Oval Definition:oval:org.opensuse.security:def:73996
Revision Date:2020-12-01Version:1
Title:Security update for php7 (Important)
Description:

This update for php7 fixes the following issues:

- CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt() function with 12 bytes IV, only first 7 bytes of the IV was used (bsc#1177351). - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1177352). - Added tmpfiles.d for php-fpm to provide a base for a socket (bsc#1173786)
Family:unixClass:patch
Status:Reference(s):1141320
1162680
1169095
1169521
1169850
1169851
1171437
1172307
1173159
1173160
1173161
1173359
1173786
1174120
1177351
1177352
CVE-2020-10700
CVE-2020-10704
CVE-2020-10730
CVE-2020-10745
CVE-2020-10760
CVE-2020-14303
CVE-2020-7069
CVE-2020-7070
SUSE-SU-2020:1948-1
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Python2 packages 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • php7-7.2.5-4.67 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.67 is installed
  • OR php7-wddx-7.2.5-4.67 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed
  • AND Package Information
  • samba-4.11.11+git.180.2cf3b203f07-4.5 is installed
  • OR samba-ad-dc-4.11.11+git.180.2cf3b203f07-4.5 is installed
  • OR samba-dsdb-modules-4.11.11+git.180.2cf3b203f07-4.5 is installed
    • BACK