Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > July 2007 > Several Debian Security Advisories

July 2007

Several Debian Security Advisories

ID: 151
Ref: 096/2007
Date: 09 July 2007:16:15:03
Version: 1
Title: Several Debian Security Advisories
Abstract: Description of security vulnerabilities in gfax, php5 and php4
Vendors affected: Debian
Operating systems affected: Debian
Applications affected: Debian
Debian Security Advisory DSA-1329-1
July 05, 2007
- ------------------------------------------------------------------------

Package : gfax
Vulnerability : insecure temporary files
Problem type : local
Debian-specific: no
CVE Id(s) : CVE-2007-2839
Debian Bug : 431893


Debian Security Advisory DSA 1330-1
July 7th, 2007
- --------------------------------------------------------------------------

Package : php5
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CVE-2007-1399 CVE-2007-1864


Debian Security Advisory DSA 1331-1
July 7th, 2007
- --------------------------------------------------------------------------

Package : php4
Vulnerability : several
Problem-Type : remote
Debian-specific: no
CVE ID : CVE-2006-4486 CVE-2006-0207 CVE-2007-1864

Further information can be found at:
http://www.debian.org/security/#DSAS

___________________________________________________________________________

CPNI wishes to acknowledge the contributions of Debian for the
information contained in this advisory.
___________________________________________________________________________

This advisory contains information released by the original author. Some
of the information may have changed since it was released. If the issue
affects you, it may be prudent to retrieve the advisory from the site of
the original source to ensure that you receive the most current
information concerning that problem.

Reference to any specific commercial product, process, or service by trade
name, trademark manufacturer, or otherwise, does not constitute or imply
its endorsement, recommendation, or favouring by CPNI. The views and
opinions of authors expressed within this notice shall not be used for
advertising or product endorsement purposes.

CPNI shall not accept responsibility for any errors or omissions
contained within this advisory. In particular, they shall not be liable
for any loss or damage whatsoever, arising from or in connection with the
usage of information contained within this advisory.

CPNI is a member of the Forum of Incident Response and Security Teams
(FIRST) and has contacts with other international Incident Response Teams
(IRTs) in order to foster cooperation and coordination in incident
prevention, to prompt rapid reaction to incidents, and to promote
information sharing amongst its members and the community at large.
___________________________________________________________________________
<End of CPNI Advisory>



  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |