Hosting Provided By

PCI vulnerability scan - PHP4 on Sarge

From: William Chipman <wchipman(at)jsatech.com>
Date: Mon Dec 17 2007 - 11:00:32 EST

We had a scan of our systems for PCI compliance and received warnings about PHP 4.4.3-10-22.
I checked the archives and found that the following CVE reports were not covered by the comments
leading up to 4.4.3-10-22:

2006-3016
2006-4484

--

William D. Chipman
Infrastructure Manager
JSA Technologies, Inc.
201 Main Street, Suite 1320
Fort Worth, Tx. 76102

817-810-2204

--

To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org Received on Mon Dec 17 12:16:04 2007

This message: [ Message body ]
Next message: Emmanuel Halbwachs: "Squirrelmail archive compromission and version 1.4.9a-2 (in etch)"
Previous message: Moritz Muehlenhoff: "Re: [SECURITY] [DSA 1422-1] New e2fsprogs packages fix arbitrary code execution"
Next in thread: Florian Weimer: "Re: PCI vulnerability scan - PHP4 on Sarge"
Reply: Florian Weimer: "Re: PCI vulnerability scan - PHP4 on Sarge"
Reply: Moritz Muehlenhoff: "Re: PCI vulnerability scan - PHP4 on Sarge"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Mar 19 2008 - 06:54:35 EDT