File _patchinfo of Package patchinfo.5911

<patchinfo incident="5911">
  <issue id="1063815" tracker="bnc">[PHP] Wrong reference when serialize/unserialize an object</issue>
  <issue id="1067441" tracker="bnc">VUL-1: CVE-2017-16642: php5,php7,php53: timelib_meridian error could be used to leak information from the interpreter</issue>
  <issue id="1069631" tracker="bnc">VUL-0:  CVE-2017-9229: php5,php7,php53: oniguruma: Invalid pointer dereference in left_adjust_char_head()</issue>
  <issue id="1069606" tracker="bnc">VUL-0: CVE-2017-9228: php5,php53,php7:  heap out-of-bounds write occurs in bitset_set_range() during regex compilation</issue>
  <issue id="2017-16642" tracker="cve" />
  <issue id="2017-9229" tracker="cve" />
  <issue id="2017-9228" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for php7 fixes the following issues:

Security issues fixed:

- CVE-2017-16642: Fix timelib_meridian error that could be used to leak information from the interpreter (bsc#1067441).
- CVE-2017-9229: Fix invalid pointer dereference in left_adjust_char_head() (bsc#1069631).
- CVE-2017-9228: Fix heap out-of-bounds write that occurs in bitset_set_range() during regex compilation (bsc#1069606).

Bugs fixed:

- Fix wrong reference when serialize/unserialize an object (bsc#1063815).
</description>
  <summary>Security update for php7</summary>
</patchinfo>