Oval Definition:oval:org.opensuse.security:def:5913
Revision Date:2021-12-06Version:1
Title:Recommended update for php7 (Moderate)
Description:

This update for php7 fixes the following issues:

- CVE-2021-21703: Fixed local privilege escalation via PHP-FPM (bsc#1192050). - CVE-2021-21707: Fixed special character breaks path in xml parsing (bsc#1193041).

- Added patch to prevent memory access violation in php7 when running test suite (bsc#1175508)
Family:unixClass:patch
Status:Reference(s):1175508
1192050
1193041
CVE-2009-0186
CVE-2009-0758
CVE-2009-0946
CVE-2009-4029
CVE-2010-0407
CVE-2010-2244
CVE-2010-2497
CVE-2010-2805
CVE-2010-3053
CVE-2010-3054
CVE-2010-3311
CVE-2010-3814
CVE-2010-4531
CVE-2011-0226
CVE-2011-1002
CVE-2011-2696
CVE-2012-2669
CVE-2012-2737
CVE-2012-5532
CVE-2012-5668
CVE-2012-5669
CVE-2012-5670
CVE-2013-1983
CVE-2013-7447
CVE-2014-0004
CVE-2014-2240
CVE-2014-3158
CVE-2014-3618
CVE-2014-3686
CVE-2014-9496
CVE-2014-9656
CVE-2014-9657
CVE-2014-9658
CVE-2014-9659
CVE-2014-9660
CVE-2014-9661
CVE-2014-9662
CVE-2014-9663
CVE-2014-9664
CVE-2014-9665
CVE-2014-9666
CVE-2014-9667
CVE-2014-9668
CVE-2014-9669
CVE-2014-9670
CVE-2014-9671
CVE-2014-9672
CVE-2014-9673
CVE-2014-9674
CVE-2014-9675
CVE-2014-9756
CVE-2015-0210
CVE-2015-1863
CVE-2015-3294
CVE-2015-3310
CVE-2015-4141
CVE-2015-4142
CVE-2015-4143
CVE-2015-5130
CVE-2015-5310
CVE-2015-7805
CVE-2015-8041
CVE-2015-8075
CVE-2015-8899
CVE-2016-10109
CVE-2016-6318
CVE-2016-6855
CVE-2016-7944
CVE-2017-7585
CVE-2017-7586
CVE-2017-7741
CVE-2017-7742
CVE-2017-8361
CVE-2017-8362
CVE-2017-8363
CVE-2017-8365
CVE-2021-21703
CVE-2021-21707
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Build System Kit 12 SP3
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 12 SP5
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Real Time Extension 12 SP2
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-setuptools-1.1.7-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • libreoffice-4.3.3.2-6 is installed
  • OR libreoffice-sdk-4.3.3.2-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND Package Information
  • krb5-mini-1.12.1-22 is installed
  • OR krb5-mini-devel-1.12.1-22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • ghostscript-mini-9.15-17 is installed
  • OR ghostscript-mini-devel-9.15-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP3 is installed
  • AND kernel-zfcpdump-4.4.82-6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • cracklib-2.9.0-7 is installed
  • OR libcrack2-2.9.0-7 is installed
  • OR libcrack2-32bit-2.9.0-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • accountsservice-0.6.42-16.3 is installed
  • OR accountsservice-lang-0.6.42-16.3 is installed
  • OR libaccountsservice0-0.6.42-16.3 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_34-default-5-2.2 is installed
  • OR kgraft-patch-3_12_51-52_34-xen-5-2.2 is installed
  • OR kgraft-patch-SLE12_Update_10-5-2.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND sudo-1.8.10p3-2.16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND python-PyYAML-3.10-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND Package Information
  • ctdb-4.2.4-26 is installed
  • OR samba-4.2.4-26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • ctdb-4.4.2-38.11 is installed
  • OR samba-4.4.2-38.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.92-6.30 is installed
  • OR dlm-kmp-default-4.4.92-6.30 is installed
  • OR gfs2-kmp-default-4.4.92-6.30 is installed
  • OR kernel-default-4.4.92-6.30 is installed
  • OR ocfs2-kmp-default-4.4.92-6.30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP5 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-120 is installed
  • OR dlm-kmp-default-4.12.14-120 is installed
  • OR gfs2-kmp-default-4.12.14-120 is installed
  • OR ocfs2-kmp-default-4.12.14-120 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • augeas-1.10.1-2 is installed
  • OR augeas-lenses-1.10.1-2 is installed
  • OR libaugeas0-1.10.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_39-47-default-2-10 is installed
  • OR kgraft-patch-3_12_39-47-xen-2-10 is installed
  • OR kgraft-patch-SLE12_Update_4-2-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.4.104-24.1 is installed
  • OR cluster-network-kmp-rt-4.4.104-24.1 is installed
  • OR dlm-kmp-rt-4.4.104-24.1 is installed
  • OR gfs2-kmp-rt-4.4.104-24.1 is installed
  • OR kernel-devel-rt-4.4.104-24.1 is installed
  • OR kernel-rt-4.4.104-24.1 is installed
  • OR kernel-rt-base-4.4.104-24.1 is installed
  • OR kernel-rt-devel-4.4.104-24.1 is installed
  • OR kernel-rt_debug-4.4.104-24.1 is installed
  • OR kernel-rt_debug-devel-4.4.104-24.1 is installed
  • OR kernel-source-rt-4.4.104-24.1 is installed
  • OR kernel-syms-rt-4.4.104-24.1 is installed
  • OR ocfs2-kmp-rt-4.4.104-24.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND Package Information
  • OpenEXR-1.6.1-83.17.1 is installed
  • OR OpenEXR-32bit-1.6.1-83.17.1 is installed
  • OR OpenEXR-x86-1.6.1-83.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • popt-1.7-37.50.6 is installed
  • OR popt-32bit-1.7-37.50.6 is installed
  • OR popt-x86-1.7-37.50.6 is installed
  • OR rpm-4.4.2.3-37.50.6 is installed
  • OR rpm-32bit-4.4.2.3-37.50.6 is installed
  • OR rpm-x86-4.4.2.3-37.50.6 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND
  • popt-1.7-37.50.6 is installed
  • OR popt-32bit-1.7-37.50.6 is installed
  • OR popt-x86-1.7-37.50.6 is installed
  • OR rpm-4.4.2.3-37.50.6 is installed
  • OR rpm-32bit-4.4.2.3-37.50.6 is installed
  • OR rpm-x86-4.4.2.3-37.50.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • avahi-0.6.23-11.19.22 is installed
  • OR avahi-lang-0.6.23-11.19.22 is installed
  • OR avahi-utils-0.6.23-11.19.22 is installed
  • OR libavahi-client3-0.6.23-11.19.22 is installed
  • OR libavahi-client3-32bit-0.6.23-11.19.22 is installed
  • OR libavahi-client3-x86-0.6.23-11.19.22 is installed
  • OR libavahi-common3-0.6.23-11.19.22 is installed
  • OR libavahi-common3-32bit-0.6.23-11.19.22 is installed
  • OR libavahi-common3-x86-0.6.23-11.19.22 is installed
  • OR libavahi-core5-0.6.23-11.19.22 is installed
  • OR libdns_sd-0.6.23-11.19.22 is installed
  • OR libdns_sd-32bit-0.6.23-11.19.22 is installed
  • OR libdns_sd-x86-0.6.23-11.19.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-38.8.0esr-40.1 is installed
  • OR MozillaFirefox-translations-38.8.0esr-40.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • libgcrypt11-1.5.0-0.17.1 is installed
  • OR libgcrypt11-32bit-1.5.0-0.17.1 is installed
  • OR libgcrypt11-x86-1.5.0-0.17.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • libgcrypt11-1.5.0-0.17.1 is installed
  • OR libgcrypt11-32bit-1.5.0-0.17.1 is installed
  • OR libgcrypt11-x86-1.5.0-0.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • apache2-mod_php53-5.3.17-0.13.7 is installed
  • OR php53-5.3.17-0.13.7 is installed
  • OR php53-bcmath-5.3.17-0.13.7 is installed
  • OR php53-bz2-5.3.17-0.13.7 is installed
  • OR php53-calendar-5.3.17-0.13.7 is installed
  • OR php53-ctype-5.3.17-0.13.7 is installed
  • OR php53-curl-5.3.17-0.13.7 is installed
  • OR php53-dba-5.3.17-0.13.7 is installed
  • OR php53-dom-5.3.17-0.13.7 is installed
  • OR php53-exif-5.3.17-0.13.7 is installed
  • OR php53-fastcgi-5.3.17-0.13.7 is installed
  • OR php53-fileinfo-5.3.17-0.13.7 is installed
  • OR php53-ftp-5.3.17-0.13.7 is installed
  • OR php53-gd-5.3.17-0.13.7 is installed
  • OR php53-gettext-5.3.17-0.13.7 is installed
  • OR php53-gmp-5.3.17-0.13.7 is installed
  • OR php53-iconv-5.3.17-0.13.7 is installed
  • OR php53-intl-5.3.17-0.13.7 is installed
  • OR php53-json-5.3.17-0.13.7 is installed
  • OR php53-ldap-5.3.17-0.13.7 is installed
  • OR php53-mbstring-5.3.17-0.13.7 is installed
  • OR php53-mcrypt-5.3.17-0.13.7 is installed
  • OR php53-mysql-5.3.17-0.13.7 is installed
  • OR php53-odbc-5.3.17-0.13.7 is installed
  • OR php53-openssl-5.3.17-0.13.7 is installed
  • OR php53-pcntl-5.3.17-0.13.7 is installed
  • OR php53-pdo-5.3.17-0.13.7 is installed
  • OR php53-pear-5.3.17-0.13.7 is installed
  • OR php53-pgsql-5.3.17-0.13.7 is installed
  • OR php53-pspell-5.3.17-0.13.7 is installed
  • OR php53-shmop-5.3.17-0.13.7 is installed
  • OR php53-snmp-5.3.17-0.13.7 is installed
  • OR php53-soap-5.3.17-0.13.7 is installed
  • OR php53-suhosin-5.3.17-0.13.7 is installed
  • OR php53-sysvmsg-5.3.17-0.13.7 is installed
  • OR php53-sysvsem-5.3.17-0.13.7 is installed
  • OR php53-sysvshm-5.3.17-0.13.7 is installed
  • OR php53-tokenizer-5.3.17-0.13.7 is installed
  • OR php53-wddx-5.3.17-0.13.7 is installed
  • OR php53-xmlreader-5.3.17-0.13.7 is installed
  • OR php53-xmlrpc-5.3.17-0.13.7 is installed
  • OR php53-xmlwriter-5.3.17-0.13.7 is installed
  • OR php53-xsl-5.3.17-0.13.7 is installed
  • OR php53-zip-5.3.17-0.13.7 is installed
  • OR php53-zlib-5.3.17-0.13.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • PolicyKit-0.9-14.43.1 is installed
  • OR PolicyKit-32bit-0.9-14.43.1 is installed
  • OR PolicyKit-doc-0.9-14.43.1 is installed
  • OR PolicyKit-x86-0.9-14.43.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND libXvMC1-1.0.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • apache2-2.4.23-14 is installed
  • OR apache2-doc-2.4.23-14 is installed
  • OR apache2-example-pages-2.4.23-14 is installed
  • OR apache2-prefork-2.4.23-14 is installed
  • OR apache2-utils-2.4.23-14 is installed
  • OR apache2-worker-2.4.23-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND binutils-2.26.1-9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND rpcbind-0.2.3-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND apache-commons-httpclient-3.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.40-38.34 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.40-38.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND Package Information
  • libQtWebKit-devel-4.6.3-5.32.1 is installed
  • OR libQtWebKit4-32bit-4.6.3-5.32.1 is installed
  • OR libQtWebKit4-x86-4.6.3-5.32.1 is installed
  • OR libqt4-devel-4.6.3-5.32.1 is installed
  • OR libqt4-devel-doc-4.6.3-5.32.1 is installed
  • OR libqt4-devel-doc-data-4.6.3-5.32.1 is installed
  • OR libqt4-sql-mysql-32bit-4.6.3-5.32.1 is installed
  • OR libqt4-sql-mysql-x86-4.6.3-5.32.1 is installed
  • OR libqt4-sql-postgresql-4.6.3-5.32.1 is installed
  • OR libqt4-sql-postgresql-32bit-4.6.3-5.32.1 is installed
  • OR libqt4-sql-postgresql-x86-4.6.3-5.32.1 is installed
  • OR libqt4-sql-sqlite-32bit-4.6.3-5.32.1 is installed
  • OR libqt4-sql-sqlite-x86-4.6.3-5.32.1 is installed
  • OR libqt4-sql-unixODBC-4.6.3-5.32.1 is installed
  • OR libqt4-sql-unixODBC-32bit-4.6.3-5.32.1 is installed
  • OR libqt4-sql-unixODBC-x86-4.6.3-5.32.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND MozillaFirefox-devel-31.7.0esr-0.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND bind-devel-9.9.5P1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND libXext-devel-1.3.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-33 is installed
  • OR ImageMagick-devel-6.8.8.1-33 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
  • OR libMagick++-devel-6.8.8.1-33 is installed
  • OR perl-PerlMagick-6.8.8.1-33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • pulseaudio-module-bluetooth-5.0-2 is installed
  • OR pulseaudio-module-gconf-5.0-2 is installed
  • OR pulseaudio-module-jack-5.0-2 is installed
  • OR pulseaudio-module-lirc-5.0-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND Package Information
  • flash-player-11.2.202.548-111 is installed
  • OR flash-player-gnome-11.2.202.548-111 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • gnome-online-accounts-3.20.4-7 is installed
  • OR gnome-online-accounts-lang-3.20.4-7 is installed
  • OR libgoa-1_0-0-32bit-3.20.4-7 is installed
  • OR typelib-1_0-Goa-1_0-3.20.4-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND Package Information
  • colord-1.3.3-12 is installed
  • OR colord-lang-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • NetworkManager-1.0.12-13.6 is installed
  • OR NetworkManager-lang-1.0.12-13.6 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-13.6 is installed
    • BACK