| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for php7 (Important) |
| Description: |
This update for php7 fixes the following issues:
- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1165548
1168554
1172177
1172182
1172184
1172186
1173351
1177351
1177352
CVE-2019-16770
CVE-2019-5418
CVE-2019-5419
CVE-2019-5420
CVE-2020-11076
CVE-2020-11077
CVE-2020-15169
CVE-2020-5247
CVE-2020-5249
CVE-2020-5267
CVE-2020-7069
CVE-2020-7070
CVE-2020-8164
CVE-2020-8165
CVE-2020-8166
CVE-2020-8167
CVE-2020-8184
CVE-2020-8185
SUSE-SU-2020:3036-1
|
| Platform(s): | SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15 SP2
| Product(s): | |
| Definition Synopsis |
| SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information
php7-7.4.6-3.11 is installed
OR php7-embed-7.4.6-3.11 is installed
OR php7-firebird-7.4.6-3.11 is installed
OR php7-test-7.4.6-3.11 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Public Cloud 15 SP2 is installed
AND Package Information
rmt-server-2.6.5-3.3 is installed
OR rmt-server-pubcloud-2.6.5-3.3 is installed
|