Scientific Linux Security Update : php-pear on SL6.x

low Nessus Plugin ID 61194

Synopsis

The remote Scientific Linux host is missing a security update.

Description

The php-pear package contains the PHP Extension and Application Repository (PEAR), a framework and distribution system for reusable PHP components.

It was found that the 'pear' command created temporary files in an insecure way when installing packages. A malicious, local user could use this flaw to conduct a symbolic link attack, allowing them to overwrite the contents of arbitrary files accessible to the victim running the 'pear install' command. (CVE-2011-1072)

This update also fixes the following bugs :

- The php-pear package has been upgraded to version 1.9.4, which provides a number of bug fixes over the previous version.

- Prior to this update, php-pear created a cache in the '/var/cache/php-pear/' directory when attempting to list all packages. As a consequence, php-pear failed to create or update the cache file as a regular user without sufficient file permissions and could not list all packages. With this update, php-pear no longer fails if writing to the cache directory is not permitted. Now, all packages are listed as expected.

All users of php-pear are advised to upgrade to this updated package, which corrects these issues.

Solution

Update the affected php-pear package.

See Also

http://www.nessus.org/u?61e379c9

Plugin Details

Severity: Low

ID: 61194

File Name: sl_20111206_php_pear_on_SL6.nasl

Version: 1.5

Type: local

Agent: unix

Published: 8/1/2012

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Low

Base Score: 3.3

Vector: CVSS2#AV:L/AC:M/Au:N/C:N/I:P/A:P

Vulnerability Information

CPE: x-cpe:/o:fermilab:scientific_linux

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Patch Publication Date: 12/6/2011

Reference Information

CVE: CVE-2011-1072