VUPEN Security - Fedora Security Update Fixes PHP Buffer Overflow and Security Bypass Vulnerabilities / Exploit (Security Advisories)

	Contact \| Site en Français

Vulnerabilities & Threats

VUPEN Security Advisories

Linux Security Advisories

Malware Advisories

Security Research

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

>> Fedora Security Update Fixes PHP Buffer Overflow and Security Bypass Vulnerabilities

Title : Fedora Security Update Fixes PHP Buffer Overflow and Security Bypass Vulnerabilities
VUPEN ID : VUPEN/ADV-2007-1809
CVE ID : CVE-2007-1864 - CVE-2007-2509 - CVE-2007-2510
Rated as : High Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-05-14

Technical Description

Receive VUPEN Security alerts in a Text format

Receive VUPEN Security alerts in a PDF format

Receive VUPEN Security alerts in an XML format

Multiple vulnerabilities have been identified in Fedora, which could be exploited by attackers to bypass security checks and execute arbitrary code. These issues are caused by errors in PHP. For additional information, see : VUPEN/ADV-2007-1657

Affected Products

Fedora Core 6
Fedora Core 5

Solution

Upgrade the affected packages :

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

025c738382f6f1ede22904ae13bd532bd1d4883a SRPMS/php-5.1.6-3.6.fc6.src.rpm
025c738382f6f1ede22904ae13bd532bd1d4883a noarch/php-5.1.6-3.6.fc6.src.rpm
6639a47dfd79e3953a4cc141b0c82ddc2b0714eb ppc/php-mysql-5.1.6-3.6.fc6.ppc.rpm
5daffc576883dfaa66e902b2a360175899b8f8c0 ppc/php-common-5.1.6-3.6.fc6.ppc.rpm
275cc10496aeb272100b89952268002e118a76b5 ppc/php-dba-5.1.6-3.6.fc6.ppc.rpm
0a47a09be3b0be8f693f807400d0a74ffa89c2a0 ppc/php-mbstring-5.1.6-3.6.fc6.ppc.rpm
7d62260422678e595c226e31d02f06bdb87a507f ppc/php-odbc-5.1.6-3.6.fc6.ppc.rpm
7906fabf744a8d9477aaa8dc3a6ca02eeb5c2ef6 ppc/php-xml-5.1.6-3.6.fc6.ppc.rpm
1ebc07839be9a2cdd04cedbdd927a295e674eee3 ppc/php-ldap-5.1.6-3.6.fc6.ppc.rpm
aff32372a66f1b6cd24471df378ca16c10728f7a ppc/php-pdo-5.1.6-3.6.fc6.ppc.rpm
0dd91b0c21b9fa4fd0cb2f3b8cbb6c4fe96704a2 ppc/php-cli-5.1.6-3.6.fc6.ppc.rpm
fa90930a9c67a3756acb2f7dfad43b0c75e5c37d ppc/php-bcmath-5.1.6-3.6.fc6.ppc.rpm
5d85b54f9c0c29b1afce18a3230161b3c749b7c3 ppc/php-xmlrpc-5.1.6-3.6.fc6.ppc.rpm
e17cc525e2febe8aff7f00fd012c4552c9af2338 ppc/php-soap-5.1.6-3.6.fc6.ppc.rpm
d2c3b18f00437f63220afcf3cddcccda79e43a92 ppc/php-ncurses-5.1.6-3.6.fc6.ppc.rpm
78bcd56e059cf23112c484ce0a7295cd9ce8c2df ppc/php-imap-5.1.6-3.6.fc6.ppc.rpm
83502b3ee4ec92d9071653713d53b574bd483673 ppc/php-pgsql-5.1.6-3.6.fc6.ppc.rpm
b4486a2d7f429602bf62df9ae3be431ce4cf2993 ppc/php-gd-5.1.6-3.6.fc6.ppc.rpm
ab27e14e22be9f60aa5a6c12d26764b6f5576b40 ppc/php-5.1.6-3.6.fc6.ppc.rpm
365b2eff5d76472fd8fc0377439516cbda9b2c0b ppc/debug/php-debuginfo-5.1.6-3.6.fc6.ppc.rpm
646ec0be7c5dbf36f3e98a5f71d88134d08f6a4f ppc/php-devel-5.1.6-3.6.fc6.ppc.rpm
000dfbe6c080ce0ca757e05b8384b1439da0bdf7 ppc/php-snmp-5.1.6-3.6.fc6.ppc.rpm
99fa48c00b8957848f0be19a740128287ad28a9a x86_64/php-mysql-5.1.6-3.6.fc6.x86_64.rpm
e51d0f7620a3a077680637bff72151efbda7fc7d x86_64/php-pdo-5.1.6-3.6.fc6.x86_64.rpm
3d94b55e57d3884303090384319a2b2a6dbb87f5 x86_64/php-imap-5.1.6-3.6.fc6.x86_64.rpm
eaa5dc9566c805672076f7ee99eda7527a2fa81d x86_64/php-devel-5.1.6-3.6.fc6.x86_64.rpm
e868c68203474032791eef1ec60efc355c8a35dc x86_64/php-pgsql-5.1.6-3.6.fc6.x86_64.rpm
5ee65d504fbfe508bae88e1cd5d53ca2e861dc79 x86_64/php-odbc-5.1.6-3.6.fc6.x86_64.rpm
86b255e7ba2860728b36b02f519f70528c61ee67 x86_64/debug/php-debuginfo-5.1.6-3.6.fc6.x86_64.rpm
17956ed917566a550c31eb99e868f40cda2742b7 x86_64/php-gd-5.1.6-3.6.fc6.x86_64.rpm
79341e6bc0b70c2b2d417c5ba69589d521f8cc82 x86_64/php-soap-5.1.6-3.6.fc6.x86_64.rpm
05c0f6da52c9d79d716cccf62d5f0c32877119b9 x86_64/php-cli-5.1.6-3.6.fc6.x86_64.rpm
b1968843b5906ee7c87db88cd5e5687dd0f6954c x86_64/php-dba-5.1.6-3.6.fc6.x86_64.rpm
5e067abee811e071f627d9e817defdf87d4fac24 x86_64/php-bcmath-5.1.6-3.6.fc6.x86_64.rpm
c407ba010219e485ac08b1641b4fa3e670b2be86 x86_64/php-xmlrpc-5.1.6-3.6.fc6.x86_64.rpm
7d85318b2fc4bcc80f59292ddad5c84952c335a9 x86_64/php-ncurses-5.1.6-3.6.fc6.x86_64.rpm
a195364ed05efdd090c630fe9c31b5512e60723b x86_64/php-snmp-5.1.6-3.6.fc6.x86_64.rpm
1b1b505ceed75bc1088eb543b976e4b741c06c53 x86_64/php-ldap-5.1.6-3.6.fc6.x86_64.rpm
0ae538a20ab854d6939d5c866ef461357b3ea429 x86_64/php-mbstring-5.1.6-3.6.fc6.x86_64.rpm
dd98183718043e8954ea0caf5824874d9f565452 x86_64/php-common-5.1.6-3.6.fc6.x86_64.rpm
db87c758dec5768839d24929666e3002ec402ed2 x86_64/php-5.1.6-3.6.fc6.x86_64.rpm
d1bcdfdc4829dad5fbd5e368fd5e2c3f4bac924a x86_64/php-xml-5.1.6-3.6.fc6.x86_64.rpm
4221bd8ad5f9eeb919cbcab8610b683ccc267652 i386/php-imap-5.1.6-3.6.fc6.i386.rpm
28e43258ea27104ece07f406f150fe12b4cc5d25 i386/php-snmp-5.1.6-3.6.fc6.i386.rpm
edc8329aebf6f3a21228d336b63e36310b2a3216 i386/php-common-5.1.6-3.6.fc6.i386.rpm
43cee34fd3796f235f7592e2e18fb58520c15a5d i386/php-xmlrpc-5.1.6-3.6.fc6.i386.rpm
e7bef5c9d67f4dfafd4f546ac0c3da81a6310958 i386/php-xml-5.1.6-3.6.fc6.i386.rpm
3030d7c005509f9c26ad8904bc38ed0ea462204c i386/php-mysql-5.1.6-3.6.fc6.i386.rpm
6a70f36a5405691931fe47284055b32638b38025 i386/php-dba-5.1.6-3.6.fc6.i386.rpm
f862dfd87d4c093973c84adc0c657e843c310889 i386/php-ncurses-5.1.6-3.6.fc6.i386.rpm
2de47b3f6ff2de50ce15d7906fc8295127305f1f i386/php-gd-5.1.6-3.6.fc6.i386.rpm
24739795c8f6f8711550e3596228eb4ffa8447b9 i386/php-devel-5.1.6-3.6.fc6.i386.rpm
32f0edfc011a12f43bf1f0e0f5c43a921df36a48 i386/php-5.1.6-3.6.fc6.i386.rpm
9e78d97bb36a1ad342b7e50fdff57350571e53a6 i386/php-mbstring-5.1.6-3.6.fc6.i386.rpm
95ee47c8ddd4e320a0271cd4036caf5befbefc1b i386/php-odbc-5.1.6-3.6.fc6.i386.rpm
96459f3dbc08507e742f7549d9c79ffd9f68802c i386/php-pgsql-5.1.6-3.6.fc6.i386.rpm
b9b5b88f4e0f1f383152e92609d291a7f889362c i386/php-cli-5.1.6-3.6.fc6.i386.rpm
16d1d49c871f501c7ab94dea03abfb2a7b3a2d44 i386/php-bcmath-5.1.6-3.6.fc6.i386.rpm
4272095a7a88337ad1bd99f2fc513c9dea2fbc5a i386/php-pdo-5.1.6-3.6.fc6.i386.rpm
fc84a09cd9fd46ea308b35f2c429d4b950f767c6 i386/debug/php-debuginfo-5.1.6-3.6.fc6.i386.rpm
e89eff0339fb72a8a44f2aaa917739a3002d3c3b i386/php-ldap-5.1.6-3.6.fc6.i386.rpm
32770eea8b45127aab2bcb7d9941666622e35800 i386/php-soap-5.1.6-3.6.fc6.i386.rpm

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/

82efb63b8164c8640948b7abd9dd527fce07e95f SRPMS/php-5.1.6-1.6.src.rpm
82efb63b8164c8640948b7abd9dd527fce07e95f noarch/php-5.1.6-1.6.src.rpm
a5710ca823e349ced47b30c798e7c5e22fcbd9ea ppc/php-5.1.6-1.6.ppc.rpm
20b84a9539622a416aea0b8a313772ce8a977769 ppc/php-xmlrpc-5.1.6-1.6.ppc.rpm
e28986afd4df27ca1e3f82205d86ad59219c5cef ppc/php-mbstring-5.1.6-1.6.ppc.rpm
e2c2f324e67330ee82db26ab205932be5cbf890c ppc/php-bcmath-5.1.6-1.6.ppc.rpm
e0a686e0cf557f4686c403925b351dee3c3e3894 ppc/php-ldap-5.1.6-1.6.ppc.rpm
9126717490cb8fa5d44e97b9b720b39df55b5375 ppc/debug/php-debuginfo-5.1.6-1.6.ppc.rpm
23772d91b23207ac50160c4c5a910940b9c36d94 ppc/php-gd-5.1.6-1.6.ppc.rpm
58f9717ab0932be1acf262e46d4aab5f8776c99a ppc/php-soap-5.1.6-1.6.ppc.rpm
ad40644efbe40306e4edb261ddb33e0f801550e0 ppc/php-ncurses-5.1.6-1.6.ppc.rpm
83aebbaaf9f69bee988cc37f69e88e40d31866a8 ppc/php-pgsql-5.1.6-1.6.ppc.rpm
02541d25b1b4ff0dca2adf7add84cfd59893e6b2 ppc/php-dba-5.1.6-1.6.ppc.rpm
23f9f51eba68f4df51e844f7b3eb04a351db5f82 ppc/php-snmp-5.1.6-1.6.ppc.rpm
53b3b1c89ef1a7904a2ff2c3d54ae9c1cdb164c6 ppc/php-xml-5.1.6-1.6.ppc.rpm
f66f442cbc97bf07b5c2eaf1b510f957c528618a ppc/php-mysql-5.1.6-1.6.ppc.rpm
2594340c25cb5422c8daf015df5d80fe166be393 ppc/php-imap-5.1.6-1.6.ppc.rpm
5de3d50a1bb5f96da59520671dcd5bc3e7adc8a9 ppc/php-pdo-5.1.6-1.6.ppc.rpm
daa6530e8fdf1431d3a56d1b391fa239769254af ppc/php-odbc-5.1.6-1.6.ppc.rpm
1f32c323282745d508da99931ccdfd8cec678161 ppc/php-devel-5.1.6-1.6.ppc.rpm
038c637938d291995ec10953f537f7aa7af28495 x86_64/php-pgsql-5.1.6-1.6.x86_64.rpm
a15a40b309061b87750e0616aa75a22bb50dfdf7 x86_64/php-bcmath-5.1.6-1.6.x86_64.rpm
91d24f6c318e68a4c64e21ecddcb3c28f54839cd x86_64/php-ncurses-5.1.6-1.6.x86_64.rpm
e229637107f4c8d52b6518e32148b47156a9dbaf x86_64/debug/php-debuginfo-5.1.6-1.6.x86_64.rpm
af25cf8a33e6dae1d55e1a200619c09b2d485ccb x86_64/php-5.1.6-1.6.x86_64.rpm
64ee9228dedb5edf8320815e153b430d55e6ac88 x86_64/php-ldap-5.1.6-1.6.x86_64.rpm
64ef3804b62d761b2fb1f03305d9c1d81cfd1547 x86_64/php-soap-5.1.6-1.6.x86_64.rpm
970d5e920fd5251d9370fc0d750eefcbf668c699 x86_64/php-dba-5.1.6-1.6.x86_64.rpm
929168d9a3e145ed5c9c6d9f8ea73363a1036fdd x86_64/php-gd-5.1.6-1.6.x86_64.rpm
80102cd57264aad342473eca104d18dee4171bea x86_64/php-devel-5.1.6-1.6.x86_64.rpm
43a1f33efd279bb3a7c132d5b4c4fe1353669fc7 x86_64/php-imap-5.1.6-1.6.x86_64.rpm
8ba73e3e2aa7b2a06e0648edbf6ca49b2a39acab x86_64/php-xml-5.1.6-1.6.x86_64.rpm
55518e43298156315ea24b3df1e1f278a84ffa36 x86_64/php-mysql-5.1.6-1.6.x86_64.rpm
758e21693582f484f45034e4208ed061f166cba0 x86_64/php-xmlrpc-5.1.6-1.6.x86_64.rpm
957963dbddf499ce0e6fd0d937337b21dd66740c x86_64/php-pdo-5.1.6-1.6.x86_64.rpm
c6d1bdeed6e9f74ffce92897384dd73485f6c7a7 x86_64/php-mbstring-5.1.6-1.6.x86_64.rpm
a65b9f21a7ba170fc17134e201bdc7ee63962421 x86_64/php-snmp-5.1.6-1.6.x86_64.rpm
e9b8a31712be7342c2f6e439740772a7e60f3d33 x86_64/php-odbc-5.1.6-1.6.x86_64.rpm
a9a0c8b5ce548824285a1341464090dba3d551e5 i386/php-xml-5.1.6-1.6.i386.rpm
04266f1d89faf9049f5f26a53305458bd7b4486e i386/php-pdo-5.1.6-1.6.i386.rpm
e01a54b838910252e2120dd76b5087acc7056bed i386/php-imap-5.1.6-1.6.i386.rpm
adb9805f47c01e568011ae2cbc0e2e97de2edbe4 i386/php-xmlrpc-5.1.6-1.6.i386.rpm
c5ec295f6be39e238ca1e56af1310b859784e24f i386/php-bcmath-5.1.6-1.6.i386.rpm
e026fa792ff7c9947b332108b8f604742e3e9fc2 i386/debug/php-debuginfo-5.1.6-1.6.i386.rpm
2c6b6afda734d05797a8edb41f23619743d65b0a i386/php-dba-5.1.6-1.6.i386.rpm
16c8db332d6baa10cd869e3fc13fb73a69544e8a i386/php-5.1.6-1.6.i386.rpm
88034a31f5ed88981a41e69d9f8d0bce53052d3d i386/php-ncurses-5.1.6-1.6.i386.rpm
1d7d8705e3b57e3a0125192afcf2c5b0554616c5 i386/php-devel-5.1.6-1.6.i386.rpm
662415d12d3b5ad06da97e4eee738611edbd4a80 i386/php-mbstring-5.1.6-1.6.i386.rpm
8734486e4d593c31d03e8d50cca3187bd5cee1c4 i386/php-odbc-5.1.6-1.6.i386.rpm
d6e5c4ddba272f8eb9b1c3b246792238f76c380e i386/php-gd-5.1.6-1.6.i386.rpm
436a33efb954dd69d4cf1fad76397e7cd0963952 i386/php-pgsql-5.1.6-1.6.i386.rpm
a5fcd1d00a7a0f765b7fcd9ff7417274c49ee071 i386/php-mysql-5.1.6-1.6.i386.rpm
c7534ef580a5eae406ac3cd7f5fb0eb610e3b1f2 i386/php-snmp-5.1.6-1.6.i386.rpm
40adab182711178dfff70c0c75a92d1b92104965 i386/php-ldap-5.1.6-1.6.i386.rpm
7ffcac7e33e1a691f4e72ac7c8d64e9885b03e6f i386/php-soap-5.1.6-1.6.i386.rpm

References

http://www.vupen.com/english/advisories/2007/1809
https://www.redhat.com/archives/fedora-package-announce/2007-May/msg00022.html
https://www.redhat.com/archives/fedora-package-announce/2007-May/msg00045.html

ChangeLog

2007-05-14 : Initial release
2007-05-24 : Updated Solution

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.

Vulnerability Alerting

Free 14-Day Trial

Latest News

>> 2009-07-06

Microsoft Windows 0-Day
Flaw Exploited in the Wild

>> 2009-06-10

VUPEN Security Research
Discovered Critical Flaws
in Adobe Acrobat and MS
Office Word

>> 2009-06-02

VUPEN Security Research
Discovered Critical Flaws
in ACDSee Products

>> 2009-05-22

VUPEN Discovered Two
Critical Vulnerabilities in
Novell GroupWise 8 / 7

More Informations