1. Server >
  2. Unix Server >
  3. USN-3045-1: PHP vulnerabilities

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

USN-3045-1: PHP vulnerabilities


Unix Server vom | Direktlink: ubuntu.com Nachrichten Bewertung

Ubuntu Security Notice USN-3045-1

2nd August, 2016

php5, php7.0 vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 16.04 LTS
  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS

Summary

Several security issues were fixed in PHP.

Software description

  • php5 - HTML-embedded scripting language interpreter
  • php7.0 - HTML-embedded scripting language interpreter

Details

It was discovered that PHP incorrectly handled certain SplMinHeap::compare
operations. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code. This
issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2015-4116)

It was discovered that PHP incorrectly handled recursive method calls. A
remote attacker could use this issue to cause PHP to crash, resulting in a
denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu
14.04 LTS. (CVE-2015-8873)

It was discovered that PHP incorrectly validated certain Exception objects
when unserializing data. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04
LTS. (CVE-2015-8876)

It was discovered that PHP header() function performed insufficient
filtering for Internet Explorer. A remote attacker could possibly use this
issue to perform a XSS attack. This issue only affected Ubuntu 12.04 LTS
and Ubuntu 14.04 LTS. (CVE-2015-8935)

It was discovered that PHP incorrectly handled certain locale operations.
An attacker could use this issue to cause PHP to crash, resulting in a
denial of service. This issue only affected Ubuntu 12.04 LTS and Ubuntu
14.04 LTS. (CVE-2016-5093)

It was discovered that the PHP php_html_entities() function incorrectly
handled certain string lengths. A remote attacker could use this issue to
cause PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04
LTS. (CVE-2016-5094, CVE-2016-5095)

It was discovered that the PHP fread() function incorrectly handled certain
lengths. An attacker could use this issue to cause PHP to crash, resulting
in a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-5096)

It was discovered that the PHP FastCGI Process Manager (FPM) SAPI
incorrectly handled memory in the access logging feature. An attacker could
use this issue to cause PHP to crash, resulting in a denial of service, or
possibly expose sensitive information. This issue only affected Ubuntu
12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-5114)

It was discovered that PHP would not protect applications from contents of
the HTTP_PROXY environment variable when based on the contents of the Proxy
header from HTTP requests. A remote attacker could possibly use this issue
in combination with scripts that honour the HTTP_PROXY variable to redirect
outgoing HTTP requests. (CVE-2016-5385)

Hans Jerry Illikainen discovered that the PHP bzread() function incorrectly
performed error handling. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2016-5399)

It was discovered that certain PHP multibyte string functions incorrectly
handled memory. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. This issue only affected Ubuntu 14.04 LTS. (CVE-2016-5768)

It was discovered that the PHP Mcrypt extension incorrectly handled memory.
A remote attacker could use this issue to cause PHP to crash, resulting in
a denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. (CVE-2016-5769)

It was discovered that the PHP garbage collector incorrectly handled
certain objects when unserializing malicious data. A remote attacker could
use this issue to cause PHP to crash, resulting in a denial of service, or
possibly execute arbitrary code. This issue was only addressed in Ubuntu
Ubuntu 14.04 LTS. (CVE-2016-5771, CVE-2016-5773)

It was discovered that PHP incorrectly handled memory when unserializing
malicious xml data. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.
(CVE-2016-5772)

It was discovered that the PHP php_url_parse_ex() function incorrectly
handled string termination. A remote attacker could use this issue to cause
PHP to crash, resulting in a denial of service, or possibly execute
arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04
LTS. (CVE-2016-6288)

It was discovered that PHP incorrectly handled path lengths when extracting
certain Zip archives. A remote attacker could use this issue to cause PHP
to crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2016-6289)

It was discovered that PHP incorrectly handled session deserialization. A
remote attacker could use this issue to cause PHP to crash, resulting in a
denial of service, or possibly execute arbitrary code. (CVE-2016-6290)

It was discovered that PHP incorrectly handled exif headers when processing
certain JPEG images. A remote attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2016-6291, CVE-2016-6292)

It was discovered that PHP incorrectly handled certain locale operations. A
remote attacker could use this issue to cause PHP to crash, resulting in a
denial of service, or possibly execute arbitrary code. (CVE-2016-6294)

It was discovered that the PHP garbage collector incorrectly handled
certain objects when unserializing SNMP data. A remote attacker could use
this issue to cause PHP to crash, resulting in a denial of service, or
possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS
and Ubuntu 16.04 LTS. (CVE-2016-6295)

It was discovered that the PHP xmlrpc_encode_request() function incorrectly
handled certain lengths. An attacker could use this issue to cause PHP to
crash, resulting in a denial of service, or possibly execute arbitrary
code. (CVE-2016-6296)

It was discovered that the PHP php_stream_zip_opener() function incorrectly
handled memory. An attacker could use this issue to cause PHP to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2016-6297)

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 16.04 LTS:
php7.0-fpm 7.0.8-0ubuntu0.16.04.2
libapache2-mod-php7.0 7.0.8-0ubuntu0.16.04.2
php7.0-cli 7.0.8-0ubuntu0.16.04.2
php7.0-cgi 7.0.8-0ubuntu0.16.04.2
Ubuntu 14.04 LTS:
php5-cli 5.5.9+dfsg-1ubuntu4.19
php5-cgi 5.5.9+dfsg-1ubuntu4.19
libapache2-mod-php5 5.5.9+dfsg-1ubuntu4.19
php5-fpm 5.5.9+dfsg-1ubuntu4.19
Ubuntu 12.04 LTS:
php5-cli 5.3.10-1ubuntu3.24
php5-cgi 5.3.10-1ubuntu3.24
libapache2-mod-php5 5.3.10-1ubuntu3.24
php5-fpm 5.3.10-1ubuntu3.24

To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

CVE-2015-4116, CVE-2015-8873, CVE-2015-8876, CVE-2015-8935, CVE-2016-5093, CVE-2016-5094, CVE-2016-5095, CVE-2016-5096, CVE-2016-5114, CVE-2016-5385, CVE-2016-5399, CVE-2016-5768, CVE-2016-5769, CVE-2016-5771, CVE-2016-5772, CVE-2016-5773, CVE-2016-6288, CVE-2016-6289, CVE-2016-6290, CVE-2016-6291, CVE-2016-6292, CVE-2016-6294, CVE-2016-6295, CVE-2016-6296, CVE-2016-6297

...

Externe Webseite mit kompletten Inhalt öffnen



http://www.ubuntu.com/usn/usn-3045-1/

Team Security Social Media

Kommentiere zu USN-3045-1: PHP vulnerabilities






➤ Weitere Beiträge von Team Security | IT Sicherheit

  • HPR3066: HPR Community News for April 2020

    vom 176.99 Punkte ic_school_black_18dp
    New hosts Welcome to our new host: DanNixon. Last Month's Shows Id Day Date Title Host 3043 Wed 2020-04-01 How I record for HPR Archer72 3044 Thu 2020-04-02 mocp snooze tip MrX 3045 Fri 2020-04-03 OSS compliance with privacy by default and design Ahuka 3046 Mon 2020-04-06 HPR Communi
  • IBM Security Access Manager For Web URL Parameter Information Disclosure

    vom 150.81 Punkte ic_school_black_18dp
    Es wurde eine problematische Schwachstelle in IBM Security Access Manager For Web - die betroffene Version ist unbekannt - ausgemacht. Hiervon betroffen ist eine unbekannte Funktion der Komponente URL Parameter Handler. Durch die Manipulation mit einer u
  • HPR3086: HPR Community News for May 2020

    vom 106.71 Punkte ic_school_black_18dp
    New hosts There were no new hosts this month. Last Month's Shows Id Day Date Title Host 3065 Fri 2020-05-01 The case for the unattributed message Ahuka 3066 Mon 2020-05-04 HPR Community News for April 2020 HPR Volunteers 3067 Tue 2020-05-05 Getting my Python3 code working in Python2 MrX 3068 Wed 202
  • HPR2696: HPR Community News for November 2018

    vom 105 Punkte ic_school_black_18dp
    New hosts Welcome to our new host: desearcher. Last Month's Shows Id Day Date Title Host 2674 Thu 2018-11-01 Raspberry pi3 open media server JWP 2675 Fri 2018-11-02 YouTube Playlists Ahuka
  • HPR2696: HPR Community News for November 2018

    vom 105 Punkte ic_school_black_18dp
    New hosts Welcome to our new host: desearcher. Last Month's Shows Id Day Date Title Host 2674 Thu 2018-11-01 Raspberry pi3 open media server JWP 2675 Fri 2018-11-02 YouTube Playlists Ahuka
  • HPR2981: HPR Community News for December 2019

    vom 105 Punkte ic_school_black_18dp
    New hosts Welcome to our new host: Paul Quirk. Last Month's Shows Id Day Date Title Host 2956 Mon 2019-12-02 HPR Community News for November 2019 HPR Volunteers 2957 Tue 2019-12-03 Lord D's Film Reviews: Ever lostnbronx 2958 Wed 2019-12-04 Haskell modules tuturto 2959 Thu 2019-12-05 In
  • USN-3045-1: PHP vulnerabilities

    vom 102.99 Punkte ic_school_black_18dp
    Ubuntu Security Notice USN-3045-1 2nd August, 2016 php5, php7.0 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixe
  • USN-3045-1: PHP vulnerabilities

    vom 102.99 Punkte ic_school_black_18dp
    Ubuntu Security Notice USN-3045-1 2nd August, 2016 php5, php7.0 vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 16.04 LTS Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixe
  • HPR2806: HPR Community News for April 2019

    vom 99.02 Punkte ic_school_black_18dp
    New hosts There were no new hosts this month. Last Month's Shows Id Day Date Title Host 2781 Mon 2019-04-01 HPR Community News for March 2019 HPR Volunteers 2782 Tue 2019-04-02 Never stop gaming klaatu 2783 Wed 2019-04-03 The Windows "Shutdown.exe" Command Explained Claudio Miranda 2784
  • HPR2806: HPR Community News for April 2019

    vom 99.02 Punkte ic_school_black_18dp
    New hosts There were no new hosts this month. Last Month's Shows Id Day Date Title Host 2781 Mon 2019-04-01 HPR Community News for March 2019 HPR Volunteers 2782 Tue 2019-04-02 Never stop gaming klaatu 2783 Wed 2019-04-03 The Windows "Shutdown.exe" Command Explained Claudio Miranda 2784
  • HPR3046: HPR Community News for March 2020

    vom 99.02 Punkte ic_school_black_18dp
    New hosts Welcome to our new host: crvs. Last Month's Shows Id Day Date Title Host 3021 Mon 2020-03-02 HPR Community News for February 2020 HPR Volunteers 3022 Tue 2020-03-03 FOSDEM 2020 Stand Interviews Ken Fallon 3023 Wed 2020-03-04 Critique My Script, Episode 1 - Qots-Crew-Gen
  • HPR2891: HPR Community News for August 2019

    vom 94.75 Punkte ic_school_black_18dp
    New hosts There were no new hosts this month. Last Month's Shows Id Day Date Title Host 2869 Thu 2019-08-01 building a bike, following in John Kulp's footsteps Brian in Ohio 2870 Fri 2019-08-02 Hierarchy of Evidence Ahuka 2871 Mon 2019-08-0