Security update for php7
This update for php7 fixes the following issues:
Security issues fixed:
- CVE-2019-11034: Fixed a heap-buffer overflow in php_ifd_get32si() (bsc#1132838).
- CVE-2019-11035: Fixed a heap-buffer overflow in exif_iif_add_value() (bsc#1132837).
- CVE-2019-11036: Fixed buffer over-read in exif_process_IFD_TAG function leading to information disclosure (bsc#1134322).
This update was imported from the SUSE:SLE-12:Update update project.
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1132838
VUL-1: CVE-2019-11034: php5,php72,php7,php53: Heap-buffer-overflow in php_ifd_get32s
bnc#1132837
VUL-1: CVE-2019-11035: php5,php72,php7,php53: Heap-buffer-overflow in exif_iif_add_value in EXIF
bnc#1134322
VUL-0: CVE-2019-11036: php5,php72,php7,php53: php: buffer over-read in exif_process_IFD_TAG function leading to information disclosure
