problem s bezpecnostnim updatem php5 a python

Pavel Bařina barinap at blade-comp.com
Sun Oct 8 18:08:53 CEST 2006


Dobry den
portaudit mi hlasi :

Affected package: python-2.4.3
Type of problem: python -- buffer overrun in repr() for unicode strings.
Reference: <http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-
a5ae-00508d6a62df.html>

Affected package: php5-5.1.6
Type of problem: php -- _ecalloc Integer Overflow Vulnerability.
Reference: <http://www.FreeBSD.org/ports/portaudit/e329550b-54f7-11db-
a5ae-00508d6a62df.html>

Affected package: php5-5.1.6
Type of problem: php -- open_basedir Race Condition Vulnerability.
Reference: <http://www.FreeBSD.org/ports/portaudit/edabe438-542f-11db-
a5ae-00508d6a62df.html>

Updatoval jsem porty a pomoci portupgrade chtel upgradovat i php5
python. Bohuzel portupgrade hlasi ze dane porty maji stale bezpecnostni
problem. V pripade php5 to trva uz nekolik dni. V portech se jeste
neobjevili opravene verze nebo je problem na maji strane ?
Dekuji za odpoved.


--->  Upgrading 'python-2.4.3' to 'python-2.4.3_1' (lang/python)
--->  Building '/usr/ports/lang/python'
===>  Cleaning for python-2.4.3_1
===>  python-2.4.3_1 has known vulnerabilities:
=> python -- buffer overrun in repr() for unicode strings.
   Reference:
<http://www.FreeBSD.org/ports/portaudit/fe83eb5b-55e1-11db-
a5ae-00508d6a62df.html>
=> Please update your ports tree and try again.

--->  Upgrading 'php5-5.1.6' to 'php5-5.1.6_1' (lang/php5)
--->  Building '/usr/ports/lang/php5'
===>  Cleaning for apache-2.2.3
===>  Cleaning for autoconf-2.59_2
===>  Cleaning for pkg-config-0.21
===>  Cleaning for libxml2-2.6.26
===>  Cleaning for perl-5.8.8
===>  Cleaning for libtool-1.5.22_2
===>  Cleaning for expat-2.0.0_1
===>  Cleaning for libiconv-1.9.2_2
===>  Cleaning for m4-1.4.4
===>  Cleaning for help2man-1.36.4_1
===>  Cleaning for gmake-3.81_1
===>  Cleaning for p5-gettext-1.05_1
===>  Cleaning for gettext-0.14.5_2
===>  Cleaning for php5-5.1.6_1
===>  php5-5.1.6_1 has known vulnerabilities:
=> php -- open_basedir Race Condition Vulnerability.
   Reference:
<http://www.FreeBSD.org/ports/portaudit/edabe438-542f-11db-
a5ae-00508d6a62df.html>
=> Please update your ports tree and try again.






More information about the Users-l mailing list