OVAL Reference oval:org.opensuse.security:def:5420

Oval Definition:

oval:org.opensuse.security:def:5420

Revision Date:	2020-12-02	Version:	1
Title:	Security update for php7 (Important)
Description:	This update for php7 fixes the following issues: - CVE-2020-7062: Fixed a null pointer dereference when using file upload functionality under specific circumstances (bsc#1165280). - CVE-2020-7063: Fixed an issue where adding files change the permissions to default (bsc#1165289). - CVE-2020-7059: Fixed an out of bounds read in php_strip_tags_ex which may have led to denial of service (bsc#1162629). - CVE-2020-7060: Fixed a global buffer overflow in mbfl_filt_conv_big5_wchar which may have led to memory corruption (bsc#1162632).
Family:	unix	Class:	patch
Status:		Reference(s):	1082318 1133297 1162629 1162632 1165280 1165289 CVE-2006-0855 CVE-2007-1669 CVE-2009-0159 CVE-2009-0688 CVE-2009-1252 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-3170 CVE-2010-4341 CVE-2011-1758 CVE-2011-3389 CVE-2011-3640 CVE-2012-1586 CVE-2012-2669 CVE-2012-4425 CVE-2012-5532 CVE-2013-0219 CVE-2013-0220 CVE-2013-0287 CVE-2013-0743 CVE-2013-0791 CVE-2013-1620 CVE-2013-1739 CVE-2013-1740 CVE-2013-1990 CVE-2013-1999 CVE-2013-5211 CVE-2013-5605 CVE-2013-6370 CVE-2013-6371 CVE-2014-1492 CVE-2014-1568 CVE-2014-1569 CVE-2014-2892 CVE-2014-4607 CVE-2014-6272 CVE-2014-9293 CVE-2014-9294 CVE-2014-9295 CVE-2014-9296 CVE-2014-9297 CVE-2014-9298 CVE-2015-1798 CVE-2015-1799 CVE-2015-3405 CVE-2015-4000 CVE-2015-7181 CVE-2015-7182 CVE-2015-7691 CVE-2015-7692 CVE-2015-7701 CVE-2015-7702 CVE-2015-7703 CVE-2015-7704 CVE-2015-7705 CVE-2015-7848 CVE-2015-7849 CVE-2015-7850 CVE-2015-7851 CVE-2015-7852 CVE-2015-7853 CVE-2015-7854 CVE-2015-7855 CVE-2015-7871 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 SUSE-SU-2020:0622-1 SUSE-SU-2020:1396-2
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libmysql55client18-5.5.46-0.14.1 is installed OR libmysql55client18-32bit-5.5.46-0.14.1 is installed OR libmysql55client_r18-5.5.46-0.14.1 is installed OR libmysql55client_r18-32bit-5.5.46-0.14.1 is installed OR mysql-5.5.46-0.14.1 is installed OR mysql-client-5.5.46-0.14.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information kernel-default-3.0.101-68.1 is installed OR kernel-default-base-3.0.101-68.1 is installed OR kernel-default-devel-3.0.101-68.1 is installed OR kernel-default-extra-3.0.101-68.1 is installed OR kernel-pae-3.0.101-68.1 is installed OR kernel-pae-base-3.0.101-68.1 is installed OR kernel-pae-devel-3.0.101-68.1 is installed OR kernel-pae-extra-3.0.101-68.1 is installed OR kernel-source-3.0.101-68.1 is installed OR kernel-syms-3.0.101-68.1 is installed OR kernel-trace-3.0.101-68.1 is installed OR kernel-trace-devel-3.0.101-68.1 is installed OR kernel-xen-3.0.101-68.1 is installed OR kernel-xen-base-3.0.101-68.1 is installed OR kernel-xen-devel-3.0.101-68.1 is installed OR kernel-xen-extra-3.0.101-68.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND libXvMC1-1.0.8-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information postgresql93-9.3.14-19.2 is installed OR postgresql93-contrib-9.3.14-19.2 is installed OR postgresql93-docs-9.3.14-19.2 is installed OR postgresql93-server-9.3.14-19.2 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information cpp48-4.8.5-31.20 is installed OR gcc48-4.8.5-31.20 is installed OR gcc48-32bit-4.8.5-31.20 is installed OR gcc48-c++-4.8.5-31.20 is installed OR gcc48-info-4.8.5-31.20 is installed OR gcc48-locale-4.8.5-31.20 is installed OR libasan0-4.8.5-31.20 is installed OR libasan0-32bit-4.8.5-31.20 is installed OR libstdc++48-devel-4.8.5-31.20 is installed OR libstdc++48-devel-32bit-4.8.5-31.20 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-4_4_59-92_20-default-1-2 is installed OR kgraft-patch-SLE12-SP2_Update_8-1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-2-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_1-2-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND python-pycrypto-2.6.1-10.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-apache2-5.0.18-6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-73.2 is installed OR libopenssl0_9_8-0.9.8j-73.2 is installed OR libopenssl0_9_8-32bit-0.9.8j-73.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-15 is installed OR php7-7.0.7-15 is installed OR php7-bcmath-7.0.7-15 is installed OR php7-bz2-7.0.7-15 is installed OR php7-calendar-7.0.7-15 is installed OR php7-ctype-7.0.7-15 is installed OR php7-curl-7.0.7-15 is installed OR php7-dba-7.0.7-15 is installed OR php7-dom-7.0.7-15 is installed OR php7-enchant-7.0.7-15 is installed OR php7-exif-7.0.7-15 is installed OR php7-fastcgi-7.0.7-15 is installed OR php7-fileinfo-7.0.7-15 is installed OR php7-fpm-7.0.7-15 is installed OR php7-ftp-7.0.7-15 is installed OR php7-gd-7.0.7-15 is installed OR php7-gettext-7.0.7-15 is installed OR php7-gmp-7.0.7-15 is installed OR php7-iconv-7.0.7-15 is installed OR php7-imap-7.0.7-15 is installed OR php7-intl-7.0.7-15 is installed OR php7-json-7.0.7-15 is installed OR php7-ldap-7.0.7-15 is installed OR php7-mbstring-7.0.7-15 is installed OR php7-mcrypt-7.0.7-15 is installed OR php7-mysql-7.0.7-15 is installed OR php7-odbc-7.0.7-15 is installed OR php7-opcache-7.0.7-15 is installed OR php7-openssl-7.0.7-15 is installed OR php7-pcntl-7.0.7-15 is installed OR php7-pdo-7.0.7-15 is installed OR php7-pear-7.0.7-15 is installed OR php7-pear-Archive_Tar-7.0.7-15 is installed OR php7-pgsql-7.0.7-15 is installed OR php7-phar-7.0.7-15 is installed OR php7-posix-7.0.7-15 is installed OR php7-pspell-7.0.7-15 is installed OR php7-shmop-7.0.7-15 is installed OR php7-snmp-7.0.7-15 is installed OR php7-soap-7.0.7-15 is installed OR php7-sockets-7.0.7-15 is installed OR php7-sqlite-7.0.7-15 is installed OR php7-sysvmsg-7.0.7-15 is installed OR php7-sysvsem-7.0.7-15 is installed OR php7-sysvshm-7.0.7-15 is installed OR php7-tokenizer-7.0.7-15 is installed OR php7-wddx-7.0.7-15 is installed OR php7-xmlreader-7.0.7-15 is installed OR php7-xmlrpc-7.0.7-15 is installed OR php7-xmlwriter-7.0.7-15 is installed OR php7-xsl-7.0.7-15 is installed OR php7-zip-7.0.7-15 is installed OR php7-zlib-7.0.7-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 is installed AND Package Information lcms-1.17-77.12.1 is installed OR liblcms1-1.17-77.12.1 is installed OR liblcms1-32bit-1.17-77.12.1 is installed OR liblcms1-x86-1.17-77.12.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information bind-9.6ESVR5P1-0.8.1 is installed OR bind-chrootenv-9.6ESVR5P1-0.8.1 is installed OR bind-doc-9.6ESVR5P1-0.8.1 is installed OR bind-libs-9.6ESVR5P1-0.8.1 is installed OR bind-libs-32bit-9.6ESVR5P1-0.8.1 is installed OR bind-libs-x86-9.6ESVR5P1-0.8.1 is installed OR bind-utils-9.6ESVR5P1-0.8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND NetworkManager-gnome-0.7.1-5.22.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information vte-0.22.5-0.2.1 is installed OR vte-doc-0.22.5-0.2.1 is installed OR vte-lang-0.22.5-0.2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-49.1 is installed OR bind-chrootenv-9.9.9P1-49.1 is installed OR bind-doc-9.9.9P1-49.1 is installed OR bind-libs-9.9.9P1-49.1 is installed OR bind-libs-32bit-9.9.9P1-49.1 is installed OR bind-utils-9.9.9P1-49.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libnghttp2-14-1.7.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information automake-1.13.4-6 is installed OR m4-1.4.16-15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information apache2-mod_php7-7.2.5-4.52 is installed OR php7-7.2.5-4.52 is installed OR php7-bcmath-7.2.5-4.52 is installed OR php7-bz2-7.2.5-4.52 is installed OR php7-calendar-7.2.5-4.52 is installed OR php7-ctype-7.2.5-4.52 is installed OR php7-curl-7.2.5-4.52 is installed OR php7-dba-7.2.5-4.52 is installed OR php7-devel-7.2.5-4.52 is installed OR php7-dom-7.2.5-4.52 is installed OR php7-enchant-7.2.5-4.52 is installed OR php7-exif-7.2.5-4.52 is installed OR php7-fastcgi-7.2.5-4.52 is installed OR php7-fileinfo-7.2.5-4.52 is installed OR php7-fpm-7.2.5-4.52 is installed OR php7-ftp-7.2.5-4.52 is installed OR php7-gd-7.2.5-4.52 is installed OR php7-gettext-7.2.5-4.52 is installed OR php7-gmp-7.2.5-4.52 is installed OR php7-iconv-7.2.5-4.52 is installed OR php7-intl-7.2.5-4.52 is installed OR php7-json-7.2.5-4.52 is installed OR php7-ldap-7.2.5-4.52 is installed OR php7-mbstring-7.2.5-4.52 is installed OR php7-mysql-7.2.5-4.52 is installed OR php7-odbc-7.2.5-4.52 is installed OR php7-opcache-7.2.5-4.52 is installed OR php7-openssl-7.2.5-4.52 is installed OR php7-pcntl-7.2.5-4.52 is installed OR php7-pdo-7.2.5-4.52 is installed OR php7-pear-7.2.5-4.52 is installed OR php7-pear-Archive_Tar-7.2.5-4.52 is installed OR php7-pgsql-7.2.5-4.52 is installed OR php7-phar-7.2.5-4.52 is installed OR php7-posix-7.2.5-4.52 is installed OR php7-shmop-7.2.5-4.52 is installed OR php7-snmp-7.2.5-4.52 is installed OR php7-soap-7.2.5-4.52 is installed OR php7-sockets-7.2.5-4.52 is installed OR php7-sodium-7.2.5-4.52 is installed OR php7-sqlite-7.2.5-4.52 is installed OR php7-sysvmsg-7.2.5-4.52 is installed OR php7-sysvsem-7.2.5-4.52 is installed OR php7-sysvshm-7.2.5-4.52 is installed OR php7-tokenizer-7.2.5-4.52 is installed OR php7-wddx-7.2.5-4.52 is installed OR php7-xmlreader-7.2.5-4.52 is installed OR php7-xmlrpc-7.2.5-4.52 is installed OR php7-xmlwriter-7.2.5-4.52 is installed OR php7-xsl-7.2.5-4.52 is installed OR php7-zip-7.2.5-4.52 is installed OR php7-zlib-7.2.5-4.52 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information dbus-1-1.8.16-19 is installed OR dbus-1-x11-1.8.16-19 is installed OR libdbus-1-3-1.8.16-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information libblkid1-2.25-24.10 is installed OR libblkid1-32bit-2.25-24.10 is installed OR libmount1-2.25-24.10 is installed OR libmount1-32bit-2.25-24.10 is installed OR libsmartcols1-2.25-24.10 is installed OR libuuid1-2.25-24.10 is installed OR libuuid1-32bit-2.25-24.10 is installed OR python-libmount-2.25-24.10 is installed OR util-linux-2.25-24.10 is installed OR util-linux-lang-2.25-24.10 is installed OR util-linux-systemd-2.25-24.10 is installed OR uuidd-2.25-24.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102 is installed OR libopenssl0_9_8-0.9.8j-102 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libzstd1-1.4.4-1.3 is installed OR libzstd1-32bit-1.4.4-1.3 is installed OR zstd-1.4.4-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-devel-1.6.1-83.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND libXtst-devel-1.2.2-7 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND LibVNCServer-devel-0.9.9-17.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed

BACK