Mageia alert MGASA-2015-0134 (php, libzip)

From:
    	     
 
Mageia Updates <buildsystem-daemon@mageia.org> 
To:
    	     
 
updates-announce@ml.mageia.org 
Subject:
    	     
 
[updates-announce] MGASA-2015-0134: Updated php and libzip packages fix security vulnerabilities 
Date:
    	     
 
Sat, 4 Apr 2015 13:13:56 +0200
Message-ID:
    	     
 
<20150404111356.797A1419A1@valstar.mageia.org>
MGASA-2015-0134 - Updated php and libzip packages fix security vulnerabilities

Publication date: 04 Apr 2015
URL: http://advisories.mageia.org/MGASA-2015-0134.html
Type: security
Affected Mageia releases: 4
CVE: CVE-2015-2305,
     CVE-2015-2331,
     CVE-2015-2787

Description:
Heap overflow vulnerability in regcomp.c in the ereg extension in PHP before
5.5.23 on 32-bit systems (CVE-2015-2305).

Integer overflow in zip extension in PHP before 5.5.23 leads to writing past
heap boundary (CVE-2015-2331).

Use after free vulnerability in unserialize() in PHP before 5.5.23
(CVE-2015-2787).

PHP has been updated to version 5.5.23, which fixes these issues and other
bugs.  The php zip extension uses the libzip library, so it has been patched
to fix CVE-2015-2331.

References:
- https://bugs.mageia.org/show_bug.cgi?id=15520
- http://php.net/ChangeLog-5.php#5.5.23
- https://www.debian.org/security/2015/dsa-3195
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2305
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2331
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2787

SRPMS:
- 4/core/php-5.5.23-1.mga4
- 4/core/php-apc-3.1.15-4.13.mga4
- 4/core/libzip-0.11.2-1.1.mga4