Oval Definition:oval:org.opensuse.security:def:53419
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Moderate)
Description:

This update for php7 fixes the following issues:

Security issues fixed:

- CVE-2019-11039: Fixed a heap-buffer-overflow on php_jpg_get16 (bsc#1138173). - CVE-2019-11040: Fixed an out-of-bounds read due to an integer overflow in iconv.c:_php_iconv_mime_decode() (bsc#1138172).
Family:unixClass:patch
Status:Reference(s):1018128
1018699
1018700
1018701
1018702
1022703
1025046
1028655
1029827
1030144
1030263
1032114
1032120
1034843
1034844
1034994
1036146
1036453
1138172
1138173
1167152
1168140
1168142
1168143
1169392
1172205
890228
899756
945842
947772
947791
948168
949000
959886
960158
963230
964845
964847
964849
965897
967122
970423
970860
972612
972727
973848
976766
978275
CVE-2004-2771
CVE-2007-6720
CVE-2009-0179
CVE-2009-2666
CVE-2009-3995
CVE-2009-3996
CVE-2010-1167
CVE-2010-2546
CVE-2011-1947
CVE-2011-3389
CVE-2012-3482
CVE-2013-0157
CVE-2014-0139
CVE-2014-3634
CVE-2014-3683
CVE-2014-7844
CVE-2014-9114
CVE-2014-9770
CVE-2015-5218
CVE-2015-5276
CVE-2015-8803
CVE-2015-8804
CVE-2015-8805
CVE-2015-8842
CVE-2016-10220
CVE-2016-5011
CVE-2016-9131
CVE-2016-9147
CVE-2016-9444
CVE-2016-9601
CVE-2016-9603
CVE-2017-15638
CVE-2017-2616
CVE-2017-2625
CVE-2017-5951
CVE-2017-7207
CVE-2017-7718
CVE-2017-8291
CVE-2019-11039
CVE-2019-11040
CVE-2020-0543
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-11743
SUSE-SU-2015:1833-1
SUSE-SU-2016:0455-1
SUSE-SU-2016:1351-1
SUSE-SU-2017:0111-1
SUSE-SU-2017:1138-1
SUSE-SU-2017:1143-1
SUSE-SU-2017:1862-1
SUSE-SU-2019:1832-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND autofs-5.1.3-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND transfig-3.2.6a-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • flash-player-11.2.202.336-0.3 is installed
  • OR flash-player-gnome-11.2.202.336-0.3 is installed
  • OR flash-player-kde4-11.2.202.336-0.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-31.8.0esr-0.10 is installed
  • OR MozillaFirefox-translations-31.8.0esr-0.10 is installed
  • OR libfreebl3-3.19.2_CKBI_1.98-0.10 is installed
  • OR libfreebl3-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR libsoftokn3-3.19.2_CKBI_1.98-0.10 is installed
  • OR libsoftokn3-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nspr-4.10.8-0.5 is installed
  • OR mozilla-nspr-32bit-4.10.8-0.5 is installed
  • OR mozilla-nss-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nss-32bit-3.19.2_CKBI_1.98-0.10 is installed
  • OR mozilla-nss-tools-3.19.2_CKBI_1.98-0.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.491-0.11 is installed
  • OR flash-player-gnome-11.2.202.491-0.11 is installed
  • OR flash-player-kde4-11.2.202.491-0.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND rsyslog-8.4.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libhogweed2-2.7.1-9 is installed
  • OR libhogweed2-32bit-2.7.1-9 is installed
  • OR libnettle-2.7.1-9 is installed
  • OR libnettle4-2.7.1-9 is installed
  • OR libnettle4-32bit-2.7.1-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libXdmcp-1.1.1-10 is installed
  • OR libXdmcp6-1.1.1-10 is installed
  • OR libXdmcp6-32bit-1.1.1-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND fetchmail-6.3.26-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND SuSEfirewall2-3.6.312.333-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.35 is installed
  • OR php7-7.2.5-4.35 is installed
  • OR php7-bcmath-7.2.5-4.35 is installed
  • OR php7-bz2-7.2.5-4.35 is installed
  • OR php7-calendar-7.2.5-4.35 is installed
  • OR php7-ctype-7.2.5-4.35 is installed
  • OR php7-curl-7.2.5-4.35 is installed
  • OR php7-dba-7.2.5-4.35 is installed
  • OR php7-devel-7.2.5-4.35 is installed
  • OR php7-dom-7.2.5-4.35 is installed
  • OR php7-enchant-7.2.5-4.35 is installed
  • OR php7-exif-7.2.5-4.35 is installed
  • OR php7-fastcgi-7.2.5-4.35 is installed
  • OR php7-fileinfo-7.2.5-4.35 is installed
  • OR php7-fpm-7.2.5-4.35 is installed
  • OR php7-ftp-7.2.5-4.35 is installed
  • OR php7-gd-7.2.5-4.35 is installed
  • OR php7-gettext-7.2.5-4.35 is installed
  • OR php7-gmp-7.2.5-4.35 is installed
  • OR php7-iconv-7.2.5-4.35 is installed
  • OR php7-intl-7.2.5-4.35 is installed
  • OR php7-json-7.2.5-4.35 is installed
  • OR php7-ldap-7.2.5-4.35 is installed
  • OR php7-mbstring-7.2.5-4.35 is installed
  • OR php7-mysql-7.2.5-4.35 is installed
  • OR php7-odbc-7.2.5-4.35 is installed
  • OR php7-opcache-7.2.5-4.35 is installed
  • OR php7-openssl-7.2.5-4.35 is installed
  • OR php7-pcntl-7.2.5-4.35 is installed
  • OR php7-pdo-7.2.5-4.35 is installed
  • OR php7-pear-7.2.5-4.35 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.35 is installed
  • OR php7-pgsql-7.2.5-4.35 is installed
  • OR php7-phar-7.2.5-4.35 is installed
  • OR php7-posix-7.2.5-4.35 is installed
  • OR php7-shmop-7.2.5-4.35 is installed
  • OR php7-snmp-7.2.5-4.35 is installed
  • OR php7-soap-7.2.5-4.35 is installed
  • OR php7-sockets-7.2.5-4.35 is installed
  • OR php7-sqlite-7.2.5-4.35 is installed
  • OR php7-sysvmsg-7.2.5-4.35 is installed
  • OR php7-sysvsem-7.2.5-4.35 is installed
  • OR php7-sysvshm-7.2.5-4.35 is installed
  • OR php7-tokenizer-7.2.5-4.35 is installed
  • OR php7-wddx-7.2.5-4.35 is installed
  • OR php7-xmlreader-7.2.5-4.35 is installed
  • OR php7-xmlrpc-7.2.5-4.35 is installed
  • OR php7-xmlwriter-7.2.5-4.35 is installed
  • OR php7-xsl-7.2.5-4.35 is installed
  • OR php7-zip-7.2.5-4.35 is installed
  • OR php7-zlib-7.2.5-4.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR avahi-utils-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • openvpn-2.3.8-16.17 is installed
  • OR openvpn-auth-pam-plugin-2.3.8-16.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND w3m-0.5.3-157 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_04-43.39 is installed
  • OR xen-doc-html-4.7.6_04-43.39 is installed
  • OR xen-libs-4.7.6_04-43.39 is installed
  • OR xen-libs-32bit-4.7.6_04-43.39 is installed
  • OR xen-tools-4.7.6_04-43.39 is installed
  • OR xen-tools-domU-4.7.6_04-43.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_109-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_29-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-7 is installed
  • OR cyrus-sasl-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-otp-2.1.26-7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-plain-2.1.26-7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-7 is installed
  • OR libsasl2-3-2.1.26-7 is installed
  • OR libsasl2-3-32bit-2.1.26-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND ucode-intel-20191112-13.53 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc-binding0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libdcerpc0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-krb5pac0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-nbt0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr-standard0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libndr0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libnetapi0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-credentials0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-errors0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-hostconfig0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-passdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamba-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsamdb0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbconf0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libsmbldap0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libtevent-util0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR libwbclient0-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-client-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-doc-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-libs-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-4.6.14+git.157.c2d53c2b191-3.29 is installed
  • OR samba-winbind-32bit-4.6.14+git.157.c2d53c2b191-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • xen-4.10.4_10-3.31 is installed
  • OR xen-devel-4.10.4_10-3.31 is installed
  • OR xen-libs-4.10.4_10-3.31 is installed
  • OR xen-tools-4.10.4_10-3.31 is installed
  • OR xen-tools-domU-4.10.4_10-3.31 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ntp-4.2.8p4-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND ansible-2.2.3.0-9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libecpg6-10.12-1.18 is installed
  • OR libpq5-10.12-1.18 is installed
  • OR libpq5-32bit-10.12-1.18 is installed
  • OR postgresql10-10.12-1.18 is installed
  • OR postgresql10-contrib-10.12-1.18 is installed
  • OR postgresql10-docs-10.12-1.18 is installed
  • OR postgresql10-libs-10.12-1.18 is installed
  • OR postgresql10-plperl-10.12-1.18 is installed
  • OR postgresql10-plpython-10.12-1.18 is installed
  • OR postgresql10-pltcl-10.12-1.18 is installed
  • OR postgresql10-server-10.12-1.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.6 is installed
  • OR dnsmasq-utils-2.78-18.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.20-3.3 is installed
    • BACK