Lucene search
GoogleOSV:DSA-2816-1HistoryDec 12, 2013 - 12:00 a.m.
php5 - several
2013-12-1200:00:00
Google
osv.dev
21
0.95 High
EPSS
Percentile
99.3%
Several vulnerabilities were found in PHP, a general-purpose scripting
language commonly used for web application development. The Common
Vulnerabilities and Exposures project identifies the following issues:
- CVE-2013-6420
Stefan Esser reported possible memory corruption in
openssl_x509_parse(). - CVE-2013-6712
Creating DateInterval objects from parsed ISO dates was
not properly restricted, which allowed to cause a
denial of service.
In addition, the update for Debian 7 Wheezy contains several bugfixes
originally targeted for the upcoming Wheezy point release.
For the oldstable distribution (squeeze), these problems have been fixed in
version 5.3.3-7+squeeze18.
For the stable distribution (wheezy), these problems have been fixed in
version 5.4.4-14+deb7u7.
For the unstable distribution (sid), these problems have been fixed in
version 5.5.6+dfsg-2.
We recommend that you upgrade your php5 packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| php5 | eq | 5.4.4-14 | |
| php5 | eq | 5.4.4-14+deb7u1 | |
| php5 | eq | 5.4.4-14+deb7u2 | |
| php5 | eq | 5.4.4-14+deb7u3 | |
| php5 | eq | 5.4.4-14+deb7u4 | |
| php5 | eq | 5.4.4-14+deb7u5 |
References
Related
debian
debian
[SECURITY] [DSA 2816-1] php5 security update
2013-12-12 21:18:13
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0379)
2022-01-28 00:00:00
Ubuntu Update for php5 USN-2055-1
2013-12-17 00:00:00
Ubuntu: Security Advisory (USN-2055-1)
2013-12-17 00:00:00
nessus
nessus
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : php5 vulnerabilities (USN-2055-1)
2013-12-13 00:00:00
Debian DSA-2816-1 : php5 - several vulnerabilities
2013-12-14 00:00:00
SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8683 / 8684)
2014-01-15 00:00:00
mageia
mageia
Updated php packages fix multiple security vulnerabilities
2013-12-20 01:08:56
Updated php packages fix security vulnerabilities
2014-04-04 16:08:18
ubuntu
ubuntu
PHP vulnerabilities
2013-12-12 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:014 ] php
2014-01-29 00:00:00
PHP DoS
2014-01-29 00:00:00
PHP memory corruption
2013-12-30 00:00:00
cvelist
cvelist
CVE-2013-6712
2013-11-28 02:00:00
CVE-2013-6420
2013-12-17 02:00:00
cve
cve
CVE-2013-6712
2013-11-28 04:37:39
CVE-2013-6420
2013-12-17 04:46:45
nvd
nvd
CVE-2013-6712
2013-11-28 04:37:39
CVE-2013-6420
2013-12-17 04:46:45
ubuntucve
ubuntucve
CVE-2013-6712
2013-11-27 00:00:00
CVE-2013-6420
2013-12-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:02:52
Remote Code Execution (RCE)
2019-01-15 08:53:15
checkpoint_advisories
checkpoint_advisories
PHP DateInterval Heap Buffer Overread Denial of Service (CVE-2013-6712)
2014-01-22 00:00:00
PHP OpenSSL Extension X.509 Certificate Memory Corruption (CVE-2013-6420)
2013-12-26 00:00:00
prion
prion
Heap overflow
2013-11-28 04:37:00
Memory corruption
2013-12-17 04:46:00
packetstorm
packetstorm
PHP openssl_x509_parse() Memory Corruption
2013-12-15 00:00:00
redhat
redhat
(RHSA-2013:1826) Critical: php security update
2013-12-12 00:00:00
(RHSA-2013:1815) Critical: php security update
2013-12-11 00:00:00
(RHSA-2013:1824) Critical: php security update
2013-12-11 00:00:00
seebug
seebug
PHP openssl_x509_parse() - Memory Corruption Vulnerability
2014-07-01 00:00:00
PHP OpenSSL Extension 'openssl_x509_parse()'内存破坏漏洞
2013-12-18 00:00:00
f5
f5
SOL15110 - PHP Vulnerability CVE-2013-6420
2014-03-27 00:00:00
K15110 : PHP Vulnerability CVE-2013-6420
2014-05-23 00:00:00
SOL15903 - Multiple PHP vulnerabilities
2014-12-11 00:00:00
oraclelinux
oraclelinux
php53 and php security update
2013-12-10 00:00:00
php security update
2013-12-10 00:00:00
php53 and php security update
2014-08-06 00:00:00
exploitpack
exploitpack
PHP - openssl_x509_parse() Memory Corruption
2013-12-17 00:00:00
amazon
amazon
Critical: php
2013-12-17 21:29:00
Critical: php54
2013-12-17 21:29:00
Critical: php55
2013-12-17 21:29:00
freebsd
freebsd
PHP5 -- memory corruption in openssl_x509_parse()
2013-12-13 00:00:00
PHP multiple vulnerabilities
2014-08-14 00:00:00
zdt
zdt
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-16 00:00:00
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-17 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: php-5.5.7-1.fc20
2013-12-20 02:06:02
[SECURITY] Fedora 20 Update: php-5.5.12-1.fc20
2014-05-06 03:27:27
[SECURITY] Fedora 20 Update: php-5.5.11-1.fc20
2014-04-15 15:57:56
centos
centos
php, php53 security update
2013-12-11 09:25:38
php security update
2013-12-11 09:34:01
php, php53 security update
2014-08-06 14:53:37
slackware
slackware
php
2014-01-13 22:30:32
hackerone
hackerone
kaspersky
kaspersky
KLA10458 Multiple vulnerabilities in HP SMH
2014-01-10 00:00:00
exploitdb
exploitdb
PHP - 'openssl_x509_parse()' Memory Corruption
2013-12-17 00:00:00
suse
suse
Security update for PHP5 (important)
2014-07-05 02:05:05
Security update for PHP5 (important)
2014-07-07 19:04:42
ibm
ibm
Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Manager (FSM): (CVE-2013-4248 CVE-2013-6420 CVE-2014-2497 CVE-2014-4049)
2019-01-31 01:30:01
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00