Objavljena je zakrpa koja ispravlja pojavljivanje propusta u paketu php s neobjavljenim posljedicama.
| Paket: | PHP 5.0.x |
| Operacijski sustavi: | Mandriva Linux Enterprise Server 5.0 |
| Problem: | neodgovarajuća provjera ulaznih podataka |
| Iskorištavanje: | lokalno/udaljeno |
| Posljedica: | zaobilaženje postavljenih ograničenja |
| Rješenje: | programska zakrpa proizvođača |
| Izvorni ID preporuke: | MDVA-2009:050 |
| Izvor: | Mandriva |
| Problem: | |
| Ranjivost se javlja zbog nepravilne obrade ulaznih nizova pri kojoj se slučajno preskaču neke vrste znakova. |
|
| Posljedica: | |
| Iskorištavanje propusta ima neobjavljene posljedice. |
|
| Rješenje: | |
| Svim se korisnicima savjetuje instalacija nadogradnje. |
|
Izvorni tekst preporuke
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Advisory MDVA-2012:050
http://www.mandriva.com/security/
_______________________________________________________________________
Package : php
Date : July 6, 2012
Affected: Enterprise Server 5.0
_______________________________________________________________________
Problem Description:
A regression was found with XML parsing that was previousely fixed
with the MDVA-2009:041 advisory and reappeared because of a forgotten
patch. The updated packages resolves this issue.
_______________________________________________________________________
References:
https://qa.mandriva.com/43486
_______________________________________________________________________
Updated Packages:
Mandriva Enterprise Server 5:
eb5739cd8360264eb6874d64dffe9752
mes5/i586/libphp5_common5-5.3.14-0.2mdvmes5.2.i586.rpm
7b5cd9bb900fc7be5394df8723d850fb
mes5/i586/php-bcmath-5.3.14-0.2mdvmes5.2.i586.rpm
f8c452950be012f624347f319c3bf26b
mes5/i586/php-bz2-5.3.14-0.2mdvmes5.2.i586.rpm
43fa4b3a78045e8020aa529a967725ee
mes5/i586/php-calendar-5.3.14-0.2mdvmes5.2.i586.rpm
b36f189f43941c431bc1122bfa63281f
mes5/i586/php-cgi-5.3.14-0.2mdvmes5.2.i586.rpm
df772e401ae457ec0cbdcd93a2f51db3
mes5/i586/php-cli-5.3.14-0.2mdvmes5.2.i586.rpm
c4253949f6261c7e5d2bfb9ea0c9359d
mes5/i586/php-ctype-5.3.14-0.2mdvmes5.2.i586.rpm
909abbf291a58db01506ee0f733a611d
mes5/i586/php-curl-5.3.14-0.2mdvmes5.2.i586.rpm
72083094c5d9fc51629b0e267cc2204e
mes5/i586/php-dba-5.3.14-0.2mdvmes5.2.i586.rpm
112a09c1a346f6ba7b0dd30eea30eb0f
mes5/i586/php-devel-5.3.14-0.2mdvmes5.2.i586.rpm
e7ec2492dda8f4a7c438d035eb010c8e
mes5/i586/php-doc-5.3.14-0.2mdvmes5.2.i586.rpm
75daa4f918e9d90e31db851c9c497eac
mes5/i586/php-dom-5.3.14-0.2mdvmes5.2.i586.rpm
c6fcdb200071407d376d0b2f116167f1
mes5/i586/php-enchant-5.3.14-0.2mdvmes5.2.i586.rpm
f88647bfbc9812d18d9226078ef186d6
mes5/i586/php-exif-5.3.14-0.2mdvmes5.2.i586.rpm
7e821212f573b709f1eea4159aeb9f92
mes5/i586/php-fileinfo-5.3.14-0.2mdvmes5.2.i586.rpm
668ec7b92620dc444ace574d8e5fee8c
mes5/i586/php-filter-5.3.14-0.2mdvmes5.2.i586.rpm
d44024b7d73956e349a721e3ad13566d
mes5/i586/php-fpm-5.3.14-0.2mdvmes5.2.i586.rpm
d21e0c33e21689d524f549bae3893e01
mes5/i586/php-ftp-5.3.14-0.2mdvmes5.2.i586.rpm
24c5539d86758b5ad69c2d8b8ec794ef
mes5/i586/php-gd-5.3.14-0.2mdvmes5.2.i586.rpm
7006c14df83b14a560744b8c26397192
mes5/i586/php-gettext-5.3.14-0.2mdvmes5.2.i586.rpm
048d47b8fe8245919ce6ea71b7d5a94a
mes5/i586/php-gmp-5.3.14-0.2mdvmes5.2.i586.rpm
d359eb048cc8c213dcc25aa775171b9b
mes5/i586/php-hash-5.3.14-0.2mdvmes5.2.i586.rpm
4f4dd279393fdd80ff9dd1f3d23ff473
mes5/i586/php-iconv-5.3.14-0.2mdvmes5.2.i586.rpm
ba3302ceb763d975b400d455501d1c76
mes5/i586/php-imap-5.3.14-0.2mdvmes5.2.i586.rpm
aa8bbc9690c712362b01c23b2607a784
mes5/i586/php-intl-5.3.14-0.2mdvmes5.2.i586.rpm
69473dcca880c7ccf66db8d25355cb42
mes5/i586/php-json-5.3.14-0.2mdvmes5.2.i586.rpm
6d0ac1daab218f1fd7383432c2fc58c0
mes5/i586/php-ldap-5.3.14-0.2mdvmes5.2.i586.rpm
9ade2bca111807c4e1b8f802ea16d3ac
mes5/i586/php-mbstring-5.3.14-0.2mdvmes5.2.i586.rpm
7f8f72c4616effdefba949c6722e1e8f
mes5/i586/php-mcrypt-5.3.14-0.2mdvmes5.2.i586.rpm
e42a0133b40488b70f8c5c9149dcfcfc
mes5/i586/php-mssql-5.3.14-0.2mdvmes5.2.i586.rpm
4d6e7a89821c9e96e922b9def8f34ad2
mes5/i586/php-mysql-5.3.14-0.2mdvmes5.2.i586.rpm
43945f49a53a1fe3940d357241f11244
mes5/i586/php-mysqli-5.3.14-0.2mdvmes5.2.i586.rpm
cadaa7344bbbe3acf0ca198c778c077b
mes5/i586/php-mysqlnd-5.3.14-0.2mdvmes5.2.i586.rpm
9cb43a90f2d2722a9160dfba5ed24a14
mes5/i586/php-odbc-5.3.14-0.2mdvmes5.2.i586.rpm
2c361427953ed53bf80736ab47d8d821
mes5/i586/php-openssl-5.3.14-0.2mdvmes5.2.i586.rpm
13259c79e39b0db3867760b23b1e5f03
mes5/i586/php-pcntl-5.3.14-0.2mdvmes5.2.i586.rpm
e7bf5e389a8bfab05a1da75869f0cd8c
mes5/i586/php-pdo-5.3.14-0.2mdvmes5.2.i586.rpm
d942c6159cb214bb733c3c6400bb9dab
mes5/i586/php-pdo_dblib-5.3.14-0.2mdvmes5.2.i586.rpm
92b6bcb654d6c4625da2c58f1950240e
mes5/i586/php-pdo_mysql-5.3.14-0.2mdvmes5.2.i586.rpm
29488aeaae404ee4797b32694bbd2a77
mes5/i586/php-pdo_odbc-5.3.14-0.2mdvmes5.2.i586.rpm
45c8af391975b83b96dee509be108f5a
mes5/i586/php-pdo_pgsql-5.3.14-0.2mdvmes5.2.i586.rpm
e502f43a981e9b8eceb886e673a988e6
mes5/i586/php-pdo_sqlite-5.3.14-0.2mdvmes5.2.i586.rpm
258d4a8dac04efa91a1d62bf0e060a01
mes5/i586/php-pgsql-5.3.14-0.2mdvmes5.2.i586.rpm
fbce577ed787da7c1f8894e89e4cd45c
mes5/i586/php-phar-5.3.14-0.2mdvmes5.2.i586.rpm
d91bdb858e9cc422bb3b593856f19fa7
mes5/i586/php-posix-5.3.14-0.2mdvmes5.2.i586.rpm
3ac944e3a12c9cfe045f35d2c8166c04
mes5/i586/php-pspell-5.3.14-0.2mdvmes5.2.i586.rpm
176fb1724609894bc12b2ed91c5f85fa
mes5/i586/php-readline-5.3.14-0.2mdvmes5.2.i586.rpm
1fda1ff38b3f9006d7369f6f1b8bbba9
mes5/i586/php-recode-5.3.14-0.2mdvmes5.2.i586.rpm
175933978f3a9220084e563809c90eb8
mes5/i586/php-session-5.3.14-0.2mdvmes5.2.i586.rpm
075cbb21ad111ef7cc874d776a21ff70
mes5/i586/php-shmop-5.3.14-0.2mdvmes5.2.i586.rpm
290802930d72979d9c550fae10b95feb
mes5/i586/php-snmp-5.3.14-0.2mdvmes5.2.i586.rpm
4d2185c53aa194a30a7de8e037b9ba5d
mes5/i586/php-soap-5.3.14-0.2mdvmes5.2.i586.rpm
9a8bbd126a66f7ee685aa06700e915e9
mes5/i586/php-sockets-5.3.14-0.2mdvmes5.2.i586.rpm
9a072e5e18102d2406fb8ff32deb6d28
mes5/i586/php-sqlite3-5.3.14-0.2mdvmes5.2.i586.rpm
c21b5023dfc69eeff3851ee17d3cb8a4
mes5/i586/php-sqlite-5.3.14-0.2mdvmes5.2.i586.rpm
7ddd3fa75185ea2ccb258d094bedd50e
mes5/i586/php-sybase_ct-5.3.14-0.2mdvmes5.2.i586.rpm
88eead597f5a437018e193662bc7836c
mes5/i586/php-sysvmsg-5.3.14-0.2mdvmes5.2.i586.rpm
327ca94038b062491804e863e2d10eae
mes5/i586/php-sysvsem-5.3.14-0.2mdvmes5.2.i586.rpm
607eefc750f0001dc9656177cad50219
mes5/i586/php-sysvshm-5.3.14-0.2mdvmes5.2.i586.rpm
013bccd83d6206b844bf4cc4ea221624
mes5/i586/php-tidy-5.3.14-0.2mdvmes5.2.i586.rpm
1516da2b4408b5a6f7adb8b14536aa4e
mes5/i586/php-tokenizer-5.3.14-0.2mdvmes5.2.i586.rpm
fc2966cc4b59d27e0bc29597849b949c
mes5/i586/php-wddx-5.3.14-0.2mdvmes5.2.i586.rpm
0e30e0c6e9185c3ca0da83705fa90dc3
mes5/i586/php-xml-5.3.14-0.2mdvmes5.2.i586.rpm
6d90339c720a73f31d4390d19abe81c5
mes5/i586/php-xmlreader-5.3.14-0.2mdvmes5.2.i586.rpm
204363daedfe45e2776da74294e5cffe
mes5/i586/php-xmlrpc-5.3.14-0.2mdvmes5.2.i586.rpm
45c1f5dfbaebc587a58973d76b30be93
mes5/i586/php-xmlwriter-5.3.14-0.2mdvmes5.2.i586.rpm
209671e9272ca995f4b8236f3ef6507b
mes5/i586/php-xsl-5.3.14-0.2mdvmes5.2.i586.rpm
afe1f6d99257d0eb0233b1ea1ef292ed
mes5/i586/php-zip-5.3.14-0.2mdvmes5.2.i586.rpm
9386c9ff85cf449c3f1c97d72364aa6d
mes5/i586/php-zlib-5.3.14-0.2mdvmes5.2.i586.rpm
0fc75ebc3ce9b322a1404a39dc733f0b mes5/SRPMS/php-5.3.14-0.2mdvmes5.2.src.rpm
Mandriva Enterprise Server 5/X86_64:
71cff3036a7ec0bcbe9bd6244b70860a
mes5/x86_64/lib64php5_common5-5.3.14-0.2mdvmes5.2.x86_64.rpm
547eef90d571c4cddfb4623bd6e739fc
mes5/x86_64/php-bcmath-5.3.14-0.2mdvmes5.2.x86_64.rpm
1d06f7fdef6a0693b443ac98768c339c
mes5/x86_64/php-bz2-5.3.14-0.2mdvmes5.2.x86_64.rpm
a790232326b38a017e5d0366ea8b99fa
mes5/x86_64/php-calendar-5.3.14-0.2mdvmes5.2.x86_64.rpm
e5b2d57c2d8f7deb74bab327005465d9
mes5/x86_64/php-cgi-5.3.14-0.2mdvmes5.2.x86_64.rpm
14a110e419193f78cec4cc7206a92138
mes5/x86_64/php-cli-5.3.14-0.2mdvmes5.2.x86_64.rpm
904c34298c941a70bfd06bdd97ecc072
mes5/x86_64/php-ctype-5.3.14-0.2mdvmes5.2.x86_64.rpm
eb420b068e5047253db5da58199b3623
mes5/x86_64/php-curl-5.3.14-0.2mdvmes5.2.x86_64.rpm
22d8d744af2a9a70116530cdf7f4382e
mes5/x86_64/php-dba-5.3.14-0.2mdvmes5.2.x86_64.rpm
c195268e48edc686878c2ffddba7ea31
mes5/x86_64/php-devel-5.3.14-0.2mdvmes5.2.x86_64.rpm
49beb0157bfed244c593c77696ca781b
mes5/x86_64/php-doc-5.3.14-0.2mdvmes5.2.x86_64.rpm
076bc0388c754901829a7861230bb909
mes5/x86_64/php-dom-5.3.14-0.2mdvmes5.2.x86_64.rpm
9a92f0d52dd0f36c821d93d146950456
mes5/x86_64/php-enchant-5.3.14-0.2mdvmes5.2.x86_64.rpm
0cea7021d0defb412a40310c6722fe74
mes5/x86_64/php-exif-5.3.14-0.2mdvmes5.2.x86_64.rpm
2e1420ed3cf123186497e0ed60cfaf17
mes5/x86_64/php-fileinfo-5.3.14-0.2mdvmes5.2.x86_64.rpm
899b7ad6e087f8886984e460efc06620
mes5/x86_64/php-filter-5.3.14-0.2mdvmes5.2.x86_64.rpm
e5bb6f9a47e0e41272d18439687ac94c
mes5/x86_64/php-fpm-5.3.14-0.2mdvmes5.2.x86_64.rpm
bdef098805a3dc32bd360b85a119abbf
mes5/x86_64/php-ftp-5.3.14-0.2mdvmes5.2.x86_64.rpm
30c9314664b0deedd478e0483d3e9aee
mes5/x86_64/php-gd-5.3.14-0.2mdvmes5.2.x86_64.rpm
af69713d1f1a757d5e4114aee114d9c3
mes5/x86_64/php-gettext-5.3.14-0.2mdvmes5.2.x86_64.rpm
7f64a788f9693dc6a6e64865a522dbe2
mes5/x86_64/php-gmp-5.3.14-0.2mdvmes5.2.x86_64.rpm
5d439f032a85c4896e0067a2882ae5a6
mes5/x86_64/php-hash-5.3.14-0.2mdvmes5.2.x86_64.rpm
a0897827891592ff2db9e58d3a97ae6c
mes5/x86_64/php-iconv-5.3.14-0.2mdvmes5.2.x86_64.rpm
5054800c85f6e16b5eb8ea408421e624
mes5/x86_64/php-imap-5.3.14-0.2mdvmes5.2.x86_64.rpm
6c6f2c47e75fee7aba13a460d7f72c10
mes5/x86_64/php-intl-5.3.14-0.2mdvmes5.2.x86_64.rpm
655302a99c5bba90de9a4d675ffdcf18
mes5/x86_64/php-json-5.3.14-0.2mdvmes5.2.x86_64.rpm
2919fc4607ae0a8b8f7d3c73393ab50c
mes5/x86_64/php-ldap-5.3.14-0.2mdvmes5.2.x86_64.rpm
597f23089b8a1d31363b888c8d5c9c4d
mes5/x86_64/php-mbstring-5.3.14-0.2mdvmes5.2.x86_64.rpm
90b9f69e65a1d744c014fc5456d14f39
mes5/x86_64/php-mcrypt-5.3.14-0.2mdvmes5.2.x86_64.rpm
86593cfcd34fdd5bf84a47983a6d0a3c
mes5/x86_64/php-mssql-5.3.14-0.2mdvmes5.2.x86_64.rpm
a92c3b103b4bf5ed4d46e142d079cdda
mes5/x86_64/php-mysql-5.3.14-0.2mdvmes5.2.x86_64.rpm
095bc1cf3351ef9448abf96a9880058c
mes5/x86_64/php-mysqli-5.3.14-0.2mdvmes5.2.x86_64.rpm
a79cb7c50fd71c40f0ea9b150d0d2602
mes5/x86_64/php-mysqlnd-5.3.14-0.2mdvmes5.2.x86_64.rpm
20a290baf0106426c565657bf9ebe3f0
mes5/x86_64/php-odbc-5.3.14-0.2mdvmes5.2.x86_64.rpm
fab911282798116897e886214f6ce21c
mes5/x86_64/php-openssl-5.3.14-0.2mdvmes5.2.x86_64.rpm
5b095c4f0d7dc67e44fb13351c42f11a
mes5/x86_64/php-pcntl-5.3.14-0.2mdvmes5.2.x86_64.rpm
7bbc1401472359c4b90ca81ccbc6d52e
mes5/x86_64/php-pdo-5.3.14-0.2mdvmes5.2.x86_64.rpm
6a923ae4dd0af11b58d7f376bad820ec
mes5/x86_64/php-pdo_dblib-5.3.14-0.2mdvmes5.2.x86_64.rpm
1866a14e581fe9e25b0fa6c652bea460
mes5/x86_64/php-pdo_mysql-5.3.14-0.2mdvmes5.2.x86_64.rpm
adada55addf5161ccd0b7a52e591839b
mes5/x86_64/php-pdo_odbc-5.3.14-0.2mdvmes5.2.x86_64.rpm
d3d3ed41647a769280e638ac0231a0ab
mes5/x86_64/php-pdo_pgsql-5.3.14-0.2mdvmes5.2.x86_64.rpm
623a22514ae01b44a428631f9740b7c6
mes5/x86_64/php-pdo_sqlite-5.3.14-0.2mdvmes5.2.x86_64.rpm
d4716d8f8468fc26b96b6ae7e02a1e8f
mes5/x86_64/php-pgsql-5.3.14-0.2mdvmes5.2.x86_64.rpm
b123561b7b3f44c66e389bae220c3ce7
mes5/x86_64/php-phar-5.3.14-0.2mdvmes5.2.x86_64.rpm
91984482870f34dd658bfcc49910d6ef
mes5/x86_64/php-posix-5.3.14-0.2mdvmes5.2.x86_64.rpm
d1ae1e2a9175401b7ec059c0c8486396
mes5/x86_64/php-pspell-5.3.14-0.2mdvmes5.2.x86_64.rpm
f326158ae23050de65042bca38cdb697
mes5/x86_64/php-readline-5.3.14-0.2mdvmes5.2.x86_64.rpm
1853d7fcbe4ad546ab68236f7c047f04
mes5/x86_64/php-recode-5.3.14-0.2mdvmes5.2.x86_64.rpm
531a8ce97ad7502d23d546728d7e1114
mes5/x86_64/php-session-5.3.14-0.2mdvmes5.2.x86_64.rpm
f6634100d17eab7e22306551de98b929
mes5/x86_64/php-shmop-5.3.14-0.2mdvmes5.2.x86_64.rpm
4d314f8e378a4db321ef289ca2633558
mes5/x86_64/php-snmp-5.3.14-0.2mdvmes5.2.x86_64.rpm
c23be26ec989563ea75b7059cc4cfd4c
mes5/x86_64/php-soap-5.3.14-0.2mdvmes5.2.x86_64.rpm
850c950c55a737cd93a4b174987c4b02
mes5/x86_64/php-sockets-5.3.14-0.2mdvmes5.2.x86_64.rpm
1f5a96d87675502ce9bdbb28191a2aa8
mes5/x86_64/php-sqlite3-5.3.14-0.2mdvmes5.2.x86_64.rpm
eeed4cbd709be976d92eae3ecba62ed9
mes5/x86_64/php-sqlite-5.3.14-0.2mdvmes5.2.x86_64.rpm
62408e7f3ecdb5963ba3fdc7abb59ec7
mes5/x86_64/php-sybase_ct-5.3.14-0.2mdvmes5.2.x86_64.rpm
ffd35b7162846b0a8c8e6001cc3304c2
mes5/x86_64/php-sysvmsg-5.3.14-0.2mdvmes5.2.x86_64.rpm
714d5c0dac73b30f9d79e3440e2b6bdb
mes5/x86_64/php-sysvsem-5.3.14-0.2mdvmes5.2.x86_64.rpm
62d3fc1e8fdb22e70d1f023723d4ba95
mes5/x86_64/php-sysvshm-5.3.14-0.2mdvmes5.2.x86_64.rpm
a4558b834838f46dac031e4ebe164349
mes5/x86_64/php-tidy-5.3.14-0.2mdvmes5.2.x86_64.rpm
29f60efd987e0915d8d45805a101b23f
mes5/x86_64/php-tokenizer-5.3.14-0.2mdvmes5.2.x86_64.rpm
e80ffefa89a0ce7924ff79d318688ff4
mes5/x86_64/php-wddx-5.3.14-0.2mdvmes5.2.x86_64.rpm
4b5f507c097daba7f33e40ad8eb36c2a
mes5/x86_64/php-xml-5.3.14-0.2mdvmes5.2.x86_64.rpm
b28dd3d78d3056a0ade49619bc1bebdd
mes5/x86_64/php-xmlreader-5.3.14-0.2mdvmes5.2.x86_64.rpm
ae950679e0b731954d45921dcd79b591
mes5/x86_64/php-xmlrpc-5.3.14-0.2mdvmes5.2.x86_64.rpm
d703b3f46ddfb33df9075ecc2cd344e2
mes5/x86_64/php-xmlwriter-5.3.14-0.2mdvmes5.2.x86_64.rpm
1be47041e66c119d2ce3460c69f85440
mes5/x86_64/php-xsl-5.3.14-0.2mdvmes5.2.x86_64.rpm
50476121215aa7d4667f7b27eb2e3c32
mes5/x86_64/php-zip-5.3.14-0.2mdvmes5.2.x86_64.rpm
d032949e8e6627d1d384c98386d07833
mes5/x86_64/php-zlib-5.3.14-0.2mdvmes5.2.x86_64.rpm
0fc75ebc3ce9b322a1404a39dc733f0b mes5/SRPMS/php-5.3.14-0.2mdvmes5.2.src.rpm
_______________________________________________________________________
To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.
All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:
gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98
You can view other update advisories for Mandriva Linux at:
http://www.mandriva.com/security/advisories
If you want to report vulnerabilities, please contact
security_(at)_mandriva.com
_______________________________________________________________________
Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
iD8DBQFP9vl0mqjQ0CJFipgRAmy4AKDCU0HQuihhskv+vLuX57DqhOAn1gCePrdS
X1yIKBATWpyUMEAOfq2qlSo=
=guh7
-----END PGP SIGNATURE-----
Posljednje sigurnosne preporuke