Overview Repositories Revisions Requests Users Attributes Meta
Security update for php5

This update for php5 fixes the following issues:

Security issues fixed:

- CVE-2018-10545: Fix access controls in FPM child processes (bsc#1091367).
- CVE-2018-10547: Fix Reflected XSS on the PHAR 403 and 404 error pages (bsc#1091362).
- CVE-2018-10546: Fix an infinite loop exists in ext/iconv/iconv.c (bsc#1091363).
- CVE-2018-10548: Fix remote denial of service in ext/ldap/ldap.c (bsc#1091355).

This update was imported from the SUSE:SLE-12:Update update project.

Fixed bugs
bnc#1091367
VUL-0: CVE-2018-10545: php5,php7,php53: Dumpable FPM child processes allow bypassing opcache access controls
bnc#1091355
VUL-0: CVE-2018-10548: php5,php7,php53: ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service
bnc#1091363
VUL-0: CVE-2018-10546: php5,php7,php53: An infinite loop exists in ext/iconv/iconv.c
bnc#1091362
VUL-0: CVE-2018-10547: php5,php7,php53: There is Reflected XSS on the PHAR 403 and 404 error pages
CVE-2018-10548
CVE-2018-10545
CVE-2018-10546
CVE-2018-10547
Selected Binaries
openSUSE Build Service is sponsored by
Places