[CLSA-2022:1656958778] Fixed CVEs in php-1.module_el8.5.0+2068+cc873159.tuxcare.els4: CVE-2022-31626, CVE-2022-31625
Type:
security
Severity:
Critical
Release date:
2022-07-04
Description:
- CVE-2022-31626: php: password of excessive length triggers buffer overflow leading to RCE - CVE-2022-31625: don't free uninitialized parameters that have led to RCE
Updated packages:
  • php-snmp-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:eb7478075a90559820cad040c7bda68f0a7e9d3c
  • php-soap-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:20a24273c4b2452919198724e10e4fe13b97ce46
  • php-bcmath-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:60af9b38cd2030047884b71c564442f4c9bde5bf
  • php-dba-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:7016988dd0a7989ca16889a2f855c936469f9708
  • php-xmlrpc-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:3d051aad0bf4e0d02bac608986026084c1772fd0
  • php-odbc-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:dcaac2501932cf229d1b4fc2d1a376669a8c71ce
  • php-intl-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:a4bb11557ec0f422985a5d953b0496e657b3f9f5
  • php-opcache-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:410e8a8da5f6a9ba0494a8f3b20ed34857df18f0
  • php-process-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:8338aa0d25dff46b4b2c35e238927974c04f8105
  • php-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:8456a82d9de1d15081118b4ab096c7a74ed17ee5
  • php-xml-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:f227fd5e898624262661bd1a6355fdf8f2a31200
  • php-pdo-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:f23795c9f5d239fcc4413227fed820548a23ef71
  • php-mbstring-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:2520265d26c8c14b9603082d8e45e3cdbc2055f3
  • php-cli-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:9a42a5d962f8c4e35496d3617d1efaba0a4abb08
  • php-ldap-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:198d2436f37c961a92a9b064c632f91a7ab843e6
  • php-gmp-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:fdec24f9a8130b8325eafddfe3b3e0c07d55a701
  • php-pgsql-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:982dbdbdea25d1148f574951a7d2245a7d9196df
  • php-json-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:60c37785b8282250459dc6f980af17a56134ad36
  • php-fpm-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:644aac3a6bc99b2f48da96358a28fb11b3c24142
  • php-dbg-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:32610a487691bd89d4b31c9f1e8e63eb9fea3979
  • php-ffi-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:7e7db2422e8bdef9fd33a3106c8be0e09d0a20c2
  • php-devel-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:f16ebb51aaee5d506280282cf8ab5047d32add97
  • php-embedded-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:ad49a0416b9364f0b78b66304382bc45f69876a6
  • php-common-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:5181f8dee9b10599714ae11050ca2e9d18ff4e1a
  • php-enchant-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:0bd0eb8fa93f3150407ff38e83bd971b0a1a4e76
  • php-gd-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:7b7737aa9ed711675d61ed46558636ff712916ab
  • php-mysqlnd-7.4.19-1.module_el8.5.0+2068+cc873159.tuxcare.els4.x86_64.rpm
    sha:3af7e2fed9e9dde15637ccd697262dd9f04bd2a6
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.