Overview

File _patchinfo of Package patchinfo.21626

<patchinfo incident="21626">
  <issue tracker="bnc" id="1175508">Segfault in php7 on SLES 15 SP2</issue>
  <issue tracker="bnc" id="1192050">VUL-0: CVE-2021-21703: php74,php5,php72,php53,php7: php: Local privilege escalation via PHP-FPM</issue> 
  <issue tracker="bnc" id="1193041">VUL-0: CVE-2021-21707: php72,php7,php74,php53,php5: php: special character breaks path in xml parsing</issue>
  <issue tracker="cve" id="2021-21703" />
  <issue tracker="cve" id="2021-21707" />
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Recommended update for php7</summary>
  <description>This update for php7 fixes the following issues:

- CVE-2021-21703: Fixed local privilege escalation via PHP-FPM (bsc#1192050).
- CVE-2021-21707: Fixed special character breaks path in xml parsing (bsc#1193041).

- Added patch to prevent memory access violation in php7 when running test suite (bsc#1175508)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places