Oval Definition:	oval:org.opensuse.security:def:201911044
Revision Date: 2022-09-02 Version: 1 Title: CVE-2019-11044 Description: In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2019-11044 SUSE CVE-2019-11044 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND php5 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND php53 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND php5 is not affected OR php53 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND php5 is not affected OR php7 is not affected OR php72 is not affected OR Package Information SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND php5 is not affected OR php7 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND php5 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND php53 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND php5 is not affected OR php53 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information php5 is not affected OR php7 is not affected
BACK