Overview

File _patchinfo of Package patchinfo.11693

<patchinfo incident="11693">
  <issue tracker="bnc" id="1138172">VUL-0: CVE-2019-11040: php5,php72,php7,php53: heap-buffer-overflow on php_jpg_get16</issue>
  <issue tracker="bnc" id="1138173">VUL-0: CVE-2019-11039: php5,php72,php7,php53: Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow</issue>
  <issue tracker="cve" id="2019-11039"/>
  <issue tracker="cve" id="2019-11040"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>This update for php7 fixes the following issues:

Security issues fixed: 	  

- CVE-2019-11039: Fixed a heap-buffer-overflow on php_jpg_get16 (bsc#1138173).
- CVE-2019-11040: Fixed an out-of-bounds read due to an integer overflow in 
  iconv.c:_php_iconv_mime_decode() (bsc#1138172). 	  
</description>
  <summary>Security update for php7</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places