Updated php and libzip packages fix security vulnerabilities
Publication date: 04 Apr 2015Modification date: 04 Apr 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-2305 , CVE-2015-2331 , CVE-2015-2787
Description
Heap overflow vulnerability in regcomp.c in the ereg extension in PHP before
5.5.23 on 32-bit systems (CVE-2015-2305).
Integer overflow in zip extension in PHP before 5.5.23 leads to writing past
heap boundary (CVE-2015-2331).
Use after free vulnerability in unserialize() in PHP before 5.5.23
(CVE-2015-2787).
PHP has been updated to version 5.5.23, which fixes these issues and other
bugs. The php zip extension uses the libzip library, so it has been patched
to fix CVE-2015-2331.
References
- https://bugs.mageia.org/show_bug.cgi?id=15520
- http://php.net/ChangeLog-5.php#5.5.23
- https://www.debian.org/security/2015/dsa-3195
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787
SRPMS
4/core
- php-5.5.23-1.mga4
- php-apc-3.1.15-4.13.mga4
- libzip-0.11.2-1.1.mga4