Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:Alexander_Naumov:SLE-12:Update
patchinfo.6518
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.6518
<patchinfo incident="6518"> <issue id="1076391" tracker="bnc">VUL-0: CVE-2018-5711: php5,gd,php7,php53: gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has aninteger signedness error that leads to an i</issue> <issue id="1076220" tracker="bnc">VUL-0: CVE-2018-5712: php5,php7: An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 errorpage via the URI of a request for a .phar fi</issue> <issue id="2018-5711" tracker="cve" /> <issue id="2018-5712" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>pgajdos</packager> <description>This update for php5 fixes several issues. These security issues were fixed: - CVE-2018-5712: Prevent reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file that allowed for information disclosure (bsc#1076220) - CVE-2018-5711: Prevent integer signedness error that could have lead to an infinite loop via a crafted GIF file allowing for DoS (bsc#1076391) </description> <summary>Security update for php5</summary> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor