SUSE-SU-2018:0530-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2016-10712

Published: 23 Feb 2018, 08:43

Last modified:04 Feb 2026, 03:41

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

23 Feb 2018, 08:43

Published

Vulnerability first disclosed

04 Feb 2026, 03:41

Last Modified

Vulnerability information updated

Description

Security update for php5 This update for php5 fixes the following issues: - CVE-2016-10712: In PHP all of the return values of stream_get_meta_data could be controlled if the input can be controlled (e.g., during file uploads). (bsc#1080234)

Affected Systems

suse•php5&distro=SUSE Linux Enterprise Module for Web and Scripting 12
< 5.5.14-109.20.1
suse•php5&distro=SUSE Linux Enterprise Software Development Kit 12 SP2
< 5.5.14-109.20.1
suse•php5&distro=SUSE Linux Enterprise Software Development Kit 12 SP3
< 5.5.14-109.20.1

References (3)

https://www.suse.com/support/update/announcement/2018/suse-su-20180530-1/
https://bugzilla.suse.com/1080234
https://www.suse.com/security/cve/CVE-2016-10712