Lucene search
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-2050.NASLHistoryDec 30, 2019 - 12:00 a.m.
Debian DLA-2050-1 : php5 security update
2019-12-3000:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
30
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
6.9 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.3%
Several security bugs have been identified and fixed in php5, a server-side, HTML-embedded scripting language. The affected components include the exif module and handling of filenames with \0 embedded.
For Debian 8 ‘Jessie’, these problems have been fixed in version 5.6.40+dfsg-0+deb8u8.
We recommend that you upgrade your php5 packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-2050-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(132422);
script_version("1.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/02");
script_cve_id(
"CVE-2019-11045",
"CVE-2019-11046",
"CVE-2019-11047",
"CVE-2019-11050"
);
script_name(english:"Debian DLA-2050-1 : php5 security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Several security bugs have been identified and fixed in php5, a
server-side, HTML-embedded scripting language. The affected components
include the exif module and handling of filenames with \0 embedded.
For Debian 8 'Jessie', these problems have been fixed in version
5.6.40+dfsg-0+deb8u8.
We recommend that you upgrade your php5 packages.
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://lists.debian.org/debian-lts-announce/2019/12/msg00034.html");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/jessie/php5");
script_set_attribute(attribute:"solution", value:
"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-11050");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/23");
script_set_attribute(attribute:"patch_publication_date", value:"2019/12/29");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/30");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libapache2-mod-php5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libapache2-mod-php5filter");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libphp5-embed");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php-pear");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-cgi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-cli");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-curl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-enchant");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-fpm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-gd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-gmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-imap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-interbase");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-intl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-ldap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-mcrypt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-mysqlnd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-odbc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-pgsql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-phpdbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-pspell");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-readline");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-recode");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-snmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-sqlite");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-sybase");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-tidy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-xmlrpc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:php5-xsl");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"8.0", prefix:"libapache2-mod-php5", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"libapache2-mod-php5filter", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"libphp5-embed", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php-pear", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-cgi", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-cli", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-common", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-curl", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-dbg", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-dev", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-enchant", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-fpm", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-gd", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-gmp", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-imap", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-interbase", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-intl", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-ldap", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-mcrypt", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-mysql", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-mysqlnd", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-odbc", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-pgsql", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-phpdbg", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-pspell", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-readline", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-recode", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-snmp", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-sqlite", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-sybase", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-tidy", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-xmlrpc", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (deb_check(release:"8.0", prefix:"php5-xsl", reference:"5.6.40+dfsg-0+deb8u8")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | php5-dev | p-cpe:/a:debian:debian_linux:php5-dev |
| debian | debian_linux | php5-enchant | p-cpe:/a:debian:debian_linux:php5-enchant |
| debian | debian_linux | php5-fpm | p-cpe:/a:debian:debian_linux:php5-fpm |
| debian | debian_linux | php5-gd | p-cpe:/a:debian:debian_linux:php5-gd |
| debian | debian_linux | php5-gmp | p-cpe:/a:debian:debian_linux:php5-gmp |
| debian | debian_linux | php5-imap | p-cpe:/a:debian:debian_linux:php5-imap |
| debian | debian_linux | php5-interbase | p-cpe:/a:debian:debian_linux:php5-interbase |
| debian | debian_linux | php5-intl | p-cpe:/a:debian:debian_linux:php5-intl |
| debian | debian_linux | php5-ldap | p-cpe:/a:debian:debian_linux:php5-ldap |
| debian | debian_linux | php5-mcrypt | p-cpe:/a:debian:debian_linux:php5-mcrypt |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11045
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11046
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11047
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11050
lists.debian.org/debian-lts-announce/2019/12/msg00034.html
packages.debian.org/source/jessie/php5
Related
debian
debian
[SECURITY] [DLA 2050-1] php5 security update
2019-12-29 22:47:12
[SECURITY] [DSA 4628-1] php7.0 security update
2020-02-18 22:00:11
[SECURITY] [DSA 4626-1] php7.3 security update
2020-02-17 20:39:09
openvas
openvas
Ubuntu: Security Advisory (USN-4239-1)
2020-01-16 00:00:00
PHP < 7.2.26 Multiple Vulnerabilities (Dec 2019) - Linux
2019-12-19 00:00:00
Debian: Security Advisory (DLA-2050-1)
2019-12-30 00:00:00
suse
suse
Security update for php7 (moderate)
2020-01-20 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : PHP vulnerabilities (USN-4239-1)
2020-01-16 00:00:00
SUSE SLES12 Security Update : php72 (SUSE-SU-2020:0267-1)
2020-01-31 00:00:00
SUSE SLES12 Security Update : php7 (SUSE-SU-2020:0352-1)
2020-02-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package php7 version 7.2.26-alt1
2019-12-20 00:00:00
Security fix for the ALT Linux 10 package php8.1 version 7.3.13-alt1
2019-12-20 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 7.3.13-alt1
2019-12-20 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2020-01-15 00:00:00
osv
osv
php5 - security update
2019-12-29 00:00:00
php7.3 - security update
2020-02-17 00:00:00
php7.0 - security update
2020-02-18 00:00:00
mageia
mageia
Updated php packages fix security vulnerabilities
2019-12-25 22:08:41
fedora
fedora
[SECURITY] Fedora 30 Update: php-7.3.13-1.fc30
2020-01-03 20:36:41
[SECURITY] Fedora 31 Update: php-7.3.13-1.fc31
2020-01-05 00:42:40
amazon
amazon
Medium: php72, php73
2020-02-04 22:42:00
Important: php72
2024-02-14 20:03:00
Important: php73
2024-02-01 19:33:00
f5
f5
K48866433 : PHP vulnerability CVE-2019-11046
2020-01-09 00:00:00
K44650157 : PHP DirectoryIterator vulnerability CVE-2019-11045
2020-01-22 00:00:00
ibm
ibm
cve
cve
cvelist
cvelist
CVE-2019-11050 Use-after-free in exif parsing under memory sanitizer
2019-12-17 00:00:00
CVE-2019-11045 DirectoryIterator class silently truncates after a null byte
2019-12-17 00:00:00
CVE-2019-11046 Buffer underflow in bc_shift_addsub
2019-12-17 00:00:00
redhatcve
redhatcve
prion
prion
Memory corruption
2019-12-23 03:15:00
Design/Logic Flaw
2019-12-23 03:15:00
Information disclosure
2019-12-23 03:15:00
alpinelinux
alpinelinux
symantec
symantec
PHP CVE-2019-11050 Denial of Service Vulnerability
2019-11-07 00:00:00
PHP CVE-2019-11047 Heap Buffer Overflow Vulnerability
2019-12-18 00:00:00
PHP CVE-2019-11046 Buffer Underflow Vulnerability
2019-12-18 00:00:00
debiancve
debiancve
nvd
nvd
hackerone
hackerone
kitploit
kitploit
ubuntucve
ubuntucve
veracode
veracode
Information Disclosure
2020-12-02 09:50:06
Denial Of Service (DoS)
2020-12-02 09:50:08
Information Disclosure
2020-12-02 09:50:07
redhat
redhat
oraclelinux
oraclelinux
php:7.3 security, bug fix, and enhancement update
2020-09-09 00:00:00
almalinux
almalinux
Moderate: php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
rocky
rocky
php:7.3 security, bug fix, and enhancement update
2020-09-08 08:38:31
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
6.9 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
82.3%
Related for DEBIAN_DLA-2050.NASL