FreeBSD : Several vulnerabilities found in PHP (1e232a0c-eb57-11e4-b595-4061861086c1)

This script is Copyright (C) 2015-2017 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

The PHP project reports :

The PHP development team announces the immediate availability of PHP
5.4.40. 14 security-related bugs were fixed in this release, including
CVE-2014-9709, CVE-2015-2301, CVE-2015-2783, CVE-2015-1352. All PHP
5.4 users are encouraged to upgrade to this version.

The PHP development team announces the immediate availability of PHP
5.5.24. Several bugs have been fixed, some of them being security
related, like CVE-2015-1351 and CVE-2015-1352. All PHP 5.5 users are
encouraged to upgrade to this version.

The PHP development team announces the immediate availability of PHP
5.6.8. Several bugs have been fixed, some of them being security
related, like CVE-2015-1351 and CVE-2015-1352. All PHP 5.6 users are
encouraged to upgrade to this version.

See also :

http://php.net/archive/2015.php#id2015-04-16-2
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=199585
http://www.nessus.org/u?87e09fe9

Solution :

Update the affected packages.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 83080 ()

Bugtraq ID:

CVE ID: CVE-2014-9709
CVE-2015-1351
CVE-2015-1352
CVE-2015-2301
CVE-2015-2783

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now