Security update for php7
This update for php7 fixes the following security issues:
- CVE-2016-5385: Setting HTTP_PROXY environment variable via Proxy header (httpoxy) (bsc#988486).
- CVE-2016-9137: Fixing a Use After Free in unserialize() (bsc#1008029).
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#988486
VUL-0: CVE-2016-5385: php7,php5,php53: Setting HTTP_PROXY environment variable via Proxy header (httpoxy)
bnc#1008029
VUL-1: CVE-2016-9137: php: Use After Free in unserialize()
