SCIENTIFIC-LINUX-USERS Archives

April 2018

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution
From:
Bill Maidment <[log in to unmask]>
Reply To:
Bill Maidment <[log in to unmask]>
Date:
Sat, 28 Apr 2018 16:51:24 +1000
Content-Type:
text/plain
Parts/Attachments:
text/plain (22 lines) 
SL7.5 has a newer version 5.4.16-45.el7 which may have the fixes backported.
Cheers
Bill
 
 
-----Original message-----
> From:Jon Brinkmann <[log in to unmask]>
> Sent: Saturday 28th April 2018 12:19
> To: [log in to unmask]
> Subject: Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution
> 
> See https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2018-046/
> 
> This is the second warning in as many months.  The current version of PHP
> distributed with SL 7.4 is "PHP 5.4.16 (cli) (built: Mar  7 2018 12:48:25)"
> which is vulnerable.  Are there plans to distribute version 5.6.36 or
> newer anytime soon?
> 
> Jon
> 
>

ATOM RSS1 RSS2