Oval Definition:	oval:org.opensuse.security:def:20142020
Revision Date: 2022-05-20 Version: 1 Title: CVE-2014-2020 Description: ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a (1) string or (2) array data type in place of a numeric data type, as demonstrated by an imagecrop function call with a string for the x dimension value, a different vulnerability than CVE-2013-7226. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2014-2020 SUSE CVE-2014-2020 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 12 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND php5 is not affected Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND php5 is not affected Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND php5 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP2 is installed AND php5 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP1 is installed AND php5 is affected
BACK