{"affected":[{"ecosystem_specific":{"binaries":[{"apache2-mod_php7":"7.4.33-150200.3.76.1","php7":"7.4.33-150200.3.76.1","php7-bcmath":"7.4.33-150200.3.76.1","php7-bz2":"7.4.33-150200.3.76.1","php7-calendar":"7.4.33-150200.3.76.1","php7-ctype":"7.4.33-150200.3.76.1","php7-curl":"7.4.33-150200.3.76.1","php7-dba":"7.4.33-150200.3.76.1","php7-devel":"7.4.33-150200.3.76.1","php7-dom":"7.4.33-150200.3.76.1","php7-enchant":"7.4.33-150200.3.76.1","php7-exif":"7.4.33-150200.3.76.1","php7-fastcgi":"7.4.33-150200.3.76.1","php7-fileinfo":"7.4.33-150200.3.76.1","php7-fpm":"7.4.33-150200.3.76.1","php7-ftp":"7.4.33-150200.3.76.1","php7-gd":"7.4.33-150200.3.76.1","php7-gettext":"7.4.33-150200.3.76.1","php7-gmp":"7.4.33-150200.3.76.1","php7-iconv":"7.4.33-150200.3.76.1","php7-intl":"7.4.33-150200.3.76.1","php7-json":"7.4.33-150200.3.76.1","php7-ldap":"7.4.33-150200.3.76.1","php7-mbstring":"7.4.33-150200.3.76.1","php7-mysql":"7.4.33-150200.3.76.1","php7-odbc":"7.4.33-150200.3.76.1","php7-opcache":"7.4.33-150200.3.76.1","php7-openssl":"7.4.33-150200.3.76.1","php7-pcntl":"7.4.33-150200.3.76.1","php7-pdo":"7.4.33-150200.3.76.1","php7-pgsql":"7.4.33-150200.3.76.1","php7-phar":"7.4.33-150200.3.76.1","php7-posix":"7.4.33-150200.3.76.1","php7-readline":"7.4.33-150200.3.76.1","php7-shmop":"7.4.33-150200.3.76.1","php7-snmp":"7.4.33-150200.3.76.1","php7-soap":"7.4.33-150200.3.76.1","php7-sockets":"7.4.33-150200.3.76.1","php7-sodium":"7.4.33-150200.3.76.1","php7-sqlite":"7.4.33-150200.3.76.1","php7-sysvmsg":"7.4.33-150200.3.76.1","php7-sysvsem":"7.4.33-150200.3.76.1","php7-sysvshm":"7.4.33-150200.3.76.1","php7-tidy":"7.4.33-150200.3.76.1","php7-tokenizer":"7.4.33-150200.3.76.1","php7-xmlreader":"7.4.33-150200.3.76.1","php7-xmlrpc":"7.4.33-150200.3.76.1","php7-xmlwriter":"7.4.33-150200.3.76.1","php7-xsl":"7.4.33-150200.3.76.1","php7-zip":"7.4.33-150200.3.76.1","php7-zlib":"7.4.33-150200.3.76.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSS","name":"php7","purl":"pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-150200.3.76.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"apache2-mod_php7":"7.4.33-150200.3.76.1","php7":"7.4.33-150200.3.76.1","php7-bcmath":"7.4.33-150200.3.76.1","php7-bz2":"7.4.33-150200.3.76.1","php7-calendar":"7.4.33-150200.3.76.1","php7-ctype":"7.4.33-150200.3.76.1","php7-curl":"7.4.33-150200.3.76.1","php7-dba":"7.4.33-150200.3.76.1","php7-devel":"7.4.33-150200.3.76.1","php7-dom":"7.4.33-150200.3.76.1","php7-enchant":"7.4.33-150200.3.76.1","php7-exif":"7.4.33-150200.3.76.1","php7-fastcgi":"7.4.33-150200.3.76.1","php7-fileinfo":"7.4.33-150200.3.76.1","php7-fpm":"7.4.33-150200.3.76.1","php7-ftp":"7.4.33-150200.3.76.1","php7-gd":"7.4.33-150200.3.76.1","php7-gettext":"7.4.33-150200.3.76.1","php7-gmp":"7.4.33-150200.3.76.1","php7-iconv":"7.4.33-150200.3.76.1","php7-intl":"7.4.33-150200.3.76.1","php7-json":"7.4.33-150200.3.76.1","php7-ldap":"7.4.33-150200.3.76.1","php7-mbstring":"7.4.33-150200.3.76.1","php7-mysql":"7.4.33-150200.3.76.1","php7-odbc":"7.4.33-150200.3.76.1","php7-opcache":"7.4.33-150200.3.76.1","php7-openssl":"7.4.33-150200.3.76.1","php7-pcntl":"7.4.33-150200.3.76.1","php7-pdo":"7.4.33-150200.3.76.1","php7-pgsql":"7.4.33-150200.3.76.1","php7-phar":"7.4.33-150200.3.76.1","php7-posix":"7.4.33-150200.3.76.1","php7-readline":"7.4.33-150200.3.76.1","php7-shmop":"7.4.33-150200.3.76.1","php7-snmp":"7.4.33-150200.3.76.1","php7-soap":"7.4.33-150200.3.76.1","php7-sockets":"7.4.33-150200.3.76.1","php7-sodium":"7.4.33-150200.3.76.1","php7-sqlite":"7.4.33-150200.3.76.1","php7-sysvmsg":"7.4.33-150200.3.76.1","php7-sysvsem":"7.4.33-150200.3.76.1","php7-sysvshm":"7.4.33-150200.3.76.1","php7-tidy":"7.4.33-150200.3.76.1","php7-tokenizer":"7.4.33-150200.3.76.1","php7-xmlreader":"7.4.33-150200.3.76.1","php7-xmlrpc":"7.4.33-150200.3.76.1","php7-xmlwriter":"7.4.33-150200.3.76.1","php7-xsl":"7.4.33-150200.3.76.1","php7-zip":"7.4.33-150200.3.76.1","php7-zlib":"7.4.33-150200.3.76.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP3-LTSS","name":"php7","purl":"pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-150200.3.76.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"apache2-mod_php7":"7.4.33-150200.3.76.1","php7":"7.4.33-150200.3.76.1","php7-bcmath":"7.4.33-150200.3.76.1","php7-bz2":"7.4.33-150200.3.76.1","php7-calendar":"7.4.33-150200.3.76.1","php7-ctype":"7.4.33-150200.3.76.1","php7-curl":"7.4.33-150200.3.76.1","php7-dba":"7.4.33-150200.3.76.1","php7-devel":"7.4.33-150200.3.76.1","php7-dom":"7.4.33-150200.3.76.1","php7-enchant":"7.4.33-150200.3.76.1","php7-exif":"7.4.33-150200.3.76.1","php7-fastcgi":"7.4.33-150200.3.76.1","php7-fileinfo":"7.4.33-150200.3.76.1","php7-fpm":"7.4.33-150200.3.76.1","php7-ftp":"7.4.33-150200.3.76.1","php7-gd":"7.4.33-150200.3.76.1","php7-gettext":"7.4.33-150200.3.76.1","php7-gmp":"7.4.33-150200.3.76.1","php7-iconv":"7.4.33-150200.3.76.1","php7-intl":"7.4.33-150200.3.76.1","php7-json":"7.4.33-150200.3.76.1","php7-ldap":"7.4.33-150200.3.76.1","php7-mbstring":"7.4.33-150200.3.76.1","php7-mysql":"7.4.33-150200.3.76.1","php7-odbc":"7.4.33-150200.3.76.1","php7-opcache":"7.4.33-150200.3.76.1","php7-openssl":"7.4.33-150200.3.76.1","php7-pcntl":"7.4.33-150200.3.76.1","php7-pdo":"7.4.33-150200.3.76.1","php7-pgsql":"7.4.33-150200.3.76.1","php7-phar":"7.4.33-150200.3.76.1","php7-posix":"7.4.33-150200.3.76.1","php7-readline":"7.4.33-150200.3.76.1","php7-shmop":"7.4.33-150200.3.76.1","php7-snmp":"7.4.33-150200.3.76.1","php7-soap":"7.4.33-150200.3.76.1","php7-sockets":"7.4.33-150200.3.76.1","php7-sodium":"7.4.33-150200.3.76.1","php7-sqlite":"7.4.33-150200.3.76.1","php7-sysvmsg":"7.4.33-150200.3.76.1","php7-sysvsem":"7.4.33-150200.3.76.1","php7-sysvshm":"7.4.33-150200.3.76.1","php7-tidy":"7.4.33-150200.3.76.1","php7-tokenizer":"7.4.33-150200.3.76.1","php7-xmlreader":"7.4.33-150200.3.76.1","php7-xmlrpc":"7.4.33-150200.3.76.1","php7-xmlwriter":"7.4.33-150200.3.76.1","php7-xsl":"7.4.33-150200.3.76.1","php7-zip":"7.4.33-150200.3.76.1","php7-zlib":"7.4.33-150200.3.76.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP3","name":"php7","purl":"pkg:rpm/suse/php7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-150200.3.76.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"apache2-mod_php7":"7.4.33-150200.3.76.1","php7":"7.4.33-150200.3.76.1","php7-bcmath":"7.4.33-150200.3.76.1","php7-bz2":"7.4.33-150200.3.76.1","php7-calendar":"7.4.33-150200.3.76.1","php7-ctype":"7.4.33-150200.3.76.1","php7-curl":"7.4.33-150200.3.76.1","php7-dba":"7.4.33-150200.3.76.1","php7-devel":"7.4.33-150200.3.76.1","php7-dom":"7.4.33-150200.3.76.1","php7-enchant":"7.4.33-150200.3.76.1","php7-exif":"7.4.33-150200.3.76.1","php7-fastcgi":"7.4.33-150200.3.76.1","php7-fileinfo":"7.4.33-150200.3.76.1","php7-fpm":"7.4.33-150200.3.76.1","php7-ftp":"7.4.33-150200.3.76.1","php7-gd":"7.4.33-150200.3.76.1","php7-gettext":"7.4.33-150200.3.76.1","php7-gmp":"7.4.33-150200.3.76.1","php7-iconv":"7.4.33-150200.3.76.1","php7-intl":"7.4.33-150200.3.76.1","php7-json":"7.4.33-150200.3.76.1","php7-ldap":"7.4.33-150200.3.76.1","php7-mbstring":"7.4.33-150200.3.76.1","php7-mysql":"7.4.33-150200.3.76.1","php7-odbc":"7.4.33-150200.3.76.1","php7-opcache":"7.4.33-150200.3.76.1","php7-openssl":"7.4.33-150200.3.76.1","php7-pcntl":"7.4.33-150200.3.76.1","php7-pdo":"7.4.33-150200.3.76.1","php7-pgsql":"7.4.33-150200.3.76.1","php7-phar":"7.4.33-150200.3.76.1","php7-posix":"7.4.33-150200.3.76.1","php7-readline":"7.4.33-150200.3.76.1","php7-shmop":"7.4.33-150200.3.76.1","php7-snmp":"7.4.33-150200.3.76.1","php7-soap":"7.4.33-150200.3.76.1","php7-sockets":"7.4.33-150200.3.76.1","php7-sodium":"7.4.33-150200.3.76.1","php7-sqlite":"7.4.33-150200.3.76.1","php7-sysvmsg":"7.4.33-150200.3.76.1","php7-sysvsem":"7.4.33-150200.3.76.1","php7-sysvshm":"7.4.33-150200.3.76.1","php7-tidy":"7.4.33-150200.3.76.1","php7-tokenizer":"7.4.33-150200.3.76.1","php7-xmlreader":"7.4.33-150200.3.76.1","php7-xmlrpc":"7.4.33-150200.3.76.1","php7-xmlwriter":"7.4.33-150200.3.76.1","php7-xsl":"7.4.33-150200.3.76.1","php7-zip":"7.4.33-150200.3.76.1","php7-zlib":"7.4.33-150200.3.76.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7.1","name":"php7","purl":"pkg:rpm/suse/php7&distro=SUSE%20Enterprise%20Storage%207.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-150200.3.76.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for php7 fixes the following issues:\n\n- CVE-2024-11235: Fixed reference counting in php_request_shutdown causing Use-After-Free (bsc#1239666)\n- CVE-2025-1217: Fixed header parser of http stream wrapper not handling folded headers (bsc#1239664)\n- CVE-2025-1219: Fixed libxml streams using wrong content-type header when requesting a redirected resource (bsc#1239667)\n- CVE-2025-1734: Fixed streams HTTP wrapper not failing for headers with invalid name and no colon (bsc#1239668)\n- CVE-2025-1736: Fixed stream HTTP wrapper header check might omitting basic auth header (bsc#1239670)\n- CVE-2025-1861: Fixed stream HTTP wrapper truncate redirect location to 1024 bytes (bsc#1239669)\n","id":"SUSE-SU-2025:1026-1","modified":"2025-03-26T11:30:47Z","published":"2025-03-26T11:30:47Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-20251026-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239664"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239666"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239667"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239668"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239669"},{"type":"REPORT","url":"https://bugzilla.suse.com/1239670"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-11235"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-1217"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-1219"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-1734"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-1736"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-1861"}],"related":["CVE-2024-11235","CVE-2025-1217","CVE-2025-1219","CVE-2025-1734","CVE-2025-1736","CVE-2025-1861"],"summary":"Security update for php7","upstream":["CVE-2024-11235","CVE-2025-1217","CVE-2025-1219","CVE-2025-1734","CVE-2025-1736","CVE-2025-1861"]}