ALT-PU-2019-1429-1
Package php7-xmlrpc updated to version 7.2.16-alt1 for branch p8 in task 224758.
Closed vulnerabilities
BDU:2020-01570
Уязвимость интерпретатора PHP, связанная с ошибками управлением ключами, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2020-03140
Уязвимость функции exif_process_SOFn расширения EXIF интерпретатора языка программирования PHP, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2020-03141
Уязвимость функции exif_process_IFD_in_MAKERNOTE расширения EXIF интерпретатора языка программирования PHP, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2020-03142
Уязвимость функции exif_process_IFD_in_MAKERNOTE расширения EXIF интерпретатора языка программирования PHP, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
BDU:2022-02393
Уязвимость компонента exif интерпретатора языка программирования PHP, позволяющая нарушителю выполнить произвольный PHP-код
Modified: 2024-11-21
CVE-2019-9637
An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.
- openSUSE-SU-2019:1293
- openSUSE-SU-2019:1503
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1573
- RHSA-2019:2519
- RHSA-2019:3299
- https://bugs.php.net/bug.php?id=77630
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://security.netapp.com/advisory/ntap-20190502-0007/
- https://support.f5.com/csp/article/K53825211
- USN-3922-1
- USN-3922-2
- USN-3922-3
- DSA-4403
- https://www.tenable.com/security/tns-2019-07
- openSUSE-SU-2019:1293
- https://www.tenable.com/security/tns-2019-07
- DSA-4403
- USN-3922-3
- USN-3922-2
- USN-3922-1
- https://support.f5.com/csp/article/K53825211
- https://security.netapp.com/advisory/ntap-20190502-0007/
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://bugs.php.net/bug.php?id=77630
- RHSA-2019:3299
- RHSA-2019:2519
- openSUSE-SU-2019:1573
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1503
Modified: 2024-11-21
CVE-2019-9638
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.
- openSUSE-SU-2019:1293
- openSUSE-SU-2019:1503
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1573
- RHSA-2019:2519
- RHSA-2019:3299
- https://bugs.php.net/bug.php?id=77563
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://security.netapp.com/advisory/ntap-20190502-0007/
- USN-3922-1
- USN-3922-2
- USN-3922-3
- DSA-4403
- openSUSE-SU-2019:1293
- DSA-4403
- USN-3922-3
- USN-3922-2
- USN-3922-1
- https://security.netapp.com/advisory/ntap-20190502-0007/
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://bugs.php.net/bug.php?id=77563
- RHSA-2019:3299
- RHSA-2019:2519
- openSUSE-SU-2019:1573
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1503
Modified: 2024-11-21
CVE-2019-9639
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable.
- openSUSE-SU-2019:1293
- openSUSE-SU-2019:1503
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1573
- RHSA-2019:2519
- RHSA-2019:3299
- https://bugs.php.net/bug.php?id=77659
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://security.netapp.com/advisory/ntap-20190502-0007/
- USN-3922-1
- USN-3922-2
- USN-3922-3
- DSA-4403
- openSUSE-SU-2019:1293
- DSA-4403
- USN-3922-3
- USN-3922-2
- USN-3922-1
- https://security.netapp.com/advisory/ntap-20190502-0007/
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://bugs.php.net/bug.php?id=77659
- RHSA-2019:3299
- RHSA-2019:2519
- openSUSE-SU-2019:1573
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1503
Modified: 2024-11-21
CVE-2019-9640
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn.
- openSUSE-SU-2019:1293
- openSUSE-SU-2019:1503
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1573
- RHSA-2019:2519
- RHSA-2019:3299
- https://bugs.php.net/bug.php?id=77540
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://security.netapp.com/advisory/ntap-20190502-0007/
- USN-3922-1
- USN-3922-2
- USN-3922-3
- DSA-4403
- openSUSE-SU-2019:1293
- DSA-4403
- USN-3922-3
- USN-3922-2
- USN-3922-1
- https://security.netapp.com/advisory/ntap-20190502-0007/
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://bugs.php.net/bug.php?id=77540
- RHSA-2019:3299
- RHSA-2019:2519
- openSUSE-SU-2019:1573
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1503
Modified: 2024-11-21
CVE-2019-9641
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.
- openSUSE-SU-2019:1256
- openSUSE-SU-2019:1293
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1573
- https://bugs.php.net/bug.php?id=77509
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://security.netapp.com/advisory/ntap-20190502-0007/
- USN-3922-1
- USN-3922-2
- USN-3922-3
- DSA-4403
- openSUSE-SU-2019:1256
- DSA-4403
- USN-3922-3
- USN-3922-2
- USN-3922-1
- https://security.netapp.com/advisory/ntap-20190502-0007/
- [debian-lts-announce] 20190331 [SECURITY] [DLA 1741-1] php5 security update
- https://bugs.php.net/bug.php?id=77509
- openSUSE-SU-2019:1573
- openSUSE-SU-2019:1572
- openSUSE-SU-2019:1293