Security update for php7 (moderate)

2019-06-03T15:10:53
ID OPENSUSE-SU-2019:1501-1
Type suse
Reporter Suse
Modified 2019-06-03T15:10:53

Description

This update for php7 fixes the following issues:

Security issues fixed:

  • CVE-2019-11034: Fixed a heap-buffer overflow in php_ifd_get32si() (bsc#1132838).
  • CVE-2019-11035: Fixed a heap-buffer overflow in exif_iif_add_value() (bsc#1132837).
  • CVE-2019-11036: Fixed buffer over-read in exif_process_IFD_TAG function leading to information disclosure (bsc#1134322).

This update was imported from the SUSE:SLE-12:Update update project.