vulnerability

SUSE: CVE-2024-2756: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:C/A:N)	04/26/2024	04/29/2024	02/20/2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:C/A:N)

Published

04/26/2024

Added

04/29/2024

Modified

02/20/2025

Description

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a __Host- or __Secure- cookie by PHP applications.

Solution(s)

suse-upgrade-apache2-mod_php7suse-upgrade-apache2-mod_php74suse-upgrade-apache2-mod_php8suse-upgrade-apache2-mod_php81suse-upgrade-php7suse-upgrade-php7-bcmathsuse-upgrade-php7-bz2suse-upgrade-php7-calendarsuse-upgrade-php7-clisuse-upgrade-php7-ctypesuse-upgrade-php7-curlsuse-upgrade-php7-dbasuse-upgrade-php7-develsuse-upgrade-php7-domsuse-upgrade-php7-embedsuse-upgrade-php7-enchantsuse-upgrade-php7-exifsuse-upgrade-php7-fastcgisuse-upgrade-php7-fileinfosuse-upgrade-php7-fpmsuse-upgrade-php7-ftpsuse-upgrade-php7-gdsuse-upgrade-php7-gettextsuse-upgrade-php7-gmpsuse-upgrade-php7-iconvsuse-upgrade-php7-intlsuse-upgrade-php7-jsonsuse-upgrade-php7-ldapsuse-upgrade-php7-mbstringsuse-upgrade-php7-mysqlsuse-upgrade-php7-odbcsuse-upgrade-php7-opcachesuse-upgrade-php7-opensslsuse-upgrade-php7-pcntlsuse-upgrade-php7-pdosuse-upgrade-php7-pgsqlsuse-upgrade-php7-pharsuse-upgrade-php7-posixsuse-upgrade-php7-readlinesuse-upgrade-php7-shmopsuse-upgrade-php7-snmpsuse-upgrade-php7-soapsuse-upgrade-php7-socketssuse-upgrade-php7-sodiumsuse-upgrade-php7-sqlitesuse-upgrade-php7-sysvmsgsuse-upgrade-php7-sysvsemsuse-upgrade-php7-sysvshmsuse-upgrade-php7-testsuse-upgrade-php7-tidysuse-upgrade-php7-tokenizersuse-upgrade-php7-xmlreadersuse-upgrade-php7-xmlrpcsuse-upgrade-php7-xmlwritersuse-upgrade-php7-xslsuse-upgrade-php7-zipsuse-upgrade-php7-zlibsuse-upgrade-php74suse-upgrade-php74-bcmathsuse-upgrade-php74-bz2suse-upgrade-php74-calendarsuse-upgrade-php74-ctypesuse-upgrade-php74-curlsuse-upgrade-php74-dbasuse-upgrade-php74-develsuse-upgrade-php74-domsuse-upgrade-php74-enchantsuse-upgrade-php74-exifsuse-upgrade-php74-fastcgisuse-upgrade-php74-fileinfosuse-upgrade-php74-fpmsuse-upgrade-php74-ftpsuse-upgrade-php74-gdsuse-upgrade-php74-gettextsuse-upgrade-php74-gmpsuse-upgrade-php74-iconvsuse-upgrade-php74-intlsuse-upgrade-php74-jsonsuse-upgrade-php74-ldapsuse-upgrade-php74-mbstringsuse-upgrade-php74-mysqlsuse-upgrade-php74-odbcsuse-upgrade-php74-opcachesuse-upgrade-php74-opensslsuse-upgrade-php74-pcntlsuse-upgrade-php74-pdosuse-upgrade-php74-pgsqlsuse-upgrade-php74-pharsuse-upgrade-php74-posixsuse-upgrade-php74-readlinesuse-upgrade-php74-shmopsuse-upgrade-php74-snmpsuse-upgrade-php74-soapsuse-upgrade-php74-socketssuse-upgrade-php74-sodiumsuse-upgrade-php74-sqlitesuse-upgrade-php74-sysvmsgsuse-upgrade-php74-sysvsemsuse-upgrade-php74-sysvshmsuse-upgrade-php74-tidysuse-upgrade-php74-tokenizersuse-upgrade-php74-xmlreadersuse-upgrade-php74-xmlrpcsuse-upgrade-php74-xmlwritersuse-upgrade-php74-xslsuse-upgrade-php74-zipsuse-upgrade-php74-zlibsuse-upgrade-php8suse-upgrade-php8-bcmathsuse-upgrade-php8-bz2suse-upgrade-php8-calendarsuse-upgrade-php8-clisuse-upgrade-php8-ctypesuse-upgrade-php8-curlsuse-upgrade-php8-dbasuse-upgrade-php8-develsuse-upgrade-php8-domsuse-upgrade-php8-embedsuse-upgrade-php8-enchantsuse-upgrade-php8-exifsuse-upgrade-php8-fastcgisuse-upgrade-php8-fileinfosuse-upgrade-php8-fpmsuse-upgrade-php8-ftpsuse-upgrade-php8-gdsuse-upgrade-php8-gettextsuse-upgrade-php8-gmpsuse-upgrade-php8-iconvsuse-upgrade-php8-intlsuse-upgrade-php8-ldapsuse-upgrade-php8-mbstringsuse-upgrade-php8-mysqlsuse-upgrade-php8-odbcsuse-upgrade-php8-opcachesuse-upgrade-php8-opensslsuse-upgrade-php8-pcntlsuse-upgrade-php8-pdosuse-upgrade-php8-pgsqlsuse-upgrade-php8-pharsuse-upgrade-php8-posixsuse-upgrade-php8-readlinesuse-upgrade-php8-shmopsuse-upgrade-php8-snmpsuse-upgrade-php8-soapsuse-upgrade-php8-socketssuse-upgrade-php8-sodiumsuse-upgrade-php8-sqlitesuse-upgrade-php8-sysvmsgsuse-upgrade-php8-sysvsemsuse-upgrade-php8-sysvshmsuse-upgrade-php8-testsuse-upgrade-php8-tidysuse-upgrade-php8-tokenizersuse-upgrade-php8-xmlreadersuse-upgrade-php8-xmlwritersuse-upgrade-php8-xslsuse-upgrade-php8-zipsuse-upgrade-php8-zlibsuse-upgrade-php81suse-upgrade-php81-bcmathsuse-upgrade-php81-bz2suse-upgrade-php81-calendarsuse-upgrade-php81-clisuse-upgrade-php81-ctypesuse-upgrade-php81-curlsuse-upgrade-php81-dbasuse-upgrade-php81-develsuse-upgrade-php81-domsuse-upgrade-php81-embedsuse-upgrade-php81-enchantsuse-upgrade-php81-exifsuse-upgrade-php81-fastcgisuse-upgrade-php81-ffisuse-upgrade-php81-fileinfosuse-upgrade-php81-fpmsuse-upgrade-php81-fpm-apachesuse-upgrade-php81-ftpsuse-upgrade-php81-gdsuse-upgrade-php81-gettextsuse-upgrade-php81-gmpsuse-upgrade-php81-iconvsuse-upgrade-php81-intlsuse-upgrade-php81-ldapsuse-upgrade-php81-mbstringsuse-upgrade-php81-mysqlsuse-upgrade-php81-odbcsuse-upgrade-php81-opcachesuse-upgrade-php81-opensslsuse-upgrade-php81-pcntlsuse-upgrade-php81-pdosuse-upgrade-php81-pgsqlsuse-upgrade-php81-pharsuse-upgrade-php81-posixsuse-upgrade-php81-readlinesuse-upgrade-php81-shmopsuse-upgrade-php81-snmpsuse-upgrade-php81-soapsuse-upgrade-php81-socketssuse-upgrade-php81-sodiumsuse-upgrade-php81-sqlitesuse-upgrade-php81-sysvmsgsuse-upgrade-php81-sysvsemsuse-upgrade-php81-sysvshmsuse-upgrade-php81-testsuse-upgrade-php81-tidysuse-upgrade-php81-tokenizersuse-upgrade-php81-xmlreadersuse-upgrade-php81-xmlwritersuse-upgrade-php81-xslsuse-upgrade-php81-zipsuse-upgrade-php81-zlib

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today