The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5277 advisory.

  - In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress     quines gzip files, resulting in an infinite loop. (CVE-2022-31628)

  - In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site     attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or     `__Secure-` cookie by PHP applications. (CVE-2022-31629)

  - The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer     overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties.
    This occurs in the sponge function interface. (CVE-2022-37454)

  - The vulnerability exists due to a boundary condition within the imageloadfont() function. A remote     attacker can pass specially crafted data to the web application, trigger an out-of-bounds read error and     read contents of memory on the system. (CVE-2022-31630)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian DSA-5277-1 : php7.4 - security update

critical Nessus Plugin ID 167434

Version 1.4