Lucene search

K
suseSuseSUSE-SU-2012:1156-2
HistorySep 14, 2012 - 2:08 a.m.

Security update for PHP5 (important)

2012-09-1402:08:28
lists.opensuse.org
13

0.013 Low

EPSS

Percentile

85.7%

This update fixes CVE-2011-1398 and CVE-2011-4388 (header
injection via CR).

This update also changes the default configuration to use
FilesMatch with ‘SetHandler’ rather than ‘AddHandler’ to
protect weakly written web applications from content
confusion. Since this is a hardening measure, no CVE was
assigned.