{"affected":[{"ecosystem_specific":{"binaries":[{"apache2-mod_php74":"7.4.33-1.62.1","php74":"7.4.33-1.62.1","php74-bcmath":"7.4.33-1.62.1","php74-bz2":"7.4.33-1.62.1","php74-calendar":"7.4.33-1.62.1","php74-ctype":"7.4.33-1.62.1","php74-curl":"7.4.33-1.62.1","php74-dba":"7.4.33-1.62.1","php74-dom":"7.4.33-1.62.1","php74-enchant":"7.4.33-1.62.1","php74-exif":"7.4.33-1.62.1","php74-fastcgi":"7.4.33-1.62.1","php74-fileinfo":"7.4.33-1.62.1","php74-fpm":"7.4.33-1.62.1","php74-ftp":"7.4.33-1.62.1","php74-gd":"7.4.33-1.62.1","php74-gettext":"7.4.33-1.62.1","php74-gmp":"7.4.33-1.62.1","php74-iconv":"7.4.33-1.62.1","php74-intl":"7.4.33-1.62.1","php74-json":"7.4.33-1.62.1","php74-ldap":"7.4.33-1.62.1","php74-mbstring":"7.4.33-1.62.1","php74-mysql":"7.4.33-1.62.1","php74-odbc":"7.4.33-1.62.1","php74-opcache":"7.4.33-1.62.1","php74-openssl":"7.4.33-1.62.1","php74-pcntl":"7.4.33-1.62.1","php74-pdo":"7.4.33-1.62.1","php74-pgsql":"7.4.33-1.62.1","php74-phar":"7.4.33-1.62.1","php74-posix":"7.4.33-1.62.1","php74-readline":"7.4.33-1.62.1","php74-shmop":"7.4.33-1.62.1","php74-snmp":"7.4.33-1.62.1","php74-soap":"7.4.33-1.62.1","php74-sockets":"7.4.33-1.62.1","php74-sodium":"7.4.33-1.62.1","php74-sqlite":"7.4.33-1.62.1","php74-sysvmsg":"7.4.33-1.62.1","php74-sysvsem":"7.4.33-1.62.1","php74-sysvshm":"7.4.33-1.62.1","php74-tidy":"7.4.33-1.62.1","php74-tokenizer":"7.4.33-1.62.1","php74-xmlreader":"7.4.33-1.62.1","php74-xmlrpc":"7.4.33-1.62.1","php74-xmlwriter":"7.4.33-1.62.1","php74-xsl":"7.4.33-1.62.1","php74-zip":"7.4.33-1.62.1","php74-zlib":"7.4.33-1.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Web and Scripting 12","name":"php74","purl":"pkg:rpm/suse/php74&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Web%20and%20Scripting%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-1.62.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"php74-devel":"7.4.33-1.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 12 SP5","name":"php74","purl":"pkg:rpm/suse/php74&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.33-1.62.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for php7 fixes the following issues:\n\n- CVE-2023-3823: Fixed an issue with external entity loading in XML without enabling it. (bsc#1214106)\n- CVE-2023-3824: Fixed a buffer overflow in phar_dir_read(). (bsc#1214103)\n","id":"SUSE-SU-2023:3445-1","modified":"2023-08-28T08:45:24Z","published":"2023-08-28T08:45:24Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20233445-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1214103"},{"type":"REPORT","url":"https://bugzilla.suse.com/1214106"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-3823"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-3824"}],"related":["CVE-2023-3823","CVE-2023-3824"],"summary":"Security update for php7","upstream":["CVE-2023-3823","CVE-2023-3824"]}