Main Vulnerability Database SB2022111139

SB2022111139 - SUSE update for php72

Published: November 11, 2022 Updated: October 27, 2023

Security Bulletin ID SB2022111139

Severity

Medium

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Infinite loop (CVE-ID: CVE-2022-31628)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop within the phar uncompressor code when processing "quines" gzip files. A remote attacker can pass a specially crafted archive to the application, consume all available system resources and cause denial of service conditions.

2) Security features bypass (CVE-ID: CVE-2022-31629)

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the way PHP handles HTTP variable names. A remote attacker can set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2022/suse-su-20223957-1/

Vulnerable Software

SUSE Linux Enterprise Server for SAP Applications: 12-SP3 - 12-SP5
SUSE Linux Enterprise High Performance Computing: 12
SUSE Linux Enterprise Server: 12-SP2-LTSS-ERICSSON - 12-SP5
SUSE Linux Enterprise Module for Web Scripting: 12
SUSE Linux Enterprise Software Development Kit: 12-SP5
php72-pear-Archive_Tar: before 7.2.5-1.84.1
php72-pear: before 7.2.5-1.84.1
php72-zlib-debuginfo: before 7.2.5-1.84.1
php72-zlib: before 7.2.5-1.84.1
php72-zip-debuginfo: before 7.2.5-1.84.1
php72-zip: before 7.2.5-1.84.1
php72-xsl-debuginfo: before 7.2.5-1.84.1
php72-xsl: before 7.2.5-1.84.1
php72-xmlwriter-debuginfo: before 7.2.5-1.84.1
php72-xmlwriter: before 7.2.5-1.84.1
php72-xmlrpc-debuginfo: before 7.2.5-1.84.1
php72-xmlrpc: before 7.2.5-1.84.1
php72-xmlreader-debuginfo: before 7.2.5-1.84.1
php72-xmlreader: before 7.2.5-1.84.1
php72-wddx-debuginfo: before 7.2.5-1.84.1
php72-wddx: before 7.2.5-1.84.1
php72-tokenizer-debuginfo: before 7.2.5-1.84.1
php72-tokenizer: before 7.2.5-1.84.1
php72-tidy-debuginfo: before 7.2.5-1.84.1
php72-tidy: before 7.2.5-1.84.1
php72-sysvshm-debuginfo: before 7.2.5-1.84.1
php72-sysvshm: before 7.2.5-1.84.1
php72-sysvsem-debuginfo: before 7.2.5-1.84.1
php72-sysvsem: before 7.2.5-1.84.1
php72-sysvmsg-debuginfo: before 7.2.5-1.84.1
php72-sysvmsg: before 7.2.5-1.84.1
php72-sqlite-debuginfo: before 7.2.5-1.84.1
php72-sqlite: before 7.2.5-1.84.1
php72-sodium-debuginfo: before 7.2.5-1.84.1
php72-sodium: before 7.2.5-1.84.1
php72-sockets-debuginfo: before 7.2.5-1.84.1
php72-sockets: before 7.2.5-1.84.1
php72-soap-debuginfo: before 7.2.5-1.84.1
php72-soap: before 7.2.5-1.84.1
php72-snmp-debuginfo: before 7.2.5-1.84.1
php72-snmp: before 7.2.5-1.84.1
php72-shmop-debuginfo: before 7.2.5-1.84.1
php72-shmop: before 7.2.5-1.84.1
php72-readline-debuginfo: before 7.2.5-1.84.1
php72-readline: before 7.2.5-1.84.1
php72-pspell-debuginfo: before 7.2.5-1.84.1
php72-pspell: before 7.2.5-1.84.1
php72-posix-debuginfo: before 7.2.5-1.84.1
php72-posix: before 7.2.5-1.84.1
php72-phar-debuginfo: before 7.2.5-1.84.1
php72-phar: before 7.2.5-1.84.1
php72-pgsql-debuginfo: before 7.2.5-1.84.1
php72-pgsql: before 7.2.5-1.84.1
php72-pdo-debuginfo: before 7.2.5-1.84.1
php72-pdo: before 7.2.5-1.84.1
php72-pcntl-debuginfo: before 7.2.5-1.84.1
php72-pcntl: before 7.2.5-1.84.1
php72-openssl-debuginfo: before 7.2.5-1.84.1
php72-openssl: before 7.2.5-1.84.1
php72-opcache-debuginfo: before 7.2.5-1.84.1
php72-opcache: before 7.2.5-1.84.1
php72-odbc-debuginfo: before 7.2.5-1.84.1
php72-odbc: before 7.2.5-1.84.1
php72-mysql-debuginfo: before 7.2.5-1.84.1
php72-mysql: before 7.2.5-1.84.1
php72-mbstring-debuginfo: before 7.2.5-1.84.1
php72-mbstring: before 7.2.5-1.84.1
php72-ldap-debuginfo: before 7.2.5-1.84.1
php72-ldap: before 7.2.5-1.84.1
php72-json-debuginfo: before 7.2.5-1.84.1
php72-json: before 7.2.5-1.84.1
php72-intl-debuginfo: before 7.2.5-1.84.1
php72-intl: before 7.2.5-1.84.1
php72-imap-debuginfo: before 7.2.5-1.84.1
php72-imap: before 7.2.5-1.84.1
php72-iconv-debuginfo: before 7.2.5-1.84.1
php72-iconv: before 7.2.5-1.84.1
php72-gmp-debuginfo: before 7.2.5-1.84.1
php72-gmp: before 7.2.5-1.84.1
php72-gettext-debuginfo: before 7.2.5-1.84.1
php72-gettext: before 7.2.5-1.84.1
php72-gd-debuginfo: before 7.2.5-1.84.1
php72-gd: before 7.2.5-1.84.1
php72-ftp-debuginfo: before 7.2.5-1.84.1
php72-ftp: before 7.2.5-1.84.1
php72-fpm-debuginfo: before 7.2.5-1.84.1
php72-fpm: before 7.2.5-1.84.1
php72-fileinfo-debuginfo: before 7.2.5-1.84.1
php72-fileinfo: before 7.2.5-1.84.1
php72-fastcgi-debuginfo: before 7.2.5-1.84.1
php72-fastcgi: before 7.2.5-1.84.1
php72-exif-debuginfo: before 7.2.5-1.84.1
php72-exif: before 7.2.5-1.84.1
php72-enchant-debuginfo: before 7.2.5-1.84.1
php72-enchant: before 7.2.5-1.84.1
php72-dom-debuginfo: before 7.2.5-1.84.1
php72-dom: before 7.2.5-1.84.1
php72-dba-debuginfo: before 7.2.5-1.84.1
php72-dba: before 7.2.5-1.84.1
php72-curl-debuginfo: before 7.2.5-1.84.1
php72-curl: before 7.2.5-1.84.1
php72-ctype-debuginfo: before 7.2.5-1.84.1
php72-ctype: before 7.2.5-1.84.1
php72-calendar-debuginfo: before 7.2.5-1.84.1
php72-calendar: before 7.2.5-1.84.1
php72-bz2-debuginfo: before 7.2.5-1.84.1
php72-bz2: before 7.2.5-1.84.1
php72-bcmath-debuginfo: before 7.2.5-1.84.1
php72-bcmath: before 7.2.5-1.84.1
php72: before 7.2.5-1.84.1
apache2-mod_php72-debuginfo: before 7.2.5-1.84.1
apache2-mod_php72: before 7.2.5-1.84.1
php72-devel: before 7.2.5-1.84.1
php72-debugsource: before 7.2.5-1.84.1
php72-debuginfo: before 7.2.5-1.84.1