This update for php7 fixes the following issues:
The following security vulnerabilities were fixed:
CVE-2018-14851: Fixed an out-of-bound read in
exif_process_IFD_in_MAKERNOTE, which could be exploited by an attacker
via crafted JPG files, and could result in an application crash.
(bsc#1103659)
CVE-2017-9120: Fixed an buffer overflow in mysqli_real_escape_string,
which could be exploited via along string and could result in an
application crash
or have other unspecified impacts. (bsc#1103661)
This update was imported from the SUSE:SLE-12:Update update project.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
openSUSE Leap | 42.3 | i586 | php7-dom-debuginfo | < 7.0.7-43.1 | php7-dom-debuginfo-7.0.7-43.1.i586.rpm |
openSUSE Leap | 15.0 | x86_64 | php7-gmp-debuginfo | < 7.2.5-lp150.2.9.1 | php7-gmp-debuginfo-7.2.5-lp150.2.9.1.x86_64.rpm |
openSUSE Leap | 42.3 | x86_64 | php7-pspell | < 7.0.7-43.1 | php7-pspell-7.0.7-43.1.x86_64.rpm |
openSUSE Leap | 15.0 | x86_64 | php7-zlib-debuginfo | < 7.2.5-lp150.2.9.1 | php7-zlib-debuginfo-7.2.5-lp150.2.9.1.x86_64.rpm |
openSUSE Leap | 42.3 | i586 | php7-dom | < 7.0.7-43.1 | php7-dom-7.0.7-43.1.i586.rpm |
openSUSE Leap | 15.0 | x86_64 | php7-embed | < 7.2.5-lp150.2.9.1 | php7-embed-7.2.5-lp150.2.9.1.x86_64.rpm |
openSUSE Leap | 15.0 | i586 | php7-tidy | < 7.2.5-lp150.2.9.1 | php7-tidy-7.2.5-lp150.2.9.1.i586.rpm |
openSUSE Leap | 42.3 | x86_64 | php7-xmlreader-debuginfo | < 7.0.7-43.1 | php7-xmlreader-debuginfo-7.0.7-43.1.x86_64.rpm |
openSUSE Leap | 15.0 | i586 | php7-mysql | < 7.2.5-lp150.2.9.1 | php7-mysql-7.2.5-lp150.2.9.1.i586.rpm |
openSUSE Leap | 15.0 | i586 | php7-wddx | < 7.2.5-lp150.2.9.1 | php7-wddx-7.2.5-lp150.2.9.1.i586.rpm |