USN-3922-2

See a problem?

Source

https://ubuntu.com/security/notices/USN-3922-2

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-3922-2.json

JSON Data

https://api.osv.dev/v1/vulns/USN-3922-2

Related

CVE-2019-9022
CVE-2019-9637
CVE-2019-9638
CVE-2019-9639
CVE-2019-9640
CVE-2019-9641
CVE-2019-9675
UBUNTU-CVE-2019-9022
UBUNTU-CVE-2019-9637
UBUNTU-CVE-2019-9638
UBUNTU-CVE-2019-9639
UBUNTU-CVE-2019-9640
UBUNTU-CVE-2019-9641
UBUNTU-CVE-2019-9675

Published

2019-04-23T12:57:02.547970Z

Modified

2019-04-23T12:57:02.547970Z

Summary

php5 vulnerabilities

Details

USN-3922-1 fixed vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 14.04 LTS.

It was discovered that PHP incorrectly handled certain files. An attacker could possibly use this issue to access sensitive information. (CVE-2019-9022)

It was discovered that PHP incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-9675)

Original advisory details:

It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. (CVE-2019-9637, CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641)

References

Affected packages

Ubuntu:14.04:LTS / php5

Package

Name: php5
Purl: pkg:deb/ubuntu/php5@5.5.9+dfsg-1ubuntu4.29?arch=src?distro=trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.5.9+dfsg-1ubuntu4.29

Affected versions

5.*

5.5.3+dfsg-1ubuntu2

5.5.3+dfsg-1ubuntu3

5.5.6+dfsg-1ubuntu1

5.5.6+dfsg-1ubuntu2

5.5.8+dfsg-2ubuntu1

5.5.9+dfsg-1ubuntu1

5.5.9+dfsg-1ubuntu2

5.5.9+dfsg-1ubuntu3

5.5.9+dfsg-1ubuntu4

5.5.9+dfsg-1ubuntu4.1

5.5.9+dfsg-1ubuntu4.2

5.5.9+dfsg-1ubuntu4.3

5.5.9+dfsg-1ubuntu4.4

5.5.9+dfsg-1ubuntu4.5

5.5.9+dfsg-1ubuntu4.6

5.5.9+dfsg-1ubuntu4.7

5.5.9+dfsg-1ubuntu4.9

5.5.9+dfsg-1ubuntu4.11

5.5.9+dfsg-1ubuntu4.12

5.5.9+dfsg-1ubuntu4.13

5.5.9+dfsg-1ubuntu4.14

5.5.9+dfsg-1ubuntu4.16

5.5.9+dfsg-1ubuntu4.17

5.5.9+dfsg-1ubuntu4.19

5.5.9+dfsg-1ubuntu4.20

5.5.9+dfsg-1ubuntu4.21

5.5.9+dfsg-1ubuntu4.22

5.5.9+dfsg-1ubuntu4.23

5.5.9+dfsg-1ubuntu4.24

5.5.9+dfsg-1ubuntu4.25

5.5.9+dfsg-1ubuntu4.26

5.5.9+dfsg-1ubuntu4.27

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "php5-gd": "5.5.9+dfsg-1ubuntu4.29",
            "libphp5-embed": "5.5.9+dfsg-1ubuntu4.29",
            "php5-gmp-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-mysqlnd": "5.5.9+dfsg-1ubuntu4.29",
            "php5-cli": "5.5.9+dfsg-1ubuntu4.29",
            "php5-common-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-fpm": "5.5.9+dfsg-1ubuntu4.29",
            "php5-pspell": "5.5.9+dfsg-1ubuntu4.29",
            "php5-mysql": "5.5.9+dfsg-1ubuntu4.29",
            "php5-ldap": "5.5.9+dfsg-1ubuntu4.29",
            "php5-pgsql": "5.5.9+dfsg-1ubuntu4.29",
            "php5-readline": "5.5.9+dfsg-1ubuntu4.29",
            "php5-common": "5.5.9+dfsg-1ubuntu4.29",
            "php5-dev": "5.5.9+dfsg-1ubuntu4.29",
            "php5-readline-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "libapache2-mod-php5filter": "5.5.9+dfsg-1ubuntu4.29",
            "php5": "5.5.9+dfsg-1ubuntu4.29",
            "php5-sybase": "5.5.9+dfsg-1ubuntu4.29",
            "php5-gmp": "5.5.9+dfsg-1ubuntu4.29",
            "php5-tidy-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-cgi": "5.5.9+dfsg-1ubuntu4.29",
            "php5-curl-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-pspell-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-intl-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "libapache2-mod-php5-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-recode": "5.5.9+dfsg-1ubuntu4.29",
            "php5-ldap-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-enchant-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-odbc-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-pgsql-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-gd-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-snmp-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-fpm-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-tidy": "5.5.9+dfsg-1ubuntu4.29",
            "libapache2-mod-php5filter-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-dbg": "5.5.9+dfsg-1ubuntu4.29",
            "php-pear": "5.5.9+dfsg-1ubuntu4.29",
            "libphp5-embed-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-xmlrpc-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-sybase-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-curl": "5.5.9+dfsg-1ubuntu4.29",
            "php5-cli-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-xsl": "5.5.9+dfsg-1ubuntu4.29",
            "php5-enchant": "5.5.9+dfsg-1ubuntu4.29",
            "php5-dev-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-odbc": "5.5.9+dfsg-1ubuntu4.29",
            "php5-recode-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-mysql-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-mysqlnd-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-sqlite-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "libapache2-mod-php5": "5.5.9+dfsg-1ubuntu4.29",
            "php5-snmp": "5.5.9+dfsg-1ubuntu4.29",
            "php5-xsl-dbgsym": "5.5.9+dfsg-1ubuntu4.29",
            "php5-intl": "5.5.9+dfsg-1ubuntu4.29",
            "php5-sqlite": "5.5.9+dfsg-1ubuntu4.29",
            "php5-xmlrpc": "5.5.9+dfsg-1ubuntu4.29",
            "php5-cgi-dbgsym": "5.5.9+dfsg-1ubuntu4.29"
        }
    ]
}