[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2018:0806-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":26,"duplicates":27,"related":28,"reserved_at":9,"published_at":35,"modified_at":36,"state":9,"summary":37,"references_raw":39,"kevs":96,"epss":9,"epss_history":97,"metrics":98,"affected":99},"SUSE-SU-2018:0806-1","Security update for php53\n\nThis update for php53 fixes several issues.\n\nThese security issues were fixed:\n\n- CVE-2016-10712: In PHP all of the return values of stream_get_meta_data\n  could be controlled if the input can be controlled (e.g., during file\n  uploads).  (bsc#1080234)\n- CVE-2018-5712: Prevent reflected XSS on the PHAR 404 error page via the\n  URI of a request for a .phar file that allowed for information disclosure\n  (bsc#1076220)\n- CVE-2018-5711: Prevent integer signedness error that could have lead\n  to an infinite loop via a crafted GIF file allowing for DoS (bsc#1076391)\n- CVE-2016-5773: php_zip.c in the zip extension in PHP improperly\n  interacted with the unserialize implementation and garbage collection,\n  which allowed remote attackers to execute arbitrary code or cause a\n  denial of service (use-after-free and application crash) via crafted\n  serialized data containing a ZipArchive object.  (bsc#986247)\n- CVE-2016-5771: spl_array.c in the SPL extension in PHP improperly\n  interacted with the unserialize implementation and garbage collection,\n  which allowed remote attackers to execute arbitrary code or cause a\n  denial of service (use-after-free and application crash) via crafted\n  serialized data.  (bsc#986391)\n- CVE-2018-7584: Fixed stack-based buffer under-read while parsing an\n  HTTPresponse in the php_stream_url_wrap_http_ex.  (bsc#1083639)\n\n",null,[],[],[],[14,16,18,20,22,24],{"_key":15},"CVE-2016-10712",{"_key":17},"CVE-2016-5771",{"_key":19},"CVE-2016-5773",{"_key":21},"CVE-2018-5711",{"_key":23},"CVE-2018-5712",{"_key":25},"CVE-2018-7584",[],[],[29,30,31,32,33,34],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},"2018-03-26T08:38:15Z","2026-02-04T03:03:16.173163Z",{"cisa_kev":38,"cisa_ransomware":38,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[40,46,51,55,59,63,67,71,76,80,84,88,92],{"url":41,"sources":42,"tags":44},"https://www.suse.com/support/update/announcement/2018/suse-su-20180806-1/",[43],"osv_suse",[45],"Advisory",{"url":47,"sources":48,"tags":49},"https://bugzilla.suse.com/1076220",[43],[50],"REPORT",{"url":52,"sources":53,"tags":54},"https://bugzilla.suse.com/1076391",[43],[50],{"url":56,"sources":57,"tags":58},"https://bugzilla.suse.com/1080234",[43],[50],{"url":60,"sources":61,"tags":62},"https://bugzilla.suse.com/1083639",[43],[50],{"url":64,"sources":65,"tags":66},"https://bugzilla.suse.com/986247",[43],[50],{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/986391",[43],[50],{"url":72,"sources":73,"tags":74},"https://www.suse.com/security/cve/CVE-2016-10712",[43],[75],"WEB",{"url":77,"sources":78,"tags":79},"https://www.suse.com/security/cve/CVE-2016-5771",[43],[75],{"url":81,"sources":82,"tags":83},"https://www.suse.com/security/cve/CVE-2016-5773",[43],[75],{"url":85,"sources":86,"tags":87},"https://www.suse.com/security/cve/CVE-2018-5711",[43],[75],{"url":89,"sources":90,"tags":91},"https://www.suse.com/security/cve/CVE-2018-5712",[43],[75],{"url":93,"sources":94,"tags":95},"https://www.suse.com/security/cve/CVE-2018-7584",[43],[75],[],[],[],[100,113,117,121,125,129],{"ecosystem":101,"name":102,"vendor":103,"product":104,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":104,"source":9,"versions":106},"SUSE Linux Enterprise","php53","suse","php53&distro=SUSE Linux Enterprise Point of Sale 11 SP3","rpm",[107],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},"lt5_3_17_112_20_1",true,"ecosystem","5.3.17-112.20.1","excluding",{"ecosystem":101,"name":102,"vendor":103,"product":114,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":114,"source":9,"versions":115},"php53&distro=SUSE Linux Enterprise Server 11 SP3-LTSS",[116],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},{"ecosystem":101,"name":102,"vendor":103,"product":118,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":118,"source":9,"versions":119},"php53&distro=SUSE Linux Enterprise Server 11 SP3-TERADATA",[120],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},{"ecosystem":101,"name":102,"vendor":103,"product":122,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":122,"source":9,"versions":123},"php53&distro=SUSE Linux Enterprise Server 11 SP4",[124],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},{"ecosystem":101,"name":102,"vendor":103,"product":126,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":126,"source":9,"versions":127},"php53&distro=SUSE Linux Enterprise Server for SAP Applications 11 SP4",[128],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9},{"ecosystem":101,"name":102,"vendor":103,"product":130,"cpe_part":9,"purl_type":105,"purl_namespace":103,"purl_name":130,"source":9,"versions":131},"php53&distro=SUSE Linux Enterprise Software Development Kit 11 SP4",[132],{"version":108,"is_range":109,"range_type":110,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":112,"fixed_in":9}]