Overview

File _patchinfo of Package patchinfo.11538

<patchinfo incident="11538">
  <issue tracker="bnc" id="1138172">VUL-0: CVE-2019-11040: php5,php72,php7,php53: heap-buffer-overflow on php_jpg_get16</issue>
  <issue tracker="bnc" id="1138173">VUL-0: CVE-2019-11039: php5,php72,php7,php53: Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow</issue>
  <issue tracker="bnc" id="1137633">VUL-0: CVE-2015-1351: php5,php72,php7,php53: php: use after free in opcache extension</issue>
  <issue tracker="cve" id="2019-11039"/>
  <issue tracker="cve" id="2019-11040"/>
  <issue tracker="cve" id="2015-1351"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for php5 fixes the following issues:

Security issues fixed: 	  

- CVE-2019-11039: Fixed a heap-buffer-overflow on php_jpg_get16 (bsc#1138173).
- CVE-2019-11040: Fixed an out-of-bounds read due to an integer overflow in 
  iconv.c:_php_iconv_mime_decode() (bsc#1138172).    
- CVE-2015-1351: Fixed a use after free in opcache extension (bsc#1137633).  
</description>
  <summary>Security update for php5</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places