Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Red Hat 2.1 RHSA-2006:0567-01 Moderate: PHP Security Update

red hat
Calendar Grey July 25, 2006
Dist Redhat Esm H88
Important kernel patch release for Fedora Linux tackling various vulnerabilities. Crucial for maintaining system reliability.
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red ...

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

195495 - CVE-2002-2214 php imap To header buffer overflow 196257 - CVE-2006-3017 zend_hash_del bug 197050 - CVE-2006-1494 PHP tempname open_basedir issue

6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS: b00da9890a6407ceeefde6af712335a8 php-4.1.2-2.8.src.rpm

i386: 49c5170d0254ab6852ed1a0ec99ee005 php-4.1.2-2.8.i386.rpm fbbf8ecb1d8212fb61ab03cb582fa6ba php-devel-4.1.2-2.8.i386.rpm a8cc27adc804ac40f5530f5bc305209b php-imap-4.1.2-2.8.i386.rpm 2b9e509db230478986a620bccf3c3595 php-ldap-4.1.2-2.8.i386.rpm 296c22cd73b830fc0455a3cc00b38858 php-manual-4.1.2-2.8.i386.rpm a083c9ad5a0aef8c528abb1123bb88aa php-mysql-4.1.2-2.8.i386.rpm 7df60aec5a0b642ea6e8fcb8ae4e0bc4 php-odbc-4.1.2-2.8.i386.rpm bdbfcb35354ad079d4a15a4054f2caf8 php-pgsql-4.1.2-2.8.i386.rpm

ia64: 0de57ca1d1f8ad29f509288a9c67f501 php-4.1.2-2.8.ia64.rpm b386f3eacea485b36525055006fa89c5 php-devel-4.1.2-2.8.ia64.rpm 91b7f7262828ad5c9f17d8e1e02bd9e1 php-imap-4.1.2-2.8.ia64.rpm bb5d71d5964ed4e3ebaba5c1e755599c php-ldap-4.1.2-2.8.ia64.rpm 2d1d721016880e26c041d36af289288f php-manual-4.1.2-2.8.ia64.rpm 74de741c6420b49591eb82e8d3109286 php-mysql-4.1.2-2.8.ia64.rpm ac98627c368011e8bc123fab619131fa php-odbc-4.1.2-2.8.ia64.rpm 101f908d73b7182821a6ca553df4c3f5 php-pgsql-4.1.2-2.8.ia64.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS: b00da9890a6407ceeefde6af712335a8 php-4.1.2-2.8.src.rpm

ia64: 0de57ca1d1f8ad29f509288a9c67f501 php-4.1.2-2.8.ia64.rpm b386f3eacea485b36525055006fa89c5 php-devel-4.1.2-2.8.ia64.rpm 91b7f7262828ad5c9f17d8e1e02bd9e1 php-imap-4.1.2-2.8.ia64.rpm bb5d71d5964ed4e3ebaba5c1e755599c php-ldap-4.1.2-2.8.ia64.rpm 2d1d721016880e26c041d36af289288f php-manual-4.1.2-2.8.ia64.rpm 74de741c6420b49591eb82e8d3109286 php-mysql-4.1.2-2.8.ia64.rpm ac98627c368011e8bc123fab619131fa php-odbc-4.1.2-2.8.ia64.rpm 101f908d73b7182821a6ca553df4c3f5 php-pgsql-4.1.2-2.8.ia64.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS: b00da9890a6407ceeefde6af712335a8 php-4.1.2-2.8.src.rpm

i386: 49c5170d0254ab6852ed1a0ec99ee005 php-4.1.2-2.8.i386.rpm fbbf8ecb1d8212fb61ab03cb582fa6ba php-devel-4.1.2-2.8.i386.rpm a8cc27adc804ac40f5530f5bc305209b php-imap-4.1.2-2.8.i386.rpm 2b9e509db230478986a620bccf3c3595 php-ldap-4.1.2-2.8.i386.rpm 296c22cd73b830fc0455a3cc00b38858 php-manual-4.1.2-2.8.i386.rpm a083c9ad5a0aef8c528abb1123bb88aa php-mysql-4.1.2-2.8.i386.rpm 7df60aec5a0b642ea6e8fcb8ae4e0bc4 php-odbc-4.1.2-2.8.i386.rpm bdbfcb35354ad079d4a15a4054f2caf8 php-pgsql-4.1.2-2.8.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS: b00da9890a6407ceeefde6af712335a8 php-4.1.2-2.8.src.rpm

i386: 49c5170d0254ab6852ed1a0ec99ee005 php-4.1.2-2.8.i386.rpm fbbf8ecb1d8212fb61ab03cb582fa6ba php-devel-4.1.2-2.8.i386.rpm a8cc27adc804ac40f5530f5bc305209b php-imap-4.1.2-2.8.i386.rpm 2b9e509db230478986a620bccf3c3595 php-ldap-4.1.2-2.8.i386.rpm 296c22cd73b830fc0455a3cc00b38858 php-manual-4.1.2-2.8.i386.rpm a083c9ad5a0aef8c528abb1123bb88aa php-mysql-4.1.2-2.8.i386.rpm 7df60aec5a0b642ea6e8fcb8ae4e0bc4 php-odbc-4.1.2-2.8.i386.rpm bdbfcb35354ad079d4a15a4054f2caf8 php-pgsql-4.1.2-2.8.i386.rpm

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package

Summary

References

https://www.cve.org/CVERecord?id=CVE-2002-2214 https://www.cve.org/CVERecord?id=CVE-2006-1494 https://www.cve.org/CVERecord?id=CVE-2006-3017 https://www.php.net/manual/en/ini.core.php https://access.redhat.com/security/updates/classification#moderate

Package List


Advisory ID: RHSA-2006:0567-01
Issue date: 2006-07-25
Updated on: 2006-07-25
Product: Red Hat Enterprise Linux

Topic

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64

Red Hat Linux Advanced Workstation 2.1 - ia64

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Bugs Fixed

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here