Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

Slackware 13.1: SSA:2011-011-01 Urgent PHP Security Vulnerability Fix

slackware
Calendar Grey January 11, 2011
Dist Slackware Esm H88
Recent updates to PHP packages have been released for Slackware, targeting a critical vulnerability to enhance both system security and reliability.
New php packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, and -current to fix a security issue

Summary

Here are the details from the Slackware 13.1 ChangeLog: patches/packages/php-5.2.17-i486-1_slack13.1.txz: Upgraded. This update fixes an infinite loop with conversions from string to double that may result in a denial of service. For more information, see: https://www.cve.org/CVERecord?id=CVE-2010-4645 (* Security fix *)

Topics%20covered

Topics Covered

security advisory denial of service critical php slackware

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading directly from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 11.0:
Updated package for Slackware 12.0:
Updated package for Slackware 12.1:
Updated package for Slackware 12.2:
Updated package for Slackware 13.0:
Updated package for Slackware x86_64 13.0:
Updated package for Slackware 13.1:
Updated package for Slackware x86_64 13.1:
Updated package for Slackware -current:
Updated package for Slackware x86_64 -current:

MD5 Signatures

Slackware 11.0 package: 33fc4742d0b2aaaee8f721bc31b2fb61 php-5.2.17-i486-1_slack11.0.tgz
Slackware 12.0 package: 475de0e40b090837c9ae319e1f876063 php-5.2.17-i486-1_slack12.0.tgz
Slackware 12.1 package: a60ad1024fe3a61b5af945337e1393c0 php-5.2.17-i486-1_slack12.1.tgz
Slackware 12.2 package: 9b01607ddc0f772ddbc1c1f79e650656 php-5.2.17-i486-1_slack12.2.tgz
Slackware 13.0 package: b523d8520728aa48fafdb626e573a91d php-5.2.17-i486-1_slack13.0.txz
Slackware x86_64 13.0 package: 62dfbaa0bd43d9232bcda21e76a48819 php-5.2.17-x86_64-1_slack13.0.txz
Slackware 13.1 package: 4fd1c56dbd91b5d2f98cdfc787a84df4 php-5.2.17-i486-1_slack13.1.txz
Slackware x86_64 13.1 package: aed43c0c8b6a8a9fb360a6817eb3ab76 php-5.2.17-x86_64-1_slack13.1.txz
Slackware -current package: f81339314f047f47d7c6c6696b7713f6 php-5.3.5-i486-1.txz
Slackware x86_64 -current package: 5cc3c521b798ff3c6fe1206349577f26 php-5.3.5-x86_64-1.txz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory denial of service critical php slackware

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg php-5.2.17-i486-1_slack13.1.txz Then, restart Apache httpd: # /etc/rc.d/rc.httpd stop # /etc/rc.d/rc.httpd start

Related News

Your message here