Ubuntu Local Security Checks : Ubuntu: Security Advisory for php7.3 (USN-4279-1)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.844340

Categoría: Ubuntu Local Security Checks

Título: Ubuntu: Security Advisory for php7.3 (USN-4279-1)

Resumen: The remote host is missing an update for the 'php7.3'; package(s) announced via the USN-4279-1 advisory.

Descripción: Summary:
The remote host is missing an update for the 'php7.3'
package(s) announced via the USN-4279-1 advisory.

Vulnerability Insight:
It was discovered that PHP incorrectly handled certain scripts.
An attacker could possibly use this issue to cause a denial of service.
This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS.
(CVE-2015-9253)

It was discovered that PHP incorrectly handled certain inputs. An attacker
could possibly use this issue to expose sensitive information.
(CVE-2020-7059)

It was discovered that PHP incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code.
This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS
and Ubuntu 19.10. (CVE-2020-7060)

Affected Software/OS:
'php7.3' package(s) on Ubuntu 19.10, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-9253
https://bugs.php.net/bug.php?id=70185
https://bugs.php.net/bug.php?id=75968
https://www.futureweb.at/security/CVE-2015-9253/
https://usn.ubuntu.com/3766-1/
https://usn.ubuntu.com/4279-1/
Common Vulnerability Exposure (CVE) ID: CVE-2020-7059
Bugtraq: 20200218 [SECURITY] [DSA 4626-1] php7.3 security update (Google Search)
https://seclists.org/bugtraq/2020/Feb/27
Bugtraq: 20200219 [SECURITY] [DSA 4628-1] php7.0 security update (Google Search)
https://seclists.org/bugtraq/2020/Feb/31
Bugtraq: 20210116 Re: [SECURITY] [DSA 4628-1] php7.0 security update (Google Search)
https://seclists.org/bugtraq/2021/Jan/3
https://security.netapp.com/advisory/ntap-20200221-0002/
Debian Security Information: DSA-4626 (Google Search)
https://www.debian.org/security/2020/dsa-4626
Debian Security Information: DSA-4628 (Google Search)
https://www.debian.org/security/2020/dsa-4628
https://security.gentoo.org/glsa/202003-57
https://bugs.php.net/bug.php?id=79099
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpujul2020.html
https://lists.debian.org/debian-lts-announce/2020/02/msg00030.html
SuSE Security Announcement: openSUSE-SU-2020:0341 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00023.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-7060
https://bugs.php.net/bug.php?id=79037

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.844340
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu: Security Advisory for php7.3 (USN-4279-1)
Resumen:	The remote host is missing an update for the 'php7.3'; package(s) announced via the USN-4279-1 advisory.
Descripción:	Summary: The remote host is missing an update for the 'php7.3' package(s) announced via the USN-4279-1 advisory. Vulnerability Insight: It was discovered that PHP incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 12.04 ESM, Ubuntu 14.04 ESM and Ubuntu 16.04 LTS. (CVE-2015-9253) It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. (CVE-2020-7059) It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 19.10. (CVE-2020-7060) Affected Software/OS: 'php7.3' package(s) on Ubuntu 19.10, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-9253 https://bugs.php.net/bug.php?id=70185 https://bugs.php.net/bug.php?id=75968 https://www.futureweb.at/security/CVE-2015-9253/ https://usn.ubuntu.com/3766-1/ https://usn.ubuntu.com/4279-1/ Common Vulnerability Exposure (CVE) ID: CVE-2020-7059 Bugtraq: 20200218 [SECURITY] [DSA 4626-1] php7.3 security update (Google Search) https://seclists.org/bugtraq/2020/Feb/27 Bugtraq: 20200219 [SECURITY] [DSA 4628-1] php7.0 security update (Google Search) https://seclists.org/bugtraq/2020/Feb/31 Bugtraq: 20210116 Re: [SECURITY] [DSA 4628-1] php7.0 security update (Google Search) https://seclists.org/bugtraq/2021/Jan/3 https://security.netapp.com/advisory/ntap-20200221-0002/ Debian Security Information: DSA-4626 (Google Search) https://www.debian.org/security/2020/dsa-4626 Debian Security Information: DSA-4628 (Google Search) https://www.debian.org/security/2020/dsa-4628 https://security.gentoo.org/glsa/202003-57 https://bugs.php.net/bug.php?id=79099 https://www.oracle.com/security-alerts/cpuApr2021.html https://www.oracle.com/security-alerts/cpujul2020.html https://lists.debian.org/debian-lts-announce/2020/02/msg00030.html SuSE Security Announcement: openSUSE-SU-2020:0341 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00023.html Common Vulnerability Exposure (CVE) ID: CVE-2020-7060 https://bugs.php.net/bug.php?id=79037
Copyright	Copyright (C) 2020 Greenbone Networks GmbH