Alerts This Week
Warning Icon 1 619
Alerts This Week
Warning Icon 1 619

Fedora: PHP 5.2.9 Critical Update: Buffer Overflows and Memory Concerns

fedora
Calendar Grey May 29, 2009
Dist Fedora Esm H88
Important patch for PHP on Fedora 9 tackling numerous vulnerabilities such as buffer overflow risks and memory management problems.
Update to PHP 5.2.9 A heap-based buffer overflow flaw was found in PHP's mbstring extension

Summary

PHP is an HTML-embedded scripting language. PHP attempts to make it

easy for developers to write dynamically generated webpages. PHP also

offers built-in database integration for several commercial and

non-commercial database management systems, so writing a

database-enabled webpage with PHP is fairly simple. The most common

use of PHP coding is probably as a replacement for CGI scripts.

The php package contains the module which adds support for the PHP

language to Apache HTTP Server.

Update Information:

Update to PHP 5.2.9 A heap-based buffer overflow flaw was found in PHP's mbstring extension. A remote attacker able to pass arbitrary input to a PHP script using mbstring conversion functions could cause the PHP interpreter to crash or, possibly, execute arbitrary code. (CVE-2008-5557) A directory traversal flaw was found in PHP's ZipArchive::extractTo function. If PHP is used to extract a malicious ZIP archive, it could allow an attacker to write arbitrary files anywhere the PHP process has write permissions. (CVE-2008-5658) A buffer overflow flaw was found in PHP's imageloadfont function. If a PHP script allowed a remote attacker to load a carefully crafted font file, it could cause the PHP interpreter to crash or, possibly, execute arbitrary code. (CVE-2008-3658) A memory disclosure flaw was found in the PHP gd extension's imagerotate function. A remote attacker able to pass arbitrary values as the "background color" argument of the function could, possibly, view portion...

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora remote code execution cross-site scripting PHP memory disclosure

Change Log

* Fri Apr 17 2009 Joe Orton 5.2.9-2 - stay at v3 of systzdata patch * Thu Apr 16 2009 Remi Collet - 5.2.9-1 - update to 5.2.9 - merge with some rawhide improvments (fix patch fuzz, renumber patches, drop obsolete configure args, drop -odbc patch) * Sat Jan 3 2009 Remi Collet 5.2.8-1 - update to 5.2.8 - add missing php_embed.h (#457777) - enable pdo_dblib driver in php-mssql * Tue Nov 4 2008 Joe Orton 5.2.6-6 - move gd_README to php-gd - update to r4 of systzdata patch; introduces a default timezone name of "System/Localtime", which uses /etc/localtime (#469532) * Sat Sep 13 2008 Remi Collet 5.2.6-5 - enable XPM support in php-gd - Fix BR for php-gd * Sun Jul 20 2008 Remi Collet 5.2.6-4 - enable T1lib support in php-gd * Mon Jul 14 2008 Joe Orton 5.2.6-3 - update to 5.2.6 - sync default php.ini with upstream - drop extension_dir from default php.ini, rely on hard-coded default, to make php-common multilib-safe (#455091) - update to r3 of systzdata patch

References


[ 1 ] Bug #478425 - CVE-2008-5498 php: libgd imagerotate() array index error memory disclosure https://bugzilla.redhat.com/show_bug.cgi?id=478425 [ 2 ] Bug #494530 - CVE-2009-1271 php: crash on malformed input in json_decode() https://bugzilla.redhat.com/show_bug.cgi?id=494530 [ 3 ] Bug #459529 - CVE-2008-3658 php: buffer overflow in the imageloadfont function in gd extension https://bugzilla.redhat.com/show_bug.cgi?id=459529 [ 4 ] Bug #459572 - CVE-2008-3660 php: FastCGI module DoS via multiple dots preceding the extension https://bugzilla.redhat.com/show_bug.cgi?id=459572 [ 5 ] Bug #452808 - CVE-2008-2829 php: ext/imap legacy routine buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=452808 [ 6 ] Bug #474824 - CVE-2008-5658 php: ZipArchive::extractTo() Directory Traversal Vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=474824 [ 7 ] Bug #478848 - CVE-2008-5557 php: Heap-based buffer overflow in the mbs...

Read the Full Advisory

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update php' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: php
Product: Fedora 9
Version: 5.2.9
Release: 2.fc9
URL: https://www.php.net/
Summary: PHP scripting language for creating dynamic web sites

Topics%20covered

Topics Covered

security advisory buffer overflow Fedora remote code execution cross-site scripting PHP memory disclosure

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here