Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Leap:15.3:ARM
patchinfo.26267
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.26267
<patchinfo incident="26267"> <issue tracker="bnc" id="1204979">VUL-0: CVE-2022-31630: php53,php74,php8,php7: php: OOB read due to insufficient input validation in imageloadfont()</issue> <issue tracker="bnc" id="1204577">VUL-0: CVE-2022-37454: python,php7,php8: SHA-3 Buffer Overflow</issue> <issue tracker="cve" id="2021-21707"/> <issue tracker="cve" id="2021-21704"/> <issue tracker="cve" id="2022-37454"/> <issue tracker="cve" id="2017-8923"/> <issue tracker="cve" id="2021-21702"/> <issue tracker="cve" id="2021-21708"/> <issue tracker="cve" id="2021-21705"/> <issue tracker="cve" id="2020-7071"/> <issue tracker="cve" id="2020-7070"/> <issue tracker="cve" id="2020-7069"/> <issue tracker="cve" id="2020-7068"/> <issue tracker="cve" id="2022-31629"/> <issue tracker="cve" id="2022-31625"/> <issue tracker="cve" id="2021-21706"/> <issue tracker="cve" id="2022-31626"/> <issue tracker="cve" id="2022-31630"/> <issue tracker="cve" id="2021-21703"/> <issue tracker="cve" id="2022-31628"/> <issue tracker="jsc" id="SLE-23639"/> <issue tracker="bnc" id="1203867">VUL-0: CVE-2022-31628: php5,php72,php74,php8,php53,php7: uncontrolled recursion in the phar uncompressor while decompressing "quines" gzip files</issue> <issue tracker="bnc" id="1203870">VUL-0: CVE-2022-31629: php72,php7,php5,php8,php53,php74: attackers may be able to set an insecure cookie that will treated as secure in the victim's browser</issue> <packager>pgajdos</packager> <rating>important</rating> <category>security</category> <summary>Security update for php7</summary> <description>This update for php7 fixes the following issues: - Version update to 7.4.33: - CVE-2022-31630: Fixed out-of-bounds read due to insufficient input validation in imageloadfont() (bsc#1204979). - CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bsc#1204577). - Version update to 7.4.32 (jsc#SLE-23639) - CVE-2022-31628: Fixed an uncontrolled recursion in the phar uncompressor while decompressing "quines" gzip files. (bsc#1203867) - CVE-2022-31629: Fixed a bug which could lead an attacker to set an insecure cookie that will treated as secure in the victim's browser. (bsc#1203870) </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor