Amazon Linux AMI : php56 (ALAS-2015-511)
High Nessus Plugin ID 82858
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA use-after-free flaw was found in PHP's OPcache extension. This flaw could possibly lead to a disclosure of portion of server memory.
A NULL pointer dereference flaw was found in PHP's pgsql extension. A specially crafted table name passed to function as pg_insert() or pg_select() could cause a PHP application to crash. (CVE-2015-1352)
A buffer overflow flaw was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash or, possibly, execute arbitrary code when opened.
SolutionRun 'yum update php56' to update your system.