SUSE-SU-2020:2997-1 -- SLES php7ID: oval:org.secpod.oval:def:89000118 | Date: (C)2021-02-23 (M)2024-05-22 |
Class: PATCH | Family: unix |
This update for php7 fixes the following issues: - CVE-2020-7069: Fixed an issue when AES-CCM mode was used with openssl_encrypt function with 12 bytes IV, only first 7 bytes of the IV was used . - CVE-2020-7070: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names . - Added tmpfiles.d for php-fpm to provide a base for a socket
Platform: |
SUSE Linux Enterprise Server 15 |