Gentoo Security Advisory GLSA 200710-02 (php) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200710-02.

Solution

All PHP users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-lang/php-5.2.4_p20070914-r2' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200710-02 http://bugs.gentoo.org/show_bug.cgi?id=179158 http://bugs.gentoo.org/show_bug.cgi?id=180556 http://bugs.gentoo.org/show_bug.cgi?id=191034 http://www.gentoo.org/security/en/glsa/glsa-200705-19.xml

Insight

PHP contains several vulnerabilities including buffer and integer overflows which could lead to the remote execution of arbitrary code.

Severity

Classification

Related Vulnerabilities

Gentoo Security Advisory GLSA 200406-13 (squid)
Gentoo Security Advisory GLSA 200311-08 (Libnids)
Gentoo Security Advisory GLSA 200406-09 (net-www/horde-chora)
Gentoo Security Advisory GLSA 200407-17 (net-dialup/l2tpd)
Gentoo Security Advisory GLSA 200403-02 (Kernel)

Take action and discover your vulnerabilities