Aggiornamento PHP (5.4.42)
Categories: Archivio, Lavoro, Newsletter
Nell’ottica di fornire prestazioni ottimali e servizi costantemente allineati ai nostri standard di sicurezza informatica comunichiamo che su tutti i server afferenti alla nostra infrastruttura di rete e calcolo è stato aggiornato alla sua ultima versione il linguaggio di programmazione PHP (grazie al quale funzionano quelle applicazioni che danno vita ai vostri siti). Pertanto dalla precedente versione (5.4.41) siamo adesso passati alla nuova 5.4.42, che risolve le vulnerabilità connesse a CVE-2015-2325, CVE-2015-2326, CVE-2015-3414, CVE-2015-3415, and CVE-2015-3416 e che riguardavano tutte le precedenti release di PHP:
- dalla 5.4 alla 5.4.41 compresa;
- dalla 5.5 alla 5.5.25 compresa;
- dalla 5.6 alla 5.6.9 compresa.
Approfondimenti
SECURITY RATING
The National Vulnerability Database (NIST) has given the following severity ratings to these CVEs:
CVE-2015-2325 – MEDIUM
PHP 5.5.26
Update PCRE library to 8.37 to fix vulnerabilities related to CVE-2015-2325
PHP 5.6.10
Update PCRE library to 8.37 to fix vulnerabilities related to CVE-2015-2325
CVE-2015-2326 – MEDIUM
PHP 5.5.26
Update PCRE library to 8.37 to fix vulnerabilities related to to CVE-2015-2326
PHP 5.6.10
Update PCRE library to 8.37 to fix vulnerabilities related to to CVE-2015-2326
CVE-2015-3414 – HIGH
PHP 5.4.42
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3414
PHP 5.5.26
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3414
PHP 5.6.10
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3414
CVE-2015-3415 – HIGH
PHP 5.4.42
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3415
PHP 5.5.26
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3415
PHP 5.6.10
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3415
CVE-2015-3416 – HIGH
PHP 5.4.42
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3416
PHP 5.5.26
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3416
PHP 5.6.10
Update sqlite to 3.8.10.2 to fix vulnerabilities related to to CVE-2015-3416
REFERENCES
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2325
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2326
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3414
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3415
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3416
- http://php.net/ChangeLog-5.php
No comments yet.