[Apollo] Advisories Statistics light light Login

RLSA-2023:2417

Security Mirrored from RHSA-2023:2417
Issued at: 2025-12-27
Updated at: 2025-12-29

Synopsis

Moderate: php:8.1 security update



Description

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

The following packages have been upgraded to a later upstream version: php (8.1.14).

Security Fix(es):

* XKCP: buffer overflow in the SHA-3 reference implementation (CVE-2022-37454)

* php: standard insecure cookie could be treated as a '__Host-' or '__Secure-' cookie by PHP applications (CVE-2022-31629)

* php: OOB read due to insufficient input validation in imageloadfont() (CVE-2022-31630)

* php: PDO::quote() may return unquoted string due to an integer overflow (CVE-2022-31631)

* php: phar: infinite loop when decompressing quine gzip file (CVE-2022-31628)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Rocky Linux 9.2 Release Notes linked from the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2133687 2133688 2139280 2140200 2158791

CVEs

CVE-2022-31628 CVE-2022-31629 CVE-2022-31630 CVE-2022-31631 CVE-2022-37454

Affected packages

Rocky Linux 9 x86_64 - AppStream

apcu-panel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.noarch.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-apcu-debuginfo-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-apcu-debugsource-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-apcu-devel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.x86_64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40005+715283ec.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40004+bf50a568.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40004+bf50a568.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40005+715283ec.x86_64.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-xdebug3-debuginfo-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-xdebug3-debugsource-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-zip-debuginfo-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm php-pecl-zip-debugsource-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.x86_64.rpm

Rocky Linux 9 aarch64 - AppStream

apcu-panel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.noarch.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-apcu-debuginfo-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-apcu-debugsource-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-apcu-devel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40005+715283ec.aarch64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40004+bf50a568.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40004+bf50a568.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40005+715283ec.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-xdebug3-debuginfo-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-xdebug3-debugsource-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-zip-debuginfo-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm php-pecl-zip-debugsource-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.aarch64.rpm

Rocky Linux 9 s390x - AppStream

apcu-panel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.noarch.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-apcu-debuginfo-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-apcu-debugsource-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-apcu-devel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40004+bf50a568.s390x.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40005+715283ec.s390x.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40005+715283ec.s390x.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40004+bf50a568.s390x.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-xdebug3-debuginfo-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-xdebug3-debugsource-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-zip-debuginfo-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.s390x.rpm php-pecl-zip-debugsource-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.s390x.rpm

Rocky Linux 9 ppc64le - AppStream

apcu-panel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.noarch.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-apcu-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-apcu-debuginfo-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-apcu-debugsource-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-apcu-devel-0:5.1.21-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40004+bf50a568.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.7.0+40005+715283ec.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40004+bf50a568.ppc64le.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.7.0+40005+715283ec.ppc64le.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40005+715283ec.ppc64le.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.7.0+40004+bf50a568.ppc64le.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-xdebug3-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-xdebug3-debuginfo-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-xdebug3-debugsource-0:3.1.4-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-zip-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.src.rpm php-pecl-zip-debuginfo-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm php-pecl-zip-debugsource-0:1.20.1-1.module+el9.7.0+40003+454ed3c4.ppc64le.rpm