Slackware 10.2 / 11.0 / 12.0 / 12.1 / current : php (SSA:2008-128-01)

Critical Nessus Plugin ID 32444


The remote Slackware host is missing a security update.


New php packages are available for Slackware 10.2, 11.0, 12.0, 12.1, and -current to fix security issues. Note that PHP5 is not the default PHP for Slackware 10.2 or 11.0 (those use PHP4), so if your PHP code is not ready for PHP5, don't upgrade until it is or you'll (by definition) run into problems.


Update the affected php package.

See Also

Plugin Details

Severity: Critical

ID: 32444

File Name: Slackware_SSA_2008-128-01.nasl

Version: $Revision: 1.13 $

Type: local

Published: 2008/05/28

Modified: 2015/03/19

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:slackware:slackware_linux:php, cpe:/o:slackware:slackware_linux, cpe:/o:slackware:slackware_linux:10.2, cpe:/o:slackware:slackware_linux:11.0, cpe:/o:slackware:slackware_linux:12.0, cpe:/o:slackware:slackware_linux:12.1

Required KB Items: Host/local_checks_enabled, Host/Slackware/release, Host/Slackware/packages

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2008/05/07

Reference Information

CVE: CVE-2008-0599, CVE-2008-2050, CVE-2008-2051

BID: 29009

OSVDB: 44906

SSA: 2008-128-01

CWE: 119