oval:org.mitre.oval:def:13005

Definition Id: oval:org.mitre.oval:def:13005

Oval ID:	oval:org.mitre.oval:def:13005
Title:	USN-1042-1 -- php5 vulnerabilities
Description:	It was discovered that an integer overflow in the XML UTF-8 decoding code could allow an attacker to bypass cross-site scripting protections. This issue only affected Ubuntu 6.06 LTS, Ubuntu 8.04 LTS, and Ubuntu 9.10. It was discovered that the XML UTF-8 decoding code did not properly handle non-shortest form UTF-8 encoding and ill-formed subsequences in UTF-8 data, which could allow an attacker to bypass cross-site scripting protections. It was discovered that attackers might be able to bypass open_basedir restrictions by passing a specially crafted filename. Maksymilian Arciemowicz discovered that a NULL pointer derefence in the ZIP archive handling code could allow an attacker to cause a denial of service through a specially crafted ZIP archive. This issue only affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and Ubuntu 10.10. It was discovered that a stack consumption vulnerability in the filter_var PHP function when in FILTER_VALIDATE_EMAIL mode, could allow a remote attacker to cause a denial of service. This issue only affected Ubuntu 8.04 LTS, Ubuntu 9.10, Ubuntu 10.04 LTS, and Ubuntu 10.10. It was discovered that the mb_strcut function in the Libmbfl library within PHP could allow an attacker to read arbitrary memory within the application process. This issue only affected Ubuntu 10.10. Maksymilian Arciemowicz discovered that an integer overflow in the NumberFormatter::getSymbol function could allow an attacker to cause a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 10.10. Rick Regan discovered that when handing PHP textual representations of the largest subnormal double-precision floating-point number, the zend_strtod function could go into an infinite loop on 32bit x86 processors, allowing an attacker to cause a denial of service
Family:	unix	Class:	patch
Reference(s):	USN-1042-1 CVE-2009-5016 CVE-2010-3870 CVE-2010-3436 CVE-2010-3709 CVE-2010-3710 CVE-2010-4156 CVE-2010-4409 CVE-2010-4645	Version:	5
Platform(s):	Ubuntu 8.04 Ubuntu 10.10 Ubuntu 10.04 Ubuntu 9.10 Ubuntu 6.06	Product(s):	php5
Definition Synopsis:
Release section Ubuntu 8.04 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5 DPKG is earlier than 5.2.4-2ubuntu5.13 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is lpia AND Packages section php5-cli DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-cgi DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-tidy DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-recode DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-sybase DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-pspell DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-curl DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-snmp DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-ldap DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-common DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-odbc DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-dev DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-pgsql DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-xsl DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-mysql DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-xmlrpc DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-sqlite DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-gd DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-gmp DPKG is earlier than 5.2.4-2ubuntu5.13 AND libapache2-mod-php5 DPKG is earlier than 5.2.4-2ubuntu5.13 AND php5-mhash DPKG is earlier than 5.2.4-2ubuntu5.13 OR Release section Ubuntu 10.10 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5 DPKG is earlier than 5.3.3-1ubuntu9.2 OR Architecture depended section Supported architectures section Installed architecture is powerpc AND Installed architecture is armel AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section php5-recode DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-xmlrpc DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-enchant DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-intl DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-snmp DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-mysql DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-odbc DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-xsl DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-gd DPKG is earlier than 5.3.3-1ubuntu9.2 AND libapache2-mod-php5 DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-tidy DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-dev DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-pgsql DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-curl DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-gmp DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-fpm DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-cgi DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-sqlite DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-ldap DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-cli DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-sybase DPKG is earlier than 5.3.3-1ubuntu9.2 AND libapache2-mod-php5filter DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-pspell DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-common DPKG is earlier than 5.3.3-1ubuntu9.2 AND php5-dbg DPKG is earlier than 5.3.3-1ubuntu9.2 OR Release section Ubuntu 10.04 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5 DPKG is earlier than 5.3.2-1ubuntu4.6 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is i386 AND Installed architecture is powerpc AND Installed architecture is sparc AND Installed architecture is armel AND Packages section php5-recode DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-cgi DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-curl DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-intl DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-snmp DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-mysql DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-odbc DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-xsl DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-gd DPKG is earlier than 5.3.2-1ubuntu4.6 AND libapache2-mod-php5 DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-tidy DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-dev DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-pgsql DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-enchant DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-gmp DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-xmlrpc DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-sqlite DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-ldap DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-cli DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-sybase DPKG is earlier than 5.3.2-1ubuntu4.6 AND libapache2-mod-php5filter DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-pspell DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-common DPKG is earlier than 5.3.2-1ubuntu4.6 AND php5-dbg DPKG is earlier than 5.3.2-1ubuntu4.6 OR Release section Ubuntu 9.10 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5 DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 OR Architecture depended section Supported architectures section Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is lpia AND Packages section php5-recode DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-xmlrpc DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-curl DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-snmp DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-mysql DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-odbc DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-xsl DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-gd DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND libapache2-mod-php5 DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-mhash DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-tidy DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-dev DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-pgsql DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-gmp DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-cgi DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-sqlite DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-ldap DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-cli DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-sybase DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND libapache2-mod-php5filter DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-pspell DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-common DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 AND php5-dbg DPKG is earlier than 5.2.10.dfsg.1-2ubuntu6.6 OR Release section Ubuntu 6.06 is installed AND Architecture section Architecture independet section Installed architecture is all AND Packages section php-pear DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5 DPKG is earlier than 5.1.2-1ubuntu3.20 OR Architecture depended section Supported architectures section Installed architecture is sparc AND Installed architecture is powerpc AND Installed architecture is amd64 AND Installed architecture is i386 AND Packages section php5-cli DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-cgi DPKG is earlier than 5.1.2-1ubuntu3.20 AND libapache2-mod-php5 DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-recode DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-sybase DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-xmlrpc DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-curl DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-snmp DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-ldap DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-mysqli DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-odbc DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-pgsql DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-sqlite DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-mysql DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-xsl DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-gd DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-common DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-dev DPKG is earlier than 5.1.2-1ubuntu3.20 AND php5-mhash DPKG is earlier than 5.1.2-1ubuntu3.20

Definition Id: oval:org.mitre.oval:def:13089

Oval ID:	oval:org.mitre.oval:def:13089
Title:	Ubuntu 10.04 is installed
Description:	Ubuntu 10.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:10.04	Version:	5
Platform(s):	Ubuntu 10.04	Product(s):
Definition Synopsis:
Ubuntu 10.04 is installed
Referenced By:
oval:org.mitre.oval:def:13005

Definition Id: oval:org.mitre.oval:def:13134

Oval ID:	oval:org.mitre.oval:def:13134
Title:	Ubuntu 10.10 is installed
Description:	Ubuntu 10.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:10.10	Version:	3
Platform(s):	Ubuntu 10.10	Product(s):
Definition Synopsis:
Ubuntu 10.10 is installed
Referenced By:
oval:org.mitre.oval:def:13005

Definition Id: oval:org.mitre.oval:def:13079

Oval ID:	oval:org.mitre.oval:def:13079
Title:	Ubuntu 9.10 is installed
Description:	Ubuntu 9.10 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:canonical:ubuntu_linux:9.10	Version:	5
Platform(s):	Ubuntu 9.10	Product(s):
Definition Synopsis:
Ubuntu 9.10 is installed
Referenced By:
oval:org.mitre.oval:def:13005

Definition Id: oval:org.mitre.oval:def:13250

Oval ID:	oval:org.mitre.oval:def:13250
Title:	Ubuntu 8.04 is installed
Description:	Ubuntu 8.04 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:8.04	Version:	3
Platform(s):	Ubuntu 8.04	Product(s):
Definition Synopsis:
Ubuntu 8.04 is installed
Referenced By:
oval:org.mitre.oval:def:13005

Definition Id: oval:org.mitre.oval:def:13319

Oval ID:	oval:org.mitre.oval:def:13319
Title:	Ubuntu 6.06 is installed
Description:	Ubuntu 6.06 is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ubuntu:ubuntu_linux:6.06	Version:	3
Platform(s):	Ubuntu 6.06	Product(s):
Definition Synopsis:
Ubuntu 6.06 is installed
Referenced By:
oval:org.mitre.oval:def:13005

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0659s

Facebook rss twitter linkedin mail