What is the vulnerability ID for this PHP vulnerability?

The vulnerability ID for this PHP vulnerability is USN-4088-1.

What is the impact of this PHP vulnerability?

This PHP vulnerability could potentially expose sensitive information, cause a denial of service, or execute arbitrary code.

Which versions of PHP are affected by this vulnerability?

Versions 5.5.9+dfsg-1ubuntu4.29+esm4 and 5.3.10-1ubuntu3.38 are affected by this vulnerability.

Which Ubuntu versions are affected by this PHP vulnerability?

Ubuntu versions 14.04 and 12.04 are affected by this PHP vulnerability.

How can I fix this PHP vulnerability?

To fix this PHP vulnerability, update the affected PHP packages to the recommended versions: 5.5.9+dfsg-1ubuntu4.29+esm4 for Ubuntu 14.04 and 5.3.10-1ubuntu3.38 for Ubuntu 12.04.

Vulnerability/
USN-4088-1

7/8/2019

USN-4088-1: PHP vulnerability

First published: Wed Aug 07 2019(Updated: )

It was discovered that PHP incorrectly handled certain regular expressions. An attacker could possibly use this issue to expose sensitive information, cause a denial of service or execute arbitrary code.

Affected Software	Affected Version	How to fix
All of
ubuntu/php5-xmlrpc	<5.5.9+dfsg-1ubuntu4.29+esm4	5.5.9+dfsg-1ubuntu4.29+esm4
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/libapache2-mod-php5	<5.5.9+dfsg-1ubuntu4.29+esm4	5.5.9+dfsg-1ubuntu4.29+esm4
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/php5-fpm	<5.5.9+dfsg-1ubuntu4.29+esm4	5.5.9+dfsg-1ubuntu4.29+esm4
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/php5-cgi	<5.5.9+dfsg-1ubuntu4.29+esm4	5.5.9+dfsg-1ubuntu4.29+esm4
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/php5-cli	<5.5.9+dfsg-1ubuntu4.29+esm4	5.5.9+dfsg-1ubuntu4.29+esm4
Ubuntu OpenSSH Client	=14.04
All of
ubuntu/php5-xmlrpc	<5.3.10-1ubuntu3.38	5.3.10-1ubuntu3.38
Ubuntu OpenSSH Client	=12.04
All of
ubuntu/libapache2-mod-php5	<5.3.10-1ubuntu3.38	5.3.10-1ubuntu3.38
Ubuntu OpenSSH Client	=12.04
All of
ubuntu/php5-fpm	<5.3.10-1ubuntu3.38	5.3.10-1ubuntu3.38
Ubuntu OpenSSH Client	=12.04
All of
ubuntu/php5-cgi	<5.3.10-1ubuntu3.38	5.3.10-1ubuntu3.38
Ubuntu OpenSSH Client	=12.04
All of
ubuntu/php5-cli	<5.3.10-1ubuntu3.38	5.3.10-1ubuntu3.38
Ubuntu OpenSSH Client	=12.04

Never miss a vulnerability like this again

Reference Links

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2019-13224

Frequently Asked Questions

What is the vulnerability ID for this PHP vulnerability?
The vulnerability ID for this PHP vulnerability is USN-4088-1.
What is the impact of this PHP vulnerability?
This PHP vulnerability could potentially expose sensitive information, cause a denial of service, or execute arbitrary code.
Which versions of PHP are affected by this vulnerability?
Versions 5.5.9+dfsg-1ubuntu4.29+esm4 and 5.3.10-1ubuntu3.38 are affected by this vulnerability.
Which Ubuntu versions are affected by this PHP vulnerability?
Ubuntu versions 14.04 and 12.04 are affected by this PHP vulnerability.
How can I fix this PHP vulnerability?
To fix this PHP vulnerability, update the affected PHP packages to the recommended versions: 5.5.9+dfsg-1ubuntu4.29+esm4 for Ubuntu 14.04 and 5.3.10-1ubuntu3.38 for Ubuntu 12.04.

agent/references
agent/severity
agent/type
agent/last-modified-date
agent/first-publish-date
agent/title
agent/description
agent/event
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/usn
source/Ubuntu
agent/software-canonical-lookup
agent/software-canonical-lookup-request
package-manager/ubuntu
vendor/ubuntu
canonical/ubuntu openssh client
version/ubuntu openssh client/14.04
version/ubuntu openssh client/12.04