|Category:||SuSE Local Security Checks|
|Title:||SUSE: Security Advisory (SUSE-SU-2018:2333-1)|
|Summary:||The remote host is missing an update for the 'php7' package(s) announced via the SUSE-SU-2018:2333-1 advisory.|
The remote host is missing an update for the 'php7' package(s) announced via the SUSE-SU-2018:2333-1 advisory.
This update for php7 fixes the following issues:
The following security vulnerabilities were fixed:
- CVE-2018-14851: Fixed an out-of-bound read in
exif_process_IFD_in_MAKERNOTE, which could be exploited by an attacker
via crafted JPG files, and could result in an application crash.
- CVE-2017-9120: Fixed an buffer overflow in mysqli_real_escape_string,
which could be exploited via along string and could result in an
or have other unspecified impacts. (bsc#1103661)
'php7' package(s) on SUSE Linux Enterprise Software Development Kit 12-SP3, SUSE Linux Enterprise Module for Web Scripting 12
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2017-9120|
RedHat Security Advisories: RHSA-2019:2519
|Copyright||Copyright (C) 2021 Greenbone Networks GmbH|
|This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.