Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

DSA-1282-1 php4 -- several vulnerabilities

Related Vulnerabilities: CVE-2007-1286   CVE-2007-1380   CVE-2007-1521   CVE-2007-1711   CVE-2007-1718   CVE-2007-1777  

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-1286 Stefan Esser discovered an overflow in the object reference handling code of the unserialize() function, which allows the execution of arbitrary code if malformed input is passed from an application. CVE-2007-1380 Stefan Esser discovered that the session handler performs insufficient validation of variable name length values, which allows information disclosure through a heap information leak. CVE-2007-1521 Stefan Esser discovered a double free vulnerability in the session_regenerate_id() function, which allows the execution of arbitrary code. CVE-2007-1711 Stefan Esser discovered a double free vulnerability in the session management code, which allows the execution of arbitrary code. CVE-2007-1718 Stefan Esser discovered that the mail() function performs insufficient validation of folded mail headers, which allows mail header injection. CVE-2007-1777 Stefan Esser discovered that the extension to handle ZIP archives performs insufficient length checks, which allows the execution of arbitrary code. For the oldstable distribution (sarge) these problems have been fixed in version 4.3.10-20. For the stable distribution (etch) these problems have been fixed in version 4.4.4-8+etch2. For the unstable distribution (sid) these problems have been fixed in version 4.4.6-1. php4 will be removed from sid; thus you are strongly advised to migrate to php5 if you prefer to follow the unstable distribution. We recommend that you upgrade your PHP packages. Packages for the arm, m68k, mips and mipsel architectures are not yet available. They will be provided later.

Source

Debian Security Advisory

DSA-1282-1 php4 -- several vulnerabilities

Date Reported:
26 Apr 2007
Affected Packages:
php4
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CVE-2007-1286, CVE-2007-1380, CVE-2007-1521, CVE-2007-1711, CVE-2007-1718, CVE-2007-1777.
More information:

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems:

  • CVE-2007-1286

    Stefan Esser discovered an overflow in the object reference handling code of the unserialize() function, which allows the execution of arbitrary code if malformed input is passed from an application.

  • CVE-2007-1380

    Stefan Esser discovered that the session handler performs insufficient validation of variable name length values, which allows information disclosure through a heap information leak.

  • CVE-2007-1521

    Stefan Esser discovered a double free vulnerability in the session_regenerate_id() function, which allows the execution of arbitrary code.

  • CVE-2007-1711

    Stefan Esser discovered a double free vulnerability in the session management code, which allows the execution of arbitrary code.

  • CVE-2007-1718

    Stefan Esser discovered that the mail() function performs insufficient validation of folded mail headers, which allows mail header injection.

  • CVE-2007-1777

    Stefan Esser discovered that the extension to handle ZIP archives performs insufficient length checks, which allows the execution of arbitrary code.

For the oldstable distribution (sarge) these problems have been fixed in version 4.3.10-20.

For the stable distribution (etch) these problems have been fixed in version 4.4.4-8+etch4.

For the unstable distribution (sid) these problems have been fixed in version 4.4.6-1. php4 will be removed from sid; thus you are strongly advised to migrate to php5 if you prefer to follow the unstable distribution.

We recommend that you upgrade your PHP packages. Packages for the arm, m68k, mips and mipsel architectures are not yet available. They will be provided later.

Fixed in:

Debian GNU/Linux 3.1 (sarge)

Source:
http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-20.dsc
http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-20.diff.gz
http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10.orig.tar.gz
Architecture-independent component:
http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.3.10-20_all.deb
http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-20_all.deb
Alpha:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_alpha.deb
AMD64:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_amd64.deb
HPPA:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_hppa.deb
Intel IA-32:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_i386.deb
Intel IA-64:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_ia64.deb
PowerPC:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_powerpc.deb
IBM S/390:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_s390.deb
Sun Sparc:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-20_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-20_sparc.deb

Debian GNU/Linux 4.0 (etch)

Source:
http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.dsc
http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.diff.gz
http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4.orig.tar.gz
Architecture-independent component:
http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.4.4-8+etch4_all.deb
http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4_all.deb
Alpha:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_alpha.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_alpha.deb
AMD64:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_amd64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_amd64.deb
HPPA:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_hppa.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_hppa.deb
Intel IA-32:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_i386.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_i386.deb
Intel IA-64:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_ia64.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_ia64.deb
PowerPC:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_powerpc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_powerpc.deb
IBM S/390:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_s390.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_s390.deb
Sun Sparc:
http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_sparc.deb
http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_sparc.deb

MD5 checksums of the listed files are available in the original advisory.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started