Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
apache2-mod_php4
(any)
apache2-mod_php5
(any)
mod_php4
(any)
mod_php4-aolserver
(any)
mod_php4-core
(any)
mod_php4-devel
(any)
mod_php4-servlet
(any)
php4
(any)
php4-32bit
(any)
php4-devel
(any)
php4-exif
(any)
php4-fastcgi
(any)
php4-imap
(any)
php4-mbstring
(any)
php4-mysql
(any)
php4-pear
(any)
php4-recode
(any)
php4-servlet
(any)
php4-session
(any)
php4-sysvshm
(any)
php4-wddx
(any)
php5
(any)
php5-devel
(any)
php5-exif
(any)
php5-fastcgi
(any)
php5-mbstring
(any)
php5-pear
(any)
php5-sysvmsg
(any)
php5-sysvshm
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux 10.0, SUSE Linux 9.3, SUSE Linux 9.2, SUSE Linux 9.1, SUSE Linux 9.0, SUSE Linux Enterprise Server 8, SUSE SLES 9, UnitedLinux 1.0
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 4.2, SUSE LINUX Retail Solution 8:
i586:
mod_php4 - 4.2.2-498
mod_php4-core - 4.2.2-498
mod_php4-devel - 4.2.2-498
mod_php4-servlet - 4.2.2-498
Novell Open Enterprise Server (OES), SUSE Linux 9.0 Professional, SUSE LINUX 9.0 Personal, SUSE LINUX 9.1 Professional, SUSE Linux Enterprise Server 9, Novell Linux Point of Service 9:
i586:
apache-mod_php4 - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-servlet - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
openSUSE 10.0:
i586:
php5-exif - 5.0.4-9.6
php5-pear - 5.0.4-9.6
php4-mbstring - 4.4.0-6.6
php4-fastcgi - 4.4.0-6.6
php5-fastcgi - 5.0.4-9.6
php4-exif - 4.4.0-6.6
apache2-mod_php4 - 4.4.0-6.6
php4-servlet - 4.4.0-6.6
php4 - 4.4.0-6.6
php5-mbstring - 5.0.4-9.6
apache2-mod_php5 - 5.0.4-9.6
php5 - 5.0.4-9.6
openSUSE 9.3:
i586:
mod_php4-servlet - 4.3.10-14.16
php5-sysvmsg - 5.0.3-14.16
php4-sysvshm - 4.3.10-14.16
php5-pear - 5.0.3-14.16
php5-mbstring - 5.0.3-14.16
php5-sysvshm - 5.0.3-14.16
php4-session - 4.3.10-14.16
apache2-mod_php4 - 4.3.10-14.16
php4-mbstring - 4.3.10-14.16
php4-exif - 4.3.10-14.16
apache2-mod_php5 - 5.0.3-14.16
php5-fastcgi - 5.0.3-14.16
php4-fastcgi - 4.3.10-14.16
php4 - 4.3.10-14.16
php5 - 5.0.3-14.16
php5-devel - 5.0.3-14.16
php4-devel - 4.3.10-14.16
php5-exif - 5.0.3-14.16
php4-pear - 4.3.10-14.16
SUSE Linux 9.0 Professional, SUSE LINUX 9.0 Personal, SUSE LINUX 9.1 Professional, SUSE Linux Enterprise Server 9:
s390:
apache-mod_php4 - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-servlet - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
SUSE Linux Enterprise Server 9:
x86_64:
apache-mod_php4 - 4.3.4-43.50
apache2-mod_php4 - 4.3.4-43.50
mod_php4-core - 4.3.4-43.50
mod_php4-servlet - 4.3.4-43.50
php4 - 4.3.4-43.50
php4-devel - 4.3.4-43.50
php4-exif - 4.3.4-43.50
php4-fastcgi - 4.3.4-43.50
php4-imap - 4.3.4-43.50
php4-mbstring - 4.3.4-43.50
php4-mysql - 4.3.4-43.50
php4-pear - 4.3.4-43.50
php4-recode - 4.3.4-43.50
php4-servlet - 4.3.4-43.50
php4-session - 4.3.4-43.50
php4-sysvshm - 4.3.4-43.50
Novell Open Enterprise Server (OES), SUSE Linux Enterprise Server 9, Novell Linux Point of Service 9:
x86_64:
apache-mod_php4 - 4.3.4-43.69
apache2-mod_php4 - 4.3.4-43.69
mod_php4-core - 4.3.4-43.69
mod_php4-servlet - 4.3.4-43.69
php4 - 4.3.4-43.69
php4-curl - 4.3.4-43.69
php4-devel - 4.3.4-43.69
php4-exif - 4.3.4-43.69
php4-fastcgi - 4.3.4-43.69
php4-gd - 4.3.4-43.69
php4-imap - 4.3.4-43.69
php4-mbstring - 4.3.4-43.69
php4-mysql - 4.3.4-43.69
php4-pear - 4.3.4-43.69
php4-pgsql - 4.3.4-43.69
php4-recode - 4.3.4-43.69
php4-servlet - 4.3.4-43.69
php4-session - 4.3.4-43.69
php4-sysvshm - 4.3.4-43.69
php4-wddx - 4.3.4-43.69
apache-mod_php4 - 4.3.4-43.66
apache2-mod_php4 - 4.3.4-43.66
mod_php4-core - 4.3.4-43.66
mod_php4-servlet - 4.3.4-43.66
php4 - 4.3.4-43.66
php4-curl - 4.3.4-43.66
php4-devel - 4.3.4-43.66
php4-exif - 4.3.4-43.66
php4-fastcgi - 4.3.4-43.66
php4-gd - 4.3.4-43.66
php4-imap - 4.3.4-43.66
php4-mbstring - 4.3.4-43.66
php4-mysql - 4.3.4-43.66
php4-pear - 4.3.4-43.66
php4-pgsql - 4.3.4-43.66
php4-recode - 4.3.4-43.66
php4-servlet - 4.3.4-43.66
php4-session - 4.3.4-43.66
php4-sysvshm - 4.3.4-43.66
php4-wddx - 4.3.4-43.66
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 5.0, SUSE LINUX Retail Solution 8:
i586:
mod_php4 - 4.2.2-500
mod_php4-core - 4.2.2-500
mod_php4-devel - 4.2.2-500
mod_php4-servlet - 4.2.2-500
openSUSE 9.1:
i586:
php4-servlet - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4-wddx - 4.3.4-43.46.8
openSUSE 9.0:
i586:
mod_php4-aolserver - 4.3.3-201
mod_php4-servlet - 4.3.3-201
mod_php4 - 4.3.3-201
mod_php4-core - 4.3.3-201
mod_php4-devel - 4.3.3-201
apache2-mod_php4 - 4.3.3-201
SUSE LINUX Enterprise Server 8:
x86_64:
mod_php4 - 4.2.2-500
mod_php4-core - 4.2.2-500
mod_php4-devel - 4.2.2-500
mod_php4-servlet - 4.2.2-500
mod_php4 - 4.2.2-498
mod_php4-core - 4.2.2-498
mod_php4-devel - 4.2.2-498
mod_php4-servlet - 4.2.2-498
openSUSE 9.2:
i586:
php4-fastcgi - 4.3.8-8.19
php4-devel - 4.3.8-8.19
php4-sysvshm - 4.3.8-8.19
php4-mbstring - 4.3.8-8.19
php4-exif - 4.3.8-8.19
apache2-mod_php4 - 4.3.8-8.19
mod_php4-servlet - 4.3.8-8.19
php4 - 4.3.8-8.19
php4-session - 4.3.8-8.19
php4-pear - 4.3.8-8.19
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 4.0, SUSE LINUX Retail Solution 8:
x86_64:
mod_php4 - 4.2.2-515
mod_php4-core - 4.2.2-515
mod_php4-devel - 4.2.2-515
mod_php4-servlet - 4.2.2-515
mod_php4 - 4.2.2-512
mod_php4-core - 4.2.2-512
mod_php4-devel - 4.2.2-512
mod_php4-servlet - 4.2.2-512
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 4.2, SUSE LINUX Retail Solution 8:
i586:
mod_php4 - 4.2.2-498
mod_php4-core - 4.2.2-498
mod_php4-devel - 4.2.2-498
mod_php4-servlet - 4.2.2-498
Novell Open Enterprise Server (OES), SUSE Linux 9.0 Professional, SUSE LINUX 9.0 Personal, SUSE LINUX 9.1 Professional, SUSE Linux Enterprise Server 9, Novell Linux Point of Service 9:
i586:
apache-mod_php4 - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-servlet - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
openSUSE 10.0:
i586:
php5-exif - 5.0.4-9.6
php5-pear - 5.0.4-9.6
php4-mbstring - 4.4.0-6.6
php4-fastcgi - 4.4.0-6.6
php5-fastcgi - 5.0.4-9.6
php4-exif - 4.4.0-6.6
apache2-mod_php4 - 4.4.0-6.6
php4-servlet - 4.4.0-6.6
php4 - 4.4.0-6.6
php5-mbstring - 5.0.4-9.6
apache2-mod_php5 - 5.0.4-9.6
php5 - 5.0.4-9.6
openSUSE 9.3:
i586:
mod_php4-servlet - 4.3.10-14.16
php5-sysvmsg - 5.0.3-14.16
php4-sysvshm - 4.3.10-14.16
php5-pear - 5.0.3-14.16
php5-mbstring - 5.0.3-14.16
php5-sysvshm - 5.0.3-14.16
php4-session - 4.3.10-14.16
apache2-mod_php4 - 4.3.10-14.16
php4-mbstring - 4.3.10-14.16
php4-exif - 4.3.10-14.16
apache2-mod_php5 - 5.0.3-14.16
php5-fastcgi - 5.0.3-14.16
php4-fastcgi - 4.3.10-14.16
php4 - 4.3.10-14.16
php5 - 5.0.3-14.16
php5-devel - 5.0.3-14.16
php4-devel - 4.3.10-14.16
php5-exif - 5.0.3-14.16
php4-pear - 4.3.10-14.16
SUSE Linux 9.0 Professional, SUSE LINUX 9.0 Personal, SUSE LINUX 9.1 Professional, SUSE Linux Enterprise Server 9:
s390:
apache-mod_php4 - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-servlet - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
SUSE Linux Enterprise Server 9:
x86_64:
apache-mod_php4 - 4.3.4-43.50
apache2-mod_php4 - 4.3.4-43.50
mod_php4-core - 4.3.4-43.50
mod_php4-servlet - 4.3.4-43.50
php4 - 4.3.4-43.50
php4-devel - 4.3.4-43.50
php4-exif - 4.3.4-43.50
php4-fastcgi - 4.3.4-43.50
php4-imap - 4.3.4-43.50
php4-mbstring - 4.3.4-43.50
php4-mysql - 4.3.4-43.50
php4-pear - 4.3.4-43.50
php4-recode - 4.3.4-43.50
php4-servlet - 4.3.4-43.50
php4-session - 4.3.4-43.50
php4-sysvshm - 4.3.4-43.50
Novell Open Enterprise Server (OES), SUSE Linux Enterprise Server 9, Novell Linux Point of Service 9:
x86_64:
apache-mod_php4 - 4.3.4-43.69
apache2-mod_php4 - 4.3.4-43.69
mod_php4-core - 4.3.4-43.69
mod_php4-servlet - 4.3.4-43.69
php4 - 4.3.4-43.69
php4-curl - 4.3.4-43.69
php4-devel - 4.3.4-43.69
php4-exif - 4.3.4-43.69
php4-fastcgi - 4.3.4-43.69
php4-gd - 4.3.4-43.69
php4-imap - 4.3.4-43.69
php4-mbstring - 4.3.4-43.69
php4-mysql - 4.3.4-43.69
php4-pear - 4.3.4-43.69
php4-pgsql - 4.3.4-43.69
php4-recode - 4.3.4-43.69
php4-servlet - 4.3.4-43.69
php4-session - 4.3.4-43.69
php4-sysvshm - 4.3.4-43.69
php4-wddx - 4.3.4-43.69
apache-mod_php4 - 4.3.4-43.66
apache2-mod_php4 - 4.3.4-43.66
mod_php4-core - 4.3.4-43.66
mod_php4-servlet - 4.3.4-43.66
php4 - 4.3.4-43.66
php4-curl - 4.3.4-43.66
php4-devel - 4.3.4-43.66
php4-exif - 4.3.4-43.66
php4-fastcgi - 4.3.4-43.66
php4-gd - 4.3.4-43.66
php4-imap - 4.3.4-43.66
php4-mbstring - 4.3.4-43.66
php4-mysql - 4.3.4-43.66
php4-pear - 4.3.4-43.66
php4-pgsql - 4.3.4-43.66
php4-recode - 4.3.4-43.66
php4-servlet - 4.3.4-43.66
php4-session - 4.3.4-43.66
php4-sysvshm - 4.3.4-43.66
php4-wddx - 4.3.4-43.66
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 5.0, SUSE LINUX Retail Solution 8:
i586:
mod_php4 - 4.2.2-500
mod_php4-core - 4.2.2-500
mod_php4-devel - 4.2.2-500
mod_php4-servlet - 4.2.2-500
openSUSE 9.1:
i586:
php4-servlet - 4.3.4-43.46.8
php4-recode - 4.3.4-43.46.8
php4-sysvshm - 4.3.4-43.46.8
php4-imap - 4.3.4-43.46.8
php4 - 4.3.4-43.46.8
php4-session - 4.3.4-43.46.8
php4-exif - 4.3.4-43.46.8
php4-mbstring - 4.3.4-43.46.8
php4-devel - 4.3.4-43.46.8
mod_php4-core - 4.3.4-43.46.8
apache2-mod_php4 - 4.3.4-43.46.8
php4-fastcgi - 4.3.4-43.46.8
php4-pear - 4.3.4-43.46.8
php4-mysql - 4.3.4-43.46.8
mod_php4-servlet - 4.3.4-43.46.8
php4-wddx - 4.3.4-43.46.8
openSUSE 9.0:
i586:
mod_php4-aolserver - 4.3.3-201
mod_php4-servlet - 4.3.3-201
mod_php4 - 4.3.3-201
mod_php4-core - 4.3.3-201
mod_php4-devel - 4.3.3-201
apache2-mod_php4 - 4.3.3-201
SUSE LINUX Enterprise Server 8:
x86_64:
mod_php4 - 4.2.2-500
mod_php4-core - 4.2.2-500
mod_php4-devel - 4.2.2-500
mod_php4-servlet - 4.2.2-500
mod_php4 - 4.2.2-498
mod_php4-core - 4.2.2-498
mod_php4-devel - 4.2.2-498
mod_php4-servlet - 4.2.2-498
openSUSE 9.2:
i586:
php4-fastcgi - 4.3.8-8.19
php4-devel - 4.3.8-8.19
php4-sysvshm - 4.3.8-8.19
php4-mbstring - 4.3.8-8.19
php4-exif - 4.3.8-8.19
apache2-mod_php4 - 4.3.8-8.19
mod_php4-servlet - 4.3.8-8.19
php4 - 4.3.8-8.19
php4-session - 4.3.8-8.19
php4-pear - 4.3.8-8.19
SUSE LINUX Standard Server 8, SUSE LINUX Enterprise Server 8, SUSE LINUX Openexchange Server 4.0, SUSE LINUX Retail Solution 8:
x86_64:
mod_php4 - 4.2.2-515
mod_php4-core - 4.2.2-515
mod_php4-devel - 4.2.2-515
mod_php4-servlet - 4.2.2-515
mod_php4 - 4.2.2-512
mod_php4-core - 4.2.2-512
mod_php4-devel - 4.2.2-512
mod_php4-servlet - 4.2.2-512
Ссылки
https://www.suse.com/support/security/advisories/2005_14_sa.html
Источник: CVE
Наименование: CVE-2005-3883
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3883
Источник: CVE
Наименование: CVE-2005-3392
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3392
Источник: CVE
Наименование: CVE-2005-3391
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3391
Источник: CVE
Наименование: CVE-2005-3390
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3390
Источник: CVE
Наименование: CVE-2005-3353
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3353
Источник: CVE
Наименование: CVE-2005-3389
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3389
Источник: CVE
Наименование: CVE-2005-3883
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3883
Источник: CVE
Наименование: CVE-2005-3392
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3392
Источник: CVE
Наименование: CVE-2005-3391
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3391
Источник: CVE
Наименование: CVE-2005-3390
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3390
Источник: CVE
Наименование: CVE-2005-3353
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3353
Источник: CVE
Наименование: CVE-2005-3389
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3389