[CLSA-2024:1735311613] php: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2024-12-27 15:00:20 UTC
Description:
- CVE-2023-0567: fix issue causing password_verify() function to accept invalid Blowfish hashes as valid - CVE-2023-3247: fix issue with SOAP HTTP Digest Authentication random value generator not checking for failure, leading to disclosure of uninitialized memory and easier guessing of client's nonce - Fix SOAP leaking http_msg on error
Updated packages:
  • php-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:c9393ade17a85a7ddbd1791bca78faa4253e59ce75914731f31c7ee1c08786ab
  • php-bcmath-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:2bf6badcc4e910787c823d2c4e4f50fd3a9dd6ddc17c807db61f0eba3b6cc511
  • php-cli-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:cb06b577a9494d7c58e79c43ce733e2bb63a21f5f0c2b9ae46e906af9d0fdd54
  • php-common-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:146a09b1896efa0a55a21a7e6dc55154155108cf3cb5fd283f5a0bc58b8e6e94
  • php-dba-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:6c6f0b617507de1076c5a68be705542fa1a19b8887740016f74c915aa6145d01
  • php-dbg-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:4d33b02bdb79e0d310009ac8407a3fc30db3d7bfb18ec0bd975ba50bed139329
  • php-devel-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:bc298cb006821d3eca6f8c48da912e679f898db918a4ed3703a55b93bda73acd
  • php-embedded-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:6a82274c961c8a30c0caca6c02a7216199df65780462e88afbaffd631274edc7
  • php-enchant-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:a1b76183abe4464dced0b2f4b48b931d68672eaa229122cbe2d020ca29c7fc38
  • php-fpm-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:ff4bf0456b6ddb74dc389eb5578268544267ef4741a574a589a1459d4b922ca8
  • php-gd-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:26dede0a76aea59b0b2b8a50bfb31431793249d5693b231575f89ba6bb442fa4
  • php-gmp-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:c014c1a9c0c4b704d59d78ee93f0e78b2bcc61806e7ae29abb7321eff2bf06cc
  • php-intl-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:72d37648fb47ff08411e55bbf98dd99c3b047b9f8586369b1befb58a1f81447e
  • php-json-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:aca6c184141ffa7425cddd18ebf4fadc3b8bfa0dfce9e43e1dfea5c29ac398a0
  • php-ldap-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:248668fea899f11a9d50dfea97ce612cd40df1e0eed32de57057528b42fca71f
  • php-mbstring-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:4ae55f51237d9f79446d7fee38aeb69c3522358dc76db2f6863c1a6fc31e27d3
  • php-mysqlnd-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:68136b223033dcc3c90848ad5451b88077cfb15f74b6741c4aeb029f0b63dc55
  • php-odbc-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:d068059e09050a91671c91e87b0cd547b29ecc6b2870c903b2c1ed27930e90b3
  • php-opcache-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:aec30a1dc4e7ee1b6135ceda7a17c200e84bb0810a15655b7df0bb801c62d84a
  • php-pdo-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:f10f710f0b04be47282cc4d787b8d6d0d36b56c4efb44ed61ab68a7d87b1365a
  • php-pgsql-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:043ba8801d5da76fd4cac097b16d1b56a0e7208801a504ee0e3e9ce4e13ee4cd
  • php-process-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:ed70b14ab88e6d6092ea1e83118d0fa15bc2532608279437e9831694f6b033e7
  • php-recode-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:3d0fa577c7d058f7b882ec54ee639931188c3df65e9565d67b5009564a401231
  • php-snmp-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:6386abde4afc8cb4b5712f01521642290bb07f4738b4d08de0a8f898b4a8bdb2
  • php-soap-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:c4570cdc660642c900515db5fd21436afeaeecf9cf6810bc1d898f9d17df99f2
  • php-xml-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:0004afd4372fea92e47703eac1e362994d0b7543e1019c512308c523baa136a5
  • php-xmlrpc-7.2.24-1.module_el8+2253+450c6754.tuxcare.els9.x86_64.rpm
    sha:79365586dd541338e353c5888112adf9d6904eaa2f65091b0c66b4edd3968472
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.