Related Vulnerabilities: CVE-2007-0906 CVE-2007-0907 CVE-2007-0908 CVE-2007-0909 CVE-2007-0910 CVE-2007-0988

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-0906 It was discovered that an integer overflow in the str_replace() function could lead to the execution of arbitrary code. CVE-2007-0907 It was discovered that a buffer underflow in the sapi_header_op() function could crash the PHP interpreter. CVE-2007-0908 Stefan Esser discovered that a programming error in the wddx extension allows information disclosure. CVE-2007-0909 It was discovered that a format string vulnerability in the odbc_result_all() functions allows the execution of arbitrary code. CVE-2007-0910 It was discovered that super-global variables could be overwritten with session data. CVE-2007-0988 Stefan Esser discovered that the zend_hash_init() function could be tricked into an endless loop, allowing denial of service through resource consumption until a timeout is triggered. For the stable distribution (sarge) these problems have been fixed in version 4:4.3.10-19. For the unstable distribution (sid) these problems have been fixed in version 6:4.4.4-9 of php4 and version 5.2.0-9 of php5. We recommend that you upgrade your php4 packages.

Source

Debian Security Advisory

DSA-1264-1 php4 -- several vulnerabilities

Date Reported:

07 Mar 2007

Affected Packages:

php4

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2007-0906, CVE-2007-0907, CVE-2007-0908, CVE-2007-0909, CVE-2007-0910, CVE-2007-0988.

More information:

CVE-2007-0906
It was discovered that an integer overflow in the str_replace() function could lead to the execution of arbitrary code.
CVE-2007-0907
It was discovered that a buffer underflow in the sapi_header_op() function could crash the PHP interpreter.
CVE-2007-0908
Stefan Esser discovered that a programming error in the wddx extension allows information disclosure.
CVE-2007-0909
It was discovered that a format string vulnerability in the odbc_result_all() functions allows the execution of arbitrary code.
CVE-2007-0910
It was discovered that super-global variables could be overwritten with session data.
CVE-2007-0988
Stefan Esser discovered that the zend_hash_init() function could be tricked into an endless loop, allowing denial of service through resource consumption until a timeout is triggered.

For the stable distribution (sarge) these problems have been fixed in version 4:4.3.10-19.

For the unstable distribution (sid) these problems have been fixed in version 6:4.4.4-9 of php4 and version 5.2.0-9 of php5.

We recommend that you upgrade your php4 packages.

Fixed in:

Debian GNU/Linux 3.1 (sarge)

Source:: http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-19.dsc; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-19.diff.gz; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10.orig.tar.gz
Architecture-independent component:: http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.3.10-19_all.deb; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-19_all.deb
Alpha:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_alpha.deb
AMD64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_amd64.deb
ARM:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_arm.deb
HPPA:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_hppa.deb
Intel IA-32:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_i386.deb
Intel IA-64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_ia64.deb
Motorola 680x0:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_m68k.deb
Big endian MIPS:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_mips.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_mips.deb
Little endian MIPS:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_mipsel.deb
PowerPC:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_powerpc.deb
IBM S/390:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_s390.deb
Sun Sparc:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-19_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-19_sparc.deb

MD5 checksums of the listed files are available in the original advisory.

DSA-1264-1 php4 -- several vulnerabilities

Debian Security Advisory

DSA-1264-1 php4 -- several vulnerabilities

Debian GNU/Linux 3.1 (sarge)

Vulmon Search

About

Products

Connect