Suse Linux_enterprise_module_for_web_scripting
2 CVEs affecting Suse Linux_enterprise_module_for_web_scripting. Latest disclosed: 2017-06-08. Critical: 2, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-4473 | Critical | 9.8 | 2017-06-08 | /ext/phar/phar_object.c in PHP 7.0.7 and 5.6.x allows remote attackers to execute arbitrary code. NOTE: Introduced as part of an incomplete fix to CVE-2015-68… |
CVE-2015-8866 | Critical | 9.6 | 2016-05-22 | ext/libxml/libxml.c in PHP before 5.5.22 and 5.6.x before 5.6.6, when PHP-FPM is used, does not isolate each thread from libxml_disable_entity_loader changes i… |