{"affected":[{"ecosystem_specific":{"binaries":[{"apache2-mod_php7":"7.4.6-3.22.1","php7":"7.4.6-3.22.1","php7-bcmath":"7.4.6-3.22.1","php7-bz2":"7.4.6-3.22.1","php7-calendar":"7.4.6-3.22.1","php7-ctype":"7.4.6-3.22.1","php7-curl":"7.4.6-3.22.1","php7-dba":"7.4.6-3.22.1","php7-devel":"7.4.6-3.22.1","php7-dom":"7.4.6-3.22.1","php7-embed":"7.4.6-3.22.1","php7-enchant":"7.4.6-3.22.1","php7-exif":"7.4.6-3.22.1","php7-fastcgi":"7.4.6-3.22.1","php7-fileinfo":"7.4.6-3.22.1","php7-firebird":"7.4.6-3.22.1","php7-fpm":"7.4.6-3.22.1","php7-ftp":"7.4.6-3.22.1","php7-gd":"7.4.6-3.22.1","php7-gettext":"7.4.6-3.22.1","php7-gmp":"7.4.6-3.22.1","php7-iconv":"7.4.6-3.22.1","php7-intl":"7.4.6-3.22.1","php7-json":"7.4.6-3.22.1","php7-ldap":"7.4.6-3.22.1","php7-mbstring":"7.4.6-3.22.1","php7-mysql":"7.4.6-3.22.1","php7-odbc":"7.4.6-3.22.1","php7-opcache":"7.4.6-3.22.1","php7-openssl":"7.4.6-3.22.1","php7-pcntl":"7.4.6-3.22.1","php7-pdo":"7.4.6-3.22.1","php7-pgsql":"7.4.6-3.22.1","php7-phar":"7.4.6-3.22.1","php7-posix":"7.4.6-3.22.1","php7-readline":"7.4.6-3.22.1","php7-shmop":"7.4.6-3.22.1","php7-snmp":"7.4.6-3.22.1","php7-soap":"7.4.6-3.22.1","php7-sockets":"7.4.6-3.22.1","php7-sodium":"7.4.6-3.22.1","php7-sqlite":"7.4.6-3.22.1","php7-sysvmsg":"7.4.6-3.22.1","php7-sysvsem":"7.4.6-3.22.1","php7-sysvshm":"7.4.6-3.22.1","php7-tidy":"7.4.6-3.22.1","php7-tokenizer":"7.4.6-3.22.1","php7-xmlreader":"7.4.6-3.22.1","php7-xmlrpc":"7.4.6-3.22.1","php7-xmlwriter":"7.4.6-3.22.1","php7-xsl":"7.4.6-3.22.1","php7-zip":"7.4.6-3.22.1","php7-zlib":"7.4.6-3.22.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"php7","purl":"pkg:rpm/opensuse/php7&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.4.6-3.22.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for php7 fixes the following issues:\n\n- CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035).\n- CVE-2021-21705: Fixed SSRF bypass in FILTER_VALIDATE_URL (bsc#1188037).\n","id":"openSUSE-SU-2021:2637-1","modified":"2021-08-06T09:57:49Z","published":"2021-08-06T09:57:49Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PZBQEBPTH6UB3CIJQN5DS5XY65QU7M6A/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188035"},{"type":"REPORT","url":"https://bugzilla.suse.com/1188037"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-21704"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-21705"}],"related":["CVE-2021-21704","CVE-2021-21705"],"summary":"Security update for php7","upstream":["CVE-2021-21704","CVE-2021-21705"]}