CVE-2019-11039: Fixed a heap-buffer-overflow on php_jpg_get16 (bsc#1138173).
CVE-2019-11040: Fixed an out-of-bounds read due to an integer overflow in
iconv.c:_php_iconv_mime_decode() (bsc#1138172).
Other issue addressed:
Enable php7 testsuite (bsc#1119396
Affected Packages(54 packages)
apache2-mod_php7
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7
SUSE Linux Enterprise Module for Web and Scripting 12SUSE Linux Enterprise Software Development Kit 12 SP3SUSE Linux Enterprise Software Development Kit 12 SP4
Fixed in:
7.0.7-50.80.2
php7-bcmath
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-bz2
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-calendar
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-ctype
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-curl
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-dba
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-dom
SUSE Linux Enterprise Module for Web and Scripting 12
Fixed in:
7.0.7-50.80.2
php7-enchant
SUSE Linux Enterprise Module for Web and Scripting 12