What Are You Looking For?

Sign Up

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  php (SSA:2009-276-02)

New php packages are available for Slackware 12.0, 12.1, 12.2, 13.0,
and -current to fix security issues.

More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:

  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3291
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3292
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3293


Here are the details from the Slackware 13.0 ChangeLog:
+--------------------------+
patches/packages/php-5.2.11-i486-1_slack13.0.txz:
  This release fixes some possible security issues, all of which have
  "unknown impact and attack vectors".
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3291
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3292
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3293
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

HINT:  Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try.  This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(https://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on https://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.0:

Updated package for Slackware 12.1:

Updated package for Slackware 12.2:

Updated package for Slackware 13.0:

Updated package for Slackware x86_64 13.0:

Updated package for Slackware -current:

Updated package for Slackware x86_64 -current:


MD5 signatures:
+-------------+

Slackware 12.0 package:
bc56d8e0d56197d7b0eaeee791e20307  php-5.2.11-i486-1_slack12.0.tgz

Slackware 12.1 package:
67fa37b8c23b303c3ecf3294183ed0ae  php-5.2.11-i486-1_slack12.1.tgz

Slackware 12.2 package:
6e44a700f0ef0a57eecb37a033d3cd1f  php-5.2.11-i486-1_slack12.2.tgz

Slackware 13.0 package:
a766796b71a41b6cd783ffbf2b237a80  php-5.2.11-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
d7de1dc05f88c8b3b7cff7cec45f18de  php-5.2.11-x86_64-1_slack13.0.txz

Slackware -current package:
fb6e9b0a3d8c4a3a08eea2bbe31a9c08  php-5.2.11-i486-1.txz

Slackware x86_64 -current package:
be11f0990d29843d1f4480a75eaa4d3e  php-5.2.11-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg php-5.2.11-i486-1_slack13.0.txz


+-----+

Slackware: 2009-276-02: php Security Update

October 4, 2009
New php packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix security issues

Summary

Here are the details from the Slackware 13.0 ChangeLog: patches/packages/php-5.2.11-i486-1_slack13.0.txz: This release fixes some possible security issues, all of which have "unknown impact and attack vectors". For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3292 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3293 (* Security fix *)

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on https://slackware.com for additional mirror sites near you.
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 12.0 package: bc56d8e0d56197d7b0eaeee791e20307 php-5.2.11-i486-1_slack12.0.tgz
Slackware 12.1 package: 67fa37b8c23b303c3ecf3294183ed0ae php-5.2.11-i486-1_slack12.1.tgz
Slackware 12.2 package: 6e44a700f0ef0a57eecb37a033d3cd1f php-5.2.11-i486-1_slack12.2.tgz
Slackware 13.0 package: a766796b71a41b6cd783ffbf2b237a80 php-5.2.11-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: d7de1dc05f88c8b3b7cff7cec45f18de php-5.2.11-x86_64-1_slack13.0.txz
Slackware -current package: fb6e9b0a3d8c4a3a08eea2bbe31a9c08 php-5.2.11-i486-1.txz
Slackware x86_64 -current package: be11f0990d29843d1f4480a75eaa4d3e php-5.2.11-x86_64-1.txz

Severity
[slackware-security] php (SSA:2009-276-02)
New php packages are available for Slackware 12.0, 12.1, 12.2, 13.0, and -current to fix security issues.
More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3291 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3292 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3293

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg php-5.2.11-i486-1_slack13.0.txz

Related News

From Heartbleed to Now: Evolving Threats in OpenSSL and How to Guard Against Them

Nov 17, 2023

Security Highlights from KubeCon + CloudNativeCon 2023

Nov 18, 2023

Kubernetes Security on AWS: A Practical Guide

Nov 18, 2023

Kinsing Hackers Exploit Apache ActiveMQ Vulnerability to Deploy Linux Rootkits

Nov 25, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo