Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme in php
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in php
ID: TLSA-2007-29
Distribution: TurboLinux
Plattformen: Turbolinux 10 Server, Turbolinux 10 Server x64 Edition, Turbolinux Appliance Server 2.0, Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux 8 Server, Turbolinux Home, Turbolinux Multimedia, Turbolinux Personal, Turbolinux Appliance Server 1.0 Hosting Edition, Turbolinux Appliance Server 1.0 Workgroup Edition
Datum: Fr, 18. Mai 2007, 03:50
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1285
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1286
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1583
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1711
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1718
Applikationen: PHP

Originalnachricht

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

--------------------------------------------------------------------------
Turbolinux Security Advisory TLSA-2007-29
http://www.turbolinux.co.jp/security/
security-team@turbolinux.co.jp
--------------------------------------------------------------------------

Original released date: 17 May 2007
Last revised: 17 May 2007

Package: php

Summary: Multiple vulnerabilities in php

More information:
PHP is an HTML-embedded scripting language.

Multiple vulnerabilities (Integer overflows, Double free, CRLF injection)
exist in php.

Impact:
These vulnerabilities may allow remote attackers to execute arbitrary
code or to cause a denial of service via a crafted data.

Affected Products:
- Turbolinux Appliance Server 2.0
- Turbolinux 10 Server x64 Edition
- Turbolinux Appliance Server 1.0 Hosting Edition
- Turbolinux Appliance Server 1.0 Workgroup Edition
- Turbolinux 10 Server
- Turbolinux Home
- Turbolinux 10 F...
- Turbolinux 10 Desktop
- Turbolinux Multimedia
- Turbolinux Personal
- Turbolinux 8 Server


<Turbolinux Appliance Server 2.0>

Source Packages
Size: MD5

php4-4.3.11-13.src.rpm
12528945 ae909f92694249ffc4dcf6f75f404b48

Binary Packages
Size: MD5

php4-4.3.11-13.i586.rpm
5366643 f18f1da53a374fdda9c181f0b1681410
php4-gd-4.3.11-13.i586.rpm
49860 23d208e8daf522bd06af48bc8eb083c6
php4-imap-4.3.11-13.i586.rpm
13225 cf3edac0e4fb4117c16e93b7c70990f0
php4-ldap-4.3.11-13.i586.rpm
36597 1d63b5472b5acac288d061a477de7cc6
php4-manual-4.3.11-13.i586.rpm
7504804 a8655d6d46b8fdbd914461d7bd630e41
php4-ming-4.3.11-13.i586.rpm
48005 5ee960c545e73ac885149bbc41cf6abd
php4-mysql-4.3.11-13.i586.rpm
123957 5d393328e4576a464461462d318d1594
php4-pgsql-4.3.11-13.i586.rpm
73171 d44831cb9de9026fd5e4368665b9efad

<Turbolinux 10 Server x64 Edition>

Source Packages
Size: MD5

php4-4.3.9-17.src.rpm
12375088 759068322c3571fbf74a36575c45c2d2

Binary Packages
Size: MD5

php4-4.3.9-17.x86_64.rpm
5477131 9b833ad344272539ca63705f41602c6c
php4-debug-4.3.9-17.x86_64.rpm
6583195 19ea7b98da9f2739ad45660365f96d57
php4-gd-4.3.9-17.x86_64.rpm
53832 917071d829e1ad5052b9844d16b7efef
php4-imap-4.3.9-17.x86_64.rpm
11721 4347e32510f316e3b0aa3c7917728a8e
php4-ldap-4.3.9-17.x86_64.rpm
39572 fcbd6fb2c2dcb5455f81fe26ed5aede8
php4-manual-4.3.9-17.x86_64.rpm
7502935 9e214248458a89439903d4e7d0be7462
php4-ming-4.3.9-17.x86_64.rpm
51685 a7fa3e5db8be87525f30f81bfa6f659f
php4-mysql-4.3.9-17.x86_64.rpm
134959 fe81cf6de6c43fce12578bce70dc2df6
php4-pgsql-4.3.9-17.x86_64.rpm
76599 42249c7262ed6c75751acc6ee12fa592

<Turbolinux Appliance Server 1.0 Hosting Edition>

Source Packages
Size: MD5

php-4.2.3-37.src.rpm
3614949 5e9147d6c855bb38513fed323ff72a8a

Binary Packages
Size: MD5

php-4.2.3-37.i586.rpm
1634551 b584773bf1f7f16235a792e0f818e22f
php-gd-4.2.3-37.i586.rpm
32412 c63b7b6e9660c0a56eeac43f05b54ac4
php-imap-4.2.3-37.i586.rpm
10245 1fb3184b9c595e71e8ad2b154a45f3a9
php-ldap-4.2.3-37.i586.rpm
25705 ff8b212f062f735fd30c1c5b38278f41
php-manual-4.2.3-37.i586.rpm
342802 83ebd1482f5224dd587ebd2bd9334db0
php-ming-4.2.3-37.i586.rpm
34308 0404c54f8a85dfd09880fa9e43405c01
php-mysql-4.2.3-37.i586.rpm
91885 7893697860c8e0ee20cd2b5972e9ce76
php-pgsql-4.2.3-37.i586.rpm
36522 9e5e56f5e7180c24f5c0657c157ea306

<Turbolinux Appliance Server 1.0 Workgroup Edition>

Source Packages
Size: MD5

php-4.2.3-37.src.rpm
3614949 b0dbd9f515727719d637b251fa663a82

Binary Packages
Size: MD5

php-4.2.3-37.i586.rpm
1634840 41aed00b9c09122c85be13d5c6bcbbc0
php-gd-4.2.3-37.i586.rpm
32565 30bb532494d9fe94b566f4b144bdc5db
php-imap-4.2.3-37.i586.rpm
10394 eb07f27762424bbfcc5d2c3e55d0be0c
php-ldap-4.2.3-37.i586.rpm
25816 81b281209b8d6aa65c7f8edcaf1604a3
php-manual-4.2.3-37.i586.rpm
342713 6a038838de960d48f21146da4671faa5
php-ming-4.2.3-37.i586.rpm
34439 1ce21be7e7a0c9c3fbff96b4cc4e852d
php-mysql-4.2.3-37.i586.rpm
92049 3ae9d9c79c640ebda6c2a6762489eee8
php-pgsql-4.2.3-37.i586.rpm
36706 bfb6b5997a0150dca76439e28ad21979

<Turbolinux 10 Server>

Source Packages
Size: MD5

php4-4.3.11-13.src.rpm
12528945 ae909f92694249ffc4dcf6f75f404b48

Binary Packages
Size: MD5

php4-4.3.11-13.i586.rpm
5366643 f18f1da53a374fdda9c181f0b1681410
php4-debug-4.3.11-13.i586.rpm
6453300 7035a715e76c697c2dc98b7907fc446d
php4-gd-4.3.11-13.i586.rpm
49860 23d208e8daf522bd06af48bc8eb083c6
php4-imap-4.3.11-13.i586.rpm
13225 cf3edac0e4fb4117c16e93b7c70990f0
php4-ldap-4.3.11-13.i586.rpm
36597 1d63b5472b5acac288d061a477de7cc6
php4-manual-4.3.11-13.i586.rpm
7504804 a8655d6d46b8fdbd914461d7bd630e41
php4-ming-4.3.11-13.i586.rpm
48005 5ee960c545e73ac885149bbc41cf6abd
php4-mysql-4.3.11-13.i586.rpm
123957 5d393328e4576a464461462d318d1594
php4-pgsql-4.3.11-13.i586.rpm
73171 d44831cb9de9026fd5e4368665b9efad

<Turbolinux 10 Desktop, Turbolinux 10 F..., Turbolinux Home, Turbolinux
Multimedia, Turbolinux Personal>

Source Packages
Size: MD5

php4-4.3.3-23.src.rpm
4203158 2262da0279620a6bb1ed64cef72e283e

Binary Packages
Size: MD5

php4-4.3.3-23.i586.rpm
3410158 98479e15d023eedfb294d435c915a3eb
php4-gd-4.3.3-23.i586.rpm
33458 98be1a503b594eb6f7bd8c5c4654aa3b
php4-imap-4.3.3-23.i586.rpm
10851 b2c88251e0f8a8f90fe75324d5a3448b
php4-ldap-4.3.3-23.i586.rpm
25230 63d96d99e0f4682b89cc1ba26d36d036
php4-manual-4.3.3-23.i586.rpm
343337 08e51dbd128ee6dbdd843963609323dd
php4-ming-4.3.3-23.i586.rpm
31743 33cb7e727358c0dd64f82f79b3e9163f
php4-mysql-4.3.3-23.i586.rpm
82751 28a48bc48c56dc4b6902c86c8a282b66
php4-pgsql-4.3.3-23.i586.rpm
49267 ca3128c6e089628fa7df549f96de69e6

<Turbolinux 8 Server>

Source Packages
Size: MD5

php-4.2.3-37.src.rpm
3616310 c219e2ef4024cd6bf8e5811be4db045f

Binary Packages
Size: MD5

php-4.2.3-37.i586.rpm
1634351 8d666c3a320bfc19134c2b52c0f6daea
php-gd-4.2.3-37.i586.rpm
32527 4b0130ffbeebd3d581dc1799258d303b
php-imap-4.2.3-37.i586.rpm
10391 8e4701603ec3c678cbed55611154bd3f
php-ldap-4.2.3-37.i586.rpm
25846 928d0f305026340255184c7856fd15a1
php-manual-4.2.3-37.i586.rpm
342906 43efbfa72575149872e1365dc1f5a9bf
php-ming-4.2.3-37.i586.rpm
34415 b5c9acb896428376c50cbbb3c1b0e549
php-mysql-4.2.3-37.i586.rpm
91988 5876add31ede439f5affaffa6b5ff0c5
php-pgsql-4.2.3-37.i586.rpm
36624 fdde3d263ee861191cbfe02ba9de7692


References:

CVE
[CVE-2007-1001]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1001
[CVE-2007-1285]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1285
[CVE-2007-1286]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1286
[CVE-2007-1583]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1583
[CVE-2007-1711]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1711
[CVE-2007-1718]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1718

--------------------------------------------------------------------------
Revision History
17 May 2007 Initial release
--------------------------------------------------------------------------

Copyright(C) 2007 Turbolinux, Inc. All rights reserved.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFGS9f9K0LzjOqIJMwRAjBHAJ9s33y2qvgKDUg8jB+1hS6y3dTBfQCfV9AS
DC+y9zW9qGMCoJKCWZcXFcM=
=OADh
-----END PGP SIGNATURE-----
Pro-Linux
Pro-Linux @Twitter
Neue Nachrichten
Werbung