Ubuntu Update For Php5 Regression USN-1042-2 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1042-2

Solution

Please Install the Updated Packages.

Insight

USN-1042-1 fixed vulnerabilities in PHP5. The fix for CVE-2010-3436 introduced a regression in the open_basedir restriction handling code. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that attackers might be able to bypass open_basedir() restrictions by passing a specially crafted filename. (CVE-2010-3436)

Affected

php5 regression on Ubuntu 6.06 LTS , Ubuntu 8.04 LTS , Ubuntu 9.10 , Ubuntu 10.04 LTS , Ubuntu 10.10

Severity

Classification

CVE CVE-2010-3436

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Ubuntu Update for apache2 vulnerabilities USN-499-1
Ubuntu Update for compiz-fusion-plugins-main vulnerability USN-688-1
Ubuntu Update for backuppc USN-1444-1
Ubuntu Update for apt-xapian-index USN-1955-1
Ubuntu Update for apparmor USN-1430-4

Ubuntu Update for php5 regression USN-1042-2

Take action and discover your vulnerabilities