Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 5 articles for you...
172
security advisorycriticalcode executionUbuntu 22.04 LTS USN-6757-1 Critical: PHP Code Execution Risk
Several security issues were fixed in PHP.. ========================================================================== Ubuntu Security Notice USN-6757-1 April 29, 2024 php7.0, php7.2, php7.4, php8.1 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in PHP. Software Description: - php8.1: HTML-embedded scripting language interpreter - php7.4: HTML-embedded scripting language interpreter - php7.2: HTML-embedded scripting language interpreter - php7.0: HTML-embedded scripting language interpreter Details: It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. (CVE-2022-4900) It was discovered that PHP incorrectly handled certain cookies. An attacker could possibly use this issue to cookie by pass. (CVE-2024-2756) It was discovered that PHP incorrectly handled some passwords. An attacker could possibly use this issue to cause an account takeover attack. (CVE-2024-3096) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS libapache2-mod-php8.1 8.1.2-1ubuntu2.16 php8.1 8.1.2-1ubuntu2.16 php8.1-cgi 8.1.2-1ubuntu2.16 php8.1-cli 8.1.2-1ubuntu2.16 php8.1-fpm 8.1.2-1ubuntu2.16 php8.1-xml 8.1.2-1ubuntu2.16 Ubuntu 20.04 LTS libapache2-mod-php7.4 7.4.3-4ubuntu2.21 php7.4 7.4.3-4ubuntu2.21 php7.4-cgi 7.4.3-4ubuntu2.21 php7.4-cli 7.4.3-4ubuntu2.21 php7.4-fpm 7.4.3-4ubuntu2.21 php7.4-xml 7.4.3-4ubuntu2.21 Ubuntu 18.04 LTS libapache2-mod-php7.2 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro php7.2 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro php7.2-cgi 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro php7.2-cli 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro php7.2-fpm 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro php7.2-xml 7.2.24-0ubuntu0.18.04.17+esm3 Available with Ubuntu Pro Ubuntu 16.04 LTS libapache2-mod-php7.0 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro php7.0 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro php7.0-cgi 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro php7.0-cli 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro php7.0-fpm 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro php7.0-xml 7.0.33-0ubuntu0.16.04.16+esm9 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6757-1 CVE-2022-4900, CVE-2024-2756, CVE-2024-3096 Package Information: https://launchpad.net/ubuntu/+source/php8.1/8.1.2-1ubuntu2.16 https://launchpad.net/ubuntu/+source/php7.4/7.4.3-4ubuntu2.21 . Numerous vulnerabilities addressed in PHP for Ubuntu releases from 16.04 to 22.04 LTS. Ensure you update promptly to safeguard your systems.. PHP Security Advisory,Ubuntu Updates, Security Issues, PHP Fixes. . Severity: Critical. LinuxSecurity.com Team
Apr 29, 2024
•Critical
Ubuntu
89
security advisorycritical issueFedoraFedora 39: Critical Fixes for PHP Memory Leak and Cookie Problems Announced
PHP version 8.2.18 (11 Apr 2024) Core: Fixed bug GH-13612 (Corrupted memory in destructor with weak references). (nielsdos) Fixed bug GH-13784 (AX_GCC_FUNC_ATTRIBUTE failure). (Remi). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-b46619f761 2024-04-19 01:17:18.086550 -------------------------------------------------------------------------------- Name : php Product : Fedora 39 Version : 8.2.18 Release : 1.fc39 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: PHP version 8.2.18 (11 Apr 2024) Core: Fixed bug GH-13612 (Corrupted memory in destructor with weak references). (nielsdos) Fixed bug GH-13784 (AX_GCC_FUNC_ATTRIBUTE failure). (Remi) Fixed bug GH-13670 (GC does not scale well with a lot of objects created in destructor). (Arnaud) DOM: Add some missing ZPP checks. (nielsdos) Fix potential memory leak in XPath evaluation results. (nielsdos) Fix phpdoc for DOMDocument load methods. (VincentLanglet) FPM Fix incorrect check in fpm_shm_free(). (nielsdos) GD: Fixed bug GH-12019 (add GDLIB_CFLAGS in feature tests). (Michael Orlitzky) Gettext: Fixed sigabrt raised with dcgettext/dcngettext calls with gettext 0.22.5 with category set to LC_ALL. (David Carlier) MySQLnd: Fix GH-13452 (Fixed handshake response [mysqlnd]). (Saki Takamachi) Fix incorrect charset length in check_mb_eucjpms(). (nielsdos) Opcache: Fixed GH-13508 (JITedQM_ASSIGN may be optimized out when op1 is null). (Arnaud, Dmitry) Fixed GH-13712 (Segmentation fault for enabled observers when calling trait method of internal trait when opcache is loaded). (Bob) PDO: Fix various PDORow bugs. (Girgias) Random: Fixed bug GH-13544 (Pre-PHP 8.2 compatibility for mt_srand with unknown modes). (timwolla) Fixed bug GH-13690 (Global Mt19937 is not properly reset in-between requests when MT_RAND_PHP is used). (timwolla) Session: Fixed bug GH-13680 (Segfault with session_decode and compilation error). (nielsdos) Sockets: Fixed bug GH-13604 (socket_getsockname returns random characters in the end of the socket name). (David Carlier) SPL: Fixed bug GH-13531 (Unable to resize SplfixedArray after being unserialized in PHP 8.2.15). (nielsdos) Fixed bug GH-13685 (Unexpected null pointer in zend_string.h). (nielsdos) Standard: Fixed bug GH-11808 (Live filesystem modified by tests). (nielsdos) Fixed GH-13402 (Added validation of \n in $additional_headers of mail()). (SakiTakamachi) Fixed bug GH-13203 (file_put_contents fail on strings over 4GB on Windows). (divinity76) Fixed bug GHSA-pc52-254m-w9w7 (Command injection via array-ish $command parameter of proc_open). (CVE-2024-1874) (Jakub Zelenka) Fixed bug GHSA-wpj3-hf5j-x4v4 (__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix). (CVE-2024-2756) (nielsdos) Fixed bug GHSA-h746-cjrr-wfmr (password_verify can erroneously return true, opening ATO risk). (CVE-2024-3096) (Jakub Zelenka) XML: Fixed bug GH-13517 (Multiple test failures when building with --with-expat). (nielsdos) -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2024 Remi Collet - 8.2.18-1 - Update to 8.2.18 - http://www.php.net/releases/8_2_18.php -------------------------------------------------------------------------------- References: [ 1 ] Bug #2275058 - CVE-2024-2756 php: host/secure cookie bypass due to partial CVE-2022-31629 fix https://bugzilla.redhat.com/show_bug.cgi?id=2275058 [ 2 ] Bug #2275061 - CVE-2024-3096 php: password_verify can erroneously return true, opening ATO risk https://bugzilla.redhat.com/show_bug.cgi?id=2275061 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-b46619f761' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 19, 2024
•Critical
Fedora
87
security advisorycriticalsoftware updateDebian: DSA-5661-1 Critical: PHP 8.2 Cookie Bypass and XXE Risks
Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in secure cookie bypass, XXE attacks or incorrect validation of password hashes. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5661-1
Apr 15, 2024
•Critical
Debian
87
security advisorycriticaldebianDebian Bullseye: DSA-5660-1 Critical: PHP7.4 Issues Overview
Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in secure cookie bypass, XXE attacks or incorrect validation of password hashes. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5660-1
Apr 15, 2024
•Critical
Debian
99
security advisoryrisk managementSlackwareSlackware 15.0: SSA:2024-103-01 Critical: PHP Command Injection Risk
New php packages are available for Slackware 15.0 and -current to fix security issues. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [slackware-security] php (SSA:2024-103-01) New php packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: +--------------------------+ extra/php81/php81-8.1.28-i586-1_slack15.0.txz: Upgraded. This update fixes security issues: Command injection via array-ish $command parameter of proc_open. __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix. Password_verify can erroneously return true, opening ATO risk. For more information, see: https://www.php.net/ChangeLog-8.php#8.1.28 https://www.cve.org/CVERecord?id=CVE-2024-1874 https://www.cve.org/CVERecord?id=CVE-2024-2756 https://www.cve.org/CVERecord?id=CVE-2024-3096 (* Security fix *) +--------------------------+ Where to find the new packages: +-----------------------------+ Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating FTP and rsync hosting to the Slackware project! :-) Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you. Updated package for Slackware 15.0: Updated package for Slackware x86_64 15.0: Updated package for Slackware -current: Updated package for Slackware x86_64 -current: MD5 signatures: +-------------+ Slackware 15.0 package: 912a70b605290d9fa79ac11089f232f3 php81-8.1.28-i586-1_slack15.0.txz Slackware x86_64 15.0 package: bbf7d8260161db99e343e17ae6c52bd9 php81-8.1.28-x86_64-1_slack15.0.txz Slackware -current package: 598fd38d4ec67d5dd6c8913b16e5ca6f n/php-8.3.6-i586-1.txz Slackware x86_64 -current package: 03bbdf7c6e708ce44e19740728cf2849 n/php-8.3.6-x86_64-1.txz Installation instructions: +------------------------+ Upgrade the package as root: # upgradepkg php81-8.1.28-i586-1_slack15.0.txz Then, restart Apache httpd: # /etc/rc.d/rc.httpd stop # /etc/rc.d/rc.httpdstart +-----+ . Recent software updates have been released for Slackware 15.0 and testing versions, targeting significant security vulnerabilities and improvements.. Slackware Security Update, PHP Packages, Command Injection, Cookie Bypass, Risk Management. . Severity: Critical. LinuxSecurity.com Team
Apr 12, 2024
•Critical
Slackware
172
security advisorysecurity issuesoftware updateUbuntu: USN-6641-1 Moderate: Curl Cookie Bypass Attacks
curl could be made to set cookies that would bypass PSL checks.. ========================================================================== Ubuntu Security Notice USN-6641-1 February 19, 2024 curl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS (Available with Ubuntu Pro) - Ubuntu 16.04 LTS (Available with Ubuntu Pro) Summary: curl could be made to set cookies that would bypass PSL checks. Software Description: - curl: HTTP, HTTPS, and FTP client and client libraries Details: Harry Sintonen discovered that curl incorrectly handled mixed case cookie domains. A remote attacker could possibly use this issue to set cookies that get sent to different and unrelated sites and domains. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS (Available with Ubuntu Pro): curl 7.58.0-2ubuntu3.24+esm3 libcurl3-gnutls 7.58.0-2ubuntu3.24+esm3 libcurl3-nss 7.58.0-2ubuntu3.24+esm3 libcurl4 7.58.0-2ubuntu3.24+esm3 Ubuntu 16.04 LTS (Available with Ubuntu Pro): curl 7.47.0-1ubuntu2.19+esm11 libcurl3 7.47.0-1ubuntu2.19+esm11 libcurl3-gnutls 7.47.0-1ubuntu2.19+esm11 libcurl3-nss 7.47.0-1ubuntu2.19+esm11 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6641-1 CVE-2023-46218 . Ubuntu Security Notification USN-6641-2 addresses a flaw found in curl that allows for bypassing cookie verification in the specified versions.. curl Vulnerability, Ubuntu Security Notice,Cookie Handling Issue. . LinuxSecurity.com Team
Feb 19, 2024
Ubuntu
89
security advisorycritical issueFedoraFedora 38: FEDORA-2023-2121eca964 critical: curl HSTS & Cookie Issues
- fix HSTS long file name clears contents (CVE-2023-46219) - fix cookie mixed case PSL bypass (CVE-2023-46218). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-2121eca964 2023-12-15 02:18:14.322411 -------------------------------------------------------------------------------- Name : curl Product : Fedora 38 Version : 8.0.1 Release : 6.fc38 URL : https://curl.se/ Summary : A utility for getting files from remote servers (FTP, HTTP, and others) Description : curl is a command line tool for transferring data with URL syntax, supporting FTP, FTPS, HTTP, HTTPS, SCP, SFTP, TFTP, TELNET, DICT, LDAP, LDAPS, FILE, IMAP, SMTP, POP3 and RTSP. curl supports SSL certificates, HTTP POST, HTTP PUT, FTP uploading, HTTP form based upload, proxies, cookies, user+password authentication (Basic, Digest, NTLM, Negotiate, kerberos...), file transfer resume, proxy tunneling and a busload of other useful tricks. -------------------------------------------------------------------------------- Update Information: - fix HSTS long file name clears contents (CVE-2023-46219) - fix cookie mixed case PSL bypass (CVE-2023-46218) -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 6 2023 Jan Macku - 8.0.1-6 - fix HSTS long file name clears contents (CVE-2023-46219) - fix cookie mixed case PSL bypass (CVE-2023-46218) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2252030 - CVE-2023-46218 curl: information disclosure by exploiting a mixed case flaw https://bugzilla.redhat.com/show_bug.cgi?id=2252030 [ 2 ] Bug #2252034 - CVE-2023-46219 curl: excessively long file name may lead to unknown HSTS status https://bugzilla.redhat.com/show_bug.cgi?id=2252034 -------------------------------------------------------------------------------- This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-2121eca964' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Dec 15, 2023
•Critical
Fedora
100
security advisorymoderateSUSESUSE 12 SP5: 2023:4653-1 moderate: curl bypass and HSTS
* bsc#1217573 * bsc#1217574 Cross-References: * CVE-2023-46218 . # Security update for curl Announcement ID: SUSE-SU-2023:4653-1 Rating: moderate References: * bsc#1217573 * bsc#1217574 Cross-References: * CVE-2023-46218 * CVE-2023-46219 CVSS scores: * CVE-2023-46218 ( SUSE ): 4.2 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N * CVE-2023-46218 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2023-46219 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for curl fixes the following issues: * CVE-2023-46218: Fixed cookie mixed case PSL bypass (bsc#1217573). * CVE-2023-46219: HSTS long file name clears contents (bsc#1217574). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4653=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4653=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4653=1 * SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2023-4653=1 ## Package List: * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * curl-debugsource-8.0.1-11.80.1 * libcurl4-debuginfo-8.0.1-11.80.1 * curl-8.0.1-11.80.1 * curl-debuginfo-8.0.1-11.80.1 * libcurl4-8.0.1-11.80.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) *libcurl4-32bit-8.0.1-11.80.1 * libcurl4-debuginfo-32bit-8.0.1-11.80.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debugsource-8.0.1-11.80.1 * libcurl4-debuginfo-8.0.1-11.80.1 * curl-8.0.1-11.80.1 * curl-debuginfo-8.0.1-11.80.1 * libcurl4-8.0.1-11.80.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * libcurl4-32bit-8.0.1-11.80.1 * libcurl4-debuginfo-32bit-8.0.1-11.80.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * curl-debugsource-8.0.1-11.80.1 * libcurl4-debuginfo-8.0.1-11.80.1 * curl-8.0.1-11.80.1 * curl-debuginfo-8.0.1-11.80.1 * libcurl4-8.0.1-11.80.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * libcurl4-32bit-8.0.1-11.80.1 * libcurl4-debuginfo-32bit-8.0.1-11.80.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * curl-debuginfo-8.0.1-11.80.1 * curl-debugsource-8.0.1-11.80.1 * libcurl-devel-8.0.1-11.80.1 ## References: * https://www.suse.com/security/cve/CVE-2023-46218.html * https://www.suse.com/security/cve/CVE-2023-46219.html * https://bugzilla.suse.com/show_bug.cgi?id=1217573 * https://bugzilla.suse.com/show_bug.cgi?id=1217574 . An essential update for curl resolves various security flaws. Ensure your systems are upgraded to uphold optimal safety and efficiency.. SUSE Curl Patch, Security Update Curl, Curl Issues, SUSE Security Advisory. . LinuxSecurity.com Team
Dec 14, 2023
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!