Oval Definition:oval:org.opensuse.security:def:70656
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Important)
Description:

This update for php7 fixes the following issues:

- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352).
Family:unixClass:patch
Status:Reference(s):1126826
1126829
1126831
1140126
1142649
1143609
1153768
1153770
1157755
1160254
1160590
1163333
1163744
1177351
1177352
CVE-2019-12972
CVE-2019-14250
CVE-2019-14444
CVE-2019-17450
CVE-2019-17451
CVE-2019-9074
CVE-2019-9075
CVE-2019-9077
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2020:3060-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • AND Package Information
  • binutils-2.35-7.11 is installed
  • OR binutils-gold-2.35-7.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • php7-7.4.6-3.11 is installed
  • OR php7-embed-7.4.6-3.11 is installed
  • OR php7-firebird-7.4.6-3.11 is installed
  • OR php7-test-7.4.6-3.11 is installed
    • BACK