FreeBSD : Several vulnerabilities found in PHP (742563d4-d776-11e4-b595-4061861086c1)

This script is Copyright (C) 2015 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The PHP project reports :

The PHP development team announces the immediate availability of PHP
5.6.7. Several bugs have been fixed as well as CVE-2015-0231,
CVE-2015-2305 and CVE-2015-2331. All PHP 5.6 users are encouraged to
upgrade to this version.

The PHP development team announces the immediate availability of PHP
5.5.23. Several bugs have been fixed as well as CVE-2015-0231,
CVE-2015-2305 and CVE-2015-2331. All PHP 5.5 users are encouraged to
upgrade to this version.

The PHP development team announces the immediate availability of PHP
5.4.39. Six security-related bugs were fixed in this release,
including CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331. All PHP 5.4
users are encouraged to upgrade to this version.

See also :

http://php.net/archive/2015.php#id2015-03-20-2
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=198739
http://www.nessus.org/u?a35056ac

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 82514 ()

Bugtraq ID:

CVE ID: CVE-2015-0231
CVE-2015-2305
CVE-2015-2311

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now