User: Password:
Subscribe / Log in / New account

php: two vulnerabilities

Package(s):php CVE #(s):CVE-2013-1635 CVE-2013-1643
Created:February 28, 2013 Updated:June 20, 2013

From the Mandriva advisory:

PHP does not validate the configration directive soap.wsdl_cache_dir before writing SOAP wsdl cache files to the filesystem. Thus an attacker is able to write remote wsdl files to arbitrary locations (CVE-2013-1635).

PHP allows the use of external entities while parsing SOAP wsdl files which allows an attacker to read arbitrary files. If a web application unserializes user-supplied data and tries to execute any method of it, an attacker can send serialized SoapClient object initialized in non-wsdl mode which will make PHP to parse automatically remote XML-document specified in the location option parameter (CVE-2013-1643).

Gentoo 201408-11 php 2014-08-29
Fedora FEDORA-2013-23215 php 2013-12-20
Scientific Linux SLSA-2013:1814-1 php 2013-12-11
Oracle ELSA-2013-1814 php 2013-12-11
CentOS CESA-2013:1814 php 2013-12-11
Red Hat RHSA-2013:1814-01 php 2013-12-11
Scientific Linux SLSA-2013:1615-2 php 2013-12-03
Oracle ELSA-2013-1615 php 2013-11-26
Red Hat RHSA-2013:1615-02 php 2013-11-21
Scientific Linux SLSA-2013:1307-1 php53 2013-10-10
Oracle ELSA-2013-1307 php53 2013-10-02
Red Hat RHSA-2013:1307-01 php53 2013-09-30
SUSE SUSE-SU-2013:1351-1 PHP5 2013-08-16
SUSE SUSE-SU-2013:1317-1 PHP5 2013-08-09
SUSE SUSE-SU-2013:1285-2 PHP5 2013-08-09
SUSE SUSE-SU-2013:1315-1 PHP5 2013-08-09
SUSE SUSE-SU-2013:1285-1 PHP5 2013-08-01
openSUSE openSUSE-SU-2013:1249-1 php5 2013-07-24
Fedora FEDORA-2013-10255 php 2013-06-20
Mandriva MDVSA-2013:114 php 2013-04-10
Fedora FEDORA-2013-3927 php 2013-04-03
Fedora FEDORA-2013-3891 php 2013-04-03
Mageia MGASA-2013-0101 php 2013-04-02
Slackware SSA:2013-081-01 php 2013-03-23
Ubuntu USN-1761-1 php5 2013-03-13
Debian DSA-2639-1 php5 2013-03-05
Mandriva MDVSA-2013:016 php 2013-02-28

(Log in to post comments)

Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds