From:
[email protected]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- ------------------------------------------------------------------------ Debian Security Advisory DSA-2089-1
[email protected] http://www.debian.org/security/ Raphael Geissert
August 6, 2010
http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : php5
Vulnerability : several
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2010-1917 CVE-2010-2225
Several remote vulnerabilities have been discovered in PHP 5, an hypertext preprocessor. The Common Vulnerabilities and Exposures project
identifies the following problems:
CVE-2010-1917
The fnmatch function can be abused to conduct denial of service
attacks (by crashing the interpreter) by the means of a stack overflow.
CVE-2010-2225
The SplObjectStorage unserializer allows attackers to execute
arbitrary code via serialized data by the means of a use-after-free vulnerability.
MOPS-60
The default sessions serializer does not correctly handle a special
marker, which allows an attacker to inject arbitrary variables into the
session and possibly exploit vulnerabilities in the unserializer.
For the vulnerability described by CVE-2010-1128 (predictable entropy
for the Linear Congruential Generator used to generate session ids,) we
do not consider upstream's solution to be sufficient. It is recommended
to uncomment the 'session.entropy_file' and 'session.entropy_length'
settings in the php.ini files.
Further improvements can be achieved by setting 'session.hash_function'
to 1 (one) and incrementing the value of 'session.entropy_length.'
For the stable distribution (lenny), these problems have been fixed in
version 5.2.6.dfsg.1-1+lenny9.
For the testing distribution (squeeze) and the unstable distribution (sid), these problems will be fixed soon.
We recommend that you upgrade your php5 packages.
Upgrade instructions
- --------------------
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
If you are using the apt-get package manager, use the line for
sources.list as given below:
apt-get update
will update the internal database
apt-get upgrade
will install corrected packages
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 5.0 (stable) alias lenny
- --------------------------------
Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.
Source archives:
http://security.debian.org/pool/updates/main/p/php5/php5_5.2.6.dfsg.1.orig.tar.gz
Size/MD5 checksum: 12173741 b80fcee38363f031229368ceff8ced58
http://security.debian.org/pool/updates/main/p/php5/php5_5.2.6.dfsg.1-1+lenny9.dsc
Size/MD5 checksum: 2529 8ccce2ae78389fdf093fc638b9d61152
http://security.debian.org/pool/updates/main/p/php5/php5_5.2.6.dfsg.1-1+lenny9.diff.gz
Size/MD5 checksum: 177397 32868c2bc5907ebeae509a5ae9e27fca
Architecture independent packages:
http://security.debian.org/pool/updates/main/p/php5/php-pear_5.2.6.dfsg.1-1+lenny9_all.deb
Size/MD5 checksum: 334570 a919de2518302133307c52d8e59841e9
http://security.debian.org/pool/updates/main/p/php5/php5_5.2.6.dfsg.1-1+lenny9_all.deb
Size/MD5 checksum: 1082 8eaf906c353774e361210ccce0d3999e
alpha architecture (DEC Alpha)
http://security.debian.org/pool/updates/main/p/php5/php5-xmlrpc_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 41628 19ae0c0feab8d955876a89e5b0d886a3
http://security.debian.org/pool/updates/main/p/php5/php5-recode_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 5074 1a0c0927f0e33b6e313f4140802c1308
http://security.debian.org/pool/updates/main/p/php5/php5-cgi_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 5165100 615bd2fa43a8453c302621a424990ab9
http://security.debian.org/pool/updates/main/p/php5/php5-common_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 370150 b100726f251541d3fde1646f62d068d7
http://security.debian.org/pool/updates/main/p/php5/php5-dev_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 362780 69cdea9f5d603037c070ebae0bb2c05c
http://security.debian.org/pool/updates/main/p/php5/php5-pgsql_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 57876 e7a3810fe5da3379490dd95547c7f425
http://security.debian.org/pool/updates/main/p/php5/php5-ldap_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 19678 faabb82e28de4899d0b677d0e7ed489b
http://security.debian.org/pool/updates/main/p/php5/php5-xsl_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 14058 1167dd05c14b1b26ade0cf1ad7c2dea8
http://security.debian.org/pool/updates/main/p/php5/php5-tidy_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 17666 fd21ad53aa1a240869cd98d0644a605f
http://security.debian.org/pool/updates/main/p/php5/php5-mhash_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 5412 108140ca0b6792c2afd0c94765467171
http://security.debian.org/pool/updates/main/p/php5/php5-sqlite_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 39396 6dbab9b2fa5b0aeb6da52b98f9639234
http://security.debian.org/pool/updates/main/p/php5/php5-gd_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 37166 cc2606c2763d7c630bd3a7f97a8bb0be
http://security.debian.org/pool/updates/main/p/php5/php5-pspell_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 8924 b2d3c894080a4d03085721e0d821dcc4
http://security.debian.org/pool/updates/main/p/php5/libapache2-mod-php5_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 2674732 c4770881026df10986f7c9723ac3a34a
http://security.debian.org/pool/updates/main/p/php5/php5-cli_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 2599054 fa7d57629c9af820e1ffe3b4ab36daba
http://security.debian.org/pool/updates/main/p/php5/php5-dbg_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 19517288 b32f680090670cbc49bd4cdff7857477
http://security.debian.org/pool/updates/main/p/php5/libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny9_alpha.deb
Size/MD5 checksum: 2673724 3a3732a99f85a67c2a62d1fcb997ab43
[continued in next message]
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)