Oval Definition:oval:org.opensuse.security:def:70765
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Important)
Description:

This update for php7 fixes the following issues:

- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352).
Family:unixClass:patch
Status:Reference(s):1065600
1065729
1155798
1165692
1168468
1171675
1171688
1174003
1174098
1175599
1175621
1175807
1176019
1176400
1176907
1176979
1177090
1177109
1177121
1177193
1177194
1177206
1177258
1177271
1177283
1177284
1177285
1177286
1177297
1177351
1177352
1177384
1177511
1177617
1177681
1177683
1177687
1177694
1177697
1177719
1177724
1177725
1177726
954532
CVE-2020-12351
CVE-2020-12352
CVE-2020-24490
CVE-2020-25641
CVE-2020-25643
CVE-2020-25645
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2020:2941-1
SUSE-SU-2020:2980-1
Platform(s):SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • AND Package Information
  • php7-7.4.6-3.11 is installed
  • OR php7-embed-7.4.6-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • kernel-default-5.3.18-24.29 is installed
  • OR kernel-default-extra-5.3.18-24.29 is installed
    • BACK