Описание
Security update for php7
This update for php7 fixes the following issues:
- CVE-2024-11235: Fixed reference counting in php_request_shutdown causing Use-After-Free (bsc#1239666)
- CVE-2025-1217: Fixed header parser of http stream wrapper not handling folded headers (bsc#1239664)
- CVE-2025-1219: Fixed libxml streams using wrong content-type header when requesting a redirected resource (bsc#1239667)
- CVE-2025-1734: Fixed streams HTTP wrapper not failing for headers with invalid name and no colon (bsc#1239668)
- CVE-2025-1736: Fixed stream HTTP wrapper header check might omitting basic auth header (bsc#1239670)
- CVE-2025-1861: Fixed stream HTTP wrapper truncate redirect location to 1024 bytes (bsc#1239669)
Список пакетов
SUSE Enterprise Storage 7.1
apache2-mod_php7-7.4.33-150200.3.76.1
php7-7.4.33-150200.3.76.1
php7-bcmath-7.4.33-150200.3.76.1
php7-bz2-7.4.33-150200.3.76.1
php7-calendar-7.4.33-150200.3.76.1
php7-ctype-7.4.33-150200.3.76.1
php7-curl-7.4.33-150200.3.76.1
php7-dba-7.4.33-150200.3.76.1
php7-devel-7.4.33-150200.3.76.1
php7-dom-7.4.33-150200.3.76.1
php7-enchant-7.4.33-150200.3.76.1
php7-exif-7.4.33-150200.3.76.1
php7-fastcgi-7.4.33-150200.3.76.1
php7-fileinfo-7.4.33-150200.3.76.1
php7-fpm-7.4.33-150200.3.76.1
php7-ftp-7.4.33-150200.3.76.1
php7-gd-7.4.33-150200.3.76.1
php7-gettext-7.4.33-150200.3.76.1
php7-gmp-7.4.33-150200.3.76.1
php7-iconv-7.4.33-150200.3.76.1
php7-intl-7.4.33-150200.3.76.1
php7-json-7.4.33-150200.3.76.1
php7-ldap-7.4.33-150200.3.76.1
php7-mbstring-7.4.33-150200.3.76.1
php7-mysql-7.4.33-150200.3.76.1
php7-odbc-7.4.33-150200.3.76.1
php7-opcache-7.4.33-150200.3.76.1
php7-openssl-7.4.33-150200.3.76.1
php7-pcntl-7.4.33-150200.3.76.1
php7-pdo-7.4.33-150200.3.76.1
php7-pgsql-7.4.33-150200.3.76.1
php7-phar-7.4.33-150200.3.76.1
php7-posix-7.4.33-150200.3.76.1
php7-readline-7.4.33-150200.3.76.1
php7-shmop-7.4.33-150200.3.76.1
php7-snmp-7.4.33-150200.3.76.1
php7-soap-7.4.33-150200.3.76.1
php7-sockets-7.4.33-150200.3.76.1
php7-sodium-7.4.33-150200.3.76.1
php7-sqlite-7.4.33-150200.3.76.1
php7-sysvmsg-7.4.33-150200.3.76.1
php7-sysvsem-7.4.33-150200.3.76.1
php7-sysvshm-7.4.33-150200.3.76.1
php7-tidy-7.4.33-150200.3.76.1
php7-tokenizer-7.4.33-150200.3.76.1
php7-xmlreader-7.4.33-150200.3.76.1
php7-xmlrpc-7.4.33-150200.3.76.1
php7-xmlwriter-7.4.33-150200.3.76.1
php7-xsl-7.4.33-150200.3.76.1
php7-zip-7.4.33-150200.3.76.1
php7-zlib-7.4.33-150200.3.76.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
apache2-mod_php7-7.4.33-150200.3.76.1
php7-7.4.33-150200.3.76.1
php7-bcmath-7.4.33-150200.3.76.1
php7-bz2-7.4.33-150200.3.76.1
php7-calendar-7.4.33-150200.3.76.1
php7-ctype-7.4.33-150200.3.76.1
php7-curl-7.4.33-150200.3.76.1
php7-dba-7.4.33-150200.3.76.1
php7-devel-7.4.33-150200.3.76.1
php7-dom-7.4.33-150200.3.76.1
php7-enchant-7.4.33-150200.3.76.1
php7-exif-7.4.33-150200.3.76.1
php7-fastcgi-7.4.33-150200.3.76.1
php7-fileinfo-7.4.33-150200.3.76.1
php7-fpm-7.4.33-150200.3.76.1
php7-ftp-7.4.33-150200.3.76.1
php7-gd-7.4.33-150200.3.76.1
php7-gettext-7.4.33-150200.3.76.1
php7-gmp-7.4.33-150200.3.76.1
php7-iconv-7.4.33-150200.3.76.1
php7-intl-7.4.33-150200.3.76.1
php7-json-7.4.33-150200.3.76.1
php7-ldap-7.4.33-150200.3.76.1
php7-mbstring-7.4.33-150200.3.76.1
php7-mysql-7.4.33-150200.3.76.1
php7-odbc-7.4.33-150200.3.76.1
php7-opcache-7.4.33-150200.3.76.1
php7-openssl-7.4.33-150200.3.76.1
php7-pcntl-7.4.33-150200.3.76.1
php7-pdo-7.4.33-150200.3.76.1
php7-pgsql-7.4.33-150200.3.76.1
php7-phar-7.4.33-150200.3.76.1
php7-posix-7.4.33-150200.3.76.1
php7-readline-7.4.33-150200.3.76.1
php7-shmop-7.4.33-150200.3.76.1
php7-snmp-7.4.33-150200.3.76.1
php7-soap-7.4.33-150200.3.76.1
php7-sockets-7.4.33-150200.3.76.1
php7-sodium-7.4.33-150200.3.76.1
php7-sqlite-7.4.33-150200.3.76.1
php7-sysvmsg-7.4.33-150200.3.76.1
php7-sysvsem-7.4.33-150200.3.76.1
php7-sysvshm-7.4.33-150200.3.76.1
php7-tidy-7.4.33-150200.3.76.1
php7-tokenizer-7.4.33-150200.3.76.1
php7-xmlreader-7.4.33-150200.3.76.1
php7-xmlrpc-7.4.33-150200.3.76.1
php7-xmlwriter-7.4.33-150200.3.76.1
php7-xsl-7.4.33-150200.3.76.1
php7-zip-7.4.33-150200.3.76.1
php7-zlib-7.4.33-150200.3.76.1
SUSE Linux Enterprise Server 15 SP3-LTSS
apache2-mod_php7-7.4.33-150200.3.76.1
php7-7.4.33-150200.3.76.1
php7-bcmath-7.4.33-150200.3.76.1
php7-bz2-7.4.33-150200.3.76.1
php7-calendar-7.4.33-150200.3.76.1
php7-ctype-7.4.33-150200.3.76.1
php7-curl-7.4.33-150200.3.76.1
php7-dba-7.4.33-150200.3.76.1
php7-devel-7.4.33-150200.3.76.1
php7-dom-7.4.33-150200.3.76.1
php7-enchant-7.4.33-150200.3.76.1
php7-exif-7.4.33-150200.3.76.1
php7-fastcgi-7.4.33-150200.3.76.1
php7-fileinfo-7.4.33-150200.3.76.1
php7-fpm-7.4.33-150200.3.76.1
php7-ftp-7.4.33-150200.3.76.1
php7-gd-7.4.33-150200.3.76.1
php7-gettext-7.4.33-150200.3.76.1
php7-gmp-7.4.33-150200.3.76.1
php7-iconv-7.4.33-150200.3.76.1
php7-intl-7.4.33-150200.3.76.1
php7-json-7.4.33-150200.3.76.1
php7-ldap-7.4.33-150200.3.76.1
php7-mbstring-7.4.33-150200.3.76.1
php7-mysql-7.4.33-150200.3.76.1
php7-odbc-7.4.33-150200.3.76.1
php7-opcache-7.4.33-150200.3.76.1
php7-openssl-7.4.33-150200.3.76.1
php7-pcntl-7.4.33-150200.3.76.1
php7-pdo-7.4.33-150200.3.76.1
php7-pgsql-7.4.33-150200.3.76.1
php7-phar-7.4.33-150200.3.76.1
php7-posix-7.4.33-150200.3.76.1
php7-readline-7.4.33-150200.3.76.1
php7-shmop-7.4.33-150200.3.76.1
php7-snmp-7.4.33-150200.3.76.1
php7-soap-7.4.33-150200.3.76.1
php7-sockets-7.4.33-150200.3.76.1
php7-sodium-7.4.33-150200.3.76.1
php7-sqlite-7.4.33-150200.3.76.1
php7-sysvmsg-7.4.33-150200.3.76.1
php7-sysvsem-7.4.33-150200.3.76.1
php7-sysvshm-7.4.33-150200.3.76.1
php7-tidy-7.4.33-150200.3.76.1
php7-tokenizer-7.4.33-150200.3.76.1
php7-xmlreader-7.4.33-150200.3.76.1
php7-xmlrpc-7.4.33-150200.3.76.1
php7-xmlwriter-7.4.33-150200.3.76.1
php7-xsl-7.4.33-150200.3.76.1
php7-zip-7.4.33-150200.3.76.1
php7-zlib-7.4.33-150200.3.76.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
apache2-mod_php7-7.4.33-150200.3.76.1
php7-7.4.33-150200.3.76.1
php7-bcmath-7.4.33-150200.3.76.1
php7-bz2-7.4.33-150200.3.76.1
php7-calendar-7.4.33-150200.3.76.1
php7-ctype-7.4.33-150200.3.76.1
php7-curl-7.4.33-150200.3.76.1
php7-dba-7.4.33-150200.3.76.1
php7-devel-7.4.33-150200.3.76.1
php7-dom-7.4.33-150200.3.76.1
php7-enchant-7.4.33-150200.3.76.1
php7-exif-7.4.33-150200.3.76.1
php7-fastcgi-7.4.33-150200.3.76.1
php7-fileinfo-7.4.33-150200.3.76.1
php7-fpm-7.4.33-150200.3.76.1
php7-ftp-7.4.33-150200.3.76.1
php7-gd-7.4.33-150200.3.76.1
php7-gettext-7.4.33-150200.3.76.1
php7-gmp-7.4.33-150200.3.76.1
php7-iconv-7.4.33-150200.3.76.1
php7-intl-7.4.33-150200.3.76.1
php7-json-7.4.33-150200.3.76.1
php7-ldap-7.4.33-150200.3.76.1
php7-mbstring-7.4.33-150200.3.76.1
php7-mysql-7.4.33-150200.3.76.1
php7-odbc-7.4.33-150200.3.76.1
php7-opcache-7.4.33-150200.3.76.1
php7-openssl-7.4.33-150200.3.76.1
php7-pcntl-7.4.33-150200.3.76.1
php7-pdo-7.4.33-150200.3.76.1
php7-pgsql-7.4.33-150200.3.76.1
php7-phar-7.4.33-150200.3.76.1
php7-posix-7.4.33-150200.3.76.1
php7-readline-7.4.33-150200.3.76.1
php7-shmop-7.4.33-150200.3.76.1
php7-snmp-7.4.33-150200.3.76.1
php7-soap-7.4.33-150200.3.76.1
php7-sockets-7.4.33-150200.3.76.1
php7-sodium-7.4.33-150200.3.76.1
php7-sqlite-7.4.33-150200.3.76.1
php7-sysvmsg-7.4.33-150200.3.76.1
php7-sysvsem-7.4.33-150200.3.76.1
php7-sysvshm-7.4.33-150200.3.76.1
php7-tidy-7.4.33-150200.3.76.1
php7-tokenizer-7.4.33-150200.3.76.1
php7-xmlreader-7.4.33-150200.3.76.1
php7-xmlrpc-7.4.33-150200.3.76.1
php7-xmlwriter-7.4.33-150200.3.76.1
php7-xsl-7.4.33-150200.3.76.1
php7-zip-7.4.33-150200.3.76.1
php7-zlib-7.4.33-150200.3.76.1
Ссылки
- Link for SUSE-SU-2025:1026-1
- E-Mail link for SUSE-SU-2025:1026-1
- SUSE Security Ratings
- SUSE Bug 1239664
- SUSE Bug 1239666
- SUSE Bug 1239667
- SUSE Bug 1239668
- SUSE Bug 1239669
- SUSE Bug 1239670
- SUSE CVE CVE-2024-11235 page
- SUSE CVE CVE-2025-1217 page
- SUSE CVE CVE-2025-1219 page
- SUSE CVE CVE-2025-1734 page
- SUSE CVE CVE-2025-1736 page
- SUSE CVE CVE-2025-1861 page
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2024-11235
- SUSE Bug 1239666
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2025-1217
- SUSE Bug 1239664
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2025-1219
- SUSE Bug 1239667
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2025-1734
- SUSE Bug 1239668
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2025-1736
- SUSE Bug 1239670
Описание
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Затронутые продукты
SUSE Enterprise Storage 7.1:apache2-mod_php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bcmath-7.4.33-150200.3.76.1
SUSE Enterprise Storage 7.1:php7-bz2-7.4.33-150200.3.76.1
Ссылки
- CVE-2025-1861
- SUSE Bug 1239669