Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 494
Alerts This Week
Warning Icon 1 494

Debian DSA-3358-1 Critical: Major PHP Vulnerabilities Addressed

debian
Calendar Grey September 13, 2015
Debian Logo
Ensure that your PHP packages are promptly updated to mitigate severe security issues highlighted in Debian Security Notice DSA-3358-1.
Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development

Summary

The vulnerabilities are addressed by upgrading PHP to new upstream
versions (5.4.45 and 5.6.13), which include additional bug fixes. Please
refer to the upstream changelog for more information:

https://www.php.net/ChangeLog-5.php
https://www.php.net/ChangeLog-5.php

For the oldstable distribution (wheezy), these problems have been fixed
in version 5.4.45-0+deb7u1.

For the stable distribution (jessie), these problems have been fixed in
version 5.6.13+dfsg-0+deb8u1.

We recommend that you upgrade your php5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
critical
Lowest
Low
Medium
High
Critical

Package: php5
CVE ID: CVE-2015-6834 CVE-2015-6835 CVE-2015-6836 CVE-2015-6837

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.