ignored
(CVE-2012-2143).

An integer overflow, leading to heap-based buffer overflow was found
in the way Phar extension of the PHP scripting language processed
certain fields by manipulating TAR files. A remote attacker could
provide a specially-crafted TAR archive file, which once processed in
an PHP application using the Phar extension could lead to denial of
service (application crash), or, potentially arbitary code execution
with the privileges of the user running the application
(CVE-2012-2386).

The updated php packages have been upgraded to the 5.3.14 version
which is not vulnerable to these issues.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2012-2143
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: –
Patch Release: 2012/06/15
Plugin Release: 2012/06/15

Plugin

Version: 1.8
Filename: mandriva_MDVSA-2012-093.nasl
Filesize: 18085 bytes
MD5 Hash: 893506132c7ec4eb23dc6f2a2d4e1fd2

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list
Dependencies: "ssh_get_info.nasl"

Letzte Plugins

Letzte Plugins

scip AG