Fedora 20 : php-5.5.23-1.fc20 (2015-4216)

High Nessus Plugin ID 82545


The remote Fedora host is missing a security update.


**19 Mar 2015, PHP 5.5.23**

Core :

- Fixed bug #69174 (leaks when unused inner class use traits precedence). (Laruence)

- Fixed bug #69139 (Crash in gc_zval_possible_root on unserialize). (Laruence)

- Fixed bug #69121 (Segfault in get_current_user when script owner is not in passwd with ZTS build). (dan at syneto dot net)

- Fixed bug #65593 (Segfault when calling ob_start from output buffering callback). (Mike)

- Fixed bug #69017 (Fail to push to the empty array with the constant value defined in class scope). (Laruence)

- Fixed bug #68986 (pointer returned by php_stream_fopen_temporary_file not validated in memory.c). (nayana at ddproperty dot com)

- Fixed bug #68166 (Exception with invalid character causes segv). (Rasmus)

- Fixed bug #69141 (Missing arguments in reflection info for some builtin functions). (kostyantyn dot lysyy at oracle dot com)

- Fixed bug #68976 (Use After Free Vulnerability in unserialize()). (Stas)

- Fixed bug #69134 (Per Directory Values overrides PHP_INI_SYSTEM configuration options). (Anatol Belski)

- Fixed bug #69207 (move_uploaded_file allows nulls in path). (Stas)


- Fixed bug #69015 (php-cgi's getopt does not see $argv).


- Fixed bug #67741 (auto_prepend_file messes up __LINE__).
(Reeze Xia)

cURL :

- Fixed bug #69088 (PHP_MINIT_FUNCTION does not fully initialize cURL on Win32). (Grant Pannell)

- Add CURLPROXY_SOCKS4A and CURLPROXY_SOCKS5_HOSTNAME constants if supported by libcurl. (Linus Unneback)

Ereg :

- Fixed bug #69248 (heap overflow vulnerability in regcomp.c). (Stas)


- Fixed bug #68822 (request time is reset too early).
(honghu069 at 163 dot com)


- Fixed bug #68964 (Allowed memory size exhausted with odbc_exec). (Anatol)

Opcache :

- Fixed bug #69125 (Array numeric string as key).

- Fixed bug #69038 (switch(SOMECONSTANT) misbehaves).

OpenSSL :

- Fixed bugs #61285, #68329, #68046, #41631 (encrypted streams don't observe socket timeouts). (Brad Broerman)

pgsql :

- Fixed bug #68638 (pg_update() fails to store infinite values). (william dot welter at 4linux dot com dot br, Laruence)

Readline :

- Fixed bug #69054 (Null dereference in readline_(read|write)_history() without parameters).


- Fixed bug #69085 (SoapClient's __call() type confusion through unserialize()). (andrea dot palazzo at truel dot it, Laruence)


- Fixed bug #69108 ('Segmentation fault' when (de)serializing SplObjectStorage). (Laruence)

- Fixed bug #68557 (RecursiveDirectoryIterator::seek(0) broken after calling getChildren()). (Julien)


- Fixed bug #69253 (ZIP Integer Overflow leads to writing past heap boundary) (CVE-2015-2331). (Stas)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Update the affected php package.

See Also



Plugin Details

Severity: High

ID: 82545

File Name: fedora_2015-4216.nasl

Version: 1.4

Type: local

Agent: unix

Published: 2015/04/03

Updated: 2020/06/04

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:php, cpe:/o:fedoraproject:fedora:20

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2015/03/21

Vulnerability Publication Date: 2015/03/21

Reference Information

FEDORA: 2015-4216