Debian: DSA-1578-1 Critical PHP4 Security Issues and Recommendations
debian
May 17, 2008
Several vulnerabilities have been discovered in PHP version 4, a
server-side, HTML-embedded scripting language
Topics Covered
Summary
The session_start function allows remote attackers to insert
arbitrary attributes into the session cookie via special characters
in a cookie that is obtained from various parameters.
CVE-2007-3806
A denial of service was possible through a malicious script abusing
the glob() function.
CVE-2007-3998
Certain maliciously constructed input to the wordwrap() function could
lead to a denial of service attack.
CVE-2007-4657
Large len values of the stspn() or strcspn() functions could allow an
attacker to trigger integer overflows to expose memory or cause denial
of service.
CVE-2008-2051
The escapeshellcmd API function could be attacked via incomplete
multibyte chars.
For the stable distribution (etch), these problems have been fixed in
version 6:4.4.4-8+etch6.
The php4 are no longer present the unstable distribution (sid).
We recommend that you upgrade your php4 package.
Upgrade instructions
- --------------------wget url
...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!