[CentOS] New 4.4 install PHP security concern

Eucke euckew at sierraelectronics.com
Wed Sep 20 17:09:21 UTC 2006

> can you demonstrate working examples of these exploits on a fully 
> updated CentOS machine ?
This is not a vulnerability that I have discovered but one that the 
nessus security analysis program identified and is documents with the 
following RHN php security update: RHSA-2005-831.  Nessus is 
recommending moving to 5.0.4.  Could this be something that has been 
fixed already within the 4.3.X php versions within Centos and nessus is 
misreading this as an issue having not been compiled specifically for 
Centos but RHES4?

If it is an existing issue I would like to figure out how to address it 
without issues...if it's not an issue then I intend to just move on.  I 
tried searching the Centos bug tracker but had no luck there.


More information about the CentOS mailing list