[CLSA-2025:1747690840] php: Fix of 3 CVEs
Type:
security
Severity:
Moderate
Release date:
2025-05-19 21:40:45 UTC
Description:
- CVE-2025-1217: fix handling of folded headers by the http stream parser - CVE-2025-1734: fix validation of http headers with missing colon - CVE-2025-1861: fix incorrect http redirect location truncation
Updated packages:
  • php-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:faf79a6654d8fbe539b18285e02cbf10ee7c10bde8d9cbdde0ff8ea1a0ecc5bc
  • php-bcmath-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:8758e370ca8166327af938044aeade3ceed637025b24a81da0a56acf5d970c13
  • php-cli-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:2e9d472e0cf452de96729bd9683fda07115f2c957f0bd58b564c6d7ce378952b
  • php-common-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:4c6ff22b837d36fac1234ed18642a00fc4aca90c874acb9675a3eeb23b29bd77
  • php-dba-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:44b932a243cf5e15d9ae84c2fb9f7116561916ba48e5f80bb5add44a3c5237fd
  • php-devel-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:30314effcba43c201cfad185fbba1e4dc2201f0372bbd92fcdc86b63021530b5
  • php-embedded-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:9bf1e692cf73e47d9de3e094bbae9176afb06697074cdf22480fec00f3a05d26
  • php-enchant-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:76db940d54f4b93db439dfdba30c821f1a7e6569b1418bed40f95a49a4043571
  • php-fpm-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:d1d6bde96ebe79e0123f6a5a5d74c0cbdd69685bb7ecfbd178727c82c65558f1
  • php-gd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:6c8ad6802299ca3ded2a16381e6cfbaf6c2c43339b39f1b121860614be5807b1
  • php-intl-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:5629615ebcfb948364484c72e8f67f4f4e4e50c36cb9b8358a7d0ffb33f20a31
  • php-ldap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:cb420031167446af7a46d8ee91023eb117a251638bb6908fd491527c27e7a927
  • php-mbstring-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:6f3a2236e62706f726716e1134feebce1ec9e5e5608781d970c950f6f0fa888d
  • php-mysql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:b227fb762960a215d488b4a8d6cfdb241940ebc0c596bf59af02f7ff80897fee
  • php-mysqlnd-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:42074276bdb1267eccd5fe6b0f9fc6be3f86b463b3ba0074b877882d8465e790
  • php-odbc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:1501adc061383b5cbf531b84df4ba2c87597d7ad6a2bc2fefef5b79b67c274ac
  • php-pdo-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:24b92d5eb7c946a0593db791ff03ea965f2fee319f349dfb882ed98ce3861cf2
  • php-pgsql-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:04d192fc80bf04f598f2a162f9cad6fa0178657856be07e72fff3e715adee355
  • php-process-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:4d3f03c990e5ac854b763c229d42e778d314185cf04384c1c1ebaf7a75c95c6e
  • php-pspell-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:79e7e62121e926b4344c9c75f77161c1d50590caf48cdec43a058f8e0909cce7
  • php-recode-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:5fc179d6df825b2052238b8c68a22aa3a65c5ffe386ef745ee5fc99aec525e52
  • php-snmp-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:058b5dbf0c06b37a49a89ca1ed28e614ca996e2efe32a5ed8fc543f19e4a359d
  • php-soap-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:8baf49616941d2ee27ad11be677f9e8c5b73d3ad0de312ebfba1e00e69f4e37e
  • php-xml-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:f8107b426a792b93458575d71595c80d52093627e0f9018301602e7817f47cfb
  • php-xmlrpc-5.4.16-48.el7.tuxcare.els9.x86_64.rpm
    sha:0d22244f75fe6d7faa2051a735a928e5690b1fc3a0615b0b66b62559af9b36b3
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.