Lucene search
SuseOPENSUSE-SU-2021:1570-1HistoryDec 10, 2021 - 12:00 a.m.
Recommended update for php7 (moderate)
2021-12-1000:00:00
lists.opensuse.org
37
EPSS
0.001
Percentile
51.1%
An update that solves two vulnerabilities and has one
errata is now available.
Description:
This update for php7 fixes the following issues:
-
CVE-2021-21703: Fixed local privilege escalation via PHP-FPM
(bsc#1192050). -
CVE-2021-21707: Fixed special character breaks path in xml parsing
(bsc#1193041). -
Added patch to prevent memory access violation in php7 when running test
suite (bsc#1175508)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.2:
zypper in -t patch openSUSE-2021-1570=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.2 | i586 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.i586.rpm | |
| openSUSE Leap | 15.2 | x86_64 | < - openSUSE Leap 15.2 (i586 x86_64): | - openSUSE Leap 15.2 (i586 x86_64):.x86_64.rpm |
Related
nessus
nessus
openSUSE 15 : Recommended update for php7 (openSUSE-SU-2021:3943-1)
2021-12-07 00:00:00
SUSE SLES15 : Recommended update for php7 (SUSE-SU-2021:3943-1)
2021-12-07 00:00:00
PHP 8.1.x < 8.1.0 Multiple Vulnerabilities
2021-11-30 00:00:00
suse
suse
Recommended update for php7 (moderate)
2021-12-06 00:00:00
Security update for php7 (moderate)
2022-03-02 00:00:00
Security update for php7 (important)
2022-07-06 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:3943-1)
2021-12-07 00:00:00
openSUSE: Security Advisory for Recommended (openSUSE-SU-2021:3943-1)
2021-12-07 00:00:00
openSUSE: Security Advisory for Recommended (openSUSE-SU-2021:1570-1)
2022-02-01 00:00:00
redhat
redhat
(RHSA-2022:5491) Important: rh-php73-php security and bug fix update
2022-07-04 07:07:16
(RHSA-2022:1935) Moderate: php:7.4 security update
2022-05-10 06:39:36
(RHSA-2022:7628) Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 06:25:00
ibm
ibm
debiancve
debiancve
CVE-2021-21707
2021-11-29 07:15:06
CVE-2021-21703
2021-10-25 06:15:06
fedora
fedora
[SECURITY] Fedora 34 Update: php-7.4.26-1.fc34
2021-11-25 00:59:03
[SECURITY] Fedora 35 Update: php-8.0.13-1.fc35
2021-11-26 01:22:42
[SECURITY] Fedora 33 Update: php-7.4.26-1.fc33
2021-11-25 01:05:22
veracode
veracode
XML External Entity (XXE)
2021-11-21 10:33:56
Privilege Escalation
2021-10-22 03:13:17
osv
osv
BIT-php-2021-21707
2024-03-06 11:04:43
php5, php7.0, php7.2, php7.4, php8.0 vulnerability
2021-10-27 21:50:28
php7.4 - security update
2021-10-25 00:00:00
cvelist
cvelist
altlinux
altlinux
Security fix for the ALT Linux 9 package php7 version 7.3.33-alt1
2021-11-29 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 8.0.13-alt1
2021-12-01 00:00:00
Security fix for the ALT Linux 10 package php8.2 version 8.0.12-alt1
2021-10-28 00:00:00
cve
cve
CVE-2021-21707
2021-11-29 07:15:06
CVE-2021-21703
2021-10-25 06:15:06
redhatcve
redhatcve
CVE-2021-21707
2021-11-23 17:18:07
CVE-2021-21703
2021-10-21 21:02:35
prion
prion
Code injection
2021-11-29 07:15:00
Code injection
2021-10-25 06:15:00
mageia
mageia
Updated php packages fix security vulnerability
2021-11-20 22:31:06
Updated php packages fix security vulnerability
2021-10-31 14:12:48
nvd
nvd
CVE-2021-21707
2021-11-29 07:15:06
CVE-2021-21703
2021-10-25 06:15:06
cbl_mariner
cbl_mariner
CVE-2021-21707 affecting package php 7.4.14-3
2024-07-26 21:09:36
CVE-2021-21703 affecting package php 7.4.14-3
2024-07-26 21:09:36
f5
f5
K17839423 : PHP vulnerability CVE-2021-21703
2021-11-09 00:00:00
debian
debian
[SECURITY] [DSA 4992-1] php7.4 security update
2021-10-25 20:20:43
[SECURITY] [DSA 4993-1] php7.3 security update
2021-10-25 20:25:37
[SECURITY] [DLA 2794-1] php7.0 security update
2021-10-27 10:46:54
ubuntucve
ubuntucve
CVE-2021-21707
2021-11-29 00:00:00
CVE-2021-21703
2021-10-21 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP XML Parser Remote Code Execution (CVE-2021-21707)
2022-02-20 00:00:00
alpinelinux
alpinelinux
CVE-2021-21707
2021-11-29 07:15:06
CVE-2021-21703
2021-10-25 06:15:06
ubuntu
ubuntu
PHP vulnerability
2021-10-27 00:00:00
PHP vulnerabilities
2022-03-03 00:00:00
PHP vulnerabilities
2022-02-22 00:00:00
rocky
rocky
php:7.4 security update
2022-05-10 06:39:36
php:7.4 security, bug fix, and enhancement update
2022-11-08 06:25:00
oraclelinux
oraclelinux
php:7.4 security update
2022-05-17 00:00:00
php:7.4 security, bug fix, and enhancement update
2022-11-15 00:00:00
almalinux
almalinux
Moderate: php:7.4 security update
2022-05-10 00:00:00
Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 00:00:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-21704, CVE-2021-21703, CVE-2021-21705
2021-11-23 13:13:13
Fix of CVE: CVE-2021-21705, CVE-2021-21704, CVE-2021-21703
2021-11-10 18:27:35
gentoo
gentoo
PHP: Multiple Vulnerabilities
2022-09-29 00:00:00
redos
redos
ROS-20220826-01
2022-08-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00