LogoopenSUSE Build Service > Projects
Sign Up | Log In

security update for php5.openSUSE_13....

Security update for php5
This update was submitted from Petr Gajdos Petr Gajdos (pgajdos) and rated as important
Description:
PHP was updated to fix three security issues.

The following vulnerabilities were fixed:

* CVE-2015-3330: Specially crafted PHAR files could, when executed under Apache httpd 2.4 (apache2handler), allow arbitrary code execution (bnc#928506)
* CVE-2015-3329: Specially crafted PHAR data could lead to disclosure of sensitive information due to a buffer overflow (bnc#928506)
* CVE-2015-2783: Specially crafted PHAR data could lead to disclosure of sensitive information due to a buffer over-read (bnc#928511)

On openSUSE 13.2, the following bug was fixed:

* boo#927147: php5-fpm did not start correctly
Fixed bugs:
Required actions:
  • Relogin suggested:
  • Reboot suggested:
  • Package-manager restart: