[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Debian PHP upgrade


Im not sure why Gareth said PHP, I’m referring to Apache 2.2.22.

The below vulnerabilities seem to affect this version:

CVE-2014-0231 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0231>

CVE-2013-5704 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5704>

CVE-2014-0118 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0118>

CVE-2014-0226 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226>

CVE-2014-0098 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0098>

CVE-2013-6438 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6438>

CVE-2013-1862 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1862>

CVE-2013-1896 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1896>

CVE-2012-3499 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499>

CVE-2012-4558 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4558>

CVE-2012-2687 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2687>

CVE-2012-0883 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0883>

Is there a way for us to update to the latest version?


On 2015/03/25, 1:48 PM, "Adam D. Barratt" <adam@adam-barratt.org.uk> wrote:

>On 2015-03-25 11:22, Andile Ntebe wrote:
>> We have Apache/2.2.22 on our Debian boxes.
>> Ive tried using apt-get update and apt-get upgrade to try and get us
>> onto the latest version but with no success. Is there any other way
>> that we could get Apache updated?
>I have to admit I'm confused at this point.
>Gareth started by asking about a PHP vulnerability and you are now
>discussing an upgrade to Apache. Please could you confirm exactly which
>vulnerability in which package you believe isn't fixed in which Debian
>package, so that someone can help determine the status?

Reply to: