Alerts This Week
Warning Icon 1 626
Alerts This Week
Warning Icon 1 626

SUSE: 2013:1316-1 Important: PHP5 Heap Corruption & Integer Overflow

suse
Calendar Grey August 9, 2013
Dist Suse Esm H88
SUSE has deployed a vital security patch for PHP5 addressing significant vulnerabilities such as buffer overflow and memory corruption.
An update that fixes two vulnerabilities is now available

Summary

The following security issues have been fixed: * CVE-2013-4635 (bnc#828020): o Integer overflow in SdnToJewish() * CVE-2013-4113 (bnc#829207): o heap corruption due to badly formed xml Security Issues: * CVE-2013-4113 * CVE-2013-4635 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11 SP3: zypper in -t patch sdksp3-apache2-mod_php53-8088 - SUSE Linux Enterprise Server 11 SP3 for VMware: zypper in -t patch slessp3-apache2-mod_php53-8088 - SUSE Linux Enterprise Server 11 SP3:

Topics%20covered

Topics Covered

security advisory heap corruption software update important integer overflow SUSE PHP5

References

#828020 #829207

Cross- CVE-2013-4113 CVE-2013-4635

Affected Products:

SUSE Linux Enterprise Software Development Kit 11 SP3

SUSE Linux Enterprise Server 11 SP3 for VMware

SUSE Linux Enterprise Server 11 SP3

https://www.suse.com/security/cve/CVE-2013-4113.html

https://www.suse.com/security/cve/CVE-2013-4635.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2013:1316-1
Rating: important

Topics%20covered

Topics Covered

security advisory heap corruption software update important integer overflow SUSE PHP5

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here