ELSA-2015-1219

ELSA-2015-1219 - php54-php security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2016-02-04

Description

[5.4.40-3]
- fix more functions accept paths with NUL character #1213407

[5.4.40-2]
- core: fix multipart/form-data request can use excessive
amount of CPU usage CVE-2015-4024
- fix various functions accept paths with NUL character
CVE-2015-4025, CVE-2015-4026
- ftp: fix integer overflow leading to heap overflow when
reading FTP file listing CVE-2015-4022
- phar: fix memory corruption in phar_parse_tarfile caused by
empty entry file name CVE-2015-4021
- pgsql: fix NULL pointer dereference CVE-2015-1352

Related CVEs

CVE-2015-4021

CVE-2015-4022

CVE-2015-4024

CVE-2015-4025

CVE-2015-4026

CVE-2015-4598

CVE-2015-4643

CVE-2015-4644

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory
Oracle Linux 6 (x86_64)	php54-php-5.4.40-3.el6.src.rpm	a6f9a4e80d4c3f53a66b035ea93971d8	-
	php54-php-5.4.40-3.el6.x86_64.rpm	e580eb470e102d593b35ed1e54246cc9	-
	php54-php-bcmath-5.4.40-3.el6.x86_64.rpm	d37da3df6dd944e8fc3c4f5e71dcb2c5	-
	php54-php-cli-5.4.40-3.el6.x86_64.rpm	26e0a4a0861467e1b7ff517115742695	-
	php54-php-common-5.4.40-3.el6.x86_64.rpm	144c06873c68bec17c62d5709ada8328	-
	php54-php-dba-5.4.40-3.el6.x86_64.rpm	2f961cbeca7b8b46cea1647b943f45bd	-
	php54-php-devel-5.4.40-3.el6.x86_64.rpm	76594dd8e1dfd08b08ce5ba26fba6638	-
	php54-php-enchant-5.4.40-3.el6.x86_64.rpm	789167bd7cf71f3bbe75fe47ac8c1fa5	-
	php54-php-fpm-5.4.40-3.el6.x86_64.rpm	838941eca2427fe2111a2efd07687bdd	-
	php54-php-gd-5.4.40-3.el6.x86_64.rpm	0a448d4ef9ea0e285089528003775793	-
	php54-php-imap-5.4.40-3.el6.x86_64.rpm	2ae2a834a5caea11048f24ce74599c15	-
	php54-php-intl-5.4.40-3.el6.x86_64.rpm	652679724f97bb23c36ee49d51cbc376	-
	php54-php-ldap-5.4.40-3.el6.x86_64.rpm	f386d14a4ac820530fd8c49471d93bc4	-
	php54-php-mbstring-5.4.40-3.el6.x86_64.rpm	db6caaafd520aadd25a277ff02e9af1b	-
	php54-php-mysqlnd-5.4.40-3.el6.x86_64.rpm	afbaa4d9a41a3ffa88b727c40fd16ddd	-
	php54-php-odbc-5.4.40-3.el6.x86_64.rpm	c84179edb6178a4917f21c8b8572c130	-
	php54-php-pdo-5.4.40-3.el6.x86_64.rpm	7a1409e6c62577e5567ebbe0bb00e02f	-
	php54-php-pgsql-5.4.40-3.el6.x86_64.rpm	7f94229b52ddb260c1c23411b2453bfc	-
	php54-php-process-5.4.40-3.el6.x86_64.rpm	bd71e31fa689fc398b7f10638db5afb1	-
	php54-php-pspell-5.4.40-3.el6.x86_64.rpm	061dfb26911dcc9d08777227f4376872	-
	php54-php-recode-5.4.40-3.el6.x86_64.rpm	2bb6c79b467f08e2389685f83fe6e9e3	-
	php54-php-snmp-5.4.40-3.el6.x86_64.rpm	e0fc8d006f2c599118176e8b0ea1b1d3	-
	php54-php-soap-5.4.40-3.el6.x86_64.rpm	51130039bd64bf4286fc325d3e412449	-
	php54-php-tidy-5.4.40-3.el6.x86_64.rpm	ce4fb1ae7699cebda452fbecac7dbd62	-
	php54-php-xml-5.4.40-3.el6.x86_64.rpm	4e46aecdf528dc14d5623184b9313206	-
	php54-php-xmlrpc-5.4.40-3.el6.x86_64.rpm	6effaa8d05fd5c7dcb41e4441aa52300	-
Oracle Linux 7 (x86_64)	php54-php-5.4.40-3.el7.src.rpm	8975ac91c5b66888a68443d56e9bfef7	-
	php54-php-5.4.40-3.el7.x86_64.rpm	e842ccb2e250669aa53067ab39a0a2e5	-
	php54-php-bcmath-5.4.40-3.el7.x86_64.rpm	538646330f931dd05da450fc92943443	-
	php54-php-cli-5.4.40-3.el7.x86_64.rpm	d64673847b68afc80db5a297ca4c8e6e	-
	php54-php-common-5.4.40-3.el7.x86_64.rpm	8f0bea3ba7954140d1ece25ea921cc6d	-
	php54-php-dba-5.4.40-3.el7.x86_64.rpm	4757e17b834ce51505d3eefdae1b4ae8	-
	php54-php-devel-5.4.40-3.el7.x86_64.rpm	75c18e3ffafcd597995d941a0ee8f9c5	-
	php54-php-enchant-5.4.40-3.el7.x86_64.rpm	efd77b55eea892aab49a434656fd9c51	-
	php54-php-fpm-5.4.40-3.el7.x86_64.rpm	4998a55002152aaebd7b06a7a062570e	-
	php54-php-gd-5.4.40-3.el7.x86_64.rpm	4466a61f0b412b77b954d3afafdcc458	-
	php54-php-intl-5.4.40-3.el7.x86_64.rpm	b9e670b2212115bca1a488cd6da9a01d	-
	php54-php-ldap-5.4.40-3.el7.x86_64.rpm	0408a6fe91276aa66e65039879f65edb	-
	php54-php-mbstring-5.4.40-3.el7.x86_64.rpm	855bb58e72960d715d29dfebe592bdf6	-
	php54-php-mysqlnd-5.4.40-3.el7.x86_64.rpm	efd1b5f75b097726247948adff4c17b7	-
	php54-php-odbc-5.4.40-3.el7.x86_64.rpm	df0fe5c92fbf1eccb3beefed06a8c325	-
	php54-php-pdo-5.4.40-3.el7.x86_64.rpm	d541b399fe044ace0f02b391d517c882	-
	php54-php-pgsql-5.4.40-3.el7.x86_64.rpm	b61af850626f130415930956f698e488	-
	php54-php-process-5.4.40-3.el7.x86_64.rpm	990922090f7584d563a4f03a974e099f	-
	php54-php-pspell-5.4.40-3.el7.x86_64.rpm	1aed477f5375bab5961e33c7e63fffb1	-
	php54-php-recode-5.4.40-3.el7.x86_64.rpm	f515889cd6755fbf3e05dc9ee7c0c27c	-
	php54-php-snmp-5.4.40-3.el7.x86_64.rpm	788a897fd959151c0fe9055b4d8b170c	-
	php54-php-soap-5.4.40-3.el7.x86_64.rpm	3b7233ea152fef1f9633407447254f89	-
	php54-php-xml-5.4.40-3.el7.x86_64.rpm	642c17ef1ab9810062fc9f1ef569d914	-
	php54-php-xmlrpc-5.4.40-3.el7.x86_64.rpm	8da5328a46b5514d0166701eda94d99e	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team