ELSA-2014-1327

ULN >
Oracle Linux Errata repository >
ELSA-2014-1327

ELSA-2014-1327 - php security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-09-30

Description

[5.4.16-23.1]
- gd: fix NULL pointer dereference in gdImageCreateFromXpm().
CVE-2014-2497
- gd: fix NUL byte injection in file names. CVE-2014-5120
- fileinfo: fix extensive backtracking in regular expression
(incomplete fix for CVE-2013-7345). CVE-2014-3538
- fileinfo: fix mconvert incorrect handling of truncated
pascal string size. CVE-2014-3478
- fileinfo: fix cdf_read_property_info
(incomplete fix for CVE-2012-1571). CVE-2014-3587
- spl: fix use-after-free in ArrayIterator due to object
change during sorting. CVE-2014-4698
- spl: fix use-after-free in SPL Iterators. CVE-2014-4670
- network: fix segfault in dns_get_record
(incomplete fix for CVE-2014-4049). CVE-2014-3597

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	php-5.4.16-23.el7_0.1.src.rpm	8b7c10784961da338517ac5c776b1f8c929a4f69f6f3cb622fba53253bd3d9ec	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-5.4.16-23.el7_0.1.src.rpm	8b7c10784961da338517ac5c776b1f8c929a4f69f6f3cb622fba53253bd3d9ec	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-5.4.16-23.el7_0.1.src.rpm	8b7c10784961da338517ac5c776b1f8c929a4f69f6f3cb622fba53253bd3d9ec	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-5.4.16-23.el7_0.1.x86_64.rpm	d2b6b6e91c4f3062df11ffbfd5448474d8d0209bdaf212e2f0352968bb6b49ec	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-5.4.16-23.el7_0.1.x86_64.rpm	d2b6b6e91c4f3062df11ffbfd5448474d8d0209bdaf212e2f0352968bb6b49ec	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-bcmath-5.4.16-23.el7_0.1.x86_64.rpm	c5013fe872e7f300e73513039ba7a95cde547f21d57a4d3cb8697acc22d5d404	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-cli-5.4.16-23.el7_0.1.x86_64.rpm	7ab9439cdf651f91f0ee6ebf9aae83d77d9dcd76ba92b0ef0c235e116bc959fc	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-cli-5.4.16-23.el7_0.1.x86_64.rpm	7ab9439cdf651f91f0ee6ebf9aae83d77d9dcd76ba92b0ef0c235e116bc959fc	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-common-5.4.16-23.el7_0.1.x86_64.rpm	329a5669dcbd058011f66fc89c640e2c3a91674e07e46ba48baa3a4c1057fb1f	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-common-5.4.16-23.el7_0.1.x86_64.rpm	329a5669dcbd058011f66fc89c640e2c3a91674e07e46ba48baa3a4c1057fb1f	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-dba-5.4.16-23.el7_0.1.x86_64.rpm	5f6dc6cff30cde0fc53947b9847ca8165a85c4052b5c64f4b9dffed90d5bc823	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-devel-5.4.16-23.el7_0.1.x86_64.rpm	a26bfc04f13522940f385826dddd347698ab55ac0b53d2634fda5193ae8ae56d	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-embedded-5.4.16-23.el7_0.1.x86_64.rpm	95f7876d18740fe65077cf21688a917428660a2ee39cd4b0f83e737d6a7dce74	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-enchant-5.4.16-23.el7_0.1.x86_64.rpm	237c715fc47fb9540355c0c5313684a3e0bc5539957ee3746c517dd88c80c798	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-fpm-5.4.16-23.el7_0.1.x86_64.rpm	8912ab251e49a86343074978083eb3c7b2d419342316dd36fcae31954c6375df	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-gd-5.4.16-23.el7_0.1.x86_64.rpm	120ff6bf11000dfed8805b43018318cc7d911ef6454f75f214ceeb56492c2530	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-gd-5.4.16-23.el7_0.1.x86_64.rpm	120ff6bf11000dfed8805b43018318cc7d911ef6454f75f214ceeb56492c2530	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-intl-5.4.16-23.el7_0.1.x86_64.rpm	a2339a158bb66b0e7d677fff732a5a3b452953be22be3d876347534d0e8928b3	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-ldap-5.4.16-23.el7_0.1.x86_64.rpm	b1bd4595dd875f154f3fb78a2f23ef4768dc6966c4463a00052056a3de56acca	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-ldap-5.4.16-23.el7_0.1.x86_64.rpm	b1bd4595dd875f154f3fb78a2f23ef4768dc6966c4463a00052056a3de56acca	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-mbstring-5.4.16-23.el7_0.1.x86_64.rpm	924a8b38ff6b8766ddd61639d076f21ef410b5c178ceb54339c7e782954c31d0	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-mysql-5.4.16-23.el7_0.1.x86_64.rpm	b8bb2bcd3c9f18b9fc28e641a73023af5446f7d696b8ef5857fda76e7a86c6e3	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-mysql-5.4.16-23.el7_0.1.x86_64.rpm	b8bb2bcd3c9f18b9fc28e641a73023af5446f7d696b8ef5857fda76e7a86c6e3	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-mysqlnd-5.4.16-23.el7_0.1.x86_64.rpm	f39450751fb1ac2bc08b97479dc7f13c0b53c733d7aee171c4afff6f809d623e	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-odbc-5.4.16-23.el7_0.1.x86_64.rpm	2eddda1c032526ac96e08dac3001f501962ed9febe595bcd265373a30accf7de	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-odbc-5.4.16-23.el7_0.1.x86_64.rpm	2eddda1c032526ac96e08dac3001f501962ed9febe595bcd265373a30accf7de	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-pdo-5.4.16-23.el7_0.1.x86_64.rpm	23cdd9c17a8913fb2587f9fccce96795cf88fff2fbf8672ae64d78c47fd78162	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-pdo-5.4.16-23.el7_0.1.x86_64.rpm	23cdd9c17a8913fb2587f9fccce96795cf88fff2fbf8672ae64d78c47fd78162	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-pgsql-5.4.16-23.el7_0.1.x86_64.rpm	1371258130775495fa04bfe465c1d087f076c4eebda259f531d0fac9419d1dc6	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-pgsql-5.4.16-23.el7_0.1.x86_64.rpm	1371258130775495fa04bfe465c1d087f076c4eebda259f531d0fac9419d1dc6	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-process-5.4.16-23.el7_0.1.x86_64.rpm	f353cddfe6df0f72a888f21253551aa20dd14539d8fbabda6d4607506b98bf73	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-process-5.4.16-23.el7_0.1.x86_64.rpm	f353cddfe6df0f72a888f21253551aa20dd14539d8fbabda6d4607506b98bf73	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-pspell-5.4.16-23.el7_0.1.x86_64.rpm	adf4f3ec53152c444cbb0ef58842bec1a8fbbbdbca2127c88cfca513de393bbd	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-recode-5.4.16-23.el7_0.1.x86_64.rpm	aafba51373333a7ed34fae1d810a42d1a3bbd53bef62fa48bfe95a678bed4a09	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-recode-5.4.16-23.el7_0.1.x86_64.rpm	aafba51373333a7ed34fae1d810a42d1a3bbd53bef62fa48bfe95a678bed4a09	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-snmp-5.4.16-23.el7_0.1.x86_64.rpm	6f4a2cab394b28285a5e160d751df37b3738239cc11d1a282137532dc2fd54cc	ELSA-2020-1112	ol7_x86_64_optional_archive
	php-soap-5.4.16-23.el7_0.1.x86_64.rpm	130bc4b8727fda46d71005927ca13e800ccb789cfcc5b1356a6ee63696920768	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-soap-5.4.16-23.el7_0.1.x86_64.rpm	130bc4b8727fda46d71005927ca13e800ccb789cfcc5b1356a6ee63696920768	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-xml-5.4.16-23.el7_0.1.x86_64.rpm	73163dbfc9ad4f5f4fc10ecdf9cce5bef8c4f7c2fd1e323c0faeca20f8fd3483	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-xml-5.4.16-23.el7_0.1.x86_64.rpm	73163dbfc9ad4f5f4fc10ecdf9cce5bef8c4f7c2fd1e323c0faeca20f8fd3483	ELSA-2020-1112	ol7_x86_64_u0_patch
	php-xmlrpc-5.4.16-23.el7_0.1.x86_64.rpm	77d21b8960b1ae8c46e3519cf4e46fb598d5d6d17a79cd270ce222cd6e7fbb7e	ELSA-2020-1112	ol7_x86_64_latest_archive
	php-xmlrpc-5.4.16-23.el7_0.1.x86_64.rpm	77d21b8960b1ae8c46e3519cf4e46fb598d5d6d17a79cd270ce222cd6e7fbb7e	ELSA-2020-1112	ol7_x86_64_u0_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691