[El-errata] ELSA-2014-1767 Important: Oracle Linux 7 php security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Thu Oct 30 18:15:59 PDT 2014


Oracle Linux Security Advisory ELSA-2014-1767

https://access.redhat.com/errata/RHSA-2014:1767.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
php-5.4.16-23.el7_0.3.x86_64.rpm
php-bcmath-5.4.16-23.el7_0.3.x86_64.rpm
php-cli-5.4.16-23.el7_0.3.x86_64.rpm
php-common-5.4.16-23.el7_0.3.x86_64.rpm
php-dba-5.4.16-23.el7_0.3.x86_64.rpm
php-devel-5.4.16-23.el7_0.3.x86_64.rpm
php-embedded-5.4.16-23.el7_0.3.x86_64.rpm
php-enchant-5.4.16-23.el7_0.3.x86_64.rpm
php-fpm-5.4.16-23.el7_0.3.x86_64.rpm
php-gd-5.4.16-23.el7_0.3.x86_64.rpm
php-intl-5.4.16-23.el7_0.3.x86_64.rpm
php-ldap-5.4.16-23.el7_0.3.x86_64.rpm
php-mbstring-5.4.16-23.el7_0.3.x86_64.rpm
php-mysql-5.4.16-23.el7_0.3.x86_64.rpm
php-mysqlnd-5.4.16-23.el7_0.3.x86_64.rpm
php-odbc-5.4.16-23.el7_0.3.x86_64.rpm
php-pdo-5.4.16-23.el7_0.3.x86_64.rpm
php-pgsql-5.4.16-23.el7_0.3.x86_64.rpm
php-process-5.4.16-23.el7_0.3.x86_64.rpm
php-pspell-5.4.16-23.el7_0.3.x86_64.rpm
php-recode-5.4.16-23.el7_0.3.x86_64.rpm
php-snmp-5.4.16-23.el7_0.3.x86_64.rpm
php-soap-5.4.16-23.el7_0.3.x86_64.rpm
php-xml-5.4.16-23.el7_0.3.x86_64.rpm
php-xmlrpc-5.4.16-23.el7_0.3.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/php-5.4.16-23.el7_0.3.src.rpm

Description of changes:

[5.4.16-23.3]
- fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710

[5.4.16-23.2]
- xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668
- core: fix integer overflow in unserialize() CVE-2014-3669
- exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670







More information about the El-errata mailing list