CLSA-2026:1776942343

[CLSA-2026:1776942343] php: Fix of 7 CVEs

Type:

security

Severity:

Critical

Release date:

2026-04-23 11:05:47 UTC

Description:

- CVE-2021-21702: fix NULL pointer dereference in SoapClient
- CVE-2021-21703: fix OOB R/W in root process leading to privilege escalation
- CVE-2022-31625: don't free uninitialized parameters in pg_query_params/pg_send_execute that have led to RCE
- CVE-2022-31626: fix mysqlnd/pdo password of excessive length triggering buffer overflow leading to RCE
- CVE-2022-31630: fix OOB read due to insufficient input validation in imageloadfont()
- CVE-2022-37454: fix buffer overflow in the Keccak XKCP SHA-3 reference implementation
- CVE-2023-0662: fix DoS vulnerability when parsing multipart request body

Updated packages:

php-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:9cca79ad0f2bf66660619ad0cc938f6834c933b96b6caf45335090eacc0d59b8
php-bcmath-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:3eb4d905850a523ec218d32e185a98d1dc37f13950227643496c97651493f0cc
php-cli-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:38cecd14bcace4f5330fc2f1e5cca74e8ee67d6021b603e56af2cd347a750216
php-common-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:deb3e22f5f8bb638a54e39869fbeaa6d4c492c2539d7eb7abdcf84c3348c1c6d
php-dba-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:fbc9719911898abb8655db202c9c48012e66117732a14fc8d7c952c84e50c0da
php-dbg-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:6bc0470c1c31ea7f1c202e61442121e535ed424a4db1d0ee9cc0ae501dff6e67
php-devel-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:80512fc1a8c758f825ae747642ed1c5313ce673d8712de247b5db815914469ce
php-embedded-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:109b3fbd5a7960356a0ce54790fc9b20536c115505f59ca1b67f28badefd276b
php-enchant-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:df0668ce258f7f369ef5e36cfe90bda9a02b4bc4e30508039467da5bec47b90f
php-fpm-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:be31f70a84e2aa6345203c579867889ac2fc0773b2bc6a655d027d3307669982
php-gd-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:c3b5e1cc69cddcd528d03de8ec677d380bc02abd947b112edf75464fb3202fa7
php-gmp-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:71f1cc6ebcae1e44760483bbbaa85f1d36dfd19db1eb22cacf0d3616ed473cca
php-intl-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:5bdeaf2cf338ebaf391c5b2253cab667b30e3592d807af45a1286b85d18dd156
php-json-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:b30112f2fc102afa41a2d83123a389a3010265db914ce801fb53394669a6fbcc
php-ldap-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:423dc24154fbc9e27458b43b2e4d8d56b22e0f01d8f6fc9f3e0caae8cbbce1b7
php-mbstring-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:f78c4adb0af0ab5f823ff9bbc75670a6909c975b6370f81d69c9204c6f24b5cf
php-mysqlnd-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:70c664c37fc4e5fcfe06ae0e447c6cff8d9fedfcc48890aeb9bad61bffb07205
php-odbc-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:f1e49601795ba4c638a719ac3457b7b36b423d83e072c4bb06719061587f4d7f
php-opcache-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:2eda1eb224df6df884d467ad345faa51237ff6368599f578dc8683bcc2d50878
php-pdo-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:694bc29e3efff93cf602e3cb625f2045183365fd386bf2b064f153b048844ab3
php-pgsql-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:dc8a18a095bb7c11a9890c838edae90cd80f648555d88f1f08eabcd48c60e4bc
php-process-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:08c8a1727d4cf6bc95df2d8e38cf462648d8ae4bf7b8a0bbd70482e6354cbb30
php-recode-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:eaea1491607e31e509da8f564fb377362653f1a544ac30ff95121985061042a3
php-snmp-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:6e82c20c9d0fe14f10ef86ebf39909af06d094af486b088e97fef4824c10e085
php-soap-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:517cbf82037b6f4ceeef44e4bb79f585cede2b569fcb846ece5c2d8459e388ed
php-xml-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:c23f66c62f919cf421519ff459bf20ecf0326595257efb24769f98c832b7972c
php-xmlrpc-7.2.24-1.module_el8+2370+315044ad.tuxcare.els19.x86_64.rpm
sha:6b1fdf1af00147ba741c92ba1ae531663f4674f4d16401d4a3eaa5deb0624895

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.