Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
apache2-mod_php53
(any)
php53
(any)
php53-bcmath
(any)
php53-bz2
(any)
php53-calendar
(any)
php53-ctype
(any)
php53-curl
(any)
php53-dba
(any)
php53-devel
(any)
php53-dom
(any)
php53-exif
(any)
php53-fastcgi
(any)
php53-fileinfo
(any)
php53-ftp
(any)
php53-gd
(any)
php53-gettext
(any)
php53-gmp
(any)
php53-iconv
(any)
php53-imap
(any)
php53-intl
(any)
php53-json
(any)
php53-ldap
(any)
php53-mbstring
(any)
php53-mcrypt
(any)
php53-mysql
(any)
php53-odbc
(any)
php53-openssl
(any)
php53-pcntl
(any)
php53-pdo
(any)
php53-pear
(any)
php53-pgsql
(any)
php53-posix
(any)
php53-pspell
(any)
php53-readline
(any)
php53-shmop
(any)
php53-snmp
(any)
php53-soap
(any)
php53-sockets
(any)
php53-sqlite
(any)
php53-suhosin
(any)
php53-sysvmsg
(any)
php53-sysvsem
(any)
php53-sysvshm
(any)
php53-tidy
(any)
php53-tokenizer
(any)
php53-wddx
(any)
php53-xmlreader
(any)
php53-xmlrpc
(any)
php53-xmlwriter
(any)
php53-xsl
(any)
php53-zip
(any)
php53-zlib
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Software Development Kit 11 SP3, SUSE Linux Enterprise Server 11 SP3, SUSE Linux Enterprise Server 11 SP3 for VMware
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Software Development Kit 11 SP3:
i586, ia64, ppc64, s390x, x86_64:
php53-tidy - 5.3.17-0.31.1
php53-sqlite - 5.3.17-0.31.1
php53-posix - 5.3.17-0.31.1
php53-sockets - 5.3.17-0.31.1
php53-devel - 5.3.17-0.31.1
php53-readline - 5.3.17-0.31.1
php53-imap - 5.3.17-0.31.1
SUSE Linux Enterprise Server 11 SP3:
i586, ia64, ppc64, s390x, x86_64:
apache2-mod_php53 - 5.3.17-0.31.1
php53-iconv - 5.3.17-0.31.1
php53-fileinfo - 5.3.17-0.31.1
php53-bz2 - 5.3.17-0.31.1
php53-fastcgi - 5.3.17-0.31.1
php53-xmlrpc - 5.3.17-0.31.1
php53-soap - 5.3.17-0.31.1
php53 - 5.3.17-0.31.1
php53-intl - 5.3.17-0.31.1
php53-bcmath - 5.3.17-0.31.1
php53-pspell - 5.3.17-0.31.1
php53-exif - 5.3.17-0.31.1
php53-zlib - 5.3.17-0.31.1
php53-shmop - 5.3.17-0.31.1
php53-pdo - 5.3.17-0.31.1
php53-gmp - 5.3.17-0.31.1
php53-ldap - 5.3.17-0.31.1
php53-gettext - 5.3.17-0.31.1
php53-sysvsem - 5.3.17-0.31.1
php53-suhosin - 5.3.17-0.31.1
php53-ftp - 5.3.17-0.31.1
php53-dom - 5.3.17-0.31.1
php53-mbstring - 5.3.17-0.31.1
php53-zip - 5.3.17-0.31.1
php53-sysvshm - 5.3.17-0.31.1
php53-sysvmsg - 5.3.17-0.31.1
php53-xmlwriter - 5.3.17-0.31.1
php53-pear - 5.3.17-0.31.1
php53-dba - 5.3.17-0.31.1
php53-mcrypt - 5.3.17-0.31.1
php53-odbc - 5.3.17-0.31.1
php53-xmlreader - 5.3.17-0.31.1
php53-json - 5.3.17-0.31.1
php53-ctype - 5.3.17-0.31.1
php53-calendar - 5.3.17-0.31.1
php53-pgsql - 5.3.17-0.31.1
php53-mysql - 5.3.17-0.31.1
php53-openssl - 5.3.17-0.31.1
php53-tokenizer - 5.3.17-0.31.1
php53-wddx - 5.3.17-0.31.1
php53-gd - 5.3.17-0.31.1
php53-xsl - 5.3.17-0.31.1
php53-curl - 5.3.17-0.31.1
php53-snmp - 5.3.17-0.31.1
php53-pcntl - 5.3.17-0.31.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
apache2-mod_php53 - 5.3.17-0.31.1
php53-iconv - 5.3.17-0.31.1
php53-fileinfo - 5.3.17-0.31.1
php53-bz2 - 5.3.17-0.31.1
php53-fastcgi - 5.3.17-0.31.1
php53-xmlrpc - 5.3.17-0.31.1
php53-soap - 5.3.17-0.31.1
php53 - 5.3.17-0.31.1
php53-intl - 5.3.17-0.31.1
php53-bcmath - 5.3.17-0.31.1
php53-pspell - 5.3.17-0.31.1
php53-exif - 5.3.17-0.31.1
php53-zlib - 5.3.17-0.31.1
php53-shmop - 5.3.17-0.31.1
php53-pdo - 5.3.17-0.31.1
php53-gmp - 5.3.17-0.31.1
php53-ldap - 5.3.17-0.31.1
php53-gettext - 5.3.17-0.31.1
php53-sysvsem - 5.3.17-0.31.1
php53-suhosin - 5.3.17-0.31.1
php53-ftp - 5.3.17-0.31.1
php53-dom - 5.3.17-0.31.1
php53-mbstring - 5.3.17-0.31.1
php53-zip - 5.3.17-0.31.1
php53-sysvshm - 5.3.17-0.31.1
php53-sysvmsg - 5.3.17-0.31.1
php53-xmlwriter - 5.3.17-0.31.1
php53-pear - 5.3.17-0.31.1
php53-dba - 5.3.17-0.31.1
php53-mcrypt - 5.3.17-0.31.1
php53-odbc - 5.3.17-0.31.1
php53-xmlreader - 5.3.17-0.31.1
php53-json - 5.3.17-0.31.1
php53-ctype - 5.3.17-0.31.1
php53-calendar - 5.3.17-0.31.1
php53-pgsql - 5.3.17-0.31.1
php53-mysql - 5.3.17-0.31.1
php53-openssl - 5.3.17-0.31.1
php53-tokenizer - 5.3.17-0.31.1
php53-wddx - 5.3.17-0.31.1
php53-gd - 5.3.17-0.31.1
php53-xsl - 5.3.17-0.31.1
php53-curl - 5.3.17-0.31.1
php53-snmp - 5.3.17-0.31.1
php53-pcntl - 5.3.17-0.31.1
SUSE Linux Enterprise Software Development Kit 11 SP3:
i586, ia64, ppc64, s390x, x86_64:
php53-tidy - 5.3.17-0.31.1
php53-sqlite - 5.3.17-0.31.1
php53-posix - 5.3.17-0.31.1
php53-sockets - 5.3.17-0.31.1
php53-devel - 5.3.17-0.31.1
php53-readline - 5.3.17-0.31.1
php53-imap - 5.3.17-0.31.1
SUSE Linux Enterprise Server 11 SP3:
i586, ia64, ppc64, s390x, x86_64:
apache2-mod_php53 - 5.3.17-0.31.1
php53-iconv - 5.3.17-0.31.1
php53-fileinfo - 5.3.17-0.31.1
php53-bz2 - 5.3.17-0.31.1
php53-fastcgi - 5.3.17-0.31.1
php53-xmlrpc - 5.3.17-0.31.1
php53-soap - 5.3.17-0.31.1
php53 - 5.3.17-0.31.1
php53-intl - 5.3.17-0.31.1
php53-bcmath - 5.3.17-0.31.1
php53-pspell - 5.3.17-0.31.1
php53-exif - 5.3.17-0.31.1
php53-zlib - 5.3.17-0.31.1
php53-shmop - 5.3.17-0.31.1
php53-pdo - 5.3.17-0.31.1
php53-gmp - 5.3.17-0.31.1
php53-ldap - 5.3.17-0.31.1
php53-gettext - 5.3.17-0.31.1
php53-sysvsem - 5.3.17-0.31.1
php53-suhosin - 5.3.17-0.31.1
php53-ftp - 5.3.17-0.31.1
php53-dom - 5.3.17-0.31.1
php53-mbstring - 5.3.17-0.31.1
php53-zip - 5.3.17-0.31.1
php53-sysvshm - 5.3.17-0.31.1
php53-sysvmsg - 5.3.17-0.31.1
php53-xmlwriter - 5.3.17-0.31.1
php53-pear - 5.3.17-0.31.1
php53-dba - 5.3.17-0.31.1
php53-mcrypt - 5.3.17-0.31.1
php53-odbc - 5.3.17-0.31.1
php53-xmlreader - 5.3.17-0.31.1
php53-json - 5.3.17-0.31.1
php53-ctype - 5.3.17-0.31.1
php53-calendar - 5.3.17-0.31.1
php53-pgsql - 5.3.17-0.31.1
php53-mysql - 5.3.17-0.31.1
php53-openssl - 5.3.17-0.31.1
php53-tokenizer - 5.3.17-0.31.1
php53-wddx - 5.3.17-0.31.1
php53-gd - 5.3.17-0.31.1
php53-xsl - 5.3.17-0.31.1
php53-curl - 5.3.17-0.31.1
php53-snmp - 5.3.17-0.31.1
php53-pcntl - 5.3.17-0.31.1
SUSE Linux Enterprise Server 11 SP3 for VMware:
i586, x86_64:
apache2-mod_php53 - 5.3.17-0.31.1
php53-iconv - 5.3.17-0.31.1
php53-fileinfo - 5.3.17-0.31.1
php53-bz2 - 5.3.17-0.31.1
php53-fastcgi - 5.3.17-0.31.1
php53-xmlrpc - 5.3.17-0.31.1
php53-soap - 5.3.17-0.31.1
php53 - 5.3.17-0.31.1
php53-intl - 5.3.17-0.31.1
php53-bcmath - 5.3.17-0.31.1
php53-pspell - 5.3.17-0.31.1
php53-exif - 5.3.17-0.31.1
php53-zlib - 5.3.17-0.31.1
php53-shmop - 5.3.17-0.31.1
php53-pdo - 5.3.17-0.31.1
php53-gmp - 5.3.17-0.31.1
php53-ldap - 5.3.17-0.31.1
php53-gettext - 5.3.17-0.31.1
php53-sysvsem - 5.3.17-0.31.1
php53-suhosin - 5.3.17-0.31.1
php53-ftp - 5.3.17-0.31.1
php53-dom - 5.3.17-0.31.1
php53-mbstring - 5.3.17-0.31.1
php53-zip - 5.3.17-0.31.1
php53-sysvshm - 5.3.17-0.31.1
php53-sysvmsg - 5.3.17-0.31.1
php53-xmlwriter - 5.3.17-0.31.1
php53-pear - 5.3.17-0.31.1
php53-dba - 5.3.17-0.31.1
php53-mcrypt - 5.3.17-0.31.1
php53-odbc - 5.3.17-0.31.1
php53-xmlreader - 5.3.17-0.31.1
php53-json - 5.3.17-0.31.1
php53-ctype - 5.3.17-0.31.1
php53-calendar - 5.3.17-0.31.1
php53-pgsql - 5.3.17-0.31.1
php53-mysql - 5.3.17-0.31.1
php53-openssl - 5.3.17-0.31.1
php53-tokenizer - 5.3.17-0.31.1
php53-wddx - 5.3.17-0.31.1
php53-gd - 5.3.17-0.31.1
php53-xsl - 5.3.17-0.31.1
php53-curl - 5.3.17-0.31.1
php53-snmp - 5.3.17-0.31.1
php53-pcntl - 5.3.17-0.31.1
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2014-November/001066.html
https://bugzilla.suse.com/show_bug.cgi?id=902357
https://bugzilla.suse.com/show_bug.cgi?id=902360
https://bugzilla.suse.com/show_bug.cgi?id=902368
http://download.suse.com/patch/finder/?keywords=991707256096509383d233738d9325bb
Источник: CVE
Наименование: CVE-2014-3669
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3669
Источник: CVE
Наименование: CVE-2014-3668
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3668
Источник: CVE
Наименование: CVE-2014-3670
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3670
https://bugzilla.suse.com/show_bug.cgi?id=902357
https://bugzilla.suse.com/show_bug.cgi?id=902360
https://bugzilla.suse.com/show_bug.cgi?id=902368
http://download.suse.com/patch/finder/?keywords=991707256096509383d233738d9325bb
Источник: CVE
Наименование: CVE-2014-3669
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3669
Источник: CVE
Наименование: CVE-2014-3668
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3668
Источник: CVE
Наименование: CVE-2014-3670
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3670