Detections
Analytics
MDVA-2010:163 : php
high Nessus Plugin ID 46853
Synopsis
The remote Mandriva host is missing one or more security-related patches.Description
This is a maintenance update that upgrades php to the latest upstream version(s) for CS4/MES5/2008.0/2009.0/2009.1/2010.0.Additionally some of the third party extensions and required dependencies has been upgraded.
Corporate Server 4.0 with php-5.1.6 had the old Hardening-Patch 0.4.14 applied statically. The updated packages for Corporate Server 4.0 brings the successor of the Hardening-Patch named Suhosin which loads the hardening features as a normal extension (suhosin.so), and as such can be unloaded.
Suhosin is enabled by default for all Mandriva Linux products.
For Mandriva Linux 2010.0 the FPM SAPI has been added and will probably appear in the next stable php-5.3.x version.
Packages for 2008.0 and 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149&products_id=490
Solution
Update the affected package(s).See Also
http://www.mandriva.com/security/advisories?name=MDVA-2010:163
Plugin Details
Severity: High
ID: 46853
File Name: mandriva_MDVA-2010-163.nasl
Version: 1.10
Type: local
Family: Mandriva Local Security Checks
Published: 6/10/2010
Updated: 1/6/2021
Supported Sensors: Nessus
Vulnerability Information
CPE: cpe:/o:mandriva:linux
Required KB Items: Host/Mandrake/release, Host/Mandrake/rpm-list
Patch Publication Date: 6/9/2010