Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 516
Alerts This Week
Warning Icon 1 516

Debian 8: DLA-1608-1 Critical: Php5 IMAP Command Execution & Crash Risk

debian lts
Calendar Grey December 17, 2018
Dist Debian Esm H88
Ubuntu LTS security patch mitigating python3 weaknesses encompassing SMTP connection challenges and external execution threats.
Vulnerabilities have been discovered in php5, a server-side, HTML-embedded scripting language

Summary

CVE-2018-19518

An argument injection vulnerability in imap_open() may allow a
remote attacker to execute arbitrary OS commands on the IMAP server.

The fix for the CVE-2018-19518 vulnerability included this
additional note from the upstream developers:

Starting with 5.6.38, rsh/ssh logins are disabled by default. Use
imap.enable_insecure_rsh if you want to enable them. Note that the
IMAP library does not filter mailbox names before passing them to
rsh/ssh command, thus passing untrusted data to this function with
rsh/ssh enabled is insecure.

CVE-2018-19935

A NULL pointer dereference leads to an application crash and a
denial of service via an empty string in the message argument to the
imap_mail function of ext/imap/php_imap.c.

For Debian 8 "Jessie", these problems have been fixed in version
5.6.39+dfsg-0+deb8u1.

We recommend that you upgrade your php5 packages.

Further information about Debian LTS security advisories, how to apply

Read the Full Advisory


Severity
critical
Lowest
Low
Medium
High
Critical

<pre><font face="Courier">Package: php5
Version: 5.6.39+dfsg-0+deb8u1
CVE ID: CVE-2018-19518 CVE-2018-19935

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.