Lucene search
RedHatRHSA-2014:1825HistoryNov 06, 2014 - 12:00 a.m.
(RHSA-2014:1825) Critical: php security update
2014-11-0600:00:00
access.redhat.com
14
0.08 Low
EPSS
Percentile
94.3%
PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Server.
A stack-based buffer overflow flaw was found in the way the xmlrpc
extension parsed dates in the ISO 8601 format. A specially crafted XML-RPC
request or response could possibly cause a PHP application to crash or
execute arbitrary code with the privileges of the user running that PHP
application. (CVE-2014-8626)
All php users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue. After installing the
updated packages, the httpd daemon must be restarted for the update to
take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 4 | ia64 | php-pgsql | < 4.3.9-3.38.el4 | php-pgsql-4.3.9-3.38.el4.ia64.rpm |
| RedHat | 4 | x86_64 | php-domxml | < 4.3.9-3.38.el4 | php-domxml-4.3.9-3.38.el4.x86_64.rpm |
| RedHat | 4 | i386 | php-mysql | < 4.3.9-3.38.el4 | php-mysql-4.3.9-3.38.el4.i386.rpm |
| RedHat | 4 | i386 | php | < 4.3.9-3.38.el4 | php-4.3.9-3.38.el4.i386.rpm |
| RedHat | 4 | x86_64 | php-ldap | < 4.3.9-3.38.el4 | php-ldap-4.3.9-3.38.el4.x86_64.rpm |
| RedHat | 4 | x86_64 | php-gd | < 4.3.9-3.38.el4 | php-gd-4.3.9-3.38.el4.x86_64.rpm |
| RedHat | 4 | x86_64 | php-pgsql | < 4.3.9-3.38.el4 | php-pgsql-4.3.9-3.38.el4.x86_64.rpm |
| RedHat | 4 | i386 | php-ldap | < 4.3.9-3.38.el4 | php-ldap-4.3.9-3.38.el4.i386.rpm |
| RedHat | 4 | x86_64 | php-snmp | < 4.3.9-3.38.el4 | php-snmp-4.3.9-3.38.el4.x86_64.rpm |
| RedHat | 4 | x86_64 | php-pear | < 4.3.9-3.38.el4 | php-pear-4.3.9-3.38.el4.x86_64.rpm |
Related
ubuntucve
ubuntucve
CVE-2014-8626
2014-11-23 00:00:00
openvas
openvas
PHP Multiple Buffer Overflow Vulnerabilities (Jan 2015)
2015-01-06 00:00:00
Oracle: Security Advisory (ELSA-2014-1824)
2015-10-06 00:00:00
RedHat Update for php RHSA-2014:1824-01
2014-11-07 00:00:00
nvd
nvd
CVE-2014-8626
2014-11-23 02:59:00
cve
cve
CVE-2014-8626
2014-11-23 02:59:00
prion
prion
Stack overflow
2014-11-23 02:59:00
cvelist
cvelist
CVE-2014-8626
2014-11-23 02:00:00
nessus
nessus
Scientific Linux Security Update : php on SL5.x i386/x86_64 (20141106)
2014-11-10 00:00:00
RHEL 5 : php (RHSA-2014:1824)
2014-11-07 00:00:00
Oracle Linux 5 : php (ELSA-2014-1824)
2014-11-07 00:00:00
veracode
veracode
Memory Corruption And Code Execution
2019-05-02 05:13:12
redhat
redhat
(RHSA-2014:1824) Important: php security update
2014-11-06 00:00:00
oraclelinux
oraclelinux
php security update
2014-11-06 00:00:00
centos
centos
php security update
2014-11-06 18:30:07