CVE-2015-2331

Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ZIP archive that contains many entries, leading to a heap-based buffer overflow.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
Affected Products (NVD)
VendorProductVersion
nihlibzip
𝑥
≤ 0.11.2
phpphp
𝑥
≤ 5.4.38
phpphp
5.5.0
phpphp
5.5.0:alpha1
phpphp
5.5.0:alpha2
phpphp
5.5.0:alpha3
phpphp
5.5.0:alpha4
phpphp
5.5.0:alpha5
phpphp
5.5.0:alpha6
phpphp
5.5.0:beta1
phpphp
5.5.0:beta2
phpphp
5.5.0:beta3
phpphp
5.5.0:beta4
phpphp
5.5.0:rc1
phpphp
5.5.0:rc2
phpphp
5.5.1
phpphp
5.5.2
phpphp
5.5.3
phpphp
5.5.4
phpphp
5.5.5
phpphp
5.5.6
phpphp
5.5.7
phpphp
5.5.8
phpphp
5.5.9
phpphp
5.5.10
phpphp
5.5.11
phpphp
5.5.12
phpphp
5.5.13
phpphp
5.5.14
phpphp
5.5.15
phpphp
5.5.16
phpphp
5.5.17
phpphp
5.5.18
phpphp
5.5.19
phpphp
5.5.20
phpphp
5.5.21
phpphp
5.5.22
phpphp
5.6.0:alpha1
phpphp
5.6.0:alpha2
phpphp
5.6.0:alpha3
phpphp
5.6.0:alpha4
phpphp
5.6.0:alpha5
phpphp
5.6.0:beta1
phpphp
5.6.0:beta2
phpphp
5.6.0:beta3
phpphp
5.6.0:beta4
phpphp
5.6.1
phpphp
5.6.2
phpphp
5.6.3
phpphp
5.6.4
phpphp
5.6.5
phpphp
5.6.6
debiandebian_linux
7.0
opensuseopensuse
13.1
opensuseopensuse
13.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libzip
bookworm
1.7.3-1
fixed
bullseye
1.7.3-1
fixed
sid
1.11.2-1
fixed
squeeze
not-affected
trixie
1.11.1-1
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libzip
lucid
ignored
precise
not-affected
trusty
not-affected
utopic
ignored
vivid
ignored
wily
not-affected
php5
lucid
not-affected
precise
not-affected
trusty
not-affected
utopic
not-affected
vivid
Fixed 5.6.4+dfsg-4ubuntu4
released
wily
Fixed 5.6.4+dfsg-4ubuntu4
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
apache2-mod_php7
suse enterprise sap 15 SP4
7.4.25-150400.2.8
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise sap 15 SP7
7.4.33-150400.4.48.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.8
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP7
7.4.33-150400.4.48.1
fixed
libzip-devel
suse enterprise desktop 15
1.5.1-1.9
fixed
suse enterprise desktop 15 SP1
1.5.1-1.9
fixed
suse enterprise desktop 15 SP2
1.5.1-1.9
fixed
suse enterprise desktop 15 SP3
1.5.1-1.9
fixed
suse enterprise desktop 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise desktop 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise desktop 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise desktop 15 SP7
1.10.1-150600.1.5
fixed
suse enterprise sap 15
1.5.1-1.9
fixed
suse enterprise sap 15 SP1
1.5.1-1.9
fixed
suse enterprise sap 15 SP2
1.5.1-1.9
fixed
suse enterprise sap 15 SP3
1.5.1-1.9
fixed
suse enterprise sap 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise sap 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise sap 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise sap 15 SP7
1.10.1-150600.1.5
fixed
suse enterprise server 15
1.5.1-1.9
fixed
suse enterprise server 15 SP1
1.5.1-1.9
fixed
suse enterprise server 15 SP2
1.5.1-1.9
fixed
suse enterprise server 15 SP3
1.5.1-1.9
fixed
suse enterprise server 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise server 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise server 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise server 15 SP7
1.10.1-150600.1.5
fixed
libzip5
suse enterprise desktop 15
1.5.1-1.9
fixed
suse enterprise desktop 15 SP1
1.5.1-1.9
fixed
suse enterprise desktop 15 SP2
1.5.1-1.9
fixed
suse enterprise desktop 15 SP3
1.5.1-1.9
fixed
suse enterprise desktop 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise desktop 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise desktop 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise desktop 15 SP7
1.10.1-150600.1.5
fixed
suse enterprise sap 15
1.5.1-1.9
fixed
suse enterprise sap 15 SP1
1.5.1-1.9
fixed
suse enterprise sap 15 SP2
1.5.1-1.9
fixed
suse enterprise sap 15 SP3
1.5.1-1.9
fixed
suse enterprise sap 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise sap 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise sap 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise sap 15 SP7
1.10.1-150600.1.5
fixed
suse enterprise server 15
1.5.1-1.9
fixed
suse enterprise server 15 SP1
1.5.1-1.9
fixed
suse enterprise server 15 SP2
1.5.1-1.9
fixed
suse enterprise server 15 SP3
1.5.1-1.9
fixed
suse enterprise server 15 SP4
1.8.0-150400.1.7
fixed
suse enterprise server 15 SP5
1.8.0-150400.1.7
fixed
suse enterprise server 15 SP6
1.10.1-150600.1.5
fixed
suse enterprise server 15 SP7
1.10.1-150600.1.5
fixed
php7
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise sap 15 SP7
7.4.33-150400.4.48.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP7
7.4.33-150400.4.48.1
fixed
php7-bcmath
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-bz2
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-calendar
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-cli
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-ctype
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-curl
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-dba
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-devel
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-dom
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-enchant
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-exif
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-fastcgi
suse enterprise sap 15 SP4
7.4.25-150400.2.6
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.6
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-fileinfo
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-fpm
suse enterprise sap 15 SP4
7.4.25-150400.2.6
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.6
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-ftp
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-gd
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-gettext
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-gmp
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-iconv
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-intl
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-json
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-ldap
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-mbstring
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-mysql
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-odbc
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-opcache
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-openssl
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-pcntl
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-pdo
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-pgsql
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-phar
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-posix
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-readline
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-shmop
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-snmp
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-soap
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sockets
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sodium
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sqlite
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sysvmsg
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sysvsem
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-sysvshm
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-tidy
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-tokenizer
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-xmlreader
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-xmlrpc
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-xmlwriter
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-xsl
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-zip
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
php7-zlib
suse enterprise sap 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise sap 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise sap 15 SP6
7.4.33-150400.4.34.1
fixed
suse enterprise server 15 SP4
7.4.25-150400.2.7
fixed
suse enterprise server 15 SP5
7.4.33-150400.4.22.1
fixed
suse enterprise server 15 SP6
7.4.33-150400.4.34.1
fixed
Common Weakness Enumeration
References
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5
http://hg.nih.at/libzip/rev/9f11d54f692e
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html
http://lists.opensuse.org/opensuse-updates/2015-03/msg00083.html
http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.html
http://marc.info/?l=bugtraq&m=143403519711434&w=2
http://marc.info/?l=bugtraq&m=143748090628601&w=2
http://marc.info/?l=bugtraq&m=144050155601375&w=2
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3198
http://www.mandriva.com/security/advisories?name=MDVSA-2015:079
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securitytracker.com/id/1031985
https://bugs.php.net/bug.php?id=69253
https://support.apple.com/HT205267
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5
http://hg.nih.at/libzip/rev/9f11d54f692e
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154266.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154276.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154666.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155299.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155622.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/153983.html
http://lists.opensuse.org/opensuse-updates/2015-03/msg00083.html
http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.html
http://marc.info/?l=bugtraq&m=143403519711434&w=2
http://marc.info/?l=bugtraq&m=143748090628601&w=2
http://marc.info/?l=bugtraq&m=144050155601375&w=2
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3198
http://www.mandriva.com/security/advisories?name=MDVSA-2015:079
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
http://www.securitytracker.com/id/1031985
https://bugs.php.net/bug.php?id=69253
https://support.apple.com/HT205267