Amazon Linux AMI : php71 / php72,php73 (ALAS-2019-1225)

critical Nessus Plugin ID 125904

Synopsis

The remote Amazon Linux AMI host is missing a security update.

Description

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function. This may lead to information disclosure or crash. (CVE-2019-11035)

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash. (CVE-2019-11034)

When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosure or crash. (CVE-2019-11036)

Solution

Run 'yum update php71' to update your system.

Run 'yum update php72' to update your system.

Run 'yum update php73' to update your system.

See Also

https://alas.aws.amazon.com/ALAS-2019-1225.html

Plugin Details

Severity: Critical

ID: 125904

File Name: ala_ALAS-2019-1225.nasl

Version: 1.3

Type: local

Agent: unix

Published: 6/14/2019

Updated: 5/16/2024

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.0

CVSS v2

Risk Factor: Medium

Base Score: 6.4

Temporal Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P

CVSS Score Source: CVE-2019-11036

CVSS v3

Risk Factor: Critical

Base Score: 9.1

Temporal Score: 8.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:amazon:linux:php73-devel, p-cpe:/a:amazon:linux:php72-odbc, p-cpe:/a:amazon:linux:php73-cli, p-cpe:/a:amazon:linux:php71-pdo, p-cpe:/a:amazon:linux:php71-soap, cpe:/o:amazon:linux, p-cpe:/a:amazon:linux:php72-bcmath, p-cpe:/a:amazon:linux:php73-process, p-cpe:/a:amazon:linux:php71-mcrypt, p-cpe:/a:amazon:linux:php73-json, p-cpe:/a:amazon:linux:php71-common, p-cpe:/a:amazon:linux:php71-json, p-cpe:/a:amazon:linux:php73-soap, p-cpe:/a:amazon:linux:php73-bcmath, p-cpe:/a:amazon:linux:php71-fpm, p-cpe:/a:amazon:linux:php73-pdo, p-cpe:/a:amazon:linux:php71-dba, p-cpe:/a:amazon:linux:php72-gd, p-cpe:/a:amazon:linux:php72-opcache, p-cpe:/a:amazon:linux:php72-gmp, p-cpe:/a:amazon:linux:php73-imap, p-cpe:/a:amazon:linux:php73-enchant, p-cpe:/a:amazon:linux:php72-debuginfo, p-cpe:/a:amazon:linux:php72-dba, p-cpe:/a:amazon:linux:php73-odbc, p-cpe:/a:amazon:linux:php71-pgsql, p-cpe:/a:amazon:linux:php73-snmp, p-cpe:/a:amazon:linux:php72, p-cpe:/a:amazon:linux:php71-cli, p-cpe:/a:amazon:linux:php73-recode, p-cpe:/a:amazon:linux:php72-tidy, p-cpe:/a:amazon:linux:php71, p-cpe:/a:amazon:linux:php73-xml, p-cpe:/a:amazon:linux:php72-fpm, p-cpe:/a:amazon:linux:php72-xmlrpc, p-cpe:/a:amazon:linux:php73-mbstring, p-cpe:/a:amazon:linux:php72-json, p-cpe:/a:amazon:linux:php71-embedded, p-cpe:/a:amazon:linux:php71-devel, p-cpe:/a:amazon:linux:php73-intl, p-cpe:/a:amazon:linux:php72-pgsql, p-cpe:/a:amazon:linux:php73-gmp, p-cpe:/a:amazon:linux:php72-pspell, p-cpe:/a:amazon:linux:php71-xml, p-cpe:/a:amazon:linux:php71-odbc, p-cpe:/a:amazon:linux:php72-xml, p-cpe:/a:amazon:linux:php73-gd, p-cpe:/a:amazon:linux:php72-enchant, p-cpe:/a:amazon:linux:php73-mysqlnd, p-cpe:/a:amazon:linux:php71-mysqlnd, p-cpe:/a:amazon:linux:php73-fpm, p-cpe:/a:amazon:linux:php72-pdo-dblib, p-cpe:/a:amazon:linux:php73-pdo-dblib, p-cpe:/a:amazon:linux:php72-devel, p-cpe:/a:amazon:linux:php73-embedded, p-cpe:/a:amazon:linux:php71-ldap, p-cpe:/a:amazon:linux:php72-ldap, p-cpe:/a:amazon:linux:php73-common, p-cpe:/a:amazon:linux:php72-mbstring, p-cpe:/a:amazon:linux:php72-common, p-cpe:/a:amazon:linux:php72-recode, p-cpe:/a:amazon:linux:php73, p-cpe:/a:amazon:linux:php72-cli, p-cpe:/a:amazon:linux:php71-mbstring, p-cpe:/a:amazon:linux:php72-process, p-cpe:/a:amazon:linux:php73-dbg, p-cpe:/a:amazon:linux:php73-pgsql, p-cpe:/a:amazon:linux:php71-pspell, p-cpe:/a:amazon:linux:php71-bcmath, p-cpe:/a:amazon:linux:php72-snmp, p-cpe:/a:amazon:linux:php72-dbg, p-cpe:/a:amazon:linux:php71-snmp, p-cpe:/a:amazon:linux:php71-tidy, p-cpe:/a:amazon:linux:php72-embedded, p-cpe:/a:amazon:linux:php72-pdo, p-cpe:/a:amazon:linux:php72-soap, p-cpe:/a:amazon:linux:php71-imap, p-cpe:/a:amazon:linux:php71-xmlrpc, p-cpe:/a:amazon:linux:php73-debuginfo, p-cpe:/a:amazon:linux:php73-pspell, p-cpe:/a:amazon:linux:php73-opcache, p-cpe:/a:amazon:linux:php71-opcache, p-cpe:/a:amazon:linux:php73-dba, p-cpe:/a:amazon:linux:php71-recode, p-cpe:/a:amazon:linux:php71-enchant, p-cpe:/a:amazon:linux:php73-tidy, p-cpe:/a:amazon:linux:php71-process, p-cpe:/a:amazon:linux:php71-dbg, p-cpe:/a:amazon:linux:php71-gmp, p-cpe:/a:amazon:linux:php72-intl, p-cpe:/a:amazon:linux:php72-mysqlnd, p-cpe:/a:amazon:linux:php71-pdo-dblib, p-cpe:/a:amazon:linux:php72-imap, p-cpe:/a:amazon:linux:php71-intl, p-cpe:/a:amazon:linux:php73-ldap, p-cpe:/a:amazon:linux:php71-gd, p-cpe:/a:amazon:linux:php71-debuginfo, p-cpe:/a:amazon:linux:php73-xmlrpc

Required KB Items: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 6/13/2019

Vulnerability Publication Date: 4/18/2019

Reference Information

CVE: CVE-2019-11034, CVE-2019-11035, CVE-2019-11036

ALAS: 2019-1225