[CLSA-2025:1737465408] php: Fix of 3 CVEs
Type:
security
Severity:
Important
Release date:
2025-01-21 13:16:54 UTC
Description:
- CVE-2024-8927: fix bypass of cgi.force_redirect configuration - CVE-2024-11233: fix single byte overread with convert.quoted-printable-decode filter - CVE-2024-11234: fix HTTP fulluri CRLF injection
Updated packages:
  • php-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:542ae037d0f878c1b1c8f494af3c4a79ac0bc62362ddc5b0fea5d3f70a9cf29c
  • php-bcmath-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:2e34e677e78c6da23786cabcd059307bf129db5646fe483e12e0a457152c885b
  • php-cli-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:694d7ac66f3d30a069ec4b313c1f997ae0d260458f109724f9409c7dd2be2b5e
  • php-common-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:8f9dfeeaf286ef308da237ec4e147dd3f18af7f0556af4278b3fd32e86be1eee
  • php-dba-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:6209d6099a2ec5dede858073378f615286ada3ef5a0884798e5ceca26029d019
  • php-dbg-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:df0e8c9a5a8d7a9ffd3b66dc56b00dfeede341fa7fbd4413051cba113c08e675
  • php-devel-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:79b87fcd68b507dd55f1283d81953ff5f6adce044b63806238304c359c339465
  • php-embedded-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:b476c9c7268ad0c0c3a9d3cd0268d614475ba4eee5617c3a85800d09618fd6f1
  • php-enchant-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:fa844de4a59b182295855ab4f8e566270033797cf103638005f721305510b15c
  • php-ffi-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:0e354505f335fcf91f07a08de321954a175ebdbf0c2da0df580c01d38cdfe427
  • php-fpm-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:b2e3bea770f60ea83a08dfb2a9e59ab613c236fe8389f941db4e5bbd43dd0a53
  • php-gd-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:860fbcd2f953c504521c2a943f4b32f71c9304bacbaea9cfdd0498682de19650
  • php-gmp-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:c84552773b22af1157f8589563dfeaee12768c118b42b9d7f456f1191ff094f2
  • php-intl-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:bb3d39b65e8258f5089b3dacc6a8ea191bb9b35f648fdc77176c1ac551841db6
  • php-ldap-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:9a1741eaf89d301b3e60f9581fa1f1d5913faa29b25665aa9d52171cf967ab11
  • php-mbstring-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:b902b4eefa016543f91e91541aa5199de4820df4e72504c06ffe38f626675972
  • php-mysqlnd-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:1d50a480dc04babe294dd0b4175c5b098a62bc22bf344b9c19e10d2d03fd9295
  • php-odbc-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:f2478af93744a0a1f44bcfc623044eebca709a464e028066ea023ebb4321d810
  • php-opcache-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:3afc33d9c86d496ca170301f6abca83ae6c370f042444fecfacac5fed59b0e48
  • php-pdo-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:b2732032d9680d6144c68d9bfc97856fba7f556a0f9153e1799aff3eb5ea1393
  • php-pgsql-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:e72690ee478037c7a1d42c1e0148a4b3decf63827827fd218b5c3888e23654bf
  • php-process-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:ed68bb7cbe6fbae857eeff0f2ae45c300193dced7ee17c2d204f5be0abe46814
  • php-snmp-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:fd34284439e824c7d07c0272a771463c949326b662a08ba9b0bfe631ce1ef58f
  • php-soap-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:5b5383366f2100f8b93ff43313ecf408f448eac865b4a6de6433606f8d53bf82
  • php-xml-8.0.30-1.el9_2.tuxcare.els1.x86_64.rpm
    sha:a81678abf311179088b2c8dc62719189a0f91f4d09305f4df850bfced83fe6b6
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.