ELSA-2015-1219

ELSA-2015-1219 - php54-php security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2016-02-04

Description

[5.4.40-3]
- fix more functions accept paths with NUL character #1213407

[5.4.40-2]
- core: fix multipart/form-data request can use excessive
amount of CPU usage CVE-2015-4024
- fix various functions accept paths with NUL character
CVE-2015-4025, CVE-2015-4026
- ftp: fix integer overflow leading to heap overflow when
reading FTP file listing CVE-2015-4022
- phar: fix memory corruption in phar_parse_tarfile caused by
empty entry file name CVE-2015-4021
- pgsql: fix NULL pointer dereference CVE-2015-1352

Related CVEs

CVE-2015-4598

CVE-2015-4021

CVE-2015-4024

CVE-2015-4643

CVE-2015-4644

CVE-2015-4025

CVE-2015-4022

CVE-2015-4026

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 6 (x86_64)	php54-php-5.4.40-3.el6.src.rpm	d7efb649bc97add366fb760a527985eee10eb7fecb89c5e42a428ec8f574e556	-	ol6_x86_64_SoftwareCollections
	php54-php-5.4.40-3.el6.x86_64.rpm	4e209e1d5458898e58b4a3dcd2463f5e763e514a87ceecd108f0cef7d19b973b	-	ol6_x86_64_SoftwareCollections
	php54-php-bcmath-5.4.40-3.el6.x86_64.rpm	4ef7ca8dfcdbd7f5ccfcb05517a859eb19f1c229c07bd161fed596ea76d8bf58	-	ol6_x86_64_SoftwareCollections
	php54-php-cli-5.4.40-3.el6.x86_64.rpm	1d6143d750c924805a8299ac17008290f33f93dc063d7e360791fc6393f4a2f8	-	ol6_x86_64_SoftwareCollections
	php54-php-common-5.4.40-3.el6.x86_64.rpm	7d826dc2b75990c0c2711101ee5c80672ff47786d18f11a49f8dcb5a061aba81	-	ol6_x86_64_SoftwareCollections
	php54-php-dba-5.4.40-3.el6.x86_64.rpm	dc540198871187eb85bd8b95a708fa89d2efcefe2e196303953239fa76dd5e9b	-	ol6_x86_64_SoftwareCollections
	php54-php-devel-5.4.40-3.el6.x86_64.rpm	e58132ebf5b864ae1c62910b89db864ea90e1eb3a19388e5f1978a8bec9e4e40	-	ol6_x86_64_SoftwareCollections
	php54-php-enchant-5.4.40-3.el6.x86_64.rpm	e851fa807ba7176fbc30880c6af095b0692626c38e9b3ab83b802ca863c8d961	-	ol6_x86_64_SoftwareCollections
	php54-php-fpm-5.4.40-3.el6.x86_64.rpm	821f7255d3f23818fe2d04e0f9e2b81b67e6f9e6b71a1e0ac33dcdda24693b89	-	ol6_x86_64_SoftwareCollections
	php54-php-gd-5.4.40-3.el6.x86_64.rpm	4effe6bf6740dac07bd0d40328bc44a3497ed101595cf511ca29256e5e0927e5	-	ol6_x86_64_SoftwareCollections
	php54-php-imap-5.4.40-3.el6.x86_64.rpm	9a6581d7d5e17261f71b5e8cfe987f5e1921ae20528abf476574d5ec545e1331	-	ol6_x86_64_SoftwareCollections
	php54-php-intl-5.4.40-3.el6.x86_64.rpm	e34a26309aaa83cfe657d26ecd8350b848e47605b96d27d522ba018fd4999ce0	-	ol6_x86_64_SoftwareCollections
	php54-php-ldap-5.4.40-3.el6.x86_64.rpm	50eaa52101474ba7351d415fa74b1c93dfec2ebc9ff5a8468f04066196e8fdc5	-	ol6_x86_64_SoftwareCollections
	php54-php-mbstring-5.4.40-3.el6.x86_64.rpm	9418c429ac25f4c1e8d20ed0591b5404f82356f310c0178ad48da859e96896ed	-	ol6_x86_64_SoftwareCollections
	php54-php-mysqlnd-5.4.40-3.el6.x86_64.rpm	89b656f410aa4945880765972dcce4dd4cf0d1f2ac3b9d25fbfab530256da7a3	-	ol6_x86_64_SoftwareCollections
	php54-php-odbc-5.4.40-3.el6.x86_64.rpm	835eb6befb027f3e691352eaf475881de9062d5cbc1375748aadf33f0d839cb4	-	ol6_x86_64_SoftwareCollections
	php54-php-pdo-5.4.40-3.el6.x86_64.rpm	5711ee17023d473a102138582846d1718e4984dc8c811ad63075637016be1c54	-	ol6_x86_64_SoftwareCollections
	php54-php-pgsql-5.4.40-3.el6.x86_64.rpm	3f50a9389ced6ce161c554df41ff2bef640061437b2821db3e1968ed0cb0d090	-	ol6_x86_64_SoftwareCollections
	php54-php-process-5.4.40-3.el6.x86_64.rpm	06cbb2c54e4d21a6fee781b4cd7969f04cce2113ee8275dc26ac9c5ab0e3ac57	-	ol6_x86_64_SoftwareCollections
	php54-php-pspell-5.4.40-3.el6.x86_64.rpm	96e1287fe5216c10f09629abcb8d8f750e100a35f88bc3dec9d0047840ba4efc	-	ol6_x86_64_SoftwareCollections
	php54-php-recode-5.4.40-3.el6.x86_64.rpm	876fb0614c42b3375b1285d7f5475544a2fdbb01005f833ba9468549fc41d897	-	ol6_x86_64_SoftwareCollections
	php54-php-snmp-5.4.40-3.el6.x86_64.rpm	6cf08eabc4e2434f2f7929a62ce1f01c3c1d52208f0f40ae5a744f90694b5861	-	ol6_x86_64_SoftwareCollections
	php54-php-soap-5.4.40-3.el6.x86_64.rpm	3260cee04de527e5737d1198cdf5d4d59492296f585bb3e61bfb7ba3acd22a35	-	ol6_x86_64_SoftwareCollections
	php54-php-tidy-5.4.40-3.el6.x86_64.rpm	1648124f1f4faef4756e74a718bbe519adfe2a4e747511f5b7265ce26288b6dc	-	ol6_x86_64_SoftwareCollections
	php54-php-xml-5.4.40-3.el6.x86_64.rpm	d8f018e3d8e9c51d2b82ad1210043020d6501e1e32fce3a6f27bcf8d3e50881b	-	ol6_x86_64_SoftwareCollections
	php54-php-xmlrpc-5.4.40-3.el6.x86_64.rpm	997d22ccb62a80167d3d43416993eaf00c3d7c2b633e4314f31346b1d3dcc59a	-	ol6_x86_64_SoftwareCollections
Oracle Linux 7 (x86_64)	php54-php-5.4.40-3.el7.src.rpm	1b86306e93cbe20b98962228395a9637eb994ab3cc2ef13f140a4a5d8d509d94	-	ol7_x86_64_SoftwareCollections
	php54-php-5.4.40-3.el7.x86_64.rpm	c4564e4c915df0ccc18ef6839fcd79d4e807d4c78436319ec91ed7160483c1c3	-	ol7_x86_64_SoftwareCollections
	php54-php-bcmath-5.4.40-3.el7.x86_64.rpm	35fab49cbb60610a7def5d4f62c6137ab035ea5e70eb24ae7823ecf2a507f3ea	-	ol7_x86_64_SoftwareCollections
	php54-php-cli-5.4.40-3.el7.x86_64.rpm	27f2b35afd1afb54503ef55627d88cc1463bdf975aa0db1c236c9bdcc8cd1af4	-	ol7_x86_64_SoftwareCollections
	php54-php-common-5.4.40-3.el7.x86_64.rpm	9b06f249ee125e259ab47a6e6bf21e81995691b70b43ba437b9e17d950a159d2	-	ol7_x86_64_SoftwareCollections
	php54-php-dba-5.4.40-3.el7.x86_64.rpm	21c5c7e6636c39e45a40388224889a0bed7264b23d23f8317afbf19b2534e33c	-	ol7_x86_64_SoftwareCollections
	php54-php-devel-5.4.40-3.el7.x86_64.rpm	26bb3bc5070ef06e9831b148697a169df150cee2fad329cddb761c70a4f6e1c9	-	ol7_x86_64_SoftwareCollections
	php54-php-enchant-5.4.40-3.el7.x86_64.rpm	0ebd75c4a5bedf23554481fe9dc04d6105b5374346c9370f0dff24ff66341cb5	-	ol7_x86_64_SoftwareCollections
	php54-php-fpm-5.4.40-3.el7.x86_64.rpm	2dc9f25c7e0a9e875b9177f506ba4ac57bbf1c54b09a98f2581f2c9d5ce96f6a	-	ol7_x86_64_SoftwareCollections
	php54-php-gd-5.4.40-3.el7.x86_64.rpm	51aa3db9e94f05289311e669a6447bcb8d6cd1bc59a6bfc851301c629d75abe6	-	ol7_x86_64_SoftwareCollections
	php54-php-intl-5.4.40-3.el7.x86_64.rpm	cf5efc9308e8d666d00ee4e180e55e3e4177e6725d9323c05ea749d777cd2b1b	-	ol7_x86_64_SoftwareCollections
	php54-php-ldap-5.4.40-3.el7.x86_64.rpm	8b75eddda3e2356727b16ee41979885cf841dda12805c3f3260e7a9569826401	-	ol7_x86_64_SoftwareCollections
	php54-php-mbstring-5.4.40-3.el7.x86_64.rpm	b7199d20fca4514a81f079fb3250fd00b4c2a8cfa957dabc105942d61285851a	-	ol7_x86_64_SoftwareCollections
	php54-php-mysqlnd-5.4.40-3.el7.x86_64.rpm	72b8eae0816037bd33475d856f6ce545c0e610935118ed292c1672534afb7f6e	-	ol7_x86_64_SoftwareCollections
	php54-php-odbc-5.4.40-3.el7.x86_64.rpm	7b991ee3ccfdb8081c609497977cae61742fa06d44907f0b725ae14667c4ddbe	-	ol7_x86_64_SoftwareCollections
	php54-php-pdo-5.4.40-3.el7.x86_64.rpm	4d1e79ccd27e318f7148468dcbcac04b36f6c021247990750cc8bef46b4e45d8	-	ol7_x86_64_SoftwareCollections
	php54-php-pgsql-5.4.40-3.el7.x86_64.rpm	70484e98f5ca5458f7593753da781e08230135401f1a12849c08528890b44037	-	ol7_x86_64_SoftwareCollections
	php54-php-process-5.4.40-3.el7.x86_64.rpm	831d0361af47e3c1839457a4479651688aa78d70811ec12fed324a2e1499147e	-	ol7_x86_64_SoftwareCollections
	php54-php-pspell-5.4.40-3.el7.x86_64.rpm	96f7a68a465ac7b6771d749eda05de159b4be2fe3d64f89ff81a1e441410d0bd	-	ol7_x86_64_SoftwareCollections
	php54-php-recode-5.4.40-3.el7.x86_64.rpm	f512b2d9df5e6816d20efc1461934f9a3e8445f5a6f71c219048ddc44eb45bb9	-	ol7_x86_64_SoftwareCollections
	php54-php-snmp-5.4.40-3.el7.x86_64.rpm	2c68ae78905f5386b5bd5eb9100164b848bdc888f74969583703854181d7ae1a	-	ol7_x86_64_SoftwareCollections
	php54-php-soap-5.4.40-3.el7.x86_64.rpm	565a42363f8fed8781264a642d44055dde95a81f26a2515faa7c89bb7aae5175	-	ol7_x86_64_SoftwareCollections
	php54-php-xml-5.4.40-3.el7.x86_64.rpm	7f93a265bd47ec00787c0118abaa56965f47cacadd556701ab74cff69797d6fb	-	ol7_x86_64_SoftwareCollections
	php54-php-xmlrpc-5.4.40-3.el7.x86_64.rpm	58c81ac86a3f0ef06171a649b98160f74ca85be0b2084e4ccab520e285eafb83	-	ol7_x86_64_SoftwareCollections

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team