SUSE-SU-2017:0109-1
Advisory lineage Upstream: 4 Downstream: 0
Published: 11 Jan 2017, 16:32
Last modified:04 Feb 2026, 03:06
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
11 Jan 2017, 16:32
Published
Vulnerability first disclosed
04 Feb 2026, 03:06
Last Modified
Vulnerability information updated
Description
Security update for php53 This update for php53 fixes the following issues: * CVE-2014-9912: Stack-based buffer overflow in uloc_getDisplayName() [bsc#1012232] * CVE-2016-9933: Possible stack overflow on truecolor images handling [bsc#1015187] * CVE-2016-9934: Dereference from NULL pointer could lead to crash [bsc#1015188] * CVE-2016-9935: Invalid read could lead to crash [bsc#1015189] * Buffer overflow in libmagic, allowing attackers to crash the PHP interpreter [bsc#974305]
Affected Systems
- suse•php53&distro=SUSE Linux Enterprise Server 11 SP4
< 5.3.17-94.1
- suse•php53&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4
< 5.3.17-94.1
- suse•php53&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
< 5.3.17-94.1
References (10)
- https://www.suse.com/support/update/announcement/2017/suse-su-20170109-1/
- https://bugzilla.suse.com/1012232
- https://bugzilla.suse.com/1015187
- https://bugzilla.suse.com/1015188
- https://bugzilla.suse.com/1015189
- https://bugzilla.suse.com/974305
- https://www.suse.com/security/cve/CVE-2014-9912
- https://www.suse.com/security/cve/CVE-2016-9933
- https://www.suse.com/security/cve/CVE-2016-9934
- https://www.suse.com/security/cve/CVE-2016-9935