oval:org.mitre.oval:def:13920

Definition Id: oval:org.mitre.oval:def:13920

Oval ID:	oval:org.mitre.oval:def:13920
Title:	USN-761-2 -- php5 vulnerabilities
Description:	USN-761-1 fixed vulnerabilities in PHP. This update provides the corresponding updates for Ubuntu 9.04. Original advisory details: It was discovered that PHP did not sanitize certain error messages when display_errors is enabled, which could result in browsers becoming vulnerable to cross-site scripting attacks when processing the output. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. It was discovered that PHP did not properly handle certain malformed strings when being parsed by the json_decode function. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service. This issue only affected Ubuntu 8.04 and 8.10
Family:	unix	Class:	patch
Reference(s):	USN-761-2 CVE-2008-5814 CVE-2009-1271	Version:	5
Platform(s):	Ubuntu 9.04	Product(s):	php5
Definition Synopsis:
Ubuntu 9.04 is installed Architecture section Architecture independent section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5 DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section php5-recode DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-cgi DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-curl DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-snmp DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-mysql DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-odbc DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-xsl DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-gd DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND libapache2-mod-php5 DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-mhash DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-tidy DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-dev DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-pgsql DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-gmp DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-xmlrpc DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-sqlite DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-ldap DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-cli DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-sybase DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND libapache2-mod-php5filter DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-pspell DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-common DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1 AND php5-dbg DPKG is earlier than 5.2.6.dfsg.1-3ubuntu4.1

Definition Id: oval:org.mitre.oval:def:12669

Oval ID:	oval:org.mitre.oval:def:12669
Title:	Ubuntu 9.04 is installed
Description:	Ubuntu 9.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:9.04	Version:	5
Platform(s):	Ubuntu 9.04	Product(s):
Definition Synopsis:
Ubuntu 9.04 is installed
Referenced By:
oval:org.mitre.oval:def:13920

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0359s

Facebook rss twitter linkedin mail