- Vulnerability/
- USN-4097-2
USN-4097-2: PHP vulnerabilities
First published: Tue Aug 13 2019(Updated: )
USN-4097-1 fixed several vulnerabilities in php5. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that PHP incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2019-11041, CVE-2019-11042)
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/php5-xmlrpc | <5.5.9+dfsg-1ubuntu4.29+esm5 | 5.5.9+dfsg-1ubuntu4.29+esm5 |
| Ubuntu OpenSSH Client | =14.04 | |
| All of | ||
| ubuntu/libapache2-mod-php5 | <5.5.9+dfsg-1ubuntu4.29+esm5 | 5.5.9+dfsg-1ubuntu4.29+esm5 |
| Ubuntu OpenSSH Client | =14.04 | |
| All of | ||
| ubuntu/php5-fpm | <5.5.9+dfsg-1ubuntu4.29+esm5 | 5.5.9+dfsg-1ubuntu4.29+esm5 |
| Ubuntu OpenSSH Client | =14.04 | |
| All of | ||
| ubuntu/php5-cgi | <5.5.9+dfsg-1ubuntu4.29+esm5 | 5.5.9+dfsg-1ubuntu4.29+esm5 |
| Ubuntu OpenSSH Client | =14.04 | |
| All of | ||
| ubuntu/php5-cli | <5.5.9+dfsg-1ubuntu4.29+esm5 | 5.5.9+dfsg-1ubuntu4.29+esm5 |
| Ubuntu OpenSSH Client | =14.04 | |
| All of | ||
| ubuntu/php5-xmlrpc | <5.3.10-1ubuntu3.39 | 5.3.10-1ubuntu3.39 |
| Ubuntu OpenSSH Client | =12.04 | |
| All of | ||
| ubuntu/libapache2-mod-php5 | <5.3.10-1ubuntu3.39 | 5.3.10-1ubuntu3.39 |
| Ubuntu OpenSSH Client | =12.04 | |
| All of | ||
| ubuntu/php5-fpm | <5.3.10-1ubuntu3.39 | 5.3.10-1ubuntu3.39 |
| Ubuntu OpenSSH Client | =12.04 | |
| All of | ||
| ubuntu/php5-cgi | <5.3.10-1ubuntu3.39 | 5.3.10-1ubuntu3.39 |
| Ubuntu OpenSSH Client | =12.04 | |
| All of | ||
| ubuntu/php5-cli | <5.3.10-1ubuntu3.39 | 5.3.10-1ubuntu3.39 |
| Ubuntu OpenSSH Client | =12.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://ubuntu.com/security/CVE-2019-11041
- https://ubuntu.com/security/CVE-2019-11042
- https://ubuntu.com/security/notices/USN-4097-1
- https://launchpad.net/ubuntu/+source/php5/5.5.9+dfsg-1ubuntu4.29+esm5
- https://launchpad.net/ubuntu/+source/php5/5.3.10-1ubuntu3.39
- https://ubuntu.com/security/notices/USN-4097-2 (Advisory)
Frequently Asked Questions
What vulnerabilities does USN-4097-2 fix?
USN-4097-2 fixes the vulnerabilities addressed by USN-4097-1.
What is the severity of USN-4097-2?
The severity of USN-4097-2 is not specified in the provided information.
Which versions of Ubuntu are affected by USN-4097-2?
USN-4097-2 affects Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.
What is the remedy for USN-4097-2?
The remedy for USN-4097-2 is to upgrade to the corresponding update provided by Ubuntu.
Where can I find more information about USN-4097-2?
More information about USN-4097-2 can be found on the Ubuntu security website.
- agent/severity
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/title
- agent/description
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/usn
- source/Ubuntu
- anchor-related/USN-4097-1
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu openssh client
- version/ubuntu openssh client/14.04
- version/ubuntu openssh client/12.04