Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Slackware Local Security Checks >> SSA-2005-251-04 php5 in Slackware 10.1


Vulnerability Assessment Details

SSA-2005-251-04 php5 in Slackware 10.1

Vulnerability Assessment Summary
SSA-2005-251-04 php5 in Slackware 10.1

Detailed Explanation for this Vulnerability Assessment

A new php5 package is available for Slackware 10.1 in /testing to fix
security issues. PHP has been relinked with the shared PCRE library
to fix an overflow issue with PHP's builtin PRCE code, and
PEAR::XMLRPC has been upgraded to version 1.4.0 which eliminates the
eval() function. The eval() function is believed to be insecure as
implemented, and would be difficult to secure.

Note that this new package now requires that the PCRE package be
installed, so be sure to get the new package from the patches/packages/
directory if you don't already have it.

More details about these issues may be found in the Common
Vulnerabilities and Exposures (CVE) database:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2491
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2498



Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Michel Arboi

Cables, Connectors

Western Digital WD5000LUCT AV-25 2.5 inch 500GB 5400 RPM 16MB Cache
$30.0
Western Digital WD5000LUCT AV-25 2.5 inch 500GB 5400 RPM 16MB Cache  pictureCrucial MX300 525GB SATA 2.5 Inch Internal Solid State Drive - CT525MX300SSD1
$134.0
Crucial MX300 525GB SATA 2.5 Inch Internal Solid State Drive - CT525MX300SSD1 pictureLenovo ThinkPad X230 Intel i5 Core 2.6ghz. 4gb RAM ( NO HARD Drive) Lot of 3
$199.0
Lenovo ThinkPad X230 Intel i5  Core 2.6ghz.  4gb RAM ( NO HARD Drive) Lot of 3 pictureWestern Digital WD 3TB My Passport Portable External Hard Drive
$45.0
Western Digital WD 3TB My Passport Portable External Hard Drive  picture


Discussions

No Discussions have been posted on this vulnerability.