Home page logo
/

bugtraq logo Bugtraq mailing list archives

rPSA-2006-0205-1 php php-mysql php-pgsql
From: rPath Update Announcements <announce-noreply () rpath com>
Date: Thu, 09 Nov 2006 16:52:27 -0500

rPath Security Advisory: 2006-0205-1
Published: 2006-11-09
Products: rPath Linux 1
Rating: Severe
Exposure Level Classification:
    Remote System User Deterministic Unauthorized Access
Updated Versions:
    php=/conary.rpath.com () rpl:devel//1/4.3.11-15.8-1
    php-mysql=/conary.rpath.com () rpl:devel//1/4.3.11-15.8-1
    php-pgsql=/conary.rpath.com () rpl:devel//1/4.3.11-15.8-1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5465
    http://issues.rpath.com/browse/RPL-761

Description:
    Previous versions of the php package contain flaws that create
    remote unauthorized access vulnerabilities in many php programs.
    The flaws are in the htmlentities and htmlspecialchars functions.


  By Date           By Thread  

Current thread:
  • rPSA-2006-0205-1 php php-mysql php-pgsql rPath Update Announcements (Nov 10)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]