Oval Definition:oval:org.opensuse.security:def:20155161
Revision Date:2023-06-22Version:1
Title:CVE-2015-5161
Description:

The Zend_Xml_Security::scan in ZendXml before 1.0.1 and Zend Framework before 1.12.14, 2.x before 2.4.6, and 2.5.x before 2.5.2, when running under PHP-FPM in a threaded environment, allows remote attackers to bypass security checks and conduct XML external entity (XXE) and XML entity expansion (XEE) attacks via multibyte encoded characters.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2015-5161
Mitre CVE-2015-5161
SUSE CVE-2015-5161
SUSE-SU-2016:1638-1
SUSE-SU-2016:1638-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Legacy 15 SP5
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 11 SP2-LTSS
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • AND Package Information
  • apache2-mod_php53-5.3.17-47.1 is installed
  • OR php53-5.3.17-47.1 is installed
  • OR php53-bcmath-5.3.17-47.1 is installed
  • OR php53-bz2-5.3.17-47.1 is installed
  • OR php53-calendar-5.3.17-47.1 is installed
  • OR php53-ctype-5.3.17-47.1 is installed
  • OR php53-curl-5.3.17-47.1 is installed
  • OR php53-dba-5.3.17-47.1 is installed
  • OR php53-dom-5.3.17-47.1 is installed
  • OR php53-exif-5.3.17-47.1 is installed
  • OR php53-fastcgi-5.3.17-47.1 is installed
  • OR php53-fileinfo-5.3.17-47.1 is installed
  • OR php53-ftp-5.3.17-47.1 is installed
  • OR php53-gd-5.3.17-47.1 is installed
  • OR php53-gettext-5.3.17-47.1 is installed
  • OR php53-gmp-5.3.17-47.1 is installed
  • OR php53-iconv-5.3.17-47.1 is installed
  • OR php53-intl-5.3.17-47.1 is installed
  • OR php53-json-5.3.17-47.1 is installed
  • OR php53-ldap-5.3.17-47.1 is installed
  • OR php53-mbstring-5.3.17-47.1 is installed
  • OR php53-mcrypt-5.3.17-47.1 is installed
  • OR php53-mysql-5.3.17-47.1 is installed
  • OR php53-odbc-5.3.17-47.1 is installed
  • OR php53-openssl-5.3.17-47.1 is installed
  • OR php53-pcntl-5.3.17-47.1 is installed
  • OR php53-pdo-5.3.17-47.1 is installed
  • OR php53-pear-5.3.17-47.1 is installed
  • OR php53-pgsql-5.3.17-47.1 is installed
  • OR php53-pspell-5.3.17-47.1 is installed
  • OR php53-shmop-5.3.17-47.1 is installed
  • OR php53-snmp-5.3.17-47.1 is installed
  • OR php53-soap-5.3.17-47.1 is installed
  • OR php53-suhosin-5.3.17-47.1 is installed
  • OR php53-sysvmsg-5.3.17-47.1 is installed
  • OR php53-sysvsem-5.3.17-47.1 is installed
  • OR php53-sysvshm-5.3.17-47.1 is installed
  • OR php53-tokenizer-5.3.17-47.1 is installed
  • OR php53-wddx-5.3.17-47.1 is installed
  • OR php53-xmlreader-5.3.17-47.1 is installed
  • OR php53-xmlrpc-5.3.17-47.1 is installed
  • OR php53-xmlwriter-5.3.17-47.1 is installed
  • OR php53-xsl-5.3.17-47.1 is installed
  • OR php53-zip-5.3.17-47.1 is installed
  • OR php53-zlib-5.3.17-47.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP2-LTSS is installed
  • AND Package Information
  • apache2-mod_php53-5.3.17-47 is installed
  • OR php53-5.3.17-47 is installed
  • OR php53-bcmath-5.3.17-47 is installed
  • OR php53-bz2-5.3.17-47 is installed
  • OR php53-calendar-5.3.17-47 is installed
  • OR php53-ctype-5.3.17-47 is installed
  • OR php53-curl-5.3.17-47 is installed
  • OR php53-dba-5.3.17-47 is installed
  • OR php53-dom-5.3.17-47 is installed
  • OR php53-exif-5.3.17-47 is installed
  • OR php53-fastcgi-5.3.17-47 is installed
  • OR php53-fileinfo-5.3.17-47 is installed
  • OR php53-ftp-5.3.17-47 is installed
  • OR php53-gd-5.3.17-47 is installed
  • OR php53-gettext-5.3.17-47 is installed
  • OR php53-gmp-5.3.17-47 is installed
  • OR php53-iconv-5.3.17-47 is installed
  • OR php53-intl-5.3.17-47 is installed
  • OR php53-json-5.3.17-47 is installed
  • OR php53-ldap-5.3.17-47 is installed
  • OR php53-mbstring-5.3.17-47 is installed
  • OR php53-mcrypt-5.3.17-47 is installed
  • OR php53-mysql-5.3.17-47 is installed
  • OR php53-odbc-5.3.17-47 is installed
  • OR php53-openssl-5.3.17-47 is installed
  • OR php53-pcntl-5.3.17-47 is installed
  • OR php53-pdo-5.3.17-47 is installed
  • OR php53-pear-5.3.17-47 is installed
  • OR php53-pgsql-5.3.17-47 is installed
  • OR php53-pspell-5.3.17-47 is installed
  • OR php53-shmop-5.3.17-47 is installed
  • OR php53-snmp-5.3.17-47 is installed
  • OR php53-soap-5.3.17-47 is installed
  • OR php53-suhosin-5.3.17-47 is installed
  • OR php53-sysvmsg-5.3.17-47 is installed
  • OR php53-sysvsem-5.3.17-47 is installed
  • OR php53-sysvshm-5.3.17-47 is installed
  • OR php53-tokenizer-5.3.17-47 is installed
  • OR php53-wddx-5.3.17-47 is installed
  • OR php53-xmlreader-5.3.17-47 is installed
  • OR php53-xmlrpc-5.3.17-47 is installed
  • OR php53-xmlwriter-5.3.17-47 is installed
  • OR php53-xsl-5.3.17-47 is installed
  • OR php53-zip-5.3.17-47 is installed
  • OR php53-zlib-5.3.17-47 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Legacy 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • php7 is not affected
  • OR php7-bcmath is not affected
  • OR php7-bz2 is not affected
  • OR php7-calendar is not affected
  • OR php7-cli is not affected
  • OR php7-ctype is not affected
  • OR php7-curl is not affected
  • OR php7-dba is not affected
  • OR php7-devel is not affected
  • OR php7-dom is not affected
  • OR php7-enchant is not affected
  • OR php7-exif is not affected
  • OR php7-fileinfo is not affected
  • OR php7-ftp is not affected
  • OR php7-gd is not affected
  • OR php7-gettext is not affected
  • OR php7-gmp is not affected
  • OR php7-iconv is not affected
  • OR php7-intl is not affected
  • OR php7-json is not affected
  • OR php7-ldap is not affected
  • OR php7-mbstring is not affected
  • OR php7-mysql is not affected
  • OR php7-odbc is not affected
  • OR php7-opcache is not affected
  • OR php7-openssl is not affected
  • OR php7-pcntl is not affected
  • OR php7-pdo is not affected
  • OR php7-pgsql is not affected
  • OR php7-phar is not affected
  • OR php7-posix is not affected
  • OR php7-readline is not affected
  • OR php7-shmop is not affected
  • OR php7-snmp is not affected
  • OR php7-soap is not affected
  • OR php7-sockets is not affected
  • OR php7-sodium is not affected
  • OR php7-sqlite is not affected
  • OR php7-sysvmsg is not affected
  • OR php7-sysvsem is not affected
  • OR php7-sysvshm is not affected
  • OR php7-tidy is not affected
  • OR php7-tokenizer is not affected
  • OR php7-xmlreader is not affected
  • OR php7-xmlrpc is not affected
  • OR php7-xmlwriter is not affected
  • OR php7-xsl is not affected
  • OR php7-zip is not affected
  • OR php7-zlib is not affected
    • BACK