[CLSA-2024:1714066065] Fix CVE(s): CVE-2024-3096
Type:
security
Severity:
Moderate
Release date:
2024-04-25 17:27:48 UTC
Description:
* SECURITY UPDATE: improper handling of user input vulnerability - debian/patches/CVE-2024-3096.patch: Disallow null character in bcrypt password to prevent password_verify from erroneously returning true - CVE-2024-3096
Updated packages:
  • libapache2-mod-php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:2060cfce6e9bd53deb237eee23f7418f140ecc80
  • libphp7.0-embed_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:1fb98d4c0da8fb68fd993db104f1295c6c2cf716
  • php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_all.deb
    sha:2dd2b7572a41464c0874a755ef9a606dc9c2af52
  • php7.0-bcmath_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:a81b7efa2e4d29bca59370caeb76aa713e099e3e
  • php7.0-bz2_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:7ad2ee2d57c891690e4f5143b91be52bebefb8df
  • php7.0-cgi_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:e0c41dfde970db88aef978cb68802b99031529b4
  • php7.0-cli_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:9363c36d794581fac6639c06658dfa2b6765a438
  • php7.0-common_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:cdd59e1703e7db3b6b92d52f9c7fe0926d6cb67f
  • php7.0-curl_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:cd5efb1501defd5a5411043e92119472d99d6d08
  • php7.0-dba_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:849534c67c0347b1472782e59580f0f14ad3eb18
  • php7.0-dev_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:2864d0ef7f0763d6d8371a50abeb6beea6bb2fdc
  • php7.0-enchant_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:d23521a18bd32de947c81dca15a61bab01f98e04
  • php7.0-fpm_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:1a8da7f3c02262ace972a72cbd7ca1239e6ce61a
  • php7.0-gd_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:03ce32a9ede002bb4a559a49e1ad7591617b3d8b
  • php7.0-gmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:a689d3cc872f49c47a67f2afff43997806fafe09
  • php7.0-imap_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:3de0f7c4acf882f585c4714ffb8a8f5f962c5111
  • php7.0-interbase_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:4c5c201cff1073e8f1ecb7c058fcd16530bdd4f9
  • php7.0-intl_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:9ea2fda3406a577d6fa0f655588ae4bf22fa8b18
  • php7.0-json_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:f3185c61b2b54e8b490b3092ceac638e74bb5c32
  • php7.0-ldap_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:4b7075b778948ada8313bce2f917329c44cececf
  • php7.0-mbstring_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:932c1e57cc975507c41300f1dc0b9e307cecd01e
  • php7.0-mcrypt_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:92ba59196fb6218c3aedbb8339753def0db4f00e
  • php7.0-mysql_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:55cee6dc7f4deb867448567dba9588f8cf7e4896
  • php7.0-odbc_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:f367fcd806302d3152f1a7a5a80dbb628c8eb02b
  • php7.0-opcache_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:b89c174ae8b43797de000418c5735a385b494caf
  • php7.0-pgsql_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:e0f0a2c21e0693bb65fd3f064e0ebf1aa4d8154c
  • php7.0-phpdbg_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:c464aaab787f72beaaa2cd0d805f1f655fecb166
  • php7.0-pspell_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:0851535d404b1a30146694f828a3e8e0d144c0f5
  • php7.0-readline_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:f99f758207e45ae6e029fe2c1fc6da573c11b738
  • php7.0-recode_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:609ea13de6ab1ca5b45ee088948260a34fede290
  • php7.0-snmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:2a93f111455f86c0993173d03490fd4e27277b6c
  • php7.0-soap_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:299b9926df39ca8e3f98d7e43685c209ea277498
  • php7.0-sqlite3_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:b33458a1e8a6de9bcdc877792df066ceb0baca8d
  • php7.0-sybase_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:9f86a51af753dcc87f6eeb708bbcb6232bde60f6
  • php7.0-tidy_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:b96c8450a264742fdec79ce0473fec2ba6b2318c
  • php7.0-xml_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:01cf8a3bcc76be1c755b8a413762e6018265bbf7
  • php7.0-xmlrpc_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:97ad6664f729b9d02766e70ec1c7ffda53cc195b
  • php7.0-xsl_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_all.deb
    sha:b763d09c731e201c51b9925feced96e68b988a50
  • php7.0-zip_7.0.33-0ubuntu0.16.04.17+tuxcare.els8_amd64.deb
    sha:692b463e787c2db8bbf3ba74cd48ecc4d339f31e
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.