USN-1761-1: PHP vulnerability
13 March 2013
PHP could be made to expose sensitive information over the network.
- php5 - HTML-embedded scripting language interpreter
It was discovered that PHP incorrectly handled XML external entities in
SOAP WSDL files. A remote attacker could use this flaw to read arbitrary
files off the server.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.