Oval Definition:oval:org.opensuse.security:def:20164343
Revision Date:2022-09-02Version:1
Title:CVE-2016-4343
Description:

The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote attackers to cause a denial of service (uninitialized pointer dereference) or possibly have unspecified other impact via a crafted TAR archive.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-4343
Mitre CVE-2016-4343
SUSE CVE-2016-4343
openSUSE-SU-2016:1357-1
Platform(s):openSUSE 13.2
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE 13.2 is installed
  • AND Package Information
  • apache2-mod_php5-5.6.1-61.1 is installed
  • OR php5-5.6.1-61.1 is installed
  • OR php5-bcmath-5.6.1-61.1 is installed
  • OR php5-bz2-5.6.1-61.1 is installed
  • OR php5-calendar-5.6.1-61.1 is installed
  • OR php5-ctype-5.6.1-61.1 is installed
  • OR php5-curl-5.6.1-61.1 is installed
  • OR php5-dba-5.6.1-61.1 is installed
  • OR php5-devel-5.6.1-61.1 is installed
  • OR php5-dom-5.6.1-61.1 is installed
  • OR php5-enchant-5.6.1-61.1 is installed
  • OR php5-exif-5.6.1-61.1 is installed
  • OR php5-fastcgi-5.6.1-61.1 is installed
  • OR php5-fileinfo-5.6.1-61.1 is installed
  • OR php5-firebird-5.6.1-61.1 is installed
  • OR php5-fpm-5.6.1-61.1 is installed
  • OR php5-ftp-5.6.1-61.1 is installed
  • OR php5-gd-5.6.1-61.1 is installed
  • OR php5-gettext-5.6.1-61.1 is installed
  • OR php5-gmp-5.6.1-61.1 is installed
  • OR php5-iconv-5.6.1-61.1 is installed
  • OR php5-imap-5.6.1-61.1 is installed
  • OR php5-intl-5.6.1-61.1 is installed
  • OR php5-json-5.6.1-61.1 is installed
  • OR php5-ldap-5.6.1-61.1 is installed
  • OR php5-mbstring-5.6.1-61.1 is installed
  • OR php5-mcrypt-5.6.1-61.1 is installed
  • OR php5-mssql-5.6.1-61.1 is installed
  • OR php5-mysql-5.6.1-61.1 is installed
  • OR php5-odbc-5.6.1-61.1 is installed
  • OR php5-opcache-5.6.1-61.1 is installed
  • OR php5-openssl-5.6.1-61.1 is installed
  • OR php5-pcntl-5.6.1-61.1 is installed
  • OR php5-pdo-5.6.1-61.1 is installed
  • OR php5-pear-5.6.1-61.1 is installed
  • OR php5-pgsql-5.6.1-61.1 is installed
  • OR php5-phar-5.6.1-61.1 is installed
  • OR php5-posix-5.6.1-61.1 is installed
  • OR php5-pspell-5.6.1-61.1 is installed
  • OR php5-readline-5.6.1-61.1 is installed
  • OR php5-shmop-5.6.1-61.1 is installed
  • OR php5-snmp-5.6.1-61.1 is installed
  • OR php5-soap-5.6.1-61.1 is installed
  • OR php5-sockets-5.6.1-61.1 is installed
  • OR php5-sqlite-5.6.1-61.1 is installed
  • OR php5-suhosin-5.6.1-61.1 is installed
  • OR php5-sysvmsg-5.6.1-61.1 is installed
  • OR php5-sysvsem-5.6.1-61.1 is installed
  • OR php5-sysvshm-5.6.1-61.1 is installed
  • OR php5-tidy-5.6.1-61.1 is installed
  • OR php5-tokenizer-5.6.1-61.1 is installed
  • OR php5-wddx-5.6.1-61.1 is installed
  • OR php5-xmlreader-5.6.1-61.1 is installed
  • OR php5-xmlrpc-5.6.1-61.1 is installed
  • OR php5-xmlwriter-5.6.1-61.1 is installed
  • OR php5-xsl-5.6.1-61.1 is installed
  • OR php5-zip-5.6.1-61.1 is installed
  • OR php5-zlib-5.6.1-61.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND pcre2 is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND
  • libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpcre1 is affected
  • OR libpcre1-32bit is affected
  • OR libpcre16-0 is affected
  • OR libpcrecpp0 is affected
  • OR libpcreposix0 is affected
  • OR pcre-devel is affected
  • OR libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 9 is installed
  • OR SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • libpcre1 is affected
  • OR libpcre1-32bit is affected
  • OR libpcre16-0 is affected
  • OR libpcrecpp0 is affected
  • OR libpcreposix0 is affected
  • OR pcre-devel is affected
  • OR libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed
  • AND pcre2 is affected
  • OR Package Information
  • SUSE Linux Enterprise Server 12 SP5 is installed
  • AND
  • libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed
  • AND Package Information
  • libpcre2-16-0 is affected
  • OR libpcre2-32-0 is affected
  • OR libpcre2-8-0 is affected
  • OR libpcre2-posix2 is affected
    • BACK