SUSE-SU-2020:14289-1 -- SLES php53ID: oval:org.secpod.oval:def:89000316 | Date: (C)2021-02-24 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for php53 fixes the following issues: Security issues fixed: - CVE-2020-7059: Fixed an out-of-bounds read in php_strip_tags_ex . - CVE-2019-11045: Fixed an issue with the PHP DirectoryIterator class that accepts filenames with embedded \0 bytes . - CVE-2019-11046: Fixed an out-of-bounds read in bc_shift_addsub . - CVE-2019-11047: Fixed an information disclosure in exif_read_data . - CVE-2019-11050: Fixed a buffer over-read in the EXIF extension . - CVE-2019-20433: Fixed a buffer over-read when processing strings ending with a single "\0" byte with ucs-2 and ucs-4 encoding .
Platform: |
SUSE Linux Enterprise Server 11 SP4 |