[CLSA-2022:1657182029] Fix CVE(s): CVE-2022-31626, CVE-2022-31625
Type:
security
Severity:
Critical
Release date:
2022-07-07 08:20:29 UTC
Description:
* SECURITY UPDATE: RCE via Uninitialized array in pg_query_params() - debian/patches/CVE-2022-31625.patch: don't free parameters which haven't initialized yet in ext/pgsql/pgsql.c, ext/pgsql/tests/bug81720.phpt. - CVE-2022-31625 * SECURITY UPDATE: RCE via mysqlnd/pdo password buffer overflow - debian/patches/CVE-2022-31626.patch: properly calculate size in ext/mysqlnd/mysqlnd_wireprotocol.c. - CVE-2022-31626
Updated packages:
  • libapache2-mod-php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:b32c5542109d26f1244dc3ec0bb28bf0e3f1fdd8
  • libphp7.0-embed_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:9eaa7e6495aeae55700abff7e2ca449372065dd2
  • php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_all.deb
    sha:d3094956a534176af6fda302068a804df0d4a64c
  • php7.0-bcmath_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:5211fab83ca22832524d3613a3d5cc8b6ab1bbab
  • php7.0-bz2_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:cc156ed1ce9adcb6e65c94c039ce3b5324b1f8e0
  • php7.0-cgi_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:9664a4d4d0e3af45565d092ad58ac2f59ecbcf27
  • php7.0-cli_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:65d095976cfeb6408a55da79bba85fd5ecd33a39
  • php7.0-common_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:eb6e1716cacb01a94233229cc6cfe697a00baf8a
  • php7.0-curl_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:36afc4effc137571779bae8e2f6082c419a25c22
  • php7.0-dba_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:5b6ec6356c7e40321afd9596b152fd5914f4d129
  • php7.0-dev_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:b8907660818d4eb45e749023b11b92b18ac8fdfb
  • php7.0-enchant_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:bc41fb0d83403e9a6f10943d1b71355cab906337
  • php7.0-fpm_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:d8c7658144f096b349125650bf0d77b170d82cc7
  • php7.0-gd_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:f903fcc1b5e7eb48ac74dd51c807adcf53a59a44
  • php7.0-gmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:a9c5c80a71d652578b66d3e5b0bee75c04a059a0
  • php7.0-imap_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:bb3588f1d7d7747951001cddfa4ec23f687b9128
  • php7.0-interbase_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:27b80aa6f4d92ef800848c3a39bbe0b3adb7621d
  • php7.0-intl_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:5d1415e17b7d65a549a10ee0563a4eee539ad7bd
  • php7.0-json_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:11ab182ae3908964f2c38c88279f70924504fe29
  • php7.0-ldap_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:00ba32d914f36ffcf2b3030132c6906c4185e3f9
  • php7.0-mbstring_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:1070c0fe035df99880e84d00cb0e1268e5759705
  • php7.0-mcrypt_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:9931c02c248663db1ea88aa10cdfbf5a0f39338f
  • php7.0-mysql_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:d099c429a5fcf922d3ff9ada444ec29d90ec93f1
  • php7.0-odbc_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:a6c1e77814656544aff6045a14c4eb8b42724bce
  • php7.0-opcache_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:0b726abe30198ee6223df093e25a90b7e9313644
  • php7.0-pgsql_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:40df1a6f9ffaccac55157adfccd3b68dcb267ab8
  • php7.0-phpdbg_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:ce7889336ca95ff45e57304a54ac0b90139dba62
  • php7.0-pspell_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:cd610b6a3d33312ab63fafce0fdf12697d1a4b86
  • php7.0-readline_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:b2207b947f7b45aac957b90ce560ad21f7929a64
  • php7.0-recode_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:36a1f5e812cdab4bd560240d30b420c9a33b40c8
  • php7.0-snmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:8b88ae11e014ad70cea087fd077b8601d4f37259
  • php7.0-soap_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:a747f57b87f8109fc9daa0a15d40500b6b283aac
  • php7.0-sqlite3_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:4ce6e2828888ca16e1c51a8af67ccef9bb1b86ba
  • php7.0-sybase_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:feb2993d70454b14f6665b17a8eae18f616e9ad5
  • php7.0-tidy_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:13af83c2839ae14ba5bbaa7ce173e286f781fe06
  • php7.0-xml_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:90a9a590c9e3f339f48eb24e317c091779602655
  • php7.0-xmlrpc_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:5a4c14a243e8fe4d53ead54c31186a641e35e995
  • php7.0-xsl_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_all.deb
    sha:8450343f59d9053a9da7c08323ca86be1b611f5d
  • php7.0-zip_7.0.33-0ubuntu0.16.04.17+tuxcare.els3_amd64.deb
    sha:a1602560faac7c2fbe6c219728182a0bb691e1b6
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.