Slackware 10.1: DSA-2005-251-04 Moderate: PHP Overflow Fix
slackware
September 8, 2005
A new php5 package is available for Slackware 10.1 in /testing to fix security issues
Summary
Here are the details from the Slackware 10.1 ChangeLog: testing/packages/php-5.0.5/php-5.0.5-i486-1.tgz: Upgraded to php-5.0.5, which fixes security issues with XML-RPC and PCRE. This new package now links with the system's shared PCRE library, so be sure you have the new PCRE package from patches/packages/ installed. Ordinarily packages in /testing are not considered supported, but several people have written to say that they are using php5 from /testing in a production environment and would like to see an updated package, so here it is. The package in /testing was replaced in /testing rather than putting it under /patches to avoid any problems with automatic upgrade tools replacing php-4 packages with this one. For more information on the security issues fixed, see: https://www.cve.org/CVERecord?id=CAN-2005-2491 https://www.cve.org/CVERecord?id=CAN-2005-2498 (* Security fix *) Where to find the new package: Updated package for Slackware
Read the Full Advisory
Topics Covered
Where Find New Packages
MD5 Signatures
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: First, stop apache: # apachectl stop Next, upgrade to the new PHP package: # upgradepkg php-5.0.5-i486-1.tgz Finally, restart apache: # apachectl start (or: apachectl startssl)
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!