Oval Definition:oval:com.redhat.rhsa:def:20230965
Revision Date:2023-02-28Version:635
Title:RHSA-2023:0965: php security update (Moderate)
Description:PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

  • The following packages have been upgraded to a later upstream version: php (8.0.27). (BZ#2161667)

    Security Fix(es):

  • XKCP: buffer overflow in the SHA-3 reference implementation (CVE-2022-37454)

  • php: standard insecure cookie could be treated as a `__Host-` or `__Secure-` cookie by PHP applications (CVE-2022-31629)

  • php: OOB read due to insufficient input validation in imageloadfont() (CVE-2022-31630)

  • php: Due to an integer overflow PDO::quote() may return unquoted string (CVE-2022-31631)

  • php: phar wrapper can occur dos when using quine gzip file (CVE-2022-31628)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2022-31628
    CVE-2022-31629
    CVE-2022-31630
    CVE-2022-31631
    CVE-2022-37454
    RHSA-2023:0965
    Platform(s):Red Hat Enterprise Linux 9
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 9 is installed
  • AND
  • php is earlier than 0:8.0.27-1.el9_1
  • AND php is signed with Red Hat redhatrelease2 key
  • php-bcmath is earlier than 0:8.0.27-1.el9_1
  • AND php-bcmath is signed with Red Hat redhatrelease2 key
  • php-cli is earlier than 0:8.0.27-1.el9_1
  • AND php-cli is signed with Red Hat redhatrelease2 key
  • php-common is earlier than 0:8.0.27-1.el9_1
  • AND php-common is signed with Red Hat redhatrelease2 key
  • php-dba is earlier than 0:8.0.27-1.el9_1
  • AND php-dba is signed with Red Hat redhatrelease2 key
  • php-dbg is earlier than 0:8.0.27-1.el9_1
  • AND php-dbg is signed with Red Hat redhatrelease2 key
  • php-devel is earlier than 0:8.0.27-1.el9_1
  • AND php-devel is signed with Red Hat redhatrelease2 key
  • php-embedded is earlier than 0:8.0.27-1.el9_1
  • AND php-embedded is signed with Red Hat redhatrelease2 key
  • php-enchant is earlier than 0:8.0.27-1.el9_1
  • AND php-enchant is signed with Red Hat redhatrelease2 key
  • php-ffi is earlier than 0:8.0.27-1.el9_1
  • AND php-ffi is signed with Red Hat redhatrelease2 key
  • php-fpm is earlier than 0:8.0.27-1.el9_1
  • AND php-fpm is signed with Red Hat redhatrelease2 key
  • php-gd is earlier than 0:8.0.27-1.el9_1
  • AND php-gd is signed with Red Hat redhatrelease2 key
  • php-gmp is earlier than 0:8.0.27-1.el9_1
  • AND php-gmp is signed with Red Hat redhatrelease2 key
  • php-intl is earlier than 0:8.0.27-1.el9_1
  • AND php-intl is signed with Red Hat redhatrelease2 key
  • php-ldap is earlier than 0:8.0.27-1.el9_1
  • AND php-ldap is signed with Red Hat redhatrelease2 key
  • php-mbstring is earlier than 0:8.0.27-1.el9_1
  • AND php-mbstring is signed with Red Hat redhatrelease2 key
  • php-mysqlnd is earlier than 0:8.0.27-1.el9_1
  • AND php-mysqlnd is signed with Red Hat redhatrelease2 key
  • php-odbc is earlier than 0:8.0.27-1.el9_1
  • AND php-odbc is signed with Red Hat redhatrelease2 key
  • php-opcache is earlier than 0:8.0.27-1.el9_1
  • AND php-opcache is signed with Red Hat redhatrelease2 key
  • php-pdo is earlier than 0:8.0.27-1.el9_1
  • AND php-pdo is signed with Red Hat redhatrelease2 key
  • php-pgsql is earlier than 0:8.0.27-1.el9_1
  • AND php-pgsql is signed with Red Hat redhatrelease2 key
  • php-process is earlier than 0:8.0.27-1.el9_1
  • AND php-process is signed with Red Hat redhatrelease2 key
  • php-snmp is earlier than 0:8.0.27-1.el9_1
  • AND php-snmp is signed with Red Hat redhatrelease2 key
  • php-soap is earlier than 0:8.0.27-1.el9_1
  • AND php-soap is signed with Red Hat redhatrelease2 key
  • php-xml is earlier than 0:8.0.27-1.el9_1
  • AND php-xml is signed with Red Hat redhatrelease2 key
    • BACK