| Revision Date: | 2020-10-22 | Version: | 1 |
| Title: | Security update for php7 (Important) |
| Description: |
This update for php7 fixes the following issues:
- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352). - Added tmpfiles.d for php-fpm to provide a base for a socket (bsc#1173786)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1173786
1177351
1177352
CVE-2020-7069
CVE-2020-7070
|
| Platform(s): | SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
| Product(s): | |