SUSE-SU-2015:0370-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2015/suse-su-20150370-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:0370-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/SUSE-SU-2015:0370-1
Related
Published
2014-10-28T10:05:33Z
Modified
2025-05-08T17:00:37.261499Z
Upstream
  • CVE-2014-4049
  • CVE-2015-4603
  • CVE-2015-4026
  • CVE-2015-4021
  • CVE-2015-4644
  • CVE-2014-8142
  • CVE-2013-6712
  • CVE-2013-4248
  • CVE-2014-4670
  • CVE-2013-6420
  • CVE-2015-0231
  • CVE-2015-3329
  • CVE-2015-4601
  • CVE-2015-0232
  • CVE-2014-3668
  • CVE-2014-9705
  • CVE-2013-4113
  • CVE-2014-5459
  • CVE-2014-3515
  • CVE-2013-4635
  • CVE-2015-4022
  • CVE-2014-4721
  • CVE-2015-2301
  • CVE-2015-4600
  • CVE-2015-3411
  • CVE-2015-2783
  • CVE-2015-4598
  • CVE-2014-3670
  • CVE-2015-2787
  • CVE-2015-4643
  • CVE-2014-4698
  • CVE-2014-3669
  • CVE-2015-4602
  • CVE-2015-4024
  • CVE-2015-4599
  • CVE-2013-6501
  • CVE-2015-3412
  • CVE-2015-4148
Summary
Security update for php53
Details

This update fixes the following vulnerabilities in php:

* Heap corruption issue in exif_thumbnail(). (CVE-2014-3670)
* Integer overflow in unserialize(). (CVE-2014-3669)
* Xmlrpc ISO8601 date format parsing out-of-bounds read in mkgmtime().
  (CVE-2014-3668)

Security Issues:

* CVE-2014-3669
  <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3669>
* CVE-2014-3670
  <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3670>
* CVE-2014-3668
  <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3668>
References

Affected packages