[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2016:2460-2":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":72,"duplicates":73,"related":74,"reserved_at":9,"published_at":104,"modified_at":105,"state":9,"summary":106,"references_raw":108,"kevs":357,"epss":9,"epss_history":358,"metrics":359,"affected":360},"SUSE-SU-2016:2460-2","Security update for php7\n\n\nThis update for php7 fixes the following security issues:\n\n* CVE-2016-6128: Invalid color index not properly handled [bsc#987580]\n* CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif [bsc#988032]\n* CVE-2016-6292: Null pointer dereference in exif_process_user_comment [bsc#991422]\n* CVE-2016-6295: Use after free in SNMP with GC and unserialize() [bsc#991424]\n* CVE-2016-6297: Stack-based buffer overflow vulnerability in php_stream_zip_opener [bsc#991426]\n* CVE-2016-6291: Out-of-bounds access in exif_process_IFD_in_MAKERNOTE [bsc#991427]\n* CVE-2016-6289: Integer overflow leads to buffer overflow in virtual_file_ex [bsc#991428]\n* CVE-2016-6290: Use after free in unserialize() with Unexpected Session Deserialization [bsc#991429]\n* CVE-2016-5399: Improper error handling in bzread() [bsc#991430]\n* CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c [bsc#991437]\n* CVE-2016-6207: Integer overflow error within _gdContributionsAlloc() [bsc#991434]\n* CVE-2016-4473: Invalid free() instead of efree() in phar_extract_file()\n* CVE-2016-7124: Create an Unexpected Object and Don't Invoke __wakeup() in Deserialization\n* CVE-2016-7125: PHP Session Data Injection Vulnerability\n* CVE-2016-7126: select_colors write out-of-bounds\n* CVE-2016-7127: imagegammacorrect allowed arbitrary write access\n* CVE-2016-7128: Memory Leakage In exif_process_IFD_in_TIFF\n* CVE-2016-7129: wddx_deserialize allowed illegal memory access\n* CVE-2016-7131: wddx_deserialize null dereference with invalid xml\n* CVE-2016-7132: wddx_deserialize null dereference in php_wddx_pop_element\n* CVE-2016-7133: memory allocator fails to realloc small block to large one\n* CVE-2016-7134: Heap overflow in the function curl_escape\n* CVE-2016-7130: wddx_deserialize null dereference\n* CVE-2016-7413: Use after free in wddx_deserialize\n* CVE-2016-7412: Heap overflow in mysqlnd when not receiving UNSIGNED_FLAG in BIT field\n* CVE-2016-7417: Missing type check when unserializing SplArray\n* CVE-2016-7416: Stack based buffer overflow in msgfmt_format_message\n* CVE-2016-7418: Null pointer dereference in php_wddx_push_element\n* CVE-2016-7414: Out of bounds heap read when verifying signature of zip phar in phar_parse_zipfile\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70],{"_key":15},"CVE-2016-4473",{"_key":17},"CVE-2016-5399",{"_key":19},"CVE-2016-6128",{"_key":21},"CVE-2016-6161",{"_key":23},"CVE-2016-6207",{"_key":25},"CVE-2016-6289",{"_key":27},"CVE-2016-6290",{"_key":29},"CVE-2016-6291",{"_key":31},"CVE-2016-6292",{"_key":33},"CVE-2016-6295",{"_key":35},"CVE-2016-6296",{"_key":37},"CVE-2016-6297",{"_key":39},"CVE-2016-7124",{"_key":41},"CVE-2016-7125",{"_key":43},"CVE-2016-7126",{"_key":45},"CVE-2016-7127",{"_key":47},"CVE-2016-7128",{"_key":49},"CVE-2016-7129",{"_key":51},"CVE-2016-7130",{"_key":53},"CVE-2016-7131",{"_key":55},"CVE-2016-7132",{"_key":57},"CVE-2016-7133",{"_key":59},"CVE-2016-7134",{"_key":61},"CVE-2016-7412",{"_key":63},"CVE-2016-7413",{"_key":65},"CVE-2016-7414",{"_key":67},"CVE-2016-7416",{"_key":69},"CVE-2016-7417",{"_key":71},"CVE-2016-7418",[],[],[75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},"2016-10-05T15:19:17Z","2026-02-04T03:47:31.227260Z",{"cisa_kev":107,"cisa_ransomware":107,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[109,115,120,124,128,132,136,140,144,148,152,156,160,164,168,172,176,180,184,188,192,196,200,204,208,212,216,220,224,228,232,236,240,245,249,253,257,261,265,269,273,277,281,285,289,293,297,301,305,309,313,317,321,325,329,333,337,341,345,349,353],{"url":110,"sources":111,"tags":113},"https://www.suse.com/support/update/announcement/2016/suse-su-20162460-2/",[112],"osv_suse",[114],"Advisory",{"url":116,"sources":117,"tags":118},"https://bugzilla.suse.com/1001950",[112],[119],"REPORT",{"url":121,"sources":122,"tags":123},"https://bugzilla.suse.com/987580",[112],[119],{"url":125,"sources":126,"tags":127},"https://bugzilla.suse.com/988032",[112],[119],{"url":129,"sources":130,"tags":131},"https://bugzilla.suse.com/991422",[112],[119],{"url":133,"sources":134,"tags":135},"https://bugzilla.suse.com/991424",[112],[119],{"url":137,"sources":138,"tags":139},"https://bugzilla.suse.com/991426",[112],[119],{"url":141,"sources":142,"tags":143},"https://bugzilla.suse.com/991427",[112],[119],{"url":145,"sources":146,"tags":147},"https://bugzilla.suse.com/991428",[112],[119],{"url":149,"sources":150,"tags":151},"https://bugzilla.suse.com/991429",[112],[119],{"url":153,"sources":154,"tags":155},"https://bugzilla.suse.com/991430",[112],[119],{"url":157,"sources":158,"tags":159},"https://bugzilla.suse.com/991434",[112],[119],{"url":161,"sources":162,"tags":163},"https://bugzilla.suse.com/991437",[112],[119],{"url":165,"sources":166,"tags":167},"https://bugzilla.suse.com/995512",[112],[119],{"url":169,"sources":170,"tags":171},"https://bugzilla.suse.com/997206",[112],[119],{"url":173,"sources":174,"tags":175},"https://bugzilla.suse.com/997207",[112],[119],{"url":177,"sources":178,"tags":179},"https://bugzilla.suse.com/997208",[112],[119],{"url":181,"sources":182,"tags":183},"https://bugzilla.suse.com/997210",[112],[119],{"url":185,"sources":186,"tags":187},"https://bugzilla.suse.com/997211",[112],[119],{"url":189,"sources":190,"tags":191},"https://bugzilla.suse.com/997220",[112],[119],{"url":193,"sources":194,"tags":195},"https://bugzilla.suse.com/997225",[112],[119],{"url":197,"sources":198,"tags":199},"https://bugzilla.suse.com/997230",[112],[119],{"url":201,"sources":202,"tags":203},"https://bugzilla.suse.com/997247",[112],[119],{"url":205,"sources":206,"tags":207},"https://bugzilla.suse.com/997248",[112],[119],{"url":209,"sources":210,"tags":211},"https://bugzilla.suse.com/997257",[112],[119],{"url":213,"sources":214,"tags":215},"https://bugzilla.suse.com/999313",[112],[119],{"url":217,"sources":218,"tags":219},"https://bugzilla.suse.com/999679",[112],[119],{"url":221,"sources":222,"tags":223},"https://bugzilla.suse.com/999680",[112],[119],{"url":225,"sources":226,"tags":227},"https://bugzilla.suse.com/999684",[112],[119],{"url":229,"sources":230,"tags":231},"https://bugzilla.suse.com/999685",[112],[119],{"url":233,"sources":234,"tags":235},"https://bugzilla.suse.com/999819",[112],[119],{"url":237,"sources":238,"tags":239},"https://bugzilla.suse.com/999820",[112],[119],{"url":241,"sources":242,"tags":243},"https://www.suse.com/security/cve/CVE-2016-4473",[112],[244],"WEB",{"url":246,"sources":247,"tags":248},"https://www.suse.com/security/cve/CVE-2016-5399",[112],[244],{"url":250,"sources":251,"tags":252},"https://www.suse.com/security/cve/CVE-2016-6128",[112],[244],{"url":254,"sources":255,"tags":256},"https://www.suse.com/security/cve/CVE-2016-6161",[112],[244],{"url":258,"sources":259,"tags":260},"https://www.suse.com/security/cve/CVE-2016-6207",[112],[244],{"url":262,"sources":263,"tags":264},"https://www.suse.com/security/cve/CVE-2016-6289",[112],[244],{"url":266,"sources":267,"tags":268},"https://www.suse.com/security/cve/CVE-2016-6290",[112],[244],{"url":270,"sources":271,"tags":272},"https://www.suse.com/security/cve/CVE-2016-6291",[112],[244],{"url":274,"sources":275,"tags":276},"https://www.suse.com/security/cve/CVE-2016-6292",[112],[244],{"url":278,"sources":279,"tags":280},"https://www.suse.com/security/cve/CVE-2016-6295",[112],[244],{"url":282,"sources":283,"tags":284},"https://www.suse.com/security/cve/CVE-2016-6296",[112],[244],{"url":286,"sources":287,"tags":288},"https://www.suse.com/security/cve/CVE-2016-6297",[112],[244],{"url":290,"sources":291,"tags":292},"https://www.suse.com/security/cve/CVE-2016-7124",[112],[244],{"url":294,"sources":295,"tags":296},"https://www.suse.com/security/cve/CVE-2016-7125",[112],[244],{"url":298,"sources":299,"tags":300},"https://www.suse.com/security/cve/CVE-2016-7126",[112],[244],{"url":302,"sources":303,"tags":304},"https://www.suse.com/security/cve/CVE-2016-7127",[112],[244],{"url":306,"sources":307,"tags":308},"https://www.suse.com/security/cve/CVE-2016-7128",[112],[244],{"url":310,"sources":311,"tags":312},"https://www.suse.com/security/cve/CVE-2016-7129",[112],[244],{"url":314,"sources":315,"tags":316},"https://www.suse.com/security/cve/CVE-2016-7130",[112],[244],{"url":318,"sources":319,"tags":320},"https://www.suse.com/security/cve/CVE-2016-7131",[112],[244],{"url":322,"sources":323,"tags":324},"https://www.suse.com/security/cve/CVE-2016-7132",[112],[244],{"url":326,"sources":327,"tags":328},"https://www.suse.com/security/cve/CVE-2016-7133",[112],[244],{"url":330,"sources":331,"tags":332},"https://www.suse.com/security/cve/CVE-2016-7134",[112],[244],{"url":334,"sources":335,"tags":336},"https://www.suse.com/security/cve/CVE-2016-7412",[112],[244],{"url":338,"sources":339,"tags":340},"https://www.suse.com/security/cve/CVE-2016-7413",[112],[244],{"url":342,"sources":343,"tags":344},"https://www.suse.com/security/cve/CVE-2016-7414",[112],[244],{"url":346,"sources":347,"tags":348},"https://www.suse.com/security/cve/CVE-2016-7416",[112],[244],{"url":350,"sources":351,"tags":352},"https://www.suse.com/security/cve/CVE-2016-7417",[112],[244],{"url":354,"sources":355,"tags":356},"https://www.suse.com/security/cve/CVE-2016-7418",[112],[244],[],[],[],[361],{"ecosystem":362,"name":363,"vendor":364,"product":365,"cpe_part":9,"purl_type":366,"purl_namespace":364,"purl_name":365,"source":9,"versions":367},"SUSE Linux Enterprise","php7","suse","php7&distro=SUSE Linux Enterprise Module for Web and Scripting 12","rpm",[368],{"version":369,"is_range":370,"range_type":371,"version_start":9,"version_start_type":9,"version_end":372,"version_end_type":373,"fixed_in":9},"lt7_0_7_15_1",true,"ecosystem","7.0.7-15.1","excluding"]