OVAL Reference oval:org.opensuse.security:def:52962

Oval Definition:

oval:org.opensuse.security:def:52962

Revision Date:	2020-12-01	Version:	1
Title:	Security update for php7 (Moderate)
Description:	This update for php7 fixes the following issues: Security issues fixed: - CVE-2019-11039: Fixed a heap-buffer-overflow on php_jpg_get16 (bsc#1138173). - CVE-2019-11040: Fixed an out-of-bounds read due to an integer overflow in iconv.c:_php_iconv_mime_decode() (bsc#1138172).
Family:	unix	Class:	patch
Status:		Reference(s):	1000394 1000399 1000434 1000436 1000686 1000688 1000689 1000690 1000691 1000692 1000693 1000694 1000695 1000696 1000697 1000698 1000699 1000700 1000701 1000702 1000703 1000704 1000706 1000707 1000708 1000709 1000711 1000712 1000713 1000714 1000715 1001066 1001221 1001900 1002206 1002209 1002421 1002422 1003629 1004924 1005123 1005125 1005127 1005274 1005328 1138172 1138173 1172524 658010 907456 963964 963968 963975 983671 991012 991013 991015 991016 991017 991018 991019 991020 CVE-2009-3939 CVE-2009-3939 CVE-2009-4026 CVE-2009-4026 CVE-2009-4027 CVE-2009-4027 CVE-2009-4131 CVE-2009-4131 CVE-2009-4138 CVE-2009-4138 CVE-2009-4536 CVE-2009-4536 CVE-2009-4538 CVE-2009-4538 CVE-2010-0407 CVE-2010-1146 CVE-2010-1146 CVE-2010-1436 CVE-2010-1436 CVE-2010-1641 CVE-2010-1641 CVE-2010-2066 CVE-2010-2066 CVE-2010-2942 CVE-2010-2942 CVE-2010-2954 CVE-2010-2954 CVE-2010-2955 CVE-2010-2955 CVE-2010-3081 CVE-2010-3081 CVE-2010-3296 CVE-2010-3296 CVE-2010-3297 CVE-2010-3297 CVE-2010-3298 CVE-2010-3298 CVE-2010-3301 CVE-2010-3301 CVE-2010-3310 CVE-2010-3310 CVE-2010-4531 CVE-2011-0711 CVE-2011-0712 CVE-2011-0712 CVE-2011-1020 CVE-2011-1020 CVE-2011-1180 CVE-2011-1577 CVE-2011-1577 CVE-2011-1581 CVE-2011-2203 CVE-2011-2203 CVE-2011-3848 CVE-2011-3872 CVE-2011-4604 CVE-2012-0056 CVE-2012-0056 CVE-2012-2141 CVE-2012-2150 CVE-2012-3412 CVE-2012-3520 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2013-0160 CVE-2013-0160 CVE-2013-0231 CVE-2013-0231 CVE-2013-0913 CVE-2013-0913 CVE-2013-2126 CVE-2013-2127 CVE-2013-2850 CVE-2013-2850 CVE-2013-3567 CVE-2013-4312 CVE-2013-4761 CVE-2013-4956 CVE-2014-0011 CVE-2014-0038 CVE-2014-0038 CVE-2014-00691 CVE-2014-00691 CVE-2014-0196 CVE-2014-0196 CVE-2014-2284 CVE-2014-2285 CVE-2014-3248 CVE-2014-3253 CVE-2014-3565 CVE-2014-8133 CVE-2014-8240 CVE-2014-9112 CVE-2014-9645 CVE-2014-9907 CVE-2015-0255 CVE-2015-1333 CVE-2015-5621 CVE-2015-7550 CVE-2015-7833 CVE-2015-7884 CVE-2015-7884 CVE-2015-7885 CVE-2015-7885 CVE-2015-8539 CVE-2015-8629 CVE-2015-8630 CVE-2015-8631 CVE-2015-8660 CVE-2015-8709 CVE-2015-8812 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-0617 CVE-2016-0723 CVE-2016-0723 CVE-2016-0728 CVE-2016-0728 CVE-2016-0758 CVE-2016-10109 CVE-2016-1237 CVE-2016-1237 CVE-2016-1583 CVE-2016-1583 CVE-2016-2143 CVE-2016-2184 CVE-2016-2184 CVE-2016-2185 CVE-2016-2185 CVE-2016-2186 CVE-2016-2186 CVE-2016-2188 CVE-2016-2383 CVE-2016-2384 CVE-2016-2384 CVE-2016-2847 CVE-2016-3134 CVE-2016-3134 CVE-2016-3135 CVE-2016-3135 CVE-2016-3136 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3689 CVE-2016-3713 CVE-2016-3713 CVE-2016-3951 CVE-2016-4470 CVE-2016-4470 CVE-2016-4482 CVE-2016-4485 CVE-2016-4486 CVE-2016-4486 CVE-2016-4557 CVE-2016-4557 CVE-2016-4558 CVE-2016-4558 CVE-2016-4569 CVE-2016-4569 CVE-2016-4578 CVE-2016-4578 CVE-2016-4794 CVE-2016-4805 CVE-2016-4951 CVE-2016-4951 CVE-2016-4997 CVE-2016-4997 CVE-2016-4998 CVE-2016-4998 CVE-2016-5195 CVE-2016-5195 CVE-2016-5244 CVE-2016-5244 CVE-2016-5350 CVE-2016-5351 CVE-2016-5352 CVE-2016-5353 CVE-2016-5354 CVE-2016-5355 CVE-2016-5356 CVE-2016-5357 CVE-2016-5358 CVE-2016-5359 CVE-2016-5412 CVE-2016-5696 CVE-2016-5828 CVE-2016-5829 CVE-2016-5829 CVE-2016-6187 CVE-2016-6197 CVE-2016-6480 CVE-2016-6480 CVE-2016-6504 CVE-2016-6505 CVE-2016-6506 CVE-2016-6507 CVE-2016-6508 CVE-2016-6509 CVE-2016-6510 CVE-2016-6511 CVE-2016-6516 CVE-2016-6823 CVE-2016-6828 CVE-2016-6828 CVE-2016-6911 CVE-2016-7039 CVE-2016-7039 CVE-2016-7042 CVE-2016-7097 CVE-2016-7101 CVE-2016-7425 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 CVE-2016-7522 CVE-2016-7523 CVE-2016-7524 CVE-2016-7525 CVE-2016-7526 CVE-2016-7527 CVE-2016-7528 CVE-2016-7529 CVE-2016-7530 CVE-2016-7531 CVE-2016-7532 CVE-2016-7533 CVE-2016-7534 CVE-2016-7535 CVE-2016-7537 CVE-2016-7538 CVE-2016-7539 CVE-2016-7540 CVE-2016-7568 CVE-2016-7799 CVE-2016-7800 CVE-2016-7913 CVE-2016-7996 CVE-2016-7997 CVE-2016-8655 CVE-2016-8658 CVE-2016-8670 CVE-2016-8677 CVE-2016-8682 CVE-2016-8683 CVE-2016-8684 CVE-2016-9555 CVE-2016-9576 CVE-2017-1000251 CVE-2017-1000252 CVE-2017-1000255 CVE-2017-1000380 CVE-2017-1000410 CVE-2017-11473 CVE-2017-11600 CVE-2017-12153 CVE-2017-12154 CVE-2017-12190 CVE-2017-12193 CVE-2017-13080 CVE-2017-13166 CVE-2017-14051 CVE-2017-14489 CVE-2017-15115 CVE-2017-15127 CVE-2017-15128 CVE-2017-15129 CVE-2017-15265 CVE-2017-15537 CVE-2017-15649 CVE-2017-15951 CVE-2017-16525 CVE-2017-16527 CVE-2017-16528 CVE-2017-16529 CVE-2017-16531 CVE-2017-16534 CVE-2017-16535 CVE-2017-16536 CVE-2017-16537 CVE-2017-16538 CVE-2017-16644 CVE-2017-16645 CVE-2017-16646 CVE-2017-16647 CVE-2017-16649 CVE-2017-16650 CVE-2017-16911 CVE-2017-16912 CVE-2017-16913 CVE-2017-16914 CVE-2017-16939 CVE-2017-16994 CVE-2017-16995 CVE-2017-16996 CVE-2017-17052 CVE-2017-17448 CVE-2017-17449 CVE-2017-17450 CVE-2017-17558 CVE-2017-17712 CVE-2017-17741 CVE-2017-17805 CVE-2017-17806 CVE-2017-17852 CVE-2017-17853 CVE-2017-17854 CVE-2017-17855 CVE-2017-17856 CVE-2017-17857 CVE-2017-17862 CVE-2017-17864 CVE-2017-17975 CVE-2017-18075 CVE-2017-18202 CVE-2017-18203 CVE-2017-18204 CVE-2017-18208 CVE-2017-18344 CVE-2017-2636 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-5897 CVE-2017-5970 CVE-2017-5986 CVE-2017-6347 CVE-2017-6353 CVE-2017-7184 CVE-2017-7187 CVE-2017-7261 CVE-2017-7277 CVE-2017-7294 CVE-2017-7308 CVE-2017-7346 CVE-2017-7477 CVE-2017-7487 CVE-2017-7541 CVE-2017-7542 CVE-2017-8824 CVE-2017-8831 CVE-2017-8890 CVE-2017-9059 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9211 CVE-2017-9242 CVE-2018-1000004 CVE-2018-1000028 CVE-2018-1000200 CVE-2018-1000204 CVE-2018-10087 CVE-2018-10124 CVE-2018-10323 CVE-2018-1065 CVE-2018-1068 CVE-2018-10853 CVE-2018-10902 CVE-2018-1091 CVE-2018-10938 CVE-2018-1094 CVE-2018-10940 CVE-2018-1108 CVE-2018-1118 CVE-2018-1120 CVE-2018-1128 CVE-2018-1129 CVE-2018-1130 CVE-2018-12233 CVE-2018-12896 CVE-2018-13053 CVE-2018-13093 CVE-2018-13094 CVE-2018-13095 CVE-2018-13405 CVE-2018-13406 CVE-2018-14613 CVE-2018-14617 CVE-2018-14633 CVE-2018-15572 CVE-2018-16658 CVE-2018-17182 CVE-2018-3620 CVE-2018-3639 CVE-2018-3646 CVE-2018-5332 CVE-2018-5333 CVE-2018-5390 CVE-2018-5391 CVE-2018-5803 CVE-2018-5848 CVE-2018-6554 CVE-2018-6555 CVE-2018-6927 CVE-2018-7492 CVE-2018-7566 CVE-2018-7740 CVE-2018-8043 CVE-2018-8087 CVE-2018-8781 CVE-2018-8822 CVE-2018-9363 CVE-2018-9385 CVE-2019-11039 CVE-2019-11040 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 SUSE-SU-2016:0429-1 SUSE-SU-2016:2453-1 SUSE-SU-2016:2667-1 SUSE-SU-2016:2668-1 SUSE-SU-2019:1832-1 SUSE-SU-2020:3065-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gtk-vnc-lang-0.7.2-lp150.1 is installed OR libgtk-vnc-2_0-0-0.7.2-lp150.1 is installed OR libgvnc-1_0-0-0.7.2-lp150.1 is installed OR typelib-1_0-GVnc-1_0-0.7.2-lp150.1 is installed OR typelib-1_0-GtkVnc-2_0-0.7.2-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND clementine-1.3.1-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information flash-player-11.2.202.336-0.3 is installed OR flash-player-gnome-11.2.202.336-0.3 is installed OR flash-player-kde4-11.2.202.336-0.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-17.0.7esr-0.8 is installed OR MozillaFirefox-branding-SLED-7-0.12 is installed OR MozillaFirefox-translations-17.0.7esr-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND vorbis-tools-1.1.1-174 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libsnmp30-5.7.3-4 is installed OR libsnmp30-32bit-5.7.3-4 is installed OR net-snmp-5.7.3-4 is installed OR perl-SNMP-5.7.3-4 is installed OR snmp-mibs-5.7.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND puppet-3.8.5-14 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information kernel-default-4.12.14-94.41 is installed OR kernel-default-devel-4.12.14-94.41 is installed OR kernel-default-extra-4.12.14-94.41 is installed OR kernel-devel-4.12.14-94.41 is installed OR kernel-macros-4.12.14-94.41 is installed OR kernel-source-4.12.14-94.41 is installed OR kernel-syms-4.12.14-94.41 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information php7-7.2.5-4.35 is installed OR php7-embed-7.2.5-4.35 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information sane-backends-1.0.31-6.3 is installed OR sane-backends-32bit-1.0.31-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information krb5-1.12.1-19 is installed OR krb5-32bit-1.12.1-19 is installed OR krb5-client-1.12.1-19 is installed OR krb5-doc-1.12.1-19 is installed OR krb5-plugin-kdb-ldap-1.12.1-19 is installed OR krb5-plugin-preauth-otp-1.12.1-19 is installed OR krb5-plugin-preauth-pkinit-1.12.1-19 is installed OR krb5-server-1.12.1-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.121 is installed OR kernel-default-base-3.12.74-60.64.121 is installed OR kernel-default-devel-3.12.74-60.64.121 is installed OR kernel-default-man-3.12.74-60.64.121 is installed OR kernel-devel-3.12.74-60.64.121 is installed OR kernel-macros-3.12.74-60.64.121 is installed OR kernel-source-3.12.74-60.64.121 is installed OR kernel-syms-3.12.74-60.64.121 is installed OR kernel-xen-3.12.74-60.64.121 is installed OR kernel-xen-base-3.12.74-60.64.121 is installed OR kernel-xen-devel-3.12.74-60.64.121 is installed OR kgraft-patch-3_12_74-60_64_121-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_121-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_36-1-2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information expat-2.1.0-17 is installed OR libexpat1-2.1.0-17 is installed OR libexpat1-32bit-2.1.0-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180807-13.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-1.7.5-19 is installed OR cups-client-1.7.5-19 is installed OR cups-libs-1.7.5-19 is installed OR cups-libs-32bit-1.7.5-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ipmitool-1.8.18-5.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpython2_7-1_0-2.7.13-28.31 is installed OR libpython2_7-1_0-32bit-2.7.13-28.31 is installed OR python-2.7.13-28.31 is installed OR python-32bit-2.7.13-28.31 is installed OR python-base-2.7.13-28.31 is installed OR python-base-32bit-2.7.13-28.31 is installed OR python-curses-2.7.13-28.31 is installed OR python-demo-2.7.13-28.31 is installed OR python-devel-2.7.13-28.31 is installed OR python-doc-2.7.13-28.31 is installed OR python-doc-pdf-2.7.13-28.31 is installed OR python-gdbm-2.7.13-28.31 is installed OR python-idle-2.7.13-28.31 is installed OR python-tk-2.7.13-28.31 is installed OR python-xml-2.7.13-28.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache2-mod_apparmor-2.8.2-49 is installed OR apparmor-docs-2.8.2-49 is installed OR apparmor-parser-2.8.2-49 is installed OR apparmor-profiles-2.8.2-49 is installed OR apparmor-utils-2.8.2-49 is installed OR libapparmor1-2.8.2-49 is installed OR libapparmor1-32bit-2.8.2-49 is installed OR pam_apparmor-2.8.2-49 is installed OR pam_apparmor-32bit-2.8.2-49 is installed OR perl-apparmor-2.8.2-49 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND couchdb-1.6.1-2 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information caasp-openstack-heat-templates-1.0+git.1553079189.3bf8922-1.6 is installed OR crowbar-4.0+git.1551088848.823bcaa3-7.29 is installed OR crowbar-core-4.0+git.1556285635.ab602dd4d-9.46 is installed OR crowbar-core-branding-upstream-4.0+git.1556285635.ab602dd4d-9.46 is installed OR crowbar-devel-4.0+git.1551088848.823bcaa3-7.29 is installed OR crowbar-ha-4.0+git.1556181005.47c643d-4.46 is installed OR crowbar-openstack-4.0+git.1554887450.ff7c30c1c-9.51 is installed OR galera-python-clustercheck-0.0+git.1506329536.8f5878c-1.6 is installed OR openstack-ceilometer-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-agent-central-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-agent-compute-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-agent-ipmi-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-agent-notification-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-api-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-collector-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-doc-7.1.1~dev4-4.15 is installed OR openstack-ceilometer-polling-7.1.1~dev4-4.15 is installed OR openstack-heat-gbp-5.1.1~dev1-2.6 is installed OR python-PyKMIP-0.5.0-3.3 is installed OR python-ceilometer-7.1.1~dev4-4.15 is installed OR python-heat-gbp-5.1.1~dev1-2.6 is installed OR python-pysaml2-4.0.2-3.6 is installed OR ruby2.1-rubygem-crowbar-client-3.9.0-7.14 is installed OR rubygem-crowbar-client-3.9.0-7.14 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ibus-1.5.13-15.11 is installed OR ibus-gtk-1.5.13-15.11 is installed OR ibus-gtk3-1.5.13-15.11 is installed OR ibus-lang-1.5.13-15.11 is installed OR libibus-1_0-5-1.5.13-15.11 is installed OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed

BACK