Ubuntu 2344-1: PHP vulnerabilities
Summary
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 LTS: libapache2-mod-php5 5.5.9+dfsg-1ubuntu4.4 php5 5.5.9+dfsg-1ubuntu4.4 php5-cgi 5.5.9+dfsg-1ubuntu4.4 php5-fpm 5.5.9+dfsg-1ubuntu4.4 Ubuntu 12.04 LTS: libapache2-mod-php5 5.3.10-1ubuntu3.14 php5 5.3.10-1ubuntu3.14 php5-cgi 5.3.10-1ubuntu3.14 php5-fpm 5.3.10-1ubuntu3.14 Ubuntu 10.04 LTS: libapache2-mod-php5 5.3.2-1ubuntu4.27 php5 5.3.2-1ubuntu4.27 php5-cgi 5.3.2-1ubuntu4.27 After a standard system update you need to restart Apache or php5-fpm to make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-2344-1
CVE-2014-3587, CVE-2014-3597
Package Information
https://launchpad.net/ubuntu/+source/php5/5.5.9+dfsg-1ubuntu4.4 https://launchpad.net/ubuntu/+source/php5/5.3.10-1ubuntu3.14 https://launchpad.net/ubuntu/+source/php5/5.3.2-1ubuntu4.27