Security update for php7
This update for php7 fixes the following issues:
- CVE-2020-7064: Fixed a one byte read of uninitialized memory in exif_read_data() (bsc#1168326).
- CVE-2020-7066: Fixed URL truncation get_headers() if the URL contains zero (\0) character (bsc#1168352).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1168326
VUL-1: CVE-2020-7064: php5,php72,php7,php53: read one byte of uninitialized memory via malicious data
bnc#1168352
VUL-1: CVE-2020-7066: php72,php7: URL truncation if the URL contains zero (\0) character
