Vulnerability Database
Blog
FAQ
Docs
openSUSE-SU-2021:2872-1
See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2021:2872-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/openSUSE-SU-2021:2872-1
Related
CVE-2020-36193
Published
2021-08-30T13:53:54Z
Modified
2021-08-30T13:53:54Z
Summary
Security update for php7
Details
This update for php7 fixes the following issues:
CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591).
References
https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GCXMJ4INSB7EFEHMD7OOE6NXYQU2F77I/
https://bugzilla.suse.com/1189591
https://www.suse.com/security/cve/CVE-2020-36193
Affected packages
openSUSE:Leap 15.3
/
php7
Package
Name
php7
Purl
pkg:rpm/opensuse/php7&distro=openSUSE%20Leap%2015.3
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
7.2.5-4.82.1
Ecosystem specific
{ "binaries": [ { "php7-wddx": "7.2.5-4.82.1" } ] }
openSUSE-SU-2021:2872-1 - OSV