SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1661

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1661

Security update for php7

Type: security

Severity: moderate

Issued: 2020-07-07

Description:

This update for php7 fixes the following issues:

Security issue fixed:

- CVE-2019-11048: Improved the handling of overly long filenames or field names in HTTP file uploads (bsc#1171999).

References

CVE: CVE-2019-11048
Bugzilla: 1171999 VUL-0: CVE-2019-11048: php5,php72,php7,php53: supplying overly long filenames or field names if HTTP file uploads are allowed could lead to exhausting disk space on the server

Packages

php7-7.2.5-4.58.2