Overview

File _patchinfo of Package patchinfo.26796

<patchinfo incident="26796">
  <issue tracker="bnc" id="1204577">VUL-0: CVE-2022-37454: python,php7,php8: SHA-3 Buffer Overflow</issue>
  <issue tracker="bnc" id="1204979">VUL-0: CVE-2022-31630: php53,php74,php8,php7: php: OOB read due to insufficient input validation in imageloadfont()</issue>
  <issue tracker="cve" id="2022-31630"/>
  <issue tracker="cve" id="2022-37454"/>
  <packager>pgajdos</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for php8</summary>
  <description>This update for php8 fixes the following issues:

- CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bug#81738) (bsc#1204577).
- CVE-2022-31630: Fixed OOB read due to insufficient input validation in imageloadfont() (bug#81739) (bsc#1204979).

- version update to 8.0.25 (27 Oct 2022)
    * Session: Fixed bug GH-9583 (session_create_id() fails with user defined save handler that doesn't have a validateId() method).
    * Streams: Fixed bug GH-9590 (stream_select does not abort upon exception or empty valid fd set).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places