[CLSA-2025:1747740986] php: Fix of 3 CVEs
Type:
security
Severity:
Moderate
Release date:
2025-05-20 11:36:31 UTC
Description:
- CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation
Updated packages:
  • php-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:6280c406d4fe50e8f3477d813303fb34fcacf5b1361aebc4dc84544b0d022169
  • php-bcmath-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:e7f300a5bfea71e7e6ee6cdf7211f75ee4a64b237c8cc18e4fda9a6d58ed254c
  • php-cli-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:78a78474728bcc1ee22f94f5f94b76d526a048f7798c38422a47b087c0db0229
  • php-common-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:28f300530c41959977ac3046a91f136f8507285315b2688d8eefd23146950189
  • php-dba-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:9821528f61dc917d473894aad8f7fe26636a6f3a75b75db976183329f63c25a7
  • php-devel-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:2aa4f023c67134b023157b6766a790e934f6d1d4c2b82e93ae0ed0702b2d3208
  • php-embedded-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:78ec2ce797c204996836a5129f1f10e508b6bfa6d2f53527b7070363373d9333
  • php-enchant-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:f835cc1739852f0aeaaed5b6c0947b1014df7da186bea7429e2db180c790f307
  • php-fpm-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:42ebd42abe925a5a0a9bd57866a2b35886ad6afa484a5dfd4e918c7077fcd219
  • php-gd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:9000e3032ea7ee5b57388d88ac943df966c3a21fc86e0716ec189ad7ae5d88ed
  • php-intl-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:6554b1f9881be40e3a5858f69a07fbfea67b5daa5be518904b47bccf4c2706fc
  • php-ldap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:33c174cdaba5e266d4b09db92d797a62a7795bff83aa12fed670a4cd080d11aa
  • php-mbstring-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:a2d105393ac620aeacbde611aa3479f3ce76a49bab8a1c5667eb7fb157b5f909
  • php-mysql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:c589f461b6f81821358155bdc6633fc914eb6c098c3b52a34aaeae29500ca402
  • php-mysqlnd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:31e11c4a01a036cf49232f9f16b3a7a9118b25d380b3f3ab8b041d2c7d4682b2
  • php-odbc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:3d96cfb66b49ebfa7fcf36cf1a84710b304c88f95208065a750d92715ca7d06e
  • php-pdo-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:88354b381a25b61c88952f3dd73912e3aa2dcf6f0f1cd4d52c0283b51f3eb2f6
  • php-pgsql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:2b05e05b505c5a67d734ace95a3db4b4fc5090f6538b1e3923edd0b43e69c3e7
  • php-process-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:5fe0b3a602a92eb2d2d4315016b971c08ac2d99b804b6c04ee1e0c3095971c85
  • php-pspell-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:ada1570e7ffe095829b12dba9af98c670d3829375bd15b6cb0c913a8230f7960
  • php-recode-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:29a463e1c79fc8e599a752ffea180c328ba0d131c37e9bfff9f3ddd3a718d637
  • php-snmp-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:441bc676fae85b22808c7e9ae728bc471942e066171ce197aeac93f8cdf4f443
  • php-soap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:ab68f3e8199ef4a03f9dde7e815ed4d598bd0cefae3d988ed51e422f75841814
  • php-xml-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:f92ffcc4782d97f9395e26be8c84f815007184adc415435f6d553308f8fad09b
  • php-xmlrpc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:b87a5630af27de55428ec90366c66a2c8889bb76e51f6c4b73aab31931dfaf95
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.