Oval Definition:oval:org.opensuse.security:def:52471
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Important)
Description:

This update for php7 fixes the following issues:

- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352).
Family:unixClass:patch
Status:Reference(s):1018371
1065697
1085240
1095508
1123304
1124493
1140709
1155784
1158709
1158798
1159692
1174538
1177351
1177352
CVE-2006-2607
CVE-2009-2694
CVE-2009-2703
CVE-2009-3026
CVE-2009-3083
CVE-2009-3084
CVE-2009-3085
CVE-2009-3615
CVE-2009-5044
CVE-2009-5080
CVE-2009-5081
CVE-2010-0013
CVE-2010-0277
CVE-2010-0420
CVE-2010-0423
CVE-2010-0424
CVE-2010-1624
CVE-2010-2528
CVE-2010-2529
CVE-2010-3711
CVE-2010-4651
CVE-2011-1091
CVE-2011-3594
CVE-2011-3848
CVE-2011-3872
CVE-2012-2214
CVE-2012-3374
CVE-2012-3864
CVE-2012-3865
CVE-2012-3866
CVE-2012-3867
CVE-2012-6152
CVE-2013-0157
CVE-2013-0271
CVE-2013-0272
CVE-2013-0273
CVE-2013-0274
CVE-2013-3567
CVE-2013-4761
CVE-2013-4956
CVE-2013-6418
CVE-2013-6477
CVE-2013-6478
CVE-2013-6479
CVE-2013-6481
CVE-2013-6482
CVE-2013-6483
CVE-2013-6484
CVE-2013-6485
CVE-2013-6486
CVE-2013-6487
CVE-2014-0020
CVE-2014-3248
CVE-2014-3253
CVE-2014-3694
CVE-2014-3695
CVE-2014-3696
CVE-2014-3697
CVE-2014-3698
CVE-2014-7202
CVE-2014-7203
CVE-2014-9721
CVE-2015-1196
CVE-2015-1395
CVE-2015-1396
CVE-2016-10030
CVE-2016-10163
CVE-2016-10164
CVE-2016-10214
CVE-2016-10713
CVE-2017-15566
CVE-2017-2640
CVE-2017-5580
CVE-2017-5937
CVE-2017-5956
CVE-2017-5957
CVE-2017-5993
CVE-2017-5994
CVE-2017-6209
CVE-2017-6210
CVE-2017-6317
CVE-2017-6355
CVE-2017-6386
CVE-2018-1000156
CVE-2018-10995
CVE-2018-6951
CVE-2018-7033
CVE-2018-9275
CVE-2019-12838
CVE-2019-19727
CVE-2019-19728
CVE-2019-3820
CVE-2019-6438
CVE-2020-15652
CVE-2020-15659
CVE-2020-6463
CVE-2020-6514
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2019:1459-1
SUSE-SU-2020:0443-1
SUSE-SU-2020:2179-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND bubblewrap-0.2.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • exim-4.88-lp151.4.9 is installed
  • OR eximon-4.88-lp151.4.9 is installed
  • OR eximstats-html-4.88-lp151.4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libfreebl3-3.15.2-0.3 is installed
  • OR libfreebl3-32bit-3.15.2-0.3 is installed
  • OR mozilla-nspr-4.10.1-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.1-0.3 is installed
  • OR mozilla-nss-3.15.2-0.3 is installed
  • OR mozilla-nss-32bit-3.15.2-0.3 is installed
  • OR mozilla-nss-tools-3.15.2-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • icu-4.0-7.28 is installed
  • OR libicu-4.0-7.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cron-4.2-55 is installed
  • OR cronie-1.4.11-55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND groff-1.22.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND iputils-s20121221-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • finch-2.12.0-1 is installed
  • OR libpurple-2.12.0-1 is installed
  • OR libpurple-branding-upstream-2.12.0-1 is installed
  • OR libpurple-lang-2.12.0-1 is installed
  • OR libpurple-plugin-sametime-2.12.0-1 is installed
  • OR libpurple-tcl-2.12.0-1 is installed
  • OR pidgin-2.12.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libXpm4-3.5.11-5 is installed
  • OR libXpm4-32bit-3.5.11-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0_18_08-18.08.9-1.5 is installed
  • OR libslurm33-18.08.9-1.5 is installed
  • OR pdsh-2.33-7.6 is installed
  • OR pdsh-dshgroup-2.33-7.6 is installed
  • OR pdsh-genders-2.33-7.6 is installed
  • OR pdsh-machines-2.33-7.6 is installed
  • OR pdsh-netgroup-2.33-7.6 is installed
  • OR pdsh-slurm-2.33-7.6 is installed
  • OR pdsh-slurm_18_08-2.33-7.6 is installed
  • OR perl-slurm_18_08-18.08.9-1.5 is installed
  • OR slurm_18_08-18.08.9-1.5 is installed
  • OR slurm_18_08-auth-none-18.08.9-1.5 is installed
  • OR slurm_18_08-config-18.08.9-1.5 is installed
  • OR slurm_18_08-devel-18.08.9-1.5 is installed
  • OR slurm_18_08-doc-18.08.9-1.5 is installed
  • OR slurm_18_08-lua-18.08.9-1.5 is installed
  • OR slurm_18_08-munge-18.08.9-1.5 is installed
  • OR slurm_18_08-node-18.08.9-1.5 is installed
  • OR slurm_18_08-pam_slurm-18.08.9-1.5 is installed
  • OR slurm_18_08-plugins-18.08.9-1.5 is installed
  • OR slurm_18_08-slurmdbd-18.08.9-1.5 is installed
  • OR slurm_18_08-sql-18.08.9-1.5 is installed
  • OR slurm_18_08-torque-18.08.9-1.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • php7-7.4.6-3.11 is installed
  • OR php7-embed-7.4.6-3.11 is installed
  • OR php7-firebird-7.4.6-3.11 is installed
  • OR php7-test-7.4.6-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libexif12-0.6.21-6 is installed
  • OR libexif12-32bit-0.6.21-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND clamav-0.99.2-32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libvmtools0-10.1.0-8 is installed
  • OR open-vm-tools-10.1.0-8 is installed
  • OR open-vm-tools-desktop-10.1.0-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
  • OR git-doc-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libdcerpc-binding0-4.4.2-38.25 is installed
  • OR libdcerpc-binding0-32bit-4.4.2-38.25 is installed
  • OR libdcerpc0-4.4.2-38.25 is installed
  • OR libdcerpc0-32bit-4.4.2-38.25 is installed
  • OR libndr-krb5pac0-4.4.2-38.25 is installed
  • OR libndr-krb5pac0-32bit-4.4.2-38.25 is installed
  • OR libndr-nbt0-4.4.2-38.25 is installed
  • OR libndr-nbt0-32bit-4.4.2-38.25 is installed
  • OR libndr-standard0-4.4.2-38.25 is installed
  • OR libndr-standard0-32bit-4.4.2-38.25 is installed
  • OR libndr0-4.4.2-38.25 is installed
  • OR libndr0-32bit-4.4.2-38.25 is installed
  • OR libnetapi0-4.4.2-38.25 is installed
  • OR libnetapi0-32bit-4.4.2-38.25 is installed
  • OR libsamba-credentials0-4.4.2-38.25 is installed
  • OR libsamba-credentials0-32bit-4.4.2-38.25 is installed
  • OR libsamba-errors0-4.4.2-38.25 is installed
  • OR libsamba-errors0-32bit-4.4.2-38.25 is installed
  • OR libsamba-hostconfig0-4.4.2-38.25 is installed
  • OR libsamba-hostconfig0-32bit-4.4.2-38.25 is installed
  • OR libsamba-passdb0-4.4.2-38.25 is installed
  • OR libsamba-passdb0-32bit-4.4.2-38.25 is installed
  • OR libsamba-util0-4.4.2-38.25 is installed
  • OR libsamba-util0-32bit-4.4.2-38.25 is installed
  • OR libsamdb0-4.4.2-38.25 is installed
  • OR libsamdb0-32bit-4.4.2-38.25 is installed
  • OR libsmbclient0-4.4.2-38.25 is installed
  • OR libsmbclient0-32bit-4.4.2-38.25 is installed
  • OR libsmbconf0-4.4.2-38.25 is installed
  • OR libsmbconf0-32bit-4.4.2-38.25 is installed
  • OR libsmbldap0-4.4.2-38.25 is installed
  • OR libsmbldap0-32bit-4.4.2-38.25 is installed
  • OR libtevent-util0-4.4.2-38.25 is installed
  • OR libtevent-util0-32bit-4.4.2-38.25 is installed
  • OR libwbclient0-4.4.2-38.25 is installed
  • OR libwbclient0-32bit-4.4.2-38.25 is installed
  • OR samba-4.4.2-38.25 is installed
  • OR samba-client-4.4.2-38.25 is installed
  • OR samba-client-32bit-4.4.2-38.25 is installed
  • OR samba-doc-4.4.2-38.25 is installed
  • OR samba-libs-4.4.2-38.25 is installed
  • OR samba-libs-32bit-4.4.2-38.25 is installed
  • OR samba-winbind-4.4.2-38.25 is installed
  • OR samba-winbind-32bit-4.4.2-38.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • emacs-24.3-19 is installed
  • OR emacs-el-24.3-19 is installed
  • OR emacs-info-24.3-19 is installed
  • OR emacs-nox-24.3-19 is installed
  • OR emacs-x11-24.3-19 is installed
  • OR etags-24.3-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND binutils-2.32-9.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-109.83 is installed
  • OR MozillaFirefox-translations-common-60.8.0-109.83 is installed
  • OR libfreebl3-3.44.1-58.28 is installed
  • OR libfreebl3-32bit-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-3.44.1-58.28 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-3.44.1-58.28 is installed
  • OR libsoftokn3-32bit-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-3.44.1-58.28 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-3.44.1-58.28 is installed
  • OR mozilla-nss-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-3.44.1-58.28 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-3.44.1-58.28 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed
  • OR mozilla-nss-tools-3.44.1-58.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • gnutls-3.3.27-3.3 is installed
  • OR libgnutls-openssl27-3.3.27-3.3 is installed
  • OR libgnutls28-3.3.27-3.3 is installed
  • OR libgnutls28-32bit-3.3.27-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed
  • OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • MozillaThunderbird-68.11.0-3.91 is installed
  • OR MozillaThunderbird-translations-common-68.11.0-3.91 is installed
  • OR MozillaThunderbird-translations-other-68.11.0-3.91 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • python-paramiko-1.15.2-2.3 is installed
  • OR python-pycrypto-2.6.1-10.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • apache2-2.4.23-29.24 is installed
  • OR apache2-doc-2.4.23-29.24 is installed
  • OR apache2-example-pages-2.4.23-29.24 is installed
  • OR apache2-prefork-2.4.23-29.24 is installed
  • OR apache2-utils-2.4.23-29.24 is installed
  • OR apache2-worker-2.4.23-29.24 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND cobbler-2.6.6-49.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND squid-3.5.21-26.17 is installed
    • BACK