Secunia Security Advisory - Slackware has issued an update for php. This fixes a weakness and some vulnerabilities, where some have unknown impacts and others can be exploited by malicious users and malicious, local users to bypass certain security restrictions.
76e282a8e8144ad0e3d4e16441e261c16311f83edb48c7517fb8a7a55b38dac3
----------------------------------------------------------------------
BETA test the new Secunia Personal Software Inspector!
The Secunia PSI detects installed software on your computer and
categorises it as either Insecure, End-of-Life, or Up-To-Date.
Effectively enabling you to focus your attention on software
installations where more secure versions are available from the
vendors.
Download the free PSI BETA from the Secunia website:
https://psi.secunia.com/
----------------------------------------------------------------------
TITLE:
Slackware update for php
SECUNIA ADVISORY ID:
SA26748
VERIFY ADVISORY:
http://secunia.com/advisories/26748/
CRITICAL:
Moderately critical
IMPACT:
Unknown, Security Bypass, Privilege escalation
WHERE:
>From remote
OPERATING SYSTEM:
Slackware Linux 11.0
http://secunia.com/product/13491/
DESCRIPTION:
Slackware has issued an update for php. This fixes a weakness and
some vulnerabilities, where some have unknown impacts and others can
be exploited by malicious users and malicious, local users to bypass
certain security restrictions.
For more information:
SA25456
SA26642
SOLUTION:
Apply updated packages.
Slackware 10.1:
ebe9ba4e1b440422215682ef4a63616a php-5.2.4-i486-1_slack10.1.tgz
Slackware 10.2:
dc4516fbfff6219fdcc54fdf76fe4f93 php-5.2.4-i486-1_slack10.2.tgz
Slackware 11.0:
03d817c5973d882fee648b060d17ac33 php-5.2.4-i486-1_slack11.0.tgz
Slackware 12.0:
237ecf6ba490cf0df9fffd6529cae233 php-5.2.4-i486-1_slack12.0.tgz
ORIGINAL ADVISORY:
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.399824
OTHER REFERENCES:
SA25456:
http://secunia.com/advisories/25456/
SA26642:
http://secunia.com/advisories/26642/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------