SUSE-SU-2016:2975-1

Advisory lineage Upstream: 2 Downstream: 0

Upstream

CVE-2016-5773 CVE-2016-9137

Published: 02 Dec 2016, 10:40

Last modified:04 Feb 2026, 03:46

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Dec 2016, 10:40

Published

Vulnerability first disclosed

04 Feb 2026, 03:46

Last Modified

Vulnerability information updated

Description

Security update for php5 This update for php5 fixes the following issues: - CVE-2016-9137: Use After Free in unserialize() (bsc#1008029) - CVE-2016-5773: ZipArchive class Use After Free Vulnerability in PHP's GC (bsc#986247)

Affected Systems

suse•imap&distro=SUSE Linux Enterprise Desktop 12 SP1
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Desktop 12 SP2
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Module for Web and Scripting 12
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Software Development Kit 12 SP2
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Workstation Extension 12 SP1
< 2007e_suse-22.1
suse•imap&distro=SUSE Linux Enterprise Workstation Extension 12 SP2
< 2007e_suse-22.1
suse•php5&distro=SUSE Linux Enterprise Module for Web and Scripting 12
< 5.5.14-86.2
suse•php5&distro=SUSE Linux Enterprise Software Development Kit 12 SP1
< 5.5.14-86.2
suse•php5&distro=SUSE Linux Enterprise Software Development Kit 12 SP2
< 5.5.14-86.2

SUSE-SU-2016:2975-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)