SUSE Linux 10 SP4: 2013:1285-1 Important: PHP5 Heap Corruption
suse
August 1, 2013
An update that fixes four vulnerabilities is now available
Summary
The following security issues have been fixed:
* CVE-2013-4635 (bnc#828020): o Integer overflow in
SdnToJewish()
* CVE-2013-1635 and CVE-2013-1643 (bnc#807707): o
reading system files via untrusted SOAP input o
soap.wsdl_cache_dir function did not honour PHP open_basedir
* CVE-2013-4113 (bnc#829207): o heap corruption due to
badly formed xml
Security Issue references:
* CVE-2013-4113
Topics Covered
References
#807707 #828020 #829207
Cross- CVE-2013-1635 CVE-2013-1643 CVE-2013-4113
CVE-2013-4635
Affected Products:
SUSE Linux Enterprise Server 10 SP4
SLE SDK 10 SP4
https://www.suse.com/security/cve/CVE-2013-1635.html
https://www.suse.com/security/cve/CVE-2013-1643.html
https://www.suse.com/security/cve/CVE-2013-4113.html
https://www.suse.com/security/cve/CVE-2013-4635.html
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2013:1285-1
Rating: important
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!