php-5.4.16-43.el7.1

エラータID: AXSA:2018-2623:01

Release date: 
Wednesday, March 14, 2018 - 17:13
Subject: 
php-5.4.16-43.el7.1
Affected Channels: 
Asianux Server 7 for x86_64
Severity: 
Moderate
Description: 

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: Buffer over-read from unitialized data in gdImageCreateFromGifCtx function (CVE-2017-7890)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2017-7890
The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in
the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and
7.x before 7.1.7, does not zero colorMap arrays before use. A
specially crafted GIF image could use the uninitialized tables to read
~700 bytes from the top of the stack, potentially disclosing sensitive
information.

Solution: 

Update packages.

Additional Info: 

N/A

Download: 

SRPMS
  1. php-5.4.16-43.el7.1.src.rpm
    MD5: 96e67d11f032e2e87452e88009ce4d43
    SHA-256: a824d930412175a1a238f523e8c8bede51d99a83184c0a3a3adcab4187aeed85
    Size: 11.40 MB

Asianux Server 7 for x86_64
  1. php-5.4.16-43.el7.1.x86_64.rpm
    MD5: e453abd8976d1c4be60118220a6e360c
    SHA-256: 2be07fd1a32719b6cd3b97f74dc07592c6c0697add443ffa9a2a8cd9d7eff1ae
    Size: 1.35 MB
  2. php-bcmath-5.4.16-43.el7.1.x86_64.rpm
    MD5: ecba7947c433b78518c8ce0f961a8e5f
    SHA-256: 97a37585f45dfb39d2e5d921aa2640243b9f00a6724a3c09d4d54c81c1f6e67a
    Size: 56.52 kB
  3. php-cli-5.4.16-43.el7.1.x86_64.rpm
    MD5: c51f368f49b5333630c7aceec431ae12
    SHA-256: 4a0586394840809321c4f81679e799b30bf4c2ba251f23268eb21c5714fa31a6
    Size: 2.74 MB
  4. php-common-5.4.16-43.el7.1.x86_64.rpm
    MD5: e5fcd087cbc30d98203842ddd772921a
    SHA-256: d6f0a363cfaa752ced62f57ed5ef5d93e8187ab75102020bd06de0cb17d94705
    Size: 563.77 kB
  5. php-gd-5.4.16-43.el7.1.x86_64.rpm
    MD5: f1bdd4dfaf433ccafce54bee535aa6cc
    SHA-256: 3ef69e22bbfda936bf72307c9bc541218eaa14e70bcf43a94c2f96bd7e6aac5b
    Size: 126.31 kB
  6. php-ldap-5.4.16-43.el7.1.x86_64.rpm
    MD5: b7eb9883ddc8124a53b5e4052e9bf422
    SHA-256: e1f1eb864bedec43f6904f1844a7d83993594e016892e4369737a034f753709d
    Size: 51.45 kB
  7. php-mbstring-5.4.16-43.el7.1.x86_64.rpm
    MD5: ef83f1687cd867953cf38fa902c200b9
    SHA-256: 9a7b589589aa90116edb496de2f52b46f429bf3923647de2d57f120bc7cb5ff2
    Size: 503.87 kB
  8. php-mysql-5.4.16-43.el7.1.x86_64.rpm
    MD5: 5ae41628d7900c4803edf1beda00703a
    SHA-256: cd85c9616e2e386da5adda0fe4dca3d584bc5b1a985056e3e073c17f66a1e7cc
    Size: 100.11 kB
  9. php-odbc-5.4.16-43.el7.1.x86_64.rpm
    MD5: b26903ad8e7170f0cf256b9a0ab0789a
    SHA-256: 38aba538fce0ff3b3e72458074b224898ad20931c1040a129a39ea31aec591d6
    Size: 64.37 kB
  10. php-pdo-5.4.16-43.el7.1.x86_64.rpm
    MD5: 95f0e31d6306f20866a50bf01a4d5424
    SHA-256: a89552773c7f4e14dd7a4575d3a7bd0a912da84f9c5c162e4425fb8cfb10164f
    Size: 97.72 kB
  11. php-pgsql-5.4.16-43.el7.1.x86_64.rpm
    MD5: 44075190aba1de36c91f6a94fe14a050
    SHA-256: 64818f0159c45a7637efb88fd3809e0759ee0df9f2648b33242b6cfd8474d97f
    Size: 84.98 kB
  12. php-process-5.4.16-43.el7.1.x86_64.rpm
    MD5: 2d642227f8d1fb090f0c8515f08e436c
    SHA-256: 95f324c0e8d0bd976af7d04988803328b0b8581a3ff6e268d8bd88e9abcae8b8
    Size: 54.77 kB
  13. php-recode-5.4.16-43.el7.1.x86_64.rpm
    MD5: 37e4449a102300b8caf7cc36d053f45a
    SHA-256: 9bbdea9cc7111103fa4324517083cda54db3713eb9ab4f1f74e49145a73aacbc
    Size: 37.42 kB
  14. php-soap-5.4.16-43.el7.1.x86_64.rpm
    MD5: 6c9b65b51dde4ba6c2f4f0a291f33305
    SHA-256: 8aa3be98b223ee5a3f31e3af4d8e19a37a3ed2b8df64c41435f1b554e817a4c3
    Size: 157.58 kB
  15. php-xml-5.4.16-43.el7.1.x86_64.rpm
    MD5: 10bdd5cb7214212bfa89cd170d72b772
    SHA-256: 135c530f19d0ef7a68c500ad1dd2375a9f71e70fd0174f542218326ddee3e44d
    Size: 124.66 kB
  16. php-xmlrpc-5.4.16-43.el7.1.x86_64.rpm
    MD5: e6bbe4e2e40e08d8794ee70944cb49cb
    SHA-256: 138665036003d9c9466594d509694671ec3b165777f328a83325a6fa9d6c4b46
    Size: 66.97 kB