SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2473

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2473

Security update for php7

Type: security

Severity: important

Issued: 2025-07-23

Description:

This update for php7 fixes the following issues:

- CVE-2025-1220: Fixed null byte termination in hostnames (bsc#1246167)
- CVE-2025-1735: Fixed pgsql extension does not check for errors during escaping (bsc#1246146)
- CVE-2025-6491: Fixed NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix (bsc#1246148)

References

Packages

php7-embed-7.4.33-150400.4.51.1