Oval Definition:oval:org.opensuse.security:def:53428
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Moderate)
Description:

This update for php7 fixes the following issues:

- CVE-2019-11045: Fixed an issue with improper input validation in the filename handling of the DirectoryIterator class (bsc#1159923). - CVE-2019-11046: Fixed an information leak in bc_shift_addsub() (bsc#1159924). - CVE-2019-11047, CVE-2019-11050: Fixed multiple information leaks in exif_read_data() (bsc#1159922, bsc#1159927).
Family:unixClass:patch
Status:Reference(s):1005591
1010845
1020983
1033466
1033467
1033468
1035371
1035905
1048715
1159922
1159923
1159924
1159927
1172405
470073
806250
829430
86241
87222
886378
888308
890735
895528
900186
900877
901508
902367
907966
910805
910806
913042
914911
915996
916181
918852
919409
926375
928393
929793
934069
934119
934423
936188
936190
940838
940929
943075
944463
945692
947159
952474
958491
958917
959005
959386
960334
960708
960725
960835
961332
961333
961358
961556
961691
962320
963041
963782
964413
965875
967969
969121
969122
969350
970036
970037
975128
975136
975700
976109
978158
978160
980711
980723
981266
987866
989528
CVE-2011-3146
CVE-2013-1881
CVE-2013-1981
CVE-2013-1997
CVE-2013-2004
CVE-2013-2492
CVE-2014-3615
CVE-2014-3689
CVE-2014-3710
CVE-2014-8104
CVE-2014-8146
CVE-2014-8147
CVE-2014-8169
CVE-2014-9718
CVE-2015-1774
CVE-2015-3214
CVE-2015-4551
CVE-2015-5212
CVE-2015-5213
CVE-2015-5214
CVE-2015-5239
CVE-2015-5745
CVE-2015-7295
CVE-2015-7549
CVE-2015-7995
CVE-2015-8504
CVE-2015-8558
CVE-2015-8567
CVE-2015-8568
CVE-2015-8613
CVE-2015-8619
CVE-2015-8743
CVE-2015-8744
CVE-2015-8745
CVE-2015-8817
CVE-2015-8818
CVE-2015-9019
CVE-2016-0739
CVE-2016-1568
CVE-2016-1714
CVE-2016-1922
CVE-2016-1981
CVE-2016-2198
CVE-2016-2538
CVE-2016-2775
CVE-2016-2841
CVE-2016-2857
CVE-2016-2858
CVE-2016-3710
CVE-2016-3712
CVE-2016-4001
CVE-2016-4002
CVE-2016-4020
CVE-2016-4037
CVE-2016-4439
CVE-2016-4441
CVE-2016-4738
CVE-2016-4952
CVE-2016-6170
CVE-2016-6329
CVE-2016-6354
CVE-2016-7942
CVE-2016-9401
CVE-2017-2581
CVE-2017-2586
CVE-2017-2587
CVE-2017-3136
CVE-2017-3137
CVE-2017-3138
CVE-2017-3308
CVE-2017-3309
CVE-2017-3453
CVE-2017-3456
CVE-2017-3464
CVE-2017-5029
CVE-2017-6369
CVE-2017-7478
CVE-2017-7479
CVE-2017-7508
CVE-2017-7520
CVE-2017-7521
CVE-2018-14598
CVE-2018-14599
CVE-2018-14600
CVE-2019-11045
CVE-2019-11046
CVE-2019-11047
CVE-2019-11050
CVE-2020-8022
SUSE-SU-2015:1915-1
SUSE-SU-2016:0625-1
SUSE-SU-2016:1560-1
SUSE-SU-2017:0998-1
SUSE-SU-2017:1313-1
SUSE-SU-2017:1317-1
SUSE-SU-2017:2035-1
SUSE-SU-2020:0101-1
SUSE-SU-2020:1789-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND chrony-3.2-lp150.5 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libtasn1-4.13-lp151.4.3 is installed
  • OR libtasn1-6-4.13-lp151.4.3 is installed
  • OR libtasn1-6-32bit-4.13-lp151.4.3 is installed
  • OR libtasn1-devel-4.13-lp151.4.3 is installed
  • OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • icu-4.0-7.26 is installed
  • OR libicu-4.0-7.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • bind-9.9.6P1-0.19 is installed
  • OR bind-libs-9.9.6P1-0.19 is installed
  • OR bind-libs-32bit-9.9.6P1-0.19 is installed
  • OR bind-utils-9.9.6P1-0.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • flash-player-11.2.202.577-0.38 is installed
  • OR flash-player-gnome-11.2.202.577-0.38 is installed
  • OR flash-player-kde4-11.2.202.577-0.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • file-5.19-5 is installed
  • OR file-magic-5.19-5 is installed
  • OR libmagic1-5.19-5 is installed
  • OR libmagic1-32bit-5.19-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libssh-0.6.3-11 is installed
  • OR libssh4-0.6.3-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libmysqlclient18-10.0.31-29.3 is installed
  • OR libmysqlclient18-32bit-10.0.31-29.3 is installed
  • OR libmysqlclient_r18-10.0.31-29.3 is installed
  • OR libmysqlclient_r18-32bit-10.0.31-29.3 is installed
  • OR mariadb-10.0.31-29.3 is installed
  • OR mariadb-client-10.0.31-29.3 is installed
  • OR mariadb-errormessages-10.0.31-29.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gdk-pixbuf-loader-rsvg-2.40.15-4 is installed
  • OR librsvg-2-2-2.40.15-4 is installed
  • OR librsvg-2-2-32bit-2.40.15-4 is installed
  • OR rsvg-view-2.40.15-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND autofs-5.0.9-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.49 is installed
  • OR php7-7.2.5-4.49 is installed
  • OR php7-bcmath-7.2.5-4.49 is installed
  • OR php7-bz2-7.2.5-4.49 is installed
  • OR php7-calendar-7.2.5-4.49 is installed
  • OR php7-ctype-7.2.5-4.49 is installed
  • OR php7-curl-7.2.5-4.49 is installed
  • OR php7-dba-7.2.5-4.49 is installed
  • OR php7-devel-7.2.5-4.49 is installed
  • OR php7-dom-7.2.5-4.49 is installed
  • OR php7-enchant-7.2.5-4.49 is installed
  • OR php7-exif-7.2.5-4.49 is installed
  • OR php7-fastcgi-7.2.5-4.49 is installed
  • OR php7-fileinfo-7.2.5-4.49 is installed
  • OR php7-fpm-7.2.5-4.49 is installed
  • OR php7-ftp-7.2.5-4.49 is installed
  • OR php7-gd-7.2.5-4.49 is installed
  • OR php7-gettext-7.2.5-4.49 is installed
  • OR php7-gmp-7.2.5-4.49 is installed
  • OR php7-iconv-7.2.5-4.49 is installed
  • OR php7-intl-7.2.5-4.49 is installed
  • OR php7-json-7.2.5-4.49 is installed
  • OR php7-ldap-7.2.5-4.49 is installed
  • OR php7-mbstring-7.2.5-4.49 is installed
  • OR php7-mysql-7.2.5-4.49 is installed
  • OR php7-odbc-7.2.5-4.49 is installed
  • OR php7-opcache-7.2.5-4.49 is installed
  • OR php7-openssl-7.2.5-4.49 is installed
  • OR php7-pcntl-7.2.5-4.49 is installed
  • OR php7-pdo-7.2.5-4.49 is installed
  • OR php7-pear-7.2.5-4.49 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.49 is installed
  • OR php7-pgsql-7.2.5-4.49 is installed
  • OR php7-phar-7.2.5-4.49 is installed
  • OR php7-posix-7.2.5-4.49 is installed
  • OR php7-shmop-7.2.5-4.49 is installed
  • OR php7-snmp-7.2.5-4.49 is installed
  • OR php7-soap-7.2.5-4.49 is installed
  • OR php7-sockets-7.2.5-4.49 is installed
  • OR php7-sodium-7.2.5-4.49 is installed
  • OR php7-sqlite-7.2.5-4.49 is installed
  • OR php7-sysvmsg-7.2.5-4.49 is installed
  • OR php7-sysvsem-7.2.5-4.49 is installed
  • OR php7-sysvshm-7.2.5-4.49 is installed
  • OR php7-tokenizer-7.2.5-4.49 is installed
  • OR php7-wddx-7.2.5-4.49 is installed
  • OR php7-xmlreader-7.2.5-4.49 is installed
  • OR php7-xmlrpc-7.2.5-4.49 is installed
  • OR php7-xmlwriter-7.2.5-4.49 is installed
  • OR php7-xsl-7.2.5-4.49 is installed
  • OR php7-zip-7.2.5-4.49 is installed
  • OR php7-zlib-7.2.5-4.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xorg-x11-server-7.6_1.15.2-53.3 is installed
  • OR xorg-x11-server-extra-7.6_1.15.2-53.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND xinetd-2.3.15-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND shadow-4.2.1-27.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND xrdp-0.9.0~git.1456906198.f422461-16.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dstat-0.7.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • nfs-client-1.3.0-34.22 is installed
  • OR nfs-doc-1.3.0-34.22 is installed
  • OR nfs-kernel-server-1.3.0-34.22 is installed
  • OR nfs-utils-1.3.0-34.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND clamav-0.100.3-33.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libqca2-2.0.3-17.7 is installed
  • OR libqca2-32bit-2.0.3-17.7 is installed
  • OR libqt4-4.8.7-8.8 is installed
  • OR libqt4-32bit-4.8.7-8.8 is installed
  • OR libqt4-devel-doc-4.8.7-8.8 is installed
  • OR libqt4-qt3support-4.8.7-8.8 is installed
  • OR libqt4-qt3support-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-4.8.7-8.8 is installed
  • OR libqt4-sql-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-mysql-4.8.7-8.8 is installed
  • OR libqt4-sql-plugins-4.8.7-8.8 is installed
  • OR libqt4-sql-sqlite-4.8.7-8.8 is installed
  • OR libqt4-x11-4.8.7-8.8 is installed
  • OR libqt4-x11-32bit-4.8.7-8.8 is installed
  • OR qt4-x11-tools-4.8.7-8.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-8.7 is installed
  • OR cyrus-sasl-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-2.1.26-8.7 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-2.1.26-8.7 is installed
  • OR cyrus-sasl-otp-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-2.1.26-8.7 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed
  • OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-2.1.26-8.7 is installed
  • OR cyrus-sasl-sqlauxprop-32bit-2.1.26-8.7 is installed
  • OR libsasl2-3-2.1.26-8.7 is installed
  • OR libsasl2-3-32bit-2.1.26-8.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • tomcat-9.0.35-3.57 is installed
  • OR tomcat-admin-webapps-9.0.35-3.57 is installed
  • OR tomcat-el-3_0-api-9.0.35-3.57 is installed
  • OR tomcat-jsp-2_3-api-9.0.35-3.57 is installed
  • OR tomcat-lib-9.0.35-3.57 is installed
  • OR tomcat-servlet-4_0-api-9.0.35-3.57 is installed
  • OR tomcat-webapps-9.0.35-3.57 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-nova-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-api-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-cells-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-cert-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-compute-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-conductor-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-console-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-consoleauth-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-novncproxy-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-objectstore-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-scheduler-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-serialproxy-12.0.2~a0~dev18-1 is installed
  • OR openstack-nova-vncproxy-12.0.2~a0~dev18-1 is installed
  • OR python-nova-12.0.2~a0~dev18-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-pysaml2-4.0.2-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • git-2.26.0-27.27 is installed
  • OR git-core-2.26.0-27.27 is installed
  • OR libpcre2-16-0-10.34-1.3 is installed
  • OR libpcre2-32-0-10.34-1.3 is installed
  • OR libpcre2-8-0-10.34-1.3 is installed
  • OR libpcre2-posix2-10.34-1.3 is installed
  • OR pcre2-10.34-1.3 is installed
  • OR perl-CGI-4.38-1.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND couchdb-1.7.2-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • mariadb-10.2.25-3.19 is installed
  • OR mariadb-galera-10.2.25-3.19 is installed
    • BACK