Oracle Linux 4 : php (ELSA-2013-1063)

medium Nessus Plugin ID 69009

Synopsis

The remote Oracle Linux host is missing one or more security updates.

Description

Description of changes:

[4.3.9-3.37.0.1]
- rebuild with higher version

[4.3.9-3.36.0.1]
- add security fix for CVE-2013-4113 (orabz: #15820)

Solution

Update the affected php packages.

See Also

https://oss.oracle.com/pipermail/el-errata/2013-July/003597.html

Plugin Details

Severity: Medium

ID: 69009

File Name: oraclelinux_ELSA-2013-1063.nasl

Version: 1.16

Type: local

Agent: unix

Published: 7/23/2013

Updated: 1/14/2021

Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:oracle:linux:php-domxml, p-cpe:/a:oracle:linux:php-odbc, p-cpe:/a:oracle:linux:php-mbstring, p-cpe:/a:oracle:linux:php-ncurses, p-cpe:/a:oracle:linux:php-snmp, p-cpe:/a:oracle:linux:php-pgsql, p-cpe:/a:oracle:linux:php-pear, p-cpe:/a:oracle:linux:php-ldap, p-cpe:/a:oracle:linux:php, p-cpe:/a:oracle:linux:php-imap, p-cpe:/a:oracle:linux:php-devel, p-cpe:/a:oracle:linux:php-gd, p-cpe:/a:oracle:linux:php-mysql, p-cpe:/a:oracle:linux:php-xmlrpc, cpe:/o:oracle:linux:4

Required KB Items: Host/local_checks_enabled, Host/OracleLinux, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 7/22/2013

Vulnerability Publication Date: 7/13/2013

Reference Information

CVE: CVE-2013-4113

BID: 61128