Summary
The remote host is missing updates announced in
advisory GLSA 201110-06.
Solution
All PHP users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-lang/php-5.3.8'
http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201110-06 http://bugs.gentoo.org/show_bug.cgi?id=306939
http://bugs.gentoo.org/show_bug.cgi?id=332039
http://bugs.gentoo.org/show_bug.cgi?id=340807
http://bugs.gentoo.org/show_bug.cgi?id=350908
http://bugs.gentoo.org/show_bug.cgi?id=355399
http://bugs.gentoo.org/show_bug.cgi?id=358791
http://bugs.gentoo.org/show_bug.cgi?id=358975
http://bugs.gentoo.org/show_bug.cgi?id=369071
http://bugs.gentoo.org/show_bug.cgi?id=372745
http://bugs.gentoo.org/show_bug.cgi?id=373965
http://bugs.gentoo.org/show_bug.cgi?id=380261
Insight
Multiple vulnerabilities were found in PHP, the worst of which leading to remote execution of arbitrary code.
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities