PHP 5.2.4 and Prior Versions Multiple Vulnerabilities

PHP 5.2.4 and Prior Versions Multiple Vulnerabilities

References:

[USN-549-1] PHP vulnerabilities (Kees Cook )
Bug: open_basedir bypass & code exec & denial of service (laurent gaffie gmail com)
PHP 5.2.5 ChangeLog (PHP)
PHP 5.2.5 Release Announcement (PHP)
PHP Homepage (PHP)
PHP 5.2.4 mail.force_extra_parameters unsecure (cxib@securityreason.com)
ASA-2008-326 - php security update (RHSA-2008-0582) (Avaya)
Avaya Security Advisory ASA-2008-313 (Avaya)
HPSBUX02308 SSRT080010 rev.1 - HP-UX Running Apache, Remote Execution of Arbitra (HP)
RHSA-2008:0544-6 php security update (Red Hat)
RHSA-2008:0545-6 php security and bug fix update (Red Hat)
RHSA-2008:0546-3 Moderate: php security update (Red Hat)
RHSA-2008:0582-2 Moderate: php security update (Red Hat)
SUSE Security Advisory SUSE-SA:2008:004 (SUSE)

Privacy Statement
Copyright 2010, SecurityFocus