Overview

File _patchinfo of Package patchinfo.12353

<patchinfo incident="12353">
  <issue tracker="bnc" id="1146360">VUL-0: CVE-2019-11041: php5,php72,php7,php53: php: heap buffer over-read in exif_scan_thumbnail()</issue>
  <issue tracker="bnc" id="1145095">VUL-1: CVE-2019-11042: php5,php72,php7,php53: php: heap buffer over-read in exif_process_user_comment()</issue>
  <issue tracker="cve" id="2019-11042"/>
  <issue tracker="cve" id="2019-11041"/>
  <category>security</category>
  <rating>important</rating>
  <packager>pgajdos</packager>
  <description>This update for php72 fixes the following issues:

Security issues fixed:

- CVE-2019-11041: Fixed heap buffer over-read in exif_scan_thumbnail() (bsc#1146360).
- CVE-2019-11042: Fixed heap buffer over-read in exif_process_user_comment() (bsc#1145095).
</description>
  <summary>Security update for php72</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places